Principal Lead PCI / GRC Specialist - PCI QSA, PCI Card Production, PIN Audits, PCI 3DS, PCI P2PE, PCI SSF

Our client is a leading global pure-play Cyber Security Consultancy that is hiring a Principal Lead PCI QSA Consultant

This is a senior-level role in which you will have the autonomy to own, lead, and oversee clients and the complete execution of engagements end to end.

This is an excellent role for someone interested in expanding their PCI skills within areas including PCI Card Production, PIN Audits and PCI 3DS, PCI P2PE, PCI SSF audits and Incident response planning. If you are looking to develop certifications around PCI 3DS Assessor, PCI Card Production Security Assessor (CPSA), P2PE Assessor, Qualified PIN Assessor (QPA) or Secure Software Assessor (SSA) we want to hear from you!

It is important to stress that this is NOT just a PCI role, due to the client services offered they are also looking for candidates that focus on general cyber security GRC standards and frameworks such as ISO 27001, Risk Assessments, gap analysis, SANS Top 20 CSC and NIST 800-53. This opportunity will provide a diverse and stimulating range of responsibilities, making it an excellent opportunity for growth.

Responsibilities of the Principal Lead PCI / GRC Specialist:

• Assist with the sales cycle to organise consulting resources required for the delivery of PCI and compliance services
• You will conduct on-site and remote activities to assess, analyse and report in line with the engagement project requirements. This will involve meeting client stakeholders, the conduct of documentation reviews, auditing as well as presenting information and advice to senior business partners.
• Convert the technical and non-technical findings from assessments or exercises into relevant, actionable insights for customers.
• Delivery on client projects supporting from a governance, risk and compliance (GRC) perspective against regulations, standards and frameworks such as but not limited to ISO 27001, Risk Assessments, SANS Top 20 CSC and NIST 800-53.

Skills Required:

• You currently hold or have an expired PCI QSA badge and are looking to renew the certification
• Currently hold or want to achieve certifications including but not limited to PCI 3DS Assessor, PCI Card Production Security Assessor (CPSA), P2PE Assessor, Qualified PIN Assessor (QPA) or Secure Software Assessor (SSA)
• Demonstrable experience in completing risk assessments/gap analysis against standards such as ISO 27001 – NIST 800-53, SANS Top 20 CSC
• Proven experience conducting cyber security assessments and gap analyses against various frameworks