PCI DSS Qualified Security Assessor (QSA)

GRSee Consulting

Website: grsee.com
Job details:

Job Summary:

As an ACTIVE QSA, you will conduct assessments, provide guidance, and support clients in their compliance journey with PCI DSS. You will work closely with various stakeholders to ensure that security measures are effectively implemented and maintained, fostering a culture of compliance and security awareness.

Working timezone is: GMT +2. Working days: Sun-Thu.

General Role Description:

The PCI DSS Qualified Security Assessor (QSA) plays a critical role in ensuring that organizations processing, storing, or transmitting credit card information maintain a secure environment, in compliance with the Payment Card Industry Data Security Standard (PCI DSS). This position involves conducting thorough assessments of clients' IT environments, processes, and policies to ensure they meet the stringent requirements set forth by the PCI Security Standards Council. The QSA will work within the cybersecurity or compliance team, providing expertise, guidance, and assessment services to a variety of clients across industries. The role is pivotal in helping organizations protect sensitive payment card information against breaches and fraud, thereby maintaining trust and compliance in the global payment ecosystem.

Skills and Qualifications Required:

- Certified as a PCI DSS Qualified Security Assessor (QSA).

- Strong understanding of network security, encryption, IT audit, and risk management principles, and cloud environments (AWS, Azure, GCP).

- Proficient in information security technologies, compliance frameworks, and risk assessment methodologies.

- Strong communication and interpersonal skills, with the ability to explain complex security requirements in business terms.

- Experience with security assessments, audits, and compliance checks.

- Ability to manage multiple projects and meet deadlines.

- Familiarity with other compliance standards (e.g., ISO 27001, SOC 2) is a plus.

Key Responsibilities:

- Conduct comprehensive PCI DSS assessments for a diverse range of clients.

- Perform evidence reviews, control validation, and interviews

- Provide detailed reports and guidance on compliance status, risks, and remediation steps.

- Work closely with clients to develop and implement corrective action plans for achieving and maintaining compliance.

- Stay updated on the latest PCI DSS requirements, security trends, and threats.

- Educate clients and their employees on PCI DSS requirements and best practices for maintaining compliance.

- Assist in the development of policies, procedures, and controls to ensure ongoing compliance.

- Collaborate with internal teams to enhance the organization’s compliance services and offerings.

- Maintain detailed records of assessments, findings, and recommendations for each client engagement.

- Build and maintain strong relationships with clients to ensure ongoing compliance support.

Qualifications:

- Valid PCI SSC Qualified Security Assessor (QSA) certification

- Strong understanding of PCI DSS standards and requirements.

- Proven experience in conducting PCI DSS assessments and audits (2–3+ years of experience working as a QSA).

- Additional certifications such as CISSP, CISM, or CISA.

- Experience in a consulting role or with payment processing companies is an advantage.

- Strong analytical and problem-solving skills with attention to detail.

- Excellent communication and interpersonal skills, with the ability to convey complex information clearly.

- Ability to work independently and manage multiple projects simultaneously.

- Relevant technical knowledge in IT security and risk management.

Preferred Qualifications:

- Familiarity with related compliance frameworks (e.g., ISO 27001, SOC2, etc.) is a plus.

- Bachelor’s degree in Information Security, Computer Science, or a related field.

What We Offer:

- Competitive salary and benefits package.

- Opportunities for professional development and continuing education.

- Exposure to complex and interesting security environments

- A collaborative and dynamic work environment.

- The chance to make a significant impact in the field of payment security.

Click on Apply to know more.