At CORTAC Group, our mission is to deliver our clients’ most important projects and programs. We take pride in delivering world-class project, program, and portfolio management services to clients in every industry. We are specialists in helping businesses to react faster, hit their targets, and succeed.
We have become the trusted delivery partner of the most recognizable brands in Aeronautics, Defense, Automotive, Transport, Financial Services and Energy as well as Government organizations, supporting them in R&D, IT and Transformation projects.
Position Overview:
As a PCI Compliance Consultant, you will play a pivotal role in ensuring that our company adheres to PCI DSS requirements and maintains the highest standards of data security. You will collaborate closely with cross-functional teams to implement and maintain PCI compliance initiatives across our organization. This role requires a deep understanding of PCI DSS requirements, strong communication skills, and the ability to navigate complex technical environments.
Key Responsibilities:
- Lead the development and implementation of PCI compliance strategies, policies, and procedures tailored to our organization's unique requirements.
- Conduct regular assessments and audits to evaluate compliance with PCI DSS requirements and identify areas for improvement.
- Collaborate with internal teams, including IT, security, legal, and operations, to ensure alignment with PCI compliance objectives.
- Provide expert guidance and recommendations on security best practices, controls, and technologies to mitigate risks and strengthen our overall security posture.
- Serve as the primary point of contact for PCI compliance-related inquiries from internal stakeholders, external partners, and regulatory bodies.
- Stay abreast of industry developments, emerging threats, and regulatory changes related to PCI DSS and proactively integrate relevant updates into our compliance program.
- Assist in the development and delivery of PCI compliance training and awareness programs for employees to foster a culture of security awareness and responsibility.
- Coordinate with external auditors and assessors during PCI DSS assessments and assist in remediation efforts for any identified issues or deficiencies.
Qualifications:
- Bachelor's degree in information technology, computer science, or a related field. Relevant certifications such as CISSP, CISA, or PCI-QSA are highly desirable.
- Demonstrated experience (X+ years) working in a technical role focused on information security, compliance, or risk management, with a strong emphasis on PCI DSS.
- In-depth knowledge of PCI DSS requirements, controls, and compliance frameworks, along with practical experience in implementing and maintaining PCI compliance programs.
- Proficiency w/ tools such as Archer, MetricStream, ServiceNow, Qualys, Tenable.io, Nmap, Splunk, BitLocker, Trustwave, SANS, etc.
- Proficiency in conducting risk assessments, gap analyses, and vulnerability assessments to identify security vulnerabilities and recommend remediation measures.
- Excellent communication skills, with the ability to articulate complex technical concepts to both technical and non-technical audiences.
- Strong analytical and problem-solving abilities, with a keen attention to detail and a proactive approach to addressing security challenges.
- Ability to work independently and collaboratively in a fast-paced environment, managing multiple priorities and deadlines effectively.
- Experience interfacing with regulatory authorities, auditors, and assessors during compliance assessments and audits.
Benefits and Perks:
- Comprehensive contributions to medical, dental, and vision for colleagues and dependents
- Notable PTO and Paid Holidays
- 401k with company match
- Professional development opportunities
- Full-time, direct hire positions available