PCI Compliance Consultant

Overview

Remote
Depends on Experience
Contract - Independent
Contract - W2

Skills

PCI DSS
Risk Assessment
Risk Management
Information Security Governance
IT Security
Access Control
Auditing
Cloud Computing
Microservices
Software Security
SOX 404
SAP GRC
Sarbanes-Oxley

Job Details

job Title: PCI Compliance Consultant
Location: Remote
Length: 12+ months

Moorecroft has an exciting long-term consulting engagement with a major direct client in the Los Angeles area. We are seeking an experienced PCI Compliance Consultant to join our team. In this role, you will be responsible for managing compliance and governance for a technology-focused organization, with a strong emphasis on PCI DSS requirements. This role includes governance of security and compliance programs, reporting, analysis, control testing, and collaboration with auditors.

If you thrive in a fast-paced environment and enjoy assessing, implementing, and improving IT security processes, this is a great opportunity for you.

 

What You'll Do:

  • Ensure compliance with PCI DSS, GDPR, and other regulatory requirements.
  • Conduct User Access Reviews (UARs) to ensure proper access controls.
  • Manage governance, risk, and compliance (GRC) workflows, including certification processes.
  • Support testing for both internal security reviews and formal Internal Audit (IA) assessments.
  • Oversee IT General Controls (ITGCs), application controls, and interface controls.
  • Perform ongoing control testing, risk assessments, and gap analyses.
  • Maintain and update data flow diagrams and narratives for all IT and application controls on a quarterly basis.
  • Collaborate with the Compliance Manager to document and integrate new compliance scope into existing frameworks.
  • Work cross-functionally with engineering, security, IT, and audit teams to maintain compliance in a microservices-heavy environment.

What You Bring:

  • Bachelor s degree in Computer Information Systems, Computer Science, or a related field (or equivalent experience).
  • 3-5 years of experience in PCI DSS compliance, SOX 404, IT audit, and security governance.
  • Deep understanding of PCI DSS, SOX IT, ICFR 404 standards, and general audit objectives.
  • Strong knowledge of IT security best practices, application security, and risk management.
  • Experience working with microservices architectures and cloud environments.
  • Highly organized, detail-oriented, and capable of managing multiple projects simultaneously.
  • Strong interpersonal and communication skills to engage both technical and non-technical stakeholders.
  • Ability to work in an ambiguous, fast-paced, and deadline-driven environment.
  • Proven ability to take ownership of projects and deliver high-quality results.

If you are a compliance expert with deep PCI experience and a passion for security governance, we’d love to hear from you!

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.