Senior Consultant, PCI QSA - P2PE

Summary

Join Coalfire as a Senior Consultant and lead enterprise engagements, assessing client security and compliance against industry standards. You will focus on PCI P2PE compliance assessments for payments industry solutions, advising companies on data protection and security. This role offers access to the growing IT GRC market and involves working with various financial and application development companies. You will lead audits, prepare reports, manage project tasks, and ensure quality deliverables. The position requires strong technical skills, relevant certifications, and excellent communication abilities. Coalfire offers a flexible work model, competitive benefits, and a supportive work environment.

Requirements

• Current or former PCI-QSA certification
• Five or more (5+) years in IT security and/or application development
• Knowledge of industry cryptography standards such as ISO 11568 and 13491, ANSI X9.97 , and NIST 140-2 Level 3
• Strong understanding of PCI compliance, encryption algorithms, key management techniques, PKI, HSM, POI key-injection, physical security for secure areas, and relevant PCI PTS Security Requirements
• Current CISSP, or the ability to obtain
• Current CISA, or the ability to obtain
• Desire and ability to become P2PE-QSA certified
• Bachelor’s degree (four-year college or university) or equivalent combination of education and work experience
• Experience in IT security audit and compliance, risk assessments and gap analysis
• Excellent written and verbal communication skills
• Ability to facilitate meetings of small or large groups
• Excellent customer service and project management skills
• Ability to prioritize and manage multiple initiatives/projects
• Ability to be self-driven and have strong independent initiative
• Strong consulting skills with executive leadership and technical professionals; ability to advise and challenge the status quo while building strong relationships

Responsibilities

• Leads audits/assessments including audit plan preparation, review of documentation and evidence, evaluation of procedures, and client interviews
• Prepare Point to Point Encryption (P2PE) Reports on Validation and Compliance and/or authoring technical white papers
• Manage priorities, tasks and hours on projects in conjunction with the project manager to achieve delivery utilization targets
• Ensures quality products and services are delivered on time per Coalfire quality standards
• Escalates client and project issues to management in a timely manner to inform and engage the necessary resources to address the issue
• Interfaces with clients through entire engagement, interacting with all levels of client organizations
• Establish and maintain positive collaborative relationships with clients and stakeholders
• Continuous professional development in maintaining industry specific certifications. Maintains strong depth of knowledge in the practice area
• Ability to be successful when working remotely
• Ability to travel up to 30%

Preferred Qualifications

A commitment to your profession demonstrated by participation in industry events, seminars, blogs, and memberships in professional associations

Benefits

• Flexible work model
• Paid parental leave
• Flexible time off
• Certification and training reimbursement
• Digital mental health and wellbeing support membership
• Comprehensive insurance options