Home
Jobs
Coalfire
Senior Consultant, PCI QSA - P2PE

Senior Consultant, PCI QSA - P2PE

Remote

United Kingdom

£ 87,253 / year

Full Time

27-02-2025

Share this job:

Score my CV Apply

Job Specifications

About Coalfire
Coalfire is on a mission to make the world a safer place by solving our clients’ hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Denver, Colorado with offices across the U.S. and U.K., and we support clients around the world.
But that’s not who we are – that’s just what we do.
We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.

Position Summary
This is a great opportunity to grow your career and lead enterprise engagements as a Senior Consultant! In this position you will assess the security and compliance of client firms against regulatory and industry requirements and standards, and against security best practice frameworks. This opportunity provides access to the rapidly emerging market for IT Governance, Risk, and Compliance (IT GRC) management. For payments industry solutions validation assessments, your primary focus will be to assess technical controls for compliance with the Payment Card Industry (PCI) Point-to-Point Encryption (P2PE) standard. You will be a key member of the solution validation team that works with various financial and application development companies to advise them about data protection strategies, secure encryption techniques, and overall PCI compliance and security.

What You'll Do
Leads audits/assessments including audit plan preparation, review of documentation and evidence, evaluation of procedures, and client interviews
Prepare Point to Point Encryption (P2PE) Reports on Validation and Compliance and/or authoring technical white papers
Manage priorities, tasks and hours on projects in conjunction with the project manager to achieve delivery utilization targets
Ensures quality products and services are delivered on time per Coalfire quality standards
Escalates client and project issues to management in a timely manner to inform and engage the necessary resources to address the issue
Interfaces with clients through entire engagement, interacting with all levels of client organizations
Establish and maintain positive collaborative relationships with clients and stakeholders
Continuous professional development in maintaining industry specific certifications. Maintains strong depth of knowledge in the practice area
Ability to be successful when working remotely
Ability to travel up to 30%

What You'll Bring
Current or former PCI-QSA certification
Five or more (5+) years in IT security and/or application development
Knowledge of industry cryptography standards such as ISO 11568 and 13491, ANSI X9.97, and NIST 140-2 Level 3
Strong understanding of PCI compliance, encryption algorithms, key management techniques, PKI, HSM, POI key-injection, physical security for secure areas, and relevant PCI PTS Security Requirements
Current CISSP, or the ability to obtain
Current CISA, or the ability to obtain
Desire and ability to become P2PE-QSA certified
Bachelor’s degree (four-year college or university) or equivalent combination of education and work experience.
Experience in IT security audit and compliance, risk assessments and gap analysis
A commitment to your profession demonstrated by participation in industry events, seminars, blogs, and memberships in professional associations
Excellent written and verbal communication skills
Ability to facilitate meetings of small or large groups
Excellent customer service and project management skills
Ability to prioritize and manage multiple initiatives/projects.
Ability to be self-driven and have strong independent initiative
Strong consulting skills with executive leadership and technical professionals; ability to advise and challenge the status quo while building strong relationships

Why You’ll Want to Join Us
At Coalfire, you’ll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office.
Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.
At Coalfire, equal opportunity and pay equity is integral to the way we do business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Coalfire is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation to participate in the job application or interview process, our Human Resources team at HumanResourcesMB@coalfire.com.

About the Company

Coalfire is the premier Cybersecurity and Compliance Services leader for the tech, healthcare, and finance industries. (This page is maintained by Marketing. Please consult Coalfire.com to explore career opportunities.) Know more

Related Jobs

Company Name: Addition+
Job Title: Power Platform Automation Architect
Job Description: We are currently working on behalf of our trusted client who are looking for a Power Platform Automation Architect. Our client is an international consultancy which provides IT consulting and business process outsourcing services for industries including banking, health care, manufacturing, media, and entertainment! What You Can Expect Location – London Industry – IT & Consultancy Salary – £95,000 Work type – Permanent Main Responsibilities as a Power Platform Automation Architect Define Architecture models based on the overall organisations business and technology vision. Own Architectural decisions including security management, infrastructure, application layer interfacing approach, solution performance standards. Experience, Skills, and Qualifications Experience building PowerApps (Model App Solutions, Canvas Apps, Dynamics 365 CRM) Deep understanding of automation and Microsoft Power Platform Hands on experience on at least one programming language (.Net, Java, C#/C, Python) Public Sector experience What’s In It For You? Amazing company to work for. Competitive salary up to £95,000. 25 days annual leave. Competitive benefits. For further information on this Power Platform Automation Architect role apply below We are an equal opportunity employer and value diversity at our company. We do not discriminate based on race, religion, colour, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. By applying you are confirming you are happy to be added to the Addition mailing list regarding future suitable positions and marketing efforts. You can opt out of this at any time simply by contacting one of our consultants.

