PCI Compliance Consultant

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a PCI Compliance Consultant based in United States.

This role is focused on supporting organizations in strengthening and validating their payment security posture through expert-level PCI DSS compliance guidance. You will act as a subject matter expert across end-to-end PCI assessment activities, working closely with security officers, application owners, and infrastructure teams. The position involves conducting structured internal assessments, coordinating evidence collection, and ensuring alignment with the PCI Data Security Standard PCI DSS requirements. You will also contribute to the preparation of formal compliance reports and audit-ready documentation. The environment is highly collaborative, involving cross-functional coordination across technical and business stakeholders. This is a remote, project-based consulting engagement with meaningful impact on data security and regulatory readiness.

Accountabilities

• Lead and execute end-to-end internal PCI DSS assessments, ensuring all requirements are tested, validated, and properly documented.
• Coordinate closely with security, infrastructure, and application teams to collect, review, and validate compliance evidence.
• Support the development of audit-ready reports, findings documentation, and remediation tracking aligned with PCI DSS standards.
• Manage ongoing communication with stakeholders, providing clear visibility into assessment progress, risks, and deliverables.
• Contribute to compliance planning, policy interpretation, and continuous improvement of assessment methodologies.
• Ensure timely completion of deliverables within project timelines while maintaining high-quality standards.

Requirements:

• At least 4+ years of experience supporting or leading PCI DSS compliance efforts for Level 1 or Level 2 environments, ideally in collaboration with ISA or QSA assessors.
• Strong understanding of PCI DSS requirements, testing methodologies (v3.2.1+), and audit frameworks.
• Experience working with cloud environments and on-premise infrastructure, including security controls and compliance mapping.
• Proven ability to develop, implement, or maintain PCI-related policies, standards, and procedures in enterprise environments.
• Strong communication, interpersonal, and stakeholder management skills, with the ability to drive cross-functional alignment.
• Detail-oriented, self-motivated, and results-driven, with a demonstrated ability to complete complex compliance tasks independently.
• Preferred: Bachelor’s degree and certifications such as PCI ISA/QSA, CISSP, CISM, Security+, or AWS certifications.

Benefits:

• Competitive contract compensation ranging from $65–$95/hour (1099 or Corp-to-Corp), based on experience and qualifications.
• Remote-first engagement offering flexibility and autonomy in work execution.
• Opportunity to work on high-impact security and compliance initiatives within regulated environments.
• Exposure to enterprise-scale PCI DSS programs and collaboration with experienced security professionals.
• Potential for contract renewal based on performance and project needs.

How Jobgether works: We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team. We appreciate your interest and wish you the best!  Why Apply Through Jobgether?    Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.     #LI-CL1

Remote Work