PC Compliance Specialist

Sterling, Virginia

  BI/Data Analytics

Contract

Our client, focused in IT Security solutions, are hiring a skilled PC Compliance Specialist who has a background in Security Engineering to join the team  The organization is looking for someone that has a Security Engineering background that has been more into PCI compliance lately. 

Responsibilities

  • Evaluate and determine if proposed controls meet PCI requirements, providing technical insights and guidance to ensure compliance. Identify gaps in controls and recommend remediation actions.

  • Assist the Cyber Product Manager in refining and prioritizing the PCI compliance backlog. Translate PCI requirements into actionable product tasks and user stories.

  • Participate actively in Agile ceremonies (e.g., sprint planning, retrospectives, daily stand-ups) to ensure that PCI requirements are integrated seamlessly within the Agile framework.

  • Act as a subject matter expert in cybersecurity and PCI requirements, advising on security controls, configurations, and architecture.

  • Work closely with engineering, security, and product teams to align on security requirements and resolve any technical challenges related to PCI compliance.

  • Maintain detailed documentation of compliance controls and processes.

  • Ensure all required artifacts are organized and up-to-date for PCI audits.

Skillset

  • Strong foundation in cybersecurity concepts, protocols, and best practices.

  • Deep understanding of PCI DSS requirements, especially regarding security controls and audit requirements.

  • Experience in assessing and implementing security measures that satisfy compliance requirements.

  • Proven track record of managing compliance requirements in complex technology environments.

  • Ability to interpret PCI standards and apply them effectively in an enterprise setting.

  • Hands-on experience working in an Agile environment (Scrum, Kanban, etc.).

  • Ability to create, refine, and manage a backlog within Agile tools (e.g., JIRA, Azure DevOps).

  • Ability to analyze security controls and recommend solutions to meet PCI standards.

  • Familiarity with risk assessment methodologies and control frameworks (e.g., NIST, ISO 27001).

49019