Information Security Assessor – QSA Certified (W2, FT)

About The Position

Requirements

• Active PCI QSA certification - required.
• Bachelor's degree in cybersecurity, information systems, or equivalent experience.
• 3–5+ years of experience in security assessments, compliance, or consulting.
• Demonstrated experience with ROC/AOC development and delivery.
• Familiarity with additional frameworks: SOC 2, ISO 27001, NIST, HIPAA, HITRUST.
• Ability to perform gap analyses, risk assessments, and control evaluations.
• Strong technical and written communication skills, including report writing and presentations.
• Self-driven with the ability to manage multiple engagements independently.
• Strong organizational and time management skills.

Responsibilities

• Lead formal PCI DSS assessments, including audits, readiness assessments, and gap analyses.
• Conduct evidence reviews, stakeholder interviews, technical validation, and documentation sampling.
• Draft and deliver comprehensive Reports on Compliance (ROCs) and Attestations of Compliance (AOCs).
• Provide advisory services for clients navigating PCI, SOC 2, ISO 27001, HIPAA, NIST, and HITRUST initiatives.
• Collaborate cross-functionally with advisory and technical teams to support integrated engagements.
• Mentor junior team members in PCI methodology and cybersecurity best practices.
• Stay current with evolving standards and updates from the PCI Security Standards Council (SSC).
• Represent RSI Security in client meetings and contribute to long-term client success.

Benefits

• Competitive salary and commission/bonus opportunities.
• 100% remote work flexibility.
• Collaborative and inclusive team culture.
• Professional development and upskilling opportunities.
• Opportunity to work on diverse and impactful cybersecurity engagements.