Coalfire
Senior Consultant, Technical Payments - PCI QSA, P2PE, PIN, 3DS, or SSF
Sorry, this job was removed
Be an Early Applicant
Similar Jobs
Cloud • Security • Cybersecurity
As a Senior Consultant, you will lead security and compliance assessments for clients in the payments industry, focusing on PCI standards and technical controls.
Top Skills:
3DsAesCisaCisspHsmIso 27001NistP2PePciPinPkiSsf
Security • Software • Cybersecurity • Automation
The Senior Product Manager will define product vision, collaborate with cross-functional teams, and ensure product success through customer empathy and data analysis.
Security • Software • Cybersecurity • Automation
The Senior Product Designer II will research and prototype user experiences to enhance security and compliance, collaborating with product and engineering teams.
Top Skills:
Ai ToolsCSSFigmaHTML
About Coalfire
Coalfire is on a mission to make the world a safer place by solving our clients’ toughest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Denver, Colorado with offices across the U.S. and U.K., and we support clients around the world.
But that’s not who we are – that’s just what we do.
We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.
And we’re growing fast.
We’re looking for a Senior Consultant for our Technical Payments team to focus in P2PE, PIN, 3DS, or SSF.
Position Summary
This is a great opportunity to grow your career and lead enterprise engagements as a Senior Consultant for our technical solutions payments team!
In this position you will assess the security and compliance of client firms against regulatory and industry requirements and standards, and against security best practice frameworks. This opportunity provides access to the rapidly emerging market for IT Governance, Risk, and Compliance (IT GRC) management. For payments industry solutions validation assessments, your primary focus will be to assess technical controls for compliance with the Payment Card Industry (PCI) Point-to-Point Encryption (P2PE), PCI 3D Secure (3DS), PCI PIN Security, PCI Card Production and/or PCI Secure Software Framework (SSF) standards. You will be a key member of the solution validation team that works with various financial and application development companies to advise them about data protection strategies, secure encryption techniques, and overall PCI compliance and security.
What You'll Do
- Leads audits/assessments including audit plan preparation, review of documentation and evidence, evaluation of procedures, and client interviews.
- Prepare Reports on Validation and Compliance and/or authoring technical white papers.
- Manage priorities, tasks and hours on projects in conjunction with the project manager to achieve delivery utilization targets.
- Ensures quality products and services are delivered on time per Coalfire quality standards.
- Escalates client and project issues to management in a timely manner to inform and engage the necessary resources to address the issue.
- Interfaces with clients through entire engagement, interacting with all levels of client organizations.
- Establish and maintain positive collaborative relationships with clients and stakeholders.
- Continuous professional development in maintaining industry specific certifications. Maintains strong depth of knowledge in the practice area.
- Travel up to 30%.
- Ability to be successful when working remotely.
What You'll Bring
- Desire and ability to become certified as one or more of: P2PE QSA, PIN QPA, 3DS Assessor, Card Production Assessor, Secure Software Assessor and/or Secure Software Lifecycle Assessor
- Five or more (5+) years in IT security and/or application development
- Knowledge of industry cryptography standards such as ISO 11568 and 13491, ANSI X9.97, and NIST 140-2 Level 3
- Knowledge of industry secure application development standards and techniques
- Strong understanding of PCI compliance, encryption algorithms, key management techniques, PKI, HSM, POI key-injection, physical security for secure areas, and relevant PCI PTS Security Requirements
- Current CISSP or ISO 27001 Lead Implementer, or the ability to obtain
- Current CISA or ISO 27001 Lead Auditor, or the ability to obtain
- Bachelor’s degree (four-year college or university) or equivalent combination of education and work experience.
- Experience in IT security audit and compliance, risk assessments and gap analysis
- A commitment to your profession demonstrated by participation in industry events, seminars, blogs, and memberships in professional associations
- Excellent written and verbal communication skills
- Ability to facilitate meetings of small or large groups
- Excellent customer service and project management skills
- Ability to prioritize and manage multiple initiatives/projects.
- Ability to be self-driven and have strong independent initiative
- Strong consulting skills with executive leadership and technical professionals; ability to advise and challenge the status quo while building strong relationships.
Bonus Points
- Current CEH, OSCP or CSSLP, or the ability to obtain
- Current or former PCI-QSA certification
- Currently qualified to assess against the P2PE, PIN, 3DS, Card Production or SSF standards/framework
Why You'll Want to Join Us
At Coalfire, you’ll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office.
Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you’ll enjoy competitive perks and benefits to support you and your family, like flexible time off, certification and training reimbursement, and comprehensive insurance options.
At Coalfire, equal opportunity and pay equity is integral to the way we do business. A reasonable estimate of the compensation range for this role is $86,000 to $148,000 based on national salary averages. The actual salary offer to the successful candidate will be based on job-related education, geographic location, training, licensure and certifications and other factors. You may also be eligible to participate in annual incentive, commission, and/or recognition programs.
#LI-HW2
#LI-Remote
Coalfire Bellevue, Washington, USA Office
11120 NE 33rd Pl, Bellevue, WA, United States, 98004
Coalfire Seattle, Washington, USA Office
1633 Westlake Avenue , Seattle, WA, United States, 98109
What you need to know about the Seattle Tech Scene
Home to tech titans like Microsoft and Amazon, Seattle punches far above its weight in innovation. But its surrounding mountains, sprinkled with world-famous hiking trails and climbing routes, make the city a destination for outdoorsy types as well. Established as a logging town before shifting to shipbuilding and logistics, the Emerald City is now known for its contributions to aerospace, software, biotech and cloud computing. And its status as a thriving tech ecosystem is attracting out-of-town companies looking to establish new tech and engineering hubs.
Key Facts About Seattle Tech
- Number of Tech Workers: 287,000; 13% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Amazon, Microsoft, Meta, Google
- Key Industries: Artificial intelligence, cloud computing, software, biotechnology, game development
- Funding Landscape: $3.1 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Madrona, Fuse, Tola, Maveron
- Research Centers and Universities: University of Washington, Seattle University, Seattle Pacific University, Allen Institute for Brain Science, Bill & Melinda Gates Foundation, Seattle Children’s Research Institute
