Manager, Technology Compliance Programs - Remote

Join the People Helping People

PSCU/Co-op Solutions is now Velera! PSCU and Co-op Solutions became a single entity on January 2, 2024, and our new company name was announced on May 7, 2024. Our new brand represents our combined company’s shared mission and unique ability to drive velocity and positive momentum for credit union success in a new era of financial services.

The Opportunities:

This position serves as a company subject matter expert and advisor on all matters related to maintaining compliance with information technology regulations and industry frameworks (e.g., PCI DSS, NIST CSF, FFIEC). The individual designs and implements technology risk and compliance strategies and oversees the coordination of information technology audits, PCI assessments, and examinations. The individual leads teams in implementing, validating, and testing information technology control processes to ensure our systems protect the confidentiality, integrity, and availability of company and client information. The individual monitors technology risk and compliance trends, facilitates risk assessment and mitigation strategies, and proactively promotes the enhancement of technology compliance practices and internal controls across the enterprise. 

Day in the Life:

• Direct the delivery of enterprise-wide information technology compliance and risk management programs (e.g., IT control testing, attestations, security awareness training, phishing campaigns) in compliance with information security regulations, laws, and industry frameworks (e.g., PCI DSS, NIST CSF, FFIEC), and business requirements. Report metrics on program effectiveness.
• Oversee creation and maintenance of information technology controls documentation and artifacts required for information technology regulatory compliance, client due diligence packages, and Requests for Proposals (RFPs). 
• Advise and collaborate with technology and business stakeholders on the design, implementation, monitoring, and reporting of information technology control and compliance processes. 
• Oversee annual PCI assessments and the information technology and security components of both internal and external audits, federal and state examinations (e.g., NCUA). Participate in tabletop exercises (e.g., cybersecurity resilience) and vendor partner business continuity exercises as required. 
• Direct and oversee responses to client and third-party information technology and cybersecurity due diligence and regulatory compliance inquiries and documentation requests. 
• Manage and direct activities and output of professional services firms (e.g., PCI QSAs, PCI PFIs) in conducting technology compliance and cybersecurity engagements as required. 
• Leads a team comprised of 5-7 individual contributors 
• Provide direction and leadership to staff; guide, coach, mentor and develop staff ensuring compliance with processes and procedures 
• Handle interviewing, hiring, promotions, transfers, performance appraisals, compensation, counseling and termination of staff 
• Develop and maintain staff by applying the necessary training and leadership that will allow internal growth and advancement 
• Direct staff, to ensure that all duties are performed according to department performance standards 
• Perform other duties as assigned. 

Qualifications:

• Bachelor’s Degree in Computer Science, Information Systems, Business Administration, or related field, or equivalent combination of education and experience required. 
• Master’s Degree preferred. Information systems risk management and control certification required (e.g., CISA, CISM, CRISC). 
• Project management or scrum master certification preferred (e.g., PMP, CSM). 
• Ten (10) years of experience in technology risk management and compliance required. 
• Experience leading team(s) responsible for IT control testing, and information security risk management required. 
• Experience working with cross-functional technology and business teams and information security verticals required. 
• Experience in financial services industry required.

Knowledge, Skills, & Abilities 

• Demonstrate behaviors based on Velera values 
• Knowledge of industry regulatory environment and technology risk management practices, and thorough understanding of local and federal regulations (e.g., PCI DSS, FFIEC, NIST CSF) 
• Knowledge of the principles and practices of information technology security, risk management, and control 
• Ability to communicate effectively in both verbal and written formats, articulate information security and control concepts to technical and non-technical audiences, and give presentations using various audiovisual support aids 
• Ability to be flexible, balance multiple projects, work under high pressure in complex, fast-paced environment, and meet deadlines 
• Strong business acumen and ability to think pragmatically and influence balanced outcomes that achieve business requirements and technology compliance objectives 
• Effective leadership and collaboration skills, with the ability to work effectively with others through conflicting pressures and priorities while resolving complex issues 
• Ability to travel as needed to successfully perform position responsibilities 

About Velera

At Velera we are committed to fostering a workplace where every employee feels valued, respected, and connected. We understand, attract and engage a diverse workforce where every employee can live up to their full potential; ensuring that our employee base reflects the consumers we serve. The result of this effort is an inclusive environment where diverse talent thrives. We strive to foster a safe and inclusive work environment for people to bring their authentic selves in order to build a better community within our company and with our partners. Learn more about our commitment to Diversity, Equity, and Inclusion HERE!

Pay Equity

$117,000.00

to

$152,100.00

Actual Pay will be adjusted based on experience and other job-related factors permitted by law.

Great Work/Life Benefits!

• Competitive wages

• Medical with telemedicine

• Dental and Vision

• Basic and Optional Life Insurance

• Paid Time Off (PTO)

• Maternity, Parental, Family Care

• Community Volunteer Time Off

• 12 Paid Holidays

• Company Paid Disability Insurance

• 401k (with employer match)

• Health Savings Accounts (HSA) with company provided contributions

• Flexible Spending Accounts (FSA)

• Supplemental Insurance

• Mental Health and Well-being: Employee Assistance Program (EAP)

• Tuition Reimbursement

• Wellness program

• Benefits are subject to generally applicable eligibility, waiting period, contribution, and other requirements and conditions

Velera is an Equal Opportunity Employer. We consider applicants without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, or membership in any other group protected by federal, state or local law.

Velera is an Equal Opportunity Employer that complies with the laws and regulations set forth in the following "EEO is the Law" Poster and the "EEO is the Law" Poster Supplement. Velera will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the legal duty to furnish information.

Velera is an E-Verify Employer. Review the E-Verify Poster here (English and Spanish). For information regarding your Right To Work, please click here (English and Spanish poster).

As an ongoing commitment to reasonably accommodate individuals with disabilities please contact a recruiter at [email protected] for assistance.