- Company Name
- Coalfire
- Job Title
- Senior Consultant, PCI QSA - P2PE
- Job Description
-
About Coalfire
Coalfire is on a mission to make the world a safer place by solving our clients’ hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Denver, Colorado with offices across the U.S. and U.K., and we support clients around the world.
But that’s not who we are – that’s just what we do.
We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.
Position Summary
This is a great opportunity to grow your career and lead enterprise engagements as a Senior Consultant! In this position you will assess the security and compliance of client firms against regulatory and industry requirements and standards, and against security best practice frameworks. This opportunity provides access to the rapidly emerging market for IT Governance, Risk, and Compliance (IT GRC) management. For payments industry solutions validation assessments, your primary focus will be to assess technical controls for compliance with the Payment Card Industry (PCI) Point-to-Point Encryption (P2PE) standard. You will be a key member of the solution validation team that works with various financial and application development companies to advise them about data protection strategies, secure encryption techniques, and overall PCI compliance and security.
What You'll Do
Leads audits/assessments including audit plan preparation, review of documentation and evidence, evaluation of procedures, and client interviews
Prepare Point to Point Encryption (P2PE) Reports on Validation and Compliance and/or authoring technical white papers
Manage priorities, tasks and hours on projects in conjunction with the project manager to achieve delivery utilization targets
Ensures quality products and services are delivered on time per Coalfire quality standards
Escalates client and project issues to management in a timely manner to inform and engage the necessary resources to address the issue
Interfaces with clients through entire engagement, interacting with all levels of client organizations
Establish and maintain positive collaborative relationships with clients and stakeholders
Continuous professional development in maintaining industry specific certifications. Maintains strong depth of knowledge in the practice area
Ability to be successful when working remotely
Ability to travel up to 30%
What You'll Bring
Current or former PCI-QSA certification
Five or more (5+) years in IT security and/or application development
Knowledge of industry cryptography standards such as ISO 11568 and 13491, ANSI X9.97, and NIST 140-2 Level 3
Strong understanding of PCI compliance, encryption algorithms, key management techniques, PKI, HSM, POI key-injection, physical security for secure areas, and relevant PCI PTS Security Requirements
Current CISSP, or the ability to obtain
Current CISA, or the ability to obtain
Desire and ability to become P2PE-QSA certified
Bachelor’s degree (four-year college or university) or equivalent combination of education and work experience.
Experience in IT security audit and compliance, risk assessments and gap analysis
A commitment to your profession demonstrated by participation in industry events, seminars, blogs, and memberships in professional associations
Excellent written and verbal communication skills
Ability to facilitate meetings of small or large groups
Excellent customer service and project management skills
Ability to prioritize and manage multiple initiatives/projects.
Ability to be self-driven and have strong independent initiative
Strong consulting skills with executive leadership and technical professionals; ability to advise and challenge the status quo while building strong relationships
Why You’ll Want to Join Us
At Coalfire, you’ll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office.
Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.
At Coalfire, equal opportunity and pay equity is integral to the way we do business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Coalfire is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation to participate in the job application or interview process, our Human Resources team at HumanResourcesMB@coalfire.com.
