PCI Analyst

This is a fully remote position, open to applicants in United States.

📋 Description

• Collaborate with members of the Information Security, Risk & Compliance teams and control owners across the company.

• Lead the readiness and certification activities for PCI DSS Level 1, coordinating with QSA assessors.

• Maintain documentation of scope, evidence, and operational reports related to PCI controls.

• Partner with Product Security on modernization efforts aimed at reducing PCI scope and enhancing control design.

• Manage issues, exceptions, and track risk acceptance, ensuring timely remediation.

• Align PCI evidence and controls with ISO 27001 and SOC frameworks to facilitate streamlined reporting.

• Support audits, vendor assessments, and customer due-diligence requests concerning PCI compliance.

• Maintain compliance ticket queues, supplier/control registers, and awareness initiatives.

⛳️ Requirements

• A minimum of 5 years of experience managing PCI DSS programs, with direct involvement in Level 1 merchant or service provider assessments under DSS v4.0.1.

• Proven ability to perform independent risk analysis at the requirement level, including scoping determinations, compensating control creation, and risk acceptance documentation.

• Experience engaging QSAs from an authoritative standpoint, backing up risk positions with documented evidence rather than relying on QSA interpretation.

• Practical field experience working closely with engineering and infrastructure teams to assess control implementation at the technical layer and convert requirements into actionable remediation tasks.

• Knowledge of ISO 27001 and cloud-native service environments.

• Strong analytical, organizational, and communication abilities, with the capacity to produce defensible compliance documentation under audit circumstances.

• Familiarity with GRC platforms, ticketing systems, and security tools (such as SIEM or vulnerability scanners).

• Preferred certifications include PCIP, ISA (prior QSA credential highly preferred), CISA, CISM, and CISSP.

🏝️ Benefits

• A comprehensive benefits package designed to support your health, well-being, and professional growth.

• Bonuses.

• Incentives.

• Equity.

• An extensive benefits program.