The primary role of this position is two-fold: 1) engage with business units to prepare and review subcontracts on an 'as needed basis' and 2) to ensure Risk, Audit and Compliance oversight is maintained for the products, services and procedures as required by the FAAC US entities. This includes vetting and recommending vetting companies, insurance company and policy review, and project management of Auditor, IT, Engineering responsibilities during such engagements, and managing the training of company employees as needed. Activities will be for both PCI-DSS Report of Compliance ("ROC") and a PCI-PADSS Attestation of Compliance ("AOC") reporting. Proper review and determination of insurance and insuring provisioning is important for this role.

This position will provide drafts of the Information Security Policy to the Chief Information Security Officer ("CISO") as needed, and will create Payment Card Industry ("PCI") responsibility matrices for presales support. In addition, this position will work with Sales and Solution Engineering to provide documentation describing hosted solution offerings and other documents as required.

This role may also perform technical writing duties, taking technical input and presenting it in a professional, well-organized manner for our internal and customer-facing documentation and presentment.

Essential Responsibilities :

Subcontracting

Understand the concept of construction contracting together with working knowledge of construction, flow-down/flow-through provisioning of contractual obligations.
Basic understanding of contractual obligations and consequences of failure to meet such obligations.
Preparing and reviewing subcontracts as needed for various sites as required by the Business Units.

Compliance
Project manager for PA-DSS validation activities and PCI-DSS compliance activities.
Collect, assess, and implement feedback towards updating our Information Security Policies
Ensure proper execution of PCI and Security Training Program – ensuring that appropriate training for FAAC entity employees is performed in accordance with IT policies
Ensure Security Policies are reviewed on an annual basis and are properly maintained
Ensure annual security scenarios are implemented in accordance with corporate policies
Coordinate Security breach notification to our clients in accordance with corporate policies and processes
Coordinate Quarterly IT Steering Committee meetings – schedule attendees, create agendas, take meeting notes, set action items as needed including monitoring, follow-up and ensuring timely execution is made.
Provide technical writing support for internal and external documentation

Risk/Insurance
Own risk/insurance relationship between the various FAAC US entities and the Insurance companies FAAC uses to determine premium adjustments, types of riders needed by FAAC in a timely fashion.
Facilitate issuance of Certificates of Insurance ("COI") from various insurance companies.
Conduct and facilitate necessary audits/meetings with the various insurance companies.
Conduct contract review of issues relating to insurance and various types of coverages and dollar amounts associated with client requests.

License Mapping for all FAAC entities
Doing business licensing for all FAAC entities (HUB, HUB Canada, TIBA, ATI and FAAC USA) and keeping documentation current.
Timely follow-up on filings and proper record keeping.

Other tasks as assigned
Assistance in contract review and completion relating to insurance, bonding and subcontracting.
Projects as assigned by Legal or CEO office.
Working collaboratively with various internal departments to ensure proper engagement, procedures and business related actives are maintained
Litigation support relating to insurance carriers and coverages thereof.

Requirements :
Bachelor's degree in related field
At least two years' corporate risk, paralegal, construction and/or security or related experience
Working knowledge of PCI-DSS and/or PA-DSS ("Payment Application Data Security Standard")
Ability and desire to learn and ability to 'take charge' when needed to complete an assigned task
Strong attention to detail; well organized and focused on task assigned
High degree of reliability and accountability
Excellent follow-up skills; ability to multitask effectively
Advanced computer skills with experience using Microsoft Word, Excel, and Outlook
Excellent communication skills both written and verbal

Desired:
Strong Subcontracting experience
PCIP certification
Project management training
Strong insurance/risk background
Self-starter attitude/work ethic

---