PCI Senior Consultant

Short Description

About Capgemini

A global leader in consulting, technology services and digital transformation, Capgemini is at the forefront of innovation to address the entire breadth of clients' opportunities in the evolving world of cloud, digital and platforms. Building on its strong 50-year heritage and deep industry-specific expertise, Capgemini enables organizations to realize their business ambitions through an array of services from strategy to operations. Capgemini is driven by the conviction that the business value of technology comes from and through people. It is a multicultural company of 200,000 team members in over 40¬ countries. The Group reported 2017 global revenues of EUR 12.8 billion.

Visit us at¬ www.capgemini.com.¬ People matter, results count.

Job Title:¬ PCI Security Consultant

Position Type: Permanent/Fulltime¬ ¬ 

Duties & Responsibilities:

  • Collaborates with and provides consulting services to clients in a trusted advisor role.

  • Works independently on complex projects or works in a team as a project leader.

  • Conducts PCI Data Security Standard (PCI DSS) compliance assessments for service providers.

  • Mapping and evaluating payment card data flows in support of PCI DSS scoping assessments

  • Conducts gap assessments and provides actionable recommendations to remediable shortcomings and prepare for compliance.

  • Identifying / deploying security solutions and processes in support of PCI DSS compliance (e.g. vulnerability management, patching, SIEM, FIM)

  • Documents findings in Reports on Compliance (ROCs) and control status/recommendations in Remediation Roadmap's.

  • Supporting clients in evaluating alignment with PCI DSS Self-Assessment Questionnaires (SAQs)

  • Conduct ongoing privacy risk assessment plan and new/corrective measures to ensure compliance with privacy laws and regulations especially GDPR.

  • Participates in group discussions to further knowledge in the PCI practice and provides peer review of deliverables.

  • Partner with IT executive team in ongoing data security initiatives

  • In a sales support role, meeting with customers as a PCI SME in support of sales team.¬ 


  • In-depth knowledge of and substantial experience with the PCI DSS is required. Specific exposure to PCI DSS compliance initiatives and a demonstrable track record of successful process implementation is essential

  • Current/Former PCI Qualified Security Assessor (QSA) certification

  • Experience with PCI v2.0 or later, an understanding of PCI v3.0, with at least 4 years in compliance-related position(s).¬ 

  • Technical skills in assessing servers ( NIX and Windows), firewalls, and other security platforms for PCI DSS controls required

  • Must be a business-growth focused, dynamic and confident leader, able to interact and present at all levels

  • One Security certification such as CISSP, CISA, CISM, PCI QSA, CEH, SANS GSEC, etc., is required and willingness to pursue further certification preferred

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.