QSA Certified Information Security Assessor

Job Summary

Leading client engagements, the full-time QSA Certified Information Security Assessor will evaluate security controls, validate compliance against regulatory frameworks, and produce structured reporting in a remote work environment.

Key responsibilities

• Perform PCI DSS assessments, including scoping client environments and producing required deliverables such as Reports on Compliance (ROC) and Attestations of Compliance (AOC)
• Develop clear, structured assessment reports documenting compliance status and identified gaps
• Guide clients in preparation for assessments by performing gap analyses and outlining remediation actions

Required qualifications

• 5+ years of IT experience, with at least 3+ years in cybersecurity, compliance, or risk assessment roles
• Active QSA certification required; additional certifications such as CISA, CISM, or CISSP preferred
• Working knowledge of cloud platforms (AWS, Azure, or GCP) and network architecture
• Proven ability to lead engagements and manage client relationships effectively
• Strong written and verbal communication skills for presenting complex topics to technical and executive audiences