JB#1010-PCI-DSS Compliance Consultant

Website EmpITsolutions EmpITsolutions

Job Title: PCI-DSS Compliance Consultant (Hybrid)
Location: Hybrid—Onsite at Airport Client (CONUS Travel May Be Required)
Type: Contract
Clearance Requirements: Must pass TSA threat-assessment
Citizenship Requirement: U.S., Canada, U.K., Australia, or New Zealand
Hourly Rate: All-inclusive—must include any travel-related expenses

Job Overview:

We are seeking a seasoned PCI-DSS Compliance Consultant to support a major U.S. airport client in maintaining and enhancing its PCI-DSS compliance posture. This is a hybrid role requiring deep expertise in PCI-DSS standards, proven consulting experience, and strong familiarity with security tools and scripting languages. The successful candidate will work with a multidisciplinary team to ensure the secure handling of cardholder data and compliance with the latest PCI-DSS versions (v3.x and v4.x).

Minimum Qualifications (MQ):

MQ1 – Relevant Project Experience

  • Must have delivered three (3) similar PCI-DSS compliance projects within the past five (5) years.
  • Include:
    • Client name
    • Type of organization (e.g., government, private corporation)
    • Project start and end dates

MQ2 – Experience Requirement

  • Minimum of seven (7) years of experience in technology with a focus on PCI-DSS compliance.
  • Strong understanding of data security principles and compliance reporting.

MQ3 – Certification

  • Must hold a current PCI-DSS QSA (Qualified Security Assessor) certification.
  • A copy of the certification is required for submission.

MQ4 – Work Environment & Travel

  • Hybrid work schedule; however, candidate must be able to work onsite at the airport as needed.
  • Proposed hourly rate must be inclusive of any travel expenses, adhering to CONUS guidelines.

MQ5 – Citizenship & Clearance

  • Must be a citizen of the U.S., Canada, U.K., Australia, or New Zealand, and legally eligible to work in the U.S.
  • Must pass a TSA threat assessment prior to start.

Desirable Qualifications:

  1. Experience designing and deploying basic Splunk environments.
  2. Knowledge of Microsoft Azure Entra ID features and identity capabilities.
  3. Experience implementing Microsoft Sensitivity Labels.
  4. Proficiency with Wireshark and Tshark for network traffic analysis.
  5. Working knowledge of scripting with PowerShell, Python, and Bash.
  6. Familiarity with PCI DSS version 3 and/or version 4 standards.

Key Responsibilities:

  • Lead and support PCI-DSS compliance initiatives and audits.
  • Provide expert consulting on gap analysis, remediation strategies, and compliance documentation.
  • Collaborate with IT and security teams to implement and verify technical controls.
  • Conduct risk assessments and recommend security improvements based on PCI-DSS guidelines.
  • Deliver reports, executive summaries, and supporting materials for audits and internal review.
  • Stay up to date with emerging threats and changes in PCI standards (especially PCI-DSS v4.0).

To Apply:

Please submit:

  • A detailed resume of the proposed candidate(s).
  • Proof of QSA certification.
  • Description of three relevant projects meeting MQ1. 

Kindly send resume to vijaychilwal@empitsolutions.com