Specialist

Key Responsibilities:

• Plan, coordinate, and perform internal and external PCI DSS assessments.

• Conduct risk assessments and gap analyses against PCI DSS requirements.

• Work with stakeholders across departments to gather evidence and validate compliance.

• Identify areas of non-compliance and develop recommendations for remediation.

• Prepare formal audit reports and present findings to management.

• Liaise with Qualified Security Assessors (QSAs) and support formal PCI DSS validation efforts.

• Maintain documentation of security policies, procedures, and controls as they relate to PCI DSS.

• Monitor changes to PCI DSS and related regulations to ensure ongoing compliance.

• Provide training and guidance to internal teams on PCI DSS requirements and best practices.

• Assist in the remediation of audit findings and track progress until closure.

Required Qualifications:

• Bachelor’s degree in Information Security, Computer Science, Information Systems, or related field.

• Minimum of 3–5 years of experience in IT auditing, security assessment, or compliance.

• In-depth knowledge of PCI DSS v4.0 and prior experience conducting PCI audits.

• Familiarity with information security frameworks (e.g., NIST, ISO 27001).

• Strong understanding of network security, encryption, access control, and vulnerability management.