PCI SSF Assessor Consultant

Location: 100% Remote, Globally, Work from anywhere
Type: Contracted, Part-time, Project based, Permanent
Pay: Based on experience, education, geographic location, and market rates.
Travel: None

*** Please ensure you read through the entire job posting and you also understand the work model, expectations, requirements, location, and qualification requirements for this role. ***
About Us:

RSI Security is a trusted leader in cybersecurity compliance and assessment, dedicated to helping organizations navigate complex security frameworks and safeguard their operations. We are committed to operational excellence, leveraging innovation and expertise to deliver tailored solutions that empower businesses to thrive in a rapidly evolving digital landscape. Our culture emphasizes collaboration, continuous improvement, and professional growth, offering team members the opportunity to contribute meaningfully to impactful projects in a supportive and forward-thinking environment.

Position Summary:
RSI Security is seeking a PCI SSF Consultant to conduct PCI Secure Software Framework (SSF) Advisory and Assessments for our clients. In this role, you will be responsible for evaluating and ensuring compliance with PCI Secure Software Standards, guiding organizations through the SSF certification process, and providing expert advisory services to enhance software security practices.

Roles & Responsibilities:

• Conduct PCI SSF Assessments
  • Perform PCI Secure Software and Secure Software Lifecycle (Secure SLC) assessments in accordance with PCI SSC requirements.
  • Evaluate software security controls, SDLC processes, and vendor security practices.
• Advisory & Gap Analysis
  • Guide customers on PCI SSF compliance requirements and help them understand the necessary steps to achieve compliance.
  • Conduct gap analysis to identify areas of non-compliance and provide structured remediation plans.
  • Remediation & Compliance Readiness Support
• Develop remediation roadmaps for clients, ensuring alignment with PCI SSF security objectives.
  • Provide advisory services on secure software development, threat modeling, and compliance best practices.
• Software Security Testing & Validation
  • Perform application security testing, including secure code reviews, dynamic testing (DAST), and static code analysis (SAST).
  • Identify software vulnerabilities related to data security, encryption, authentication, and access control.
• Risk Assessment & Secure Development Guidance
  • Assess the security posture of software applications and SDLC processes.
  • Provide security architecture recommendations and best practices for secure coding, DevSecOps, and CI/CD pipeline integration.
• Documentation & Reporting
  • Develop detailed reports outlining assessment findings, compliance gaps, and security vulnerabilities.
  • Prepare Attestations of Validation (AOVs) and compliance documentation for PCI SSC submissions.
• Client Education & Internal Collaboration
  • Educate clients on PCI SSF best practices, secure development principles, and regulatory requirements.
  • Work closely with engineering, compliance, and risk teams to improve software security and compliance programs.

Qualifications:

• PCI SSF Assessor certification - Preferred
• Proficient knowledge and experience demonstrated on your resume in the following:
  • PCI SSF
  • PCI DSS
  • Software security testing

Benefits (location-based): 

• Personal wellness and employee assistance program
• Employer-paid medical, dental, vision coverage, and life insurance
• Paid holidays, vacation, and sick time

Learning & Development:

• Educational reimbursement program
• E-learning training courses
• Company-sponsored leadership and mentoring program

Financial Wellness:

• 401K retirement plan with 100% employer match
• Performance bonus

Other Perks:

• Employee referral bonus program
• Work and life balance
• Remote work

As a global employer, we consider numerous factors when determining compensation, including the specific job responsibilities, your geographical location, and your level of experience.

Our commitment to equity, equal opportunity, inclusion, and diversity is part of our broader commitment to respecting fundamental human rights across our value chain. RSI Security is proud to be an Equal Opportunity Employer. The Company will consider for employment qualified applicants with arrest and conviction records.

Equal Opportunity Employer/Veterans/Disabled

For more information on RSI Security, please visit our website - www.rsisecurity.com or our social media RSI Security LinkedIn. On our career site, you will find some of the key steps you can expect to guide you along the way.