GRC Security Officer

Here at Yoco we want to make it easier for small business owners to do business. We're all about simplifying the complicated things so that they're smooth, easy and clever where it matters most - your sales. Our mobile card readers allow you to accept payments when and where you need to, by connecting to your smartphone or tablet. Our free business tools, the Yoco App and Business Portal, give you real time insights and make admin a breeze, so you can spend more time doing what you love. We live to empower the growth of entrepreneurs in South Africa. It is our most awesome reason for being. Welcome to the #YocoFamily. Let's Grow!The role: Working at one of the fastest-growing fintech's in Africa means you'll be solving some unique challenges that we're faced with. Yoco seeks to identify a highly proactive and technical individual with proven talent in security risk and compliance, process development, policy or standard creation, and translating technical controls to actionable results. The successful candidate will work alongside the rest of the security team to ensure policies, procedures, and guidelines align with regulatory requirements and security frameworks; assess internal and external risks; and ensure ongoing compliance with security governance and best practice. You will work with other internal teams and external auditors to ensure Yoco meets it's security-related compliance obligations. Key Responsibilities: Be responsible for the Group Risk and Compliance program at Yoco as it relates to information security Author and maintain security policies & standards Be responsible for managing the PCI DSS and PCI PIN programme within Yoco Work with relevant teams to review procedures and processes to maintain compliance Liaise with internal and external stakeholders when there is a requirement to obtain certifications in new markets Key Requirements: Knowledge and experience of security-related industry best practice Has implemented security-related industry standards Has performed risk assessments and/ or gap assessments Coordinated PCI-DSS and/or PCI-PIN security programs Prior experience in the payments industry Great attention to detail The ability to distil complex requirements into something tangible for non-experts to understand