PCI ISA Senior Security Analyst

Job Summary

A company is looking for a Senior Security GRC Analyst (PCI ISA Specialist).

Key Responsibilities

• Serve as the PCI ISA, managing the annual assessment lifecycle and ensuring compliance integration into operations
• Direct the maintenance of the PCI 4.0 program and validate PCI scope with Cloud Engineering
• Support SOC2 and ISO 27001 audits, providing technical advisory and managing remediation of audit findings

Required Qualifications

• 6+ years in Information Security or IT Audit, with at least 3 years focused on PCI DSS
• Active PCI ISA or PCI QSA certification is mandatory
• Thorough understanding of PCI DSS 4.0 requirements and their application
• Experience leading Level 1 Service Provider assessments
• Familiarity with GRC automation and cloud-native security tools is preferred