Job Title: IT Manager - PCI Compliance & Payment Card Industry
Location: Mamprobi, Accra, Ghana
Department: Information Technology
Reports to: VP Operations

Salary Range: GHS 6000 to 7500

Job Overview:

We are seeking an experienced IT Officer to maintain IT infrastructure, systems, and operations within the context of the Payment Card Industry (PCI) standards. The IT Manager will be responsible for ensuring the company’s IT systems and processes meet PCI Data Security Standards (DSS) and other relevant compliance regulations. This position requires strong technical knowledge in managing secure IT systems, risk management, compliance audits, and collaborating with cross-functional teams to support organizational objectives while safeguarding cardholder data.

Key Responsibilities:

1. PCI Compliance Management:
   
   
   • Lead the organization’s efforts to maintain and enhance PCI DSS compliance.
   
   
   • Coordinate with auditors and ensure regular internal and external PCI compliance assessments and audits.
   
   
   • Implement and maintain appropriate security controls to protect cardholder data in alignment with PCI DSS.
   
   
   • Develop, monitor, and document compliance processes and procedures.
   
   
   
   


2. Security & Risk Management:
   
   
   
   • Oversee security incident response protocols and threat mitigation strategies for PCI-related risks.
   
   
   • Implement encryption, access control, and other security measures to safeguard sensitive data.
   
   
   • Conduct vulnerability assessments and penetration testing regularly to identify and address security weaknesses.
   
   
   • Manage disaster recovery and business continuity plans for payment systems.
   
   
   • Ensure smooth operation of IT systems and infrastructure, including hardware, software, and network components critical to PCI compliance.
   
   
   • Develop and maintain IT policies and procedures in line with industry standards and regulatory requirements.
   
   
   • Act as the escalation point for IT issues and provide solutions to complex technical challenges.
   
   
   
   


3. Vendor Management & Integration:
   
   
   
   • Collaborate with third-party vendors, security software providers, to ensure compliance with PCI DSS requirements.
   
   
   • Oversee the integration of third-party systems while ensuring compliance with internal security policies and industry regulations.
   
   
   • Manage vendor relationships to ensure timely updates and remediation of security issues.
   
   
   
   


4. Training & Awareness:
   
   
   
   • Design and conduct training sessions to ensure staff are aware of and adhere to PCI compliance requirements.
   
   
   • Promote a culture of security within the organization, ensuring employees understand the importance of safeguarding cardholder data.
   
   
   
   


5. Compliance Documentation & Reporting:
   
   
   
   • Maintain accurate records of PCI compliance status, security assessments, and remediation actions.
   
   
   • Prepare and present compliance reports to senior management, including risk assessments and mitigation strategies.
   
   
   • Ensure documentation of processes related to PCI compliance is accurate, up-to-date, and accessible for audits.
   
   
   
   

Required Skills & Qualifications:

• Education:
  
  
  • Bachelor's degree in Information Technology, Computer Science, or a related field
  
  
  • Advanced certifications such as CISSP, CISM, or CISA (Added advantage).
  
  
  
  

• Experience:
  
  
  • Minimum 3 to 5 years of IT experience, with at least 3 years in managing PCI compliance or in the payment card industry.
  
  
  • Proven experience in managing IT infrastructure, security systems, and risk management in a PCI-compliant environment.
  
  
  
  


• Technical Skills:
  
  
  
  • Expertise in network security, encryption, firewalls, intrusion detection/prevention systems, and secure application development.
  
  
  • Experience with security information and event management (SIEM) tools and vulnerability scanning solutions.
  
  
  
  


• Soft Skills:
  
  
  
  • Strong leadership and team skills.
  
  
  • Excellent problem-solving and analytical abilities.
  
  
  • Strong communication skills, both technical and non-technical.
  
  
  • Ability to work under pressure and manage multiple priorities.
  
  
  
  

Application Process:
Interested candidates are invited to submit their resume and cover letter detailing their qualifications and experience relevant to PCI compliance and IT management in the payment card industry.