The primary role of this position is two-fold: 1) engage with business units to prepare and review subcontracts on an ‘as needed basis’ and 2) to ensure Risk, Audit and Compliance oversight is maintained for the products, services and procedures as required by the FAAC US entities. This includes vetting and recommending vetting companies, insurance company and policy review, and project management of Auditor, IT, Engineering responsibilities during such engagements, and managing the training of company employees as needed. Activities will be for both PCI-DSS Report of Compliance (“ROC”) and a PCI-PADSS Attestation of Compliance (“AOC”) reporting. Proper review and determination of insurance and insuring provisioning is important for this role.

This position will provide drafts of the Information Security Policy to the Chief Information Security Officer (“CISO”) as needed, and will create Payment Card Industry (“PCI”) responsibility matrices for presales support. In addition, this position will work with Sales and Solution Engineering to provide documentation describing hosted solution offerings and other documents as required.

This role may also perform technical writing duties, taking technical input and presenting it in a professional, well-organized manner for our internal and customer-facing documentation and presentment.

Essential Responsibilities:


  • Understand the concept of construction contracting together with working knowledge of construction, flow-down/flow-through provisioning of contractual obligations.
  • Basic understanding of contractual obligations and consequences of failure to meet such obligations.
  • Preparing and reviewing subcontracts as needed for various sites as required by the Business Units.


  • Project manager for PA-DSS validation activities and PCI-DSS compliance activities.
  • Collect, assess, and implement feedback towards updating our Information Security Policies
  • Ensure proper execution of PCI and Security Training Program – ensuring that appropriate training for FAAC entity employees is performed in accordance with IT policies
  • Ensure Security Policies are reviewed on an annual basis and are properly maintained
  • Ensure annual security scenarios are implemented in accordance with corporate policies
  • Coordinate Security breach notification to our clients in accordance with corporate policies and processes
  • Coordinate Quarterly IT Steering Committee meetings – schedule attendees, create agendas, take meeting notes, set action items as needed including monitoring, follow-up and ensuring timely execution is made.
  • Provide technical writing support for internal and external documentation


  • Own risk/insurance relationship between the various FAAC US entities and the Insurance companies FAAC uses to determine premium adjustments, types of riders needed by FAAC in a timely fashion.
  • Facilitate issuance of Certificates of Insurance (“COI”) from various insurance companies.
  • Conduct and facilitate necessary audits/meetings with the various insurance companies.
  • Conduct contract review of issues relating to insurance and various types of coverages and dollar amounts associated with client requests.

License Mapping for all FAAC entities

  • Doing business licensing for all FAAC entities (HUB, HUB Canada, TIBA, ATI and FAAC USA) and keeping documentation current.
  • Timely follow-up on filings and proper record keeping.

Other tasks as assigned

  • Assistance in contract review and completion relating to insurance, bonding and subcontracting.
  • Projects as assigned by Legal or CEO office.
  • Working collaboratively with various internal departments to ensure proper engagement, procedures and business related actives are maintained
  • Litigation support relating to insurance carriers and coverages thereof.


  • Bachelor’s degree in related field
  • At least two years’ corporate risk, paralegal, construction and/or security or related experience
  • Working knowledge of PCI-DSS and/or PA-DSS (“Payment Application Data Security Standard”)
  • Ability and desire to learn and ability to ‘take charge’ when needed to complete an assigned task
  • Strong attention to detail; well organized and focused on task assigned
  • High degree of reliability and accountability
  • Excellent follow-up skills; ability to multitask effectively
  • Advanced computer skills with experience using Microsoft Word, Excel, and Outlook
  • Excellent communication skills both written and verbal


  • Strong Subcontracting experience
  • PCIP certification
  • Project management training
  • Strong insurance/risk background
  • Self-starter attitude/work ethic