Senior Security GRC Analyst (PCI ISA)
Вакансия из Hirify Global, списка международных tech-компанийДля мэтча и отклика нужен Plus
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Senior Security GRC Analyst (PCI ISA): Leading the global PCI DSS 4.0 compliance program and supporting broader GRC initiatives with an accent on internal security assessment, audit management, and control validation. Focus on bridging the gap between technical engineering teams and external auditors to ensure continuous compliance in a high-scale cloud-native environment.
Location: Must be based in or able to commute to Austin, TX (Hybrid: 3 days per week in office).
Salary: $88,951–$150,432
Company
is an AI-driven ecosystem empowering businesses to innovate and grow through its family of brands including Big, Feedonomics, and Makeswift.
What you will do
- Serve as the primary PCI ISA, managing the annual assessment lifecycle and control validation.
- Direct the evolution of the PCI 4.0 program, including Targeted Risk Analyses and customized approaches.
- Partner with Cloud Engineering to validate PCI scope, network segmentation, and data flow isolation.
- Act as the technical liaison for external QSA auditors to streamline assessment processes.
- Support SOC2 and ISO 27001 certifications by providing GRC perspectives on architectural designs.
- Drive remediation of audit findings and security gaps across infrastructure and product teams.
Requirements
- Active PCI ISA or PCI QSA certification is mandatory.
- 6+ years in Information Security or IT Audit, with 3+ years of deep focus on PCI DSS.
- Proven experience leading Level 1 Service Provider assessments.
- Thorough understanding of PCI DSS 4.0 requirements in modern cloud-native environments.
- Ability to explain complex compliance requirements to technical and business stakeholders.
- Must be able to work in a hybrid capacity in Austin, TX.
Nice to have
- Experience with SOC2 and ISO 27001:2022 frameworks.
- Familiarity with GRC automation platforms and cloud-native security tools.
- Experience with IAM policies and VPC flow logs for control verification.
Culture & Benefits
- Inclusive and accessible work environment focused on diversity and belonging.
- Commitment to equitable and transparent pay practices.
- Opportunities to work with a team of technical trailblazers in the space.
- Focus on intentional AI usage to solve complex business challenges.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →
Похожие вакансии
Security Engineer (Compliance)
Security Compliance Analyst (Cybersecurity)
IT Risk and Compliance Analyst
Senior Staff Engineer (Compliance Automation)
Principal Consultant, Security Governance (Cybersecurity)