Consultant- PCI

The ideal PCI Advisory Consultant (“Consultant”) will possess a broad skillset, demonstrating excellent communication and presentation skills, analytical thinking, and a desire for learning that will support sustainable career growth. The Consultant will assist with a variety of technical PCI assessments, including validation of applications, databases, servers, networking devices, and security tools and software. The Consultant will work closely with Senior Consultants, Managers, and Directors to accomplish the teams goals and deliver the highest quality work to our clients. The Consultant will often interface directly with clients; therefore, the ability to clearly articulate complex and technical results to a general business audience is paramount.

What you will get to do:

Performing detailed audits of Merchants and Service Providers against the Payment Card Industry (PCI) Data Security Standard (DSS);

Performing PCI DSS Readiness or Gap Assessments to identify current compliance status and consult organizations on the proper path moving forward;

Performing SWIFT Assessments using the Customer Security Controls Framework (CSCF) (All architecture types);

Developing information technology and security policies and procedures;

Providing clients with trusted advisory services and guidance that will reduce their organizational risk and improve their overall cyber security posture; and

Preparing reports and other deliverables, which contain strategy, technical analysis, and findings in connection with our Practice’s advisory and assessment engagements, also communicating these results to multiple levels of clients’ management.

What you’ll need to succeed:

Experience:

2+ years of relevant experience in the field(s) of IT Audit or being a PCI QSA. Alternatively, a 4-year degree in a computer science, Information Systems, or an analytical field (e.g., engineering) – See Education Section Below

Ability to learn independently through shadowing and “on-the-job” training vs. structured boot camps and detailed step-by-step instructions

Strong written communication and organizational skills to capture notes during PCI interview sessions with clients

Strong critical thinking and analytical skills, demonstrating an ability to understand and communicate complex client-business processes

Personal qualities like professionalism, attention to detail, a team-oriented focus, dedication, resourcefulness, strong organizational skills, an eagerness to learn, and grow professionally

Ability to leverage available technical resources and tools (online and otherwise) to research and expand personal knowledge when needed

Proficiency with Microsoft Windows and the Microsoft Office suite of products, (i.e., Excel, Word, and Outlook)

Basic knowledge of using a Linux command-line interface

Technical Skills & Proficiency

Basic knowledge and familiarity with the following technologies and concepts:

IT governance, operations, and resource planning

Information system and security architecture, including:

Firewalls, routers, switches, and load balancers (e.g., Palo Alto, F5, Cisco)

Operating systems (e.g., Windows, Linux, Unix, iSeries)

Remote access systems (e.g., multi-factor authentication)

Databases (e.g., SQL, Oracle, DB2)

Symmetric and asymmetric cryptography

Systems Development Life Cycle (SDLC) and change management

Information system implementation processes

Systems administration and computer operations

Threat and vulnerability management

Incident response preparation and management

Data backup and recovery practices

Logical access controls (e.g., Active Directory)

Physical Security best practices

Education:

A 4+ year bachelor’s degree (or greater) (transcript will be requested for candidates without work experience):

Management Information Systems

Computer Information Systems

Computer Science

Cyber Security

Another field that demonstrates similarly extensive analytical coursework (e.g., mechanical engineering)

Travel and Location:

Anywhere in the US, with travel averaging 10-20%

#J-18808-Ljbffr