London, United Kingdom

On site

Full Time

03-03-2025

Company Name: Natobotics
Job Title: AWS Cloud Architect
Job Description: Job Summary We seek an experienced AWS Cloud Architect with expertise in AWS Landing Zones and Amazon Virtual Private Cloud (VPC). The ideal candidate will design, implement, and optimize cloud networking infrastructure to ensure security, scalability, and compliance with industry standards. Key Responsibilities Design and implement AWS Landing Zones for multi-account cloud environments. Architect and manage Amazon VPCs, ensuring secure and high-performance networking. Establish network connectivity between on-premises data centers and AWS using VPNs and AWS Direct Connect. Implement security best practices, including VPC peering, security groups, NACLs, and firewall configurations. Automate infrastructure provisioning using Infrastructure as Code (IaC) tools like Terraform and AWS CloudFormation. Collaborate with cross-functional teams to optimize AWS environments for performance, cost, and security. Monitor and troubleshoot network issues, latency, and connectivity challenges in AWS environments. Ensure compliance with AWS Well-Architected Framework and governance policies.

London, United Kingdom

On site

Full Time

27-02-2025

Company Name: CGI
Job Title: DevOps Engineer
Job Description: Position Description The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build, and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client. CGI was recognised in the Sunday Times Best Places to Work List 2024 and has been named one of the ‘World’s Best Employers’ by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you’ll be part of an open, friendly community of experts. We’ll train and support you in taking your career wherever you want it to go. Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance. This position will be a hybrid position, working out of our site in Leatherhead. Your future duties and responsibilities CGI’s Secure Space Systems division is on the hunt for a proactive and experienced DevOps Engineer to lead our Kubernetes deployments across a variety of platforms. If you’re passionate about automation, continuous integration/continuous deployment (CI/CD) pipelines, and maintaining a secure-by-design infrastructure, we want to hear from you! What You’ll Do: Kubernetes Management: Oversee and manage Kubernetes platforms for both development and production environments. Multi-Platform Deployment: Deploy and support Kubernetes on platforms including RKE2, EKS, Tanzu, and OpenShift. CI/CD Pipeline Automation: Automate and monitor CI/CD pipelines using tools such as GitLab CI, Jenkins, Ansible, Terraform, and CloudFormation. Security Leadership: Implement and monitor security best practices to ensure our infrastructure is resilient and secure. Performance Monitoring: Keep a close eye on performance metrics across all nodes and proactively address issues. Team Mentorship: Collaborate with senior technical leads and mentor junior engineers, sharing your expertise in DevOps and Kubernetes. Required Qualifications To Be Successful In This Role DevOps Expertise: Proven experience in a DevOps environment with a strong command of Linux and container platforms. Kubernetes Know-How: Deep technical understanding of Kubernetes and experience with various Kubernetes distributions (K8S, K3S, EKS, AKS, RKE2, OpenShift). Infrastructure Savvy: Solid background in infrastructure management, virtualization, and network configuration. Security Focused: Familiarity with security best practices, including working in environments with security air gaps. Communication & Collaboration: Excellent communication skills with a flexible, innovative mindset to work effectively with internal and external stakeholders. Bonus Skills: Proficiency with GitLab and Jenkins. Experience in using Ansible, Terraform, or CloudFormation to streamline infrastructure automation. Why CGI Secure Space Systems? At CGI, you’ll have the opportunity to work on cutting-edge projects in a dynamic, fast-paced environment. Join our small yet highly skilled team where you can make a significant impact, driving innovation and maintaining a secure, robust infrastructure for our next-generation space systems. Together, as owners, let’s turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because… You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction. Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team—one of the largest IT and business consulting services firms in the world.

