PCI Security Standards Council, LLC
  • Operations
  • USA
  • Full Time

Reporting directly to the PCI Security Standards Council's Director of Training Programs, you will play a key role in the development and delivery of PCI SSC training materials, throughout the full range of our training, from PCI Awareness to Point-to-Point Encryption (P2PE) training. You will understand and teach the intent of the Council's standards to information security professionals, using your former assessor and information security experience to share the applicability of the PCI standards' requirements, as well as providing insight from previous assessment work. You will help shape and improve the future development of the Council's training materials.

 

ESSENTIAL DUTIES AND RESPONSIBILITIES include the following. Other duties may be assigned.

  • Work with the Director of Training Programs and PCI SSC to develop and maintain a robust volume of training and examination material
  • Conduct training courses, both on-site and online, for Payment Card Industry Security Standards Council (PCI SSC); courses will be intended to train assessors, merchants, acquirers and other entities regarding the intent of the PCI standards
  • Design and develop technical training curriculum and programs, both on-site and online, for security professionals, merchants and other entities; training will support all PCI SSC programs
  • Review and analyze course evaluations to determine effectiveness of training sessions
  • Implement revisions to course materials as necessary to improve training effectiveness
  • Keep informed of and maintain proficiency with security best practices, current PCI SSC standards, as well as cryptographic and tokenization practices

SKILLS AND ABILITIES REQUIRED:

  • Bachelor's degree (or equivalent) with a minimum of 7+ years of hands-on security assessment, technical training and/or PCI DSS experience
  • Industry certifications (such as QSA, ISA, PCIP, CISSP, CISA, CISM)
  • Project Lead for a PCI project, assessing or implementing requirements from PCI DSS, PA-DSS, P2PE, PTS, PIN, or Card Production
  • Strong understanding of information systems and networking diagrams; experience assessing the security infrastructure for large merchants or service providers
  • Experience working with communications practices, principles and procedures for both on-site and online presentations
  • Strong working knowledge of the financial industry and the lifecycle of payment card transactions, audit methodologies and security assessment tools, coupled with working experience with software development methodologies and practices
  • Blend of curiosity, creativity, persistence, commitment, passion and optimism, as well as flexible, proactive, quick to learn and possessing a can-do attitude
  • Excellent communication skills; the ability to express thoughts clearly both orally and in writing
  • Knowledge of how to listen and ability to contribute in a team environment required
  • Knowledge of vulnerability management tools, such as those used by an Approved Scanning Vendor (ASV)
  • Presenting both technical and non-technical concepts to audiences with diverse understanding of information security
  • Understanding information security best practices and applying that knowledge to PCI standards requirements
  • Strong organization and time-management skills
  • Comfortable working from home, both independently and as part of a team
  • Experience with productivity tools (such as Microsoft Office) and ability to develop effective presentation materials
  • Willingness to travel 30% or more

Strong preference given to applicants with the following experience:

  • Knowledge of Point-to-Point Encryption (P2PE) implementations, methodologies and other techniques for the protection of cardholder account data
  • Knowledge of PCI PIN, or PCI Card Production standards
  • Strong knowledge of cryptographic key management methodologies for the protection of payment card data for payment transaction processing, with emphasis on HSMs
  • Knowledge and understanding of EMV Chip technology
  • Experience of creating effective training content for online Learning Management Systems

 

Additional Information:
Location: Remote (Work from Home) in US, UK or Canada
Position Type: Full-Time
Salary: DOE

 

PCI SSC is an Equal Opportunity Employer

PCI Security Standards Council, LLC
  • Apply Now

  • * Fields Are Required

    What is your full name?

    How can we contact you?

    I agree to ApplicantPool's Applicant Information Use Policy.*
  • Sign Up For Job Alerts!

  • Share This Page
.