Cyber Consulting - PCI Security Specialist - Senior Consultant - Location Open

$103,800 - $190,300/Yr

Ernst & Young - Topeka, KS

posted 16 days ago

Full-time - Mid Level
Topeka, KS
Professional, Scientific, and Technical Services

About the position

As a Senior Consultant specializing in PCI Security within EY's Cybersecurity practice, you will lead the implementation of data protection strategies and solutions for clients, ensuring compliance with payment card security standards. This role involves working with an international team to address complex cybersecurity challenges and contribute to clients' business resilience.

Responsibilities

  • Lead the delivery of multiple processes, solutions, or projects in the realm of data protection and privacy
  • Plan and execute PCI assessment engagements for clients, focusing on payment card compliance and security (PCI-DSS) including thorough review of control design
  • Coordinate & report on project deliverables and tracking project status with clients' management and key stakeholders delivering recommendations and risk assessments
  • Validate PCI requirements testing results and collaborate with clients to remediate compliance gaps, maintaining comprehensive documentation to support their PCI programs
  • Engaging in client working sessions and serving as a team lead or workstream member, as required
  • Supporting sales opportunities by contributing to service proposals and RFP responses

Requirements

  • A Bachelor's degree in a relevant field such as Computer Science, Information Systems, Engineering, Business, or related major
  • 2 to 4 years of experience conducting and leading PCI assessment and audits with a strong understanding of PCI DSS, scoping environments and evaluating against the PCI DSS
  • Experience executing PCI DSS Reports of Compliance and Self-Assessment Questionnaires, along with remediation activities to achieve compliance
  • Reviewing documentation and technical evidence to meet PCI DSS requirements
  • Strong understanding of various compliance frameworks, including ISO, NIST, SOX, HIPAA, and GDPR
  • Ability to interpret and apply regulatory requirements to client environments

Nice-to-haves

  • Relevant cybersecurity certifications such as CISSP, CISM, CISA, and CEH, with PCI QSA certification highly preferred
  • Proficiency in security controls and best practices for information security
  • Familiarity with security technologies and tools (e.g., firewalls, intrusion detection/prevention systems, encryption, vulnerability scanners)
  • Proficiency in using GRC (Governance, Risk, and Compliance) tools
  • Strong communication and interpersonal skills to effectively interact with clients and stakeholders in prior client-facing role
  • Knowledge of cloud security and emerging technologies
  • Familiarity with automation tools and scripting languages (e.g., Python, PowerShell) for security tasks
  • Experience with project management and the ability to manage multiple projects simultaneously
  • Excellent documentation and reporting skills
  • Understanding of network architecture and protocols

Benefits

  • Comprehensive compensation and benefits package
  • Medical and dental coverage
  • Pension and 401(k) plans
  • Wide range of paid time off options
  • Flexible vacation policy allowing employees to decide how much vacation time they need
  • Time off for designated EY Paid Holidays

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service