Leatherhead, United Kingdom

On site

Full Time

25-02-2025

Company Name: Figment
Job Title: Senior DevOps Engineer, New Networks
Job Description: You could work anywhere. Why Figment? Figment powers the future of Web3 through industry-leading blockchain infrastructure. As the leading provider of staking solutions, we help 500+ institutional clients optimize their crypto rewards, including top exchanges, asset managers, wallets, foundations, custodians, and major token holders. Our clients trust Figment for a comprehensive suite of services, including reward optimization, cutting-edge API development, detailed rewards reporting, seamless partner integrations, governance support, and slashing protection. Backed by a team of passionate and intelligent Figmates, with a 100% remote-first global presence across 12 countries, our company is on a mission to accelerate the adoption, growth, and long-term success of the Web3 ecosystem. We’re building the infrastructure that will power the decentralized future. As a fast-growing tech company, we’re looking for builders and innovators — people who thrive in the face of uncertainty and are motivated to make an impact. We are also looking for true teammates - people who are genuine, humble, and driven to level up together. If you're excited to shape the future, contribute to an energetic company culture, and work at the cutting edge of blockchain technology, we want you to join our team and help us lead the charge! About The Opportunity We run 70+ blockchains here at Figment. Come help us onboard more! This is a full-time remote position, with team members in North America and Europe. We are seeking a Senior DevOps Engineer to help us scale out our operations by planning and implementing projects to manage fleets of blockchain servers. This role presents unique opportunities to be involved in building out tooling where none exists in the industry. You will build production systems that need to handle newer (sometimes alpha quality) blockchain software. You’ll need to consider all aspects of security, monitoring, maintainability, and stability. How You Will Make An Impact Lead the planning, testing, implementation, and management of projects to deliver scalable, maintainable, secure, and stable deployments across a variety of use cases Identify & implement solutions for common areas where automation can significantly increase our ability to manage all our infrastructure Identify areas of systemic risk & evaluate, propose, and implement solutions Manage and monitor cloud and physical servers across multiple global hosting services and data centres Automate blockchain software build, install, and management processes Perform Linux server administration, hardening, intrusion detection, and vulnerability scanning Debug complex distributed blockchains to help run them smoothly Identify tasks and processes that get stuck or move slowly and support the team in pushing them through Explain broad initiatives and vision to Engineering Leadership and Product Demonstrate technical expertise in multiple domains and act as a mentor to others on the team Who you are In-depth experience using Ansible (and similar tools) in environments with over 500 servers: Designing complex static and dynamic inventories, variable structures, and playbooks Writing custom Ansible roles from scratch, with advanced features such as Jinja2 templating, complex logic flows, dynamic roles/tasks, and handlers Ensuring idempotency & reusability, and following applicable best practices In-depth experience supporting Linux servers in large, highly secure, and highly available 24/7 environments Demonstrated experience working with blockchain nodes or very strong knowledge of the blockchain domain Deep troubleshooting expertise of complex application flows which span multiple clusters of systems - to quickly identify server, network, and application issues; and methodical approach to implementing, testing, and measuring changes to remediate issues Knowledge of common OS and application level settings to optimize system performance Experience with common system administration scripting languages such as Bash and Python In-depth experience creating well organized modules with Terraform to ensure reusable cloud provisioning automation Deep understanding of networking and security best practices Even better if you have Ansible role testing with Molecule (or similar tools) and Ansible module development experience Knowledge of, or experience with, Proof-of-Work and Proof-of-Stake decentralized consensus mechanisms used in blockchains Experience running applications on Kubernetes Experience creating CI/CD pipelines from scratch to automate infrastructure provisioning and deploy applications (GitHub Actions or similar tools) Experience with Hashicorp Vault or other secure storage tools Why You Might Be Excited About Us At Figment, we offer an exciting range of competitive benefits designed to support and empower every member of our team. These will be discussed with you during the interview process. We are a team of under 200 members, which allows for an impactful contribution from day one. We place a strong focus on personal career development to shape a role that fits your goals and interests. Your satisfaction and well-being matter to us, and we’re here to support your ongoing growth. Our culture is one of honesty, professionalism and risk taking in a high-growth environment. Our team members themselves recommend working at Figment - with an eNPS score of 54 (which is ranked as ‘great’!). We are also extremely proud of ranking as one of the top Web3 employers by Talent Titans. Compensation One of Figment’s core principles is “Making the Invisible Visible” - ensuring transparency and information sharing in all communication. Figment is committed to transparency regarding pay, benefits, and other compensation types for all internal roles as well as all roles being hired for. Compensation for this role will be disclosed during the interview process. Interview process At Figment, we try to go above and beyond in making sure that you have the best possible experience interviewing with us. We strive for a smooth, organized, and informative process. During your first Recruiter Call, you will be provided with more information about Figment, the position and what to expect for the rest of the interview process. Please be prepared to discuss why you are interested in joining Figment and what excites you about the position and company. As we go through the process, we work to make sure that you hear back from us in a timely fashion. If we decide at any point that we’re unfortunately not moving forward, we will give you feedback on why it was not a fit. We aim for the entire process to take around 2-3 weeks from initial screen to offer. There can be exceptions on either side of the bell curve here, but as a rule, that’s the time-frame you can expect. See here for Figment's Privacy Policy and California Employee Privacy Policy. At Figment, we have a thorough hiring process to verify the identity of all job candidates. This...