PCI Compliance Internal Security Assessor

Role: PCI Compliance Internal Security Assessor

Location: Remote

5%-10% chance of travel, if we need the individual to visit a practice to survey their CDE

Duration of project: 12 months

Job description :

-Evolve the current USON PCI Program to include a planned future state for the next three fiscal years

-Successfully complete an SAQ D or ROC annually to generate an Attestation of Compliance (AOC)

-Maintain compliance with applicable PCI DSS requirements for all payment channels throughout the assessment year

-Evaluate, analyze, maintain, implement, and/or upgrade solutions for all payment channels within USON (including new channels and providers such as PCIPAL and the Telephone Channel)

-Independently develop PCI relevant policies, procedures, training material, and technical guides

-Lead PCI status meetings, informational sessions, lunch & learn sessions, and other direct engagement activities throughout USON

Certification(s)

-Must have been an ISA or QSA within past 10 years and able to pass ISA exam within 90 days of hire (ISA certification status must be maintained and annually renewed)

-Additional certification desired (CISA/CISM/CISSP)

Desired Background

-Experience assessing a Level 1 PCI Merchant or Service Provider

-ISA level knowledge of card present and card not present payment channels

-ISA level capability to complete a Self-Assessment Questionnaire (SAQ) D and/or support the completion of a Report on Compliance (ROC)

-Successful experience with completing an independently assessed and approved Compensating Control Worksheet (CCW)

-10 or more years of assessor/auditor/service provider experience

-10 or more years of direct engagement with Banks, Credit Card Brands, and/or Payment Service Providers (PSP)

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Role: PCI Compliance Internal Security Assessor

Location: Remote

5%-10% chance of travel, if we need the individual to visit a practice to survey their CDE

Duration of project: 12 months

Job description :

-Evolve the current USON PCI Program to include a planned future state for the next three fiscal years

-Successfully complete an SAQ D or ROC annually to generate an Attestation of Compliance (AOC)

-Maintain compliance with applicable PCI DSS requirements for all payment channels throughout the assessment year

-Evaluate, analyze, maintain, implement, and/or upgrade solutions for all payment channels within USON (including new channels and providers such as PCIPAL and the Telephone Channel)

-Independently develop PCI relevant policies, procedures, training material, and technical guides

-Lead PCI status meetings, informational sessions, lunch & learn sessions, and other direct engagement activities throughout USON

Certification(s)

-Must have been an ISA or QSA within past 10 years and able to pass ISA exam within 90 days of hire (ISA certification status must be maintained and annually renewed)

-Additional certification desired (CISA/CISM/CISSP)

Desired Background

-Experience assessing a Level 1 PCI Merchant or Service Provider

-ISA level knowledge of card present and card not present payment channels

-ISA level capability to complete a Self-Assessment Questionnaire (SAQ) D and/or support the completion of a Report on Compliance (ROC)

-Successful experience with completing an independently assessed and approved Compensating Control Worksheet (CCW)

-10 or more years of assessor/auditor/service provider experience

-10 or more years of direct engagement with Banks, Credit Card Brands, and/or Payment Service Providers (PSP)

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.