Skip navigation
PCI QSA/PA-QSA Consultant

PCI QSA/PA-QSA Consultant

Job Description

 

Position:                       PCI QSA/PA-QSA Consultant

 

Service Area:               Technology

 

Location:                     Any Sikich Office

 

Job Description:

We are currently seeking a PCI QSA/PA-QSA Consultant for our security and compliance division to be based out of any Sikich office.

 

We need you to have the enthusiasm to tear apart firewall rulesets, application code or server configurations, while having the patience to explain to management why they should care about securing each of those. You’ll need to think expansively enough about the big information security picture for an entire organization and yet focus like a laser on a single troublesome issue.

 

Responsibilities:

 

  • Help clients meet their compliance obligations by evaluating their business, technology and operations against security standards like the PCI DSS or HIPAA
  • Share your expertise to help make top-level decisions on topics like strategy and scope as well as highly-technical projects like web application architecture and security
  • Provide clear, organized findings and recommendations to clients and track progress towards resolution and compliance
  • Produce detailed, high-quality reports for clients and industry third parties like payment card brands and the PCI Security Standards Council
  • Learn from our close-knit group as well as contribute your thoughts, tools, industry news or lessons learned
  • Handle several concurrent assignments, including site visits to clients, responding to questions, completing reports, and assisting your colleagues
  • Help software developer clients implement practices to produce secure applications and find and crush security vulnerabilities before the bad guys can take advantage of them
  • Pick apart payment software with packet sniffers, debuggers, process monitoring utilities and maybe even a few tools you write yourself
  • Test applications for security vulnerabilities while providing clear, coherent explanations of your findings and recommendations to fix the issues

 

Job Requirements

 

Requirements:

 

  • Knowledge of information security principles
  • Comfort with presenting security concepts or findings to both highly-technical and entirely non-technical audiences
  • Ability to:
    • Comprehend information security principles and apply them practically
    • Write and speak exceptionally well

 

Desired:

 

  • Experience in consulting, either within your place of employment or for outside clients
  • Proficiency with:
    • Coding or scripting (Ruby and Python are a plus, but it’s more about concept than actual language)
    • Installing and operating a variety of UNIX or Linux systems; familiarity with OS/400 or its ilk is a plus
  • Knowledge of:
    • Database security or cryptography
    • Forensic analysis or incident response
  • Familiarity with the payment card (PCI DSS, PA-DSS, P2PE, PFI), financial (GLBA, SOX, SSAE 16), health care (HIPAA/HITECH) or higher education industries
  • Willingness to get certified in any of the following:
    • Security and IT certifications (e.g., CISSP, GIAC, CISA, etc.)
    • Technical certifications (e.g., MCSE, CCNA, etc.)
    • Related industry certifications (e.g., QSA, PA-QSA, ISA, PCIP)
  • Membership in relevant professional organizations like OWASP, InfraGard, ISSA or the like
  • Fluency in Spanish
  • Ability to:
    • Travel domestically and internationally
    • Pass a federal background check

 

Company Overview:

Sikich LLP is a nationally-ranked top 40 public accounting and consulting firm. Working at Sikich, you’ll become part of a highly motivated and competent team that values individual effort and growth while encouraging balance between your personal and work life. We recognize that our people are our most valuable asset—our employees drive our success.

 

As the security and compliance division of Sikich, we are a highly-technical group specializing in performing compliance audits, computer security assessments, penetration tests and computer forensic investigations. We are an Approved Scanning Vendor (ASV), a Qualified Security Assessor (QSA), a Payment Application Qualified Security Assessor (PA-QSA), a QSA and PA-QSA for Point-to-Point Encryption (QSA (P2PE) and PA-QSA (P2PE)) and a PCI Forensic Investigator (PFI) certified to perform the requirements of the Payment Card Industry Data Security Standard (PCI DSS) and the Payment Application Data Security Standard (PA-DSS).

 

Sikich is honored to have been named a Top Workplace by the Chicago Tribune and recognized nationally as a Best and Brightest Company to Work For. If you're looking to take your career to the next level, learn more about Sikich—and the possibilities for you. Visit us as sikich.com/careers

 

Working for Sikich:

We recognize that our people are our most valuable asset—our employees drive our success. That’s why Sikich believes in empowering our people with real time career development, offering diverse and challenging work, and providing solid growth opportunities. We're always looking for talented people to join our team. If you have a let’s get down to business, roll up your sleeves mindset, then Sikich is the place for you.

 

Benefits include:

 

  • Major Medical and Dental Insurance
  • 401k Match
  • Flexible Spending Accounts
  • Paid Exam Costs for Professional Certifications
  • Tuition Reimbursement
  • Flexible Work Schedule
  • Paid Paternal & Adoption Leave
  • Business Casual Dress Code
  • Employee Assistance Program
  • Fitness Reimbursement

 

To apply for this position, please submit your cover letter and resume to [Click Here to Email Your Resumé]

Job Snapshot

Employment Type Full-Time
Job Type Information Technology
Education Not Specified
Experience Not Specified
Manages Others Not Specified
Industry Consulting, Security
Required Travel Not Specified
CareerBuilder Tip:
For your privacy and protection, when applying to a job online, never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction. Learn more.

By applying to a job using CareerBuilder.com you are agreeing to comply with and be subject to the CareerBuilder.com Terms and Conditions for use of our website. To use our website, you must agree with the Terms and Conditions and both meet and comply with their provisions.

PCI QSA/PA-QSA Consultant


Enter notes about this job:

Cancel