Job Description
Experienced PCI DSS Consultant required to assist an online retailer through the recertification process of the Payment Card Industry Data Security Standard (PCI DSS). The consultant will be responsible for evaluating current environment, identifying gaps, implementing necessary controls, and ensuring compliance with PCI DSS requirements. The ideal candidate should have a deep understanding of the PCI DSS standards and proven expertise in assisting organizations through PCI DSS certification and recertification processes.
Key Responsibilities:
* Assess the organization's current PCI DSS compliance status and determine the steps needed to achieve recertification.
* Work closely with the internal team to identify gaps in policies, procedures, and security controls.
* Provide recommendations for remediating any identified compliance issues or risks.
* Assist in the implementation of necessary security controls, processes, and tools to achieve PCI DSS compliance.
* Coordinate and support internal and external audits related to PCI DSS requirements.
* Prepare and review documentation for the recertification process, including Self-Assessment Questionnaires (SAQ), Attestation of Compliance (AOC), and other necessary reports.
* Conduct PCI DSS training and awareness programs for staff, ensuring all employees understand the security and compliance requirements.
* Collaborate with QSA (Qualified Security Assessor) and other external auditors to ensure smooth recertification.
* Stay up-to-date with changes in PCI DSS requirements, industry best practices, and security standards.
Key Qualifications:
* PCI DSS QSA Certification: Qualified Security Assessor (QSA) certification and have extensive experience in providing PCI DSS consulting services.
* PCI DSS Implementer Certification: Strong understanding of PCI DSS requirements with experience as a PCI DSS Implementer.
Either qualification is highly preferable