PCI QSA

Hi

Job Title:

Qualification:

Relevant Experience:

Required technical skill:

• PCI QSA, ASSESSMENT, END TO END IMPLEMENTATION, AUDIT
• Experience with PCI Industry benchmarking, RFPs/RFQs, scoping, SAQs, auditing, remediation and providing recommendations to large enterprises. Having good understanding and hands on experience conducting security reviews of various cyber security solutions, including but not limited to the following:
  
• Application or network rewalls
  
• Intrusion detection/prevention systems
  
• Database or other storage solutions
  
• Encryption solutions
  
• Security audit log solutions
  
• File integrity monitoring solutions.
  
• Anti-virus solutions
  
• Vulnerability scanning services or solutions.
  
• Should be a SME in controls implementation, assessments, perform GAP analysis, policies/ reporting, creating procedures and focused PCI governance checks related to a variety of compliance projects.
  
• Must have strong experience in implementing/assessing the P2PE solution requirements and testing procedures, encryption, and decryption and Key management methodologies within secure cryptographic devices.
  
• Responsible for building and inuencing payment security as a core competency throughout our relationships with our clients/internal teams/partners/vendor, this includes providing education, developing process and procedures, standard templates, accelerators, training to the internal teams for competency build.
  
• Conduct targeted validation and detailed assessments of clients processes, applications, products, policy documentation and third-party adherence to the PCI. Delivers ndings, recommendations and remediation steps for all activities, in a clear, concise and audience-specic format.
  
• Establishes credibility and maintains strong working relationships with groups involved with payment security (InfoSec, Legal, Business Development, Physical Security, Developer Community, Networking, Systems, etc.).
  
• Strong understanding of application security practices (such as OWASP Top 10) and other compliance standards/frameworks like ISO 27001/27002, NIST, HITRUST, COBIT, SOX, GLBA, SSAE16/SOC 2, HIPAA etc. will be an advantage.
  

CTC Range:

Notice period:

Mode of Interview:

Mode of Work:

Location

Satakhsi

Staffing analyst - IT recruiter

Black and White Business solutions PVT Ltd

Bangalore, Karnataka, INDIA

satakhsi.c@blackwhite.in I www.blackwhite.in