Careers

PSC Careers

PCI Security Consultant

Penetration Tester


Position Title: PCI Security Consultant (QSA)

Level: Mid to Senior Level

Job Description:

PCI QSA Security Consultant – Qualified Security Assessor – Information Security Consultant – QSA Certification or QSA recertification offered.

Position available throughout the United States — Our clients are top merchants and financial services companies. We are seeking a PCI QSA Consultant to supplement our team. PSC is one of the oldest firms working in the payment card industry. PSC is certified globally as a Qualified Security Assessor Company (QSAC), certified to perform PCI DSS and PCI PA‑DSS assessments worldwide. PSC provides a comprehensive range of services and solutions to assist companies that accept or process consumer payments to achieve and maintain compliance with a wide range of local and international standards.

If you are a PCI QSA Consultant or PCI QSA subject matter expert with information security consulting experience, please read on!

What you need for this position:

  • Must have either 3 years’ experience in PCI assessment for end clients or 5 years’ experience in IT Audits or information security consulting
  • Past experience in: ISO 27001, IT Auditor, PCI DSS, PCI PA-DSS, HIPPA, CISSP, CISA, Information Security, QSA Certification, Network / Systems Security Administration
  • Knowledge of payment industry regulations/standards: PCI DSS
  • 6 months experience in certification as Qualified Security Assessor (QSA) by the Payment Card Industry Security Standards Council (PCI SCC)
  • Possess one of the following security certifications: CISSP, CISA, CISM (CEH a plus)
  • Strong ethics and understanding of ethics in business and information security
  • Excellent oral and written communication skills
  • Technical knowledge and understanding for audit of MS Windows and *NIX systems
  • Strong organizational skills
  • Willingness to travel up to 75% for US and International customers

What will you be doing:

You, the PCI QSA Security Consultant, will:

  • Conduct detailed data security assessments including applications, servers, databases, and other network components and associated processes against the PCI DSS standards to identify areas of non-compliance
  • Work as a team member on large assessment engagements
  • Perform security consultation projects to assist a wide variety of customers that accept and process payments
  • Help enhance testing procedures and methodologies
  • Receive technical training in security testing and vulnerability analysis tools
  • Evaluate systems and environments to assess security exposures
  • Provide training services to customers
  • Other security-related consulting projects that may be assigned according to skills

What’s in it for you:

  • Very Competitive Salary! $100K and up, including performance incentives
  • Career growth opportunities
  • Exposure to top experts in the payments field
  • Ongoing professional development and training program

Must be authorized to work in the United States on a full-time basis.

If this sounds like a job for you, apply. Send your resume to PSC

Back to Top


Position Title: Penetration Tester

Position Description: This position will report directly to the PCI Penetration Testing Service Lead and perform internal, external, and web-application-focused penetration tests in accordance with industry-accepted methods and protocols.

Level: Mid to Senior Level

Projects will include:

  • Performing network-based security assessments
  • Performing security assessments on Internet-facing applications
  • Performing security assessments on software applications
  • Performing penetration tests across public networks
  • Performing penetration tests across internal networks
  • Performing assessments of wireless networks
  • Performing assessments of physical security using social engineering
  • Working as a team member on a large audit engagement to perform technical software and environment testing
  • Performing security consultation projects to assist PSC Clients implement security controls
  • Consulting with PSC Clients on approach and proper implementation of technical security controls
  • Developing testing scripts and procedures
  • Other security related projects that may be assigned according to skills

Requirements:

  • Understanding and familiarity in applying common penetration testing methods and standards
  • Minimum of 2 years of work experience performing internal and external penetration tests
  • Be able to work independently, with minimal supervision
  • Willing to travel for approximately 25% over the course of a year (Typically, one week per month)
  • Organize project or job into tasks
  • Work within a budget on a project
  • Strong ethics and understanding of ethics in business and information security
  • Communicate technical concepts and details to C-level executives

Beneficial Experience and Education:

  • Knowledge of PCI Standard
  • Advanced written and verbal communication skills
  • Demonstrated consistency in values, principles, and work ethic
  • Self-driven in a remote working environment, motivation to continuously improve skillset
  • Degree in computer science or information technology
  • Certifications within Information Technology or Information Security
  • Competency in common operating systems (e.g. Windows, macOS, Linux)
  • Proficiency with at multiple scripting languages (e.g. Python, Bash, JavaScript, PowerShell)
  • Understanding of cloud computing models, technologies and concepts

Benefits:

  • Salary Base is commensurate with skill and level; with performance incentives to make salary best in industry
  • Extremely competitive health benefits offered (Medical, Dental, and Vision)
  • Life Insurance
  • 401k offered after 90 days
  • Fully-remote position
  • Opportunities for international travel if desired
  • Training bonus to maintain and/or improve skills and keep current on industry standards and concepts
  • Opportunities to expand further into InfoSec beyond penetration testing

Must be authorized to work in the United States on a full-time basis.

If this sounds like a job for you, apply. Send your resume to PSC

Back to Top


Who is PSC?

With offices in the USA, Canada, UK and Australia, PSC is a leading PCI assessor and Approved Scanning Vendor. (See our Web site for more information) We are one of an elite few companies qualified globally to provide expert services and solutions to organizations that require specialist compliance or consulting support in the areas of Payments, Security or Compliance.

Our focus is exclusively on Clients that accept or process payments or technology companies in the payment industry. All staff at PSC have either worked within large merchant/retail organizations or services providers. Each partner at PSC has held executive management positions with responsibilities for payments and security.

Our approach includes a high-touch, hands-on methodology, that helps guide our Clients from consideration of strategic alternatives all the way through implementation and sustaining activities. The partners at PSC work closely with Clients to understand their objectives produce pragmatic and actionable plans and aid in execution as required.

  • PSC is certified globally as a Qualified Security Assessor Company (QSAC) for the PCI Security Standards Council
  • PSC is certified globally Qualified Payment Applications Security Company (PA-QSAC) for the PCI Security Standards Council

To ensure Independence, PSC does not represent, resell or receive commissions from any third party hardware, software or solutions vendors.

Contact us for more information