PCI DSS SAQ D Service Provider Lead
Hybrid · Silver Spring, Maryland, United States
Job Summary
Lead PCI DSS SAQ D Service Provider readiness and oversight for a SaaS/cloud/payment-adjacent environment. Own the PCI domain in a fractional capacity, including scoping, evidence review, quarterly external ASV scans and internal vulnerability scans, penetration testing evidence, remediation tracking, and responses to auditors, QSAs, processors, banks, or other requesting entities. Draft or review PCI-related auditor/processor responses; track remediation items and risk acceptance; help define recurring PCI compliance cadence (quarterly scans and annual validation); provide concise status updates to the project manager and CISO/vCISO. Coordinate evidence across file integrity monitoring, encryption, MFA, IAM, logging, monitoring, change control, secure development, and vulnerability management; identify weak or incomplete evidence before submission.
Required Qualifications
- 8+ years of cybersecurity, GRC, IT audit, compliance, security consulting, or related experience
- Direct hands-on experience supporting PCI DSS assessments
- Direct experience with PCI DSS SAQ D; Service Provider experience is strongly preferred
- Experience with SaaS, cloud-hosted, fintech, payment, or payment-adjacent environments
- Working knowledge of ASV scanning, internal vulnerability scanning, penetration testing evidence, vulnerability remediation, IAM/MFA, encryption, logging, monitoring, FIM, change control, and secure development requirements
- Ability to translate PCI requirements into practical tasks for engineering, IT, security, and business stakeholders
- Strong written communication skills and ability to produce audit-ready summaries and responses
- Ability to work through ambiguity and distinguish sufficient evidence from weak or incomplete evidence
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.