Information Security Assessor
United StatesFull-TimeMiddle
Salary100,000 - 150,000 USD per year
Apply NowOpens the employer's application page
Job Details
- Experience
- 5+ years of IT experience with at least 3+ years in cybersecurity, risk, or compliance assessment roles
- Required Skills
- Cloud ComputingCybersecurityRisk Management
Requirements
- 5+ years of IT experience with at least 3+ years in cybersecurity, risk, or compliance assessment roles
- Active QSA certification required
- CISA, CISM, or CISSP preferred
- Strong knowledge of PCI DSS frameworks and experience delivering ROC, AOC, and SAQ documentation
- Solid understanding of cloud environments (AWS, Azure, or GCP), network architecture, and enterprise systems
- Proven ability to lead client engagements and manage multiple priorities in a structured, deadline-driven environment
- Excellent written and verbal communication skills
- Experience with compliance tools or project management platforms
- Familiarity with additional frameworks such as CMMC, FedRAMP, GDPR, or CCPA is an advantage
- Strong analytical mindset with attention to detail
Responsibilities
- Lead and execute PCI DSS and other security compliance assessments, including scoping, control validation, and reporting activities
- Produce formal assessment deliverables such as Reports on Compliance (ROC), Attestations of Compliance (AOC), and Self-Assessment Questionnaires (SAQ)
- Evaluate client environments to identify security gaps, risks, and remediation requirements aligned with regulatory frameworks
- Provide advisory support to clients during assessment preparation, including data flow analysis and gap assessments
- Develop and review technical documentation, policies, and procedures to ensure compliance alignment
- Collaborate with client stakeholders to clarify requirements, validate evidence, and support audit readiness
- Participate in pre-sales scoping discussions and contribute to proposals and client engagement planning
- Support internal methodology improvement, process standardization, and continuous service quality enhancement
- Maintain professional certifications and stay current with evolving cybersecurity and compliance standards
View Full Description & ApplyYou'll be redirected to the employer's site
