Summary: The role of PCI DSS Consultant involves guiding an online retailer through the recertification process of the Payment Card Industry Data Security Standard (PCI DSS). The consultant will evaluate the current compliance status, identify gaps, implement necessary controls, and ensure adherence to PCI DSS requirements. A deep understanding of PCI DSS standards and proven experience in certification processes are essential for success in this position.

Key Responsibilities:

• Assess the organization’s current PCI DSS compliance status and determine the steps needed to achieve recertification.
• Work closely with the internal team to identify gaps in policies, procedures, and security controls.
• Provide recommendations for remediating any identified compliance issues or risks.
• Assist in the implementation of necessary security controls, processes, and tools to achieve PCI DSS compliance.
• Coordinate and support internal and external audits related to PCI DSS requirements.
• Prepare and review documentation for the recertification process, including Self-Assessment Questionnaires (SAQ), Attestation of Compliance (AOC), and other necessary reports.
• Conduct PCI DSS training and awareness programs for staff, ensuring all employees understand the security and compliance requirements.
• Collaborate with QSA (Qualified Security Assessor) and other external auditors to ensure smooth recertification.
• Stay up-to-date with changes in PCI DSS requirements, industry best practices, and security standards.

Key Skills:

• PCI DSS QSA Certification: Qualified Security Assessor (QSA) certification and extensive experience in providing PCI DSS consulting services.
• PCI DSS Implementer Certification: Strong understanding of PCI DSS requirements with experience as a PCI DSS Implementer.

Salary (Rate): undetermined

City: London

Country: United Kingdom

Working Arrangements: hybrid

IR35 Status: inside IR35

Seniority Level: undetermined

Industry: Other