JobsEQ by Chmura Logo

Senior PCI QSA Consultant

Verizon
Location: Temple Terrace, Florida
Type: Full-Time, Non-Remote
Posted on: September 20, 2022
This job is no longer available from the source.
Senior PCI QSA Consultant
• Temple Terrace, FL, United States
• Full-Time Commercial
• Job # 610772
• Date posted - 2022-09-20
Apply Share this Job
Email Twitter
When you join Verizon
Verizon is one of the world’s leading providers of technology and communications services, transforming the way we connect across the globe. We’re a diverse network of people driven by our shared ambition to shape a better future. Here, we have the ability to learn and grow at the speed of technology, and the space to create within every role. Together, we are moving the world forward – and you can too. Dream it. Build it. Do it here.
What you’ll be doing...
As a Qualified Security Assessor (QSA) in the Payment Card Industry (PCI) you will provide assessments and consulting to one large Verizon client. You will be responsible for leading and delivering PCI assessments within a team of QSAs. Travel is very limited (twice or trice per year for about 3 days). The assessment process is mature and well documented with all the tools and templates you will need to be successful. All assessment workflows are automated via Archer. Almost no travel, no jumping from project to project, mature assessment process… this is a dream QSA job!
This tele-work position may on occasion require travel to Verizon, customer, vendor and/or other locations (potentially, globally) and/or work to be performed on outside normal business hours for interviews and validation of physical and technical controls that are expected to protect credit card data (cardholder data). At times, you may be the lead on a project with peers or junior consultants supporting you. The work done every day makes a difference in making electronic payments more secure globally.
In this role, you’ll be responsible for:
• Identifying, collecting, organizing, and reviewing pertinent evidence across multiple platforms and applications to determine compliance with relevant PCI DSS controls.
• Scheduling and leading technical interviews with various customer groups and subject matter experts.
• Providing reports and metrics to client on gaps, remediation efforts, clarifications, etc. with customer.
• Acting as the subject matter expert to answer questions and educate customers about the PCI DSS.
• Strong experience working with Microsoft Excel, SharePoint, GRC tools, etc.
• Writing detailed technical reports and supporting documentation for the customer and the card brands.
• Creating and presenting executive reports across multiple organization leadership levels.
• Developing executive presentations or status communications for multiple organization roles.
• Providing direction and mentorship to junior PCI consultants.
Where you'll be working:
In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager.
What we’re looking for...
You’ll need to have:
• A Bachelor’s Degree in Cyber/Information Systems/Information Security or four or more years of work experience.
• Four or more years of relevant work experience.
• Three years of experience as a Qualified Security Assessor actively performing PCI assessments and/or remediation engagements.
• One year of experience in each of the following security disciplines (experience may be acquired concurrently—for example, if the role involved experience in multiple disciplines at the same time): Application security, Information systems security, Network security, IT security auditing, Information security risk assessment or risk management.
• One Information Security and one audit certifications from the following: Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), Certified ISO 27001 Lead Implementer.
• One Audit certifications from the following: Certified Information Systems Auditor (CISA), GIAC Systems and Network Auditor (GSNA), Certified ISO 27001, Lead Auditor, Internal Auditor, International Register of Certificated Auditors (IRCA), Certified Internal Auditor (CIA).
• Willingness to travel up to approximately 25% of the time.
Even better if you have one or more of the following:
• One or more additional active PCI certifications from the following: 3DS Assessor, Card Production Security Assessor (CPSA), Secure Software Assessor, Secure Software Lifecycle (Secure SLC) Assessor, Point-to-Point Encryption Qualified Security Assessor (P2PE QSA), Payment Application Point-to-Point Encryption Qualified Security Assessor (P2PE PA-QSA), Qualified PIN Assessor (QPA), Secure Software Lifecycle Assessor (SLC), Software Security Framework Assessor (SSF), PCI Forensic Investigator (PFI)
• Ability to work independently as well as in a team to meet delivery obligations.
• Strong communication skills.
• Strong presentation skills.
If Verizon and this role sound like a fit for you, we encourage you to apply even if you don’t meet every “even better” qualification listed above.
Equal Employment Opportunity
We're proud to be an equal opportunity employer - and celebrate our employees' differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. At Verizon, we know that diversity makes us stronger. We are committed to a collaborative, inclusive environment that encourages authenticity and fosters a sense of belonging. We strive for everyone to feel valued, connected, and empowered to reach their potential and contribute their best. Check out our diversity and inclusion page to learn more.
COVID-19 Vaccination Requirement
NYC candidates: Verizon requires new hires to be fully vaccinated against COVID-19 for onsite and hybrid NYC roles. Verizon provides reasonable accommodations consistent with legal requirements (e.g., for medical or religious reasons). Additional information will be provided during the hiring process.