Enable job alerts via email!

Qualified Security Assessor (QSA)

TN United Kingdom

United Kingdom

On-site

GBP 60,000 - 80,000

Full time

30+ days ago

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

An exciting opportunity awaits with a leading consultancy firm specializing in information assurance. As a PCI Qualified Security Assessor (QSA), you will play a pivotal role in delivering compliance and security services to a diverse client base. This role offers the chance to work closely with senior stakeholders, conduct assessments, and translate technical findings into actionable strategies. If you are passionate about security and eager to make a significant impact in the field, this position is perfect for you. Join a team that values expertise and fosters long-lasting client relationships while working on cutting-edge security projects.

Qualifications

Hold PCI Qualified Security Assessor (QSA) qualification.
Experience in delivering PCI DSS assessments and other security services.

Responsibilities

Liaise with teams to assist in project delivery and pricing.
Conduct assessments and audits, providing actionable insights.
Develop rapport with clients and ensure high customer satisfaction.

Skills

PCI Qualified Security Assessor (QSA)

Client-facing skills

Risk Assessment

Communication skills

Technical auditing

Education

Relevant certifications in information security

Tools

NIST 800-53

ISO 27001

GDPR

Social network you want to login/join with:

Qualified Security Assessor (QSA), UK Remote

Client:

NCC Group

Location:

UK Remote

Job Category:

Other

EU work permit required:

Yes

Job Reference:

b3f527ada32d

Job Views:

121

Posted:

11.04.2025

Expiry Date:

26.05.2025

Job Description:

The Opportunity

NCC Group provides Information Assurance consultancy to help companies protect critical systems and information. We do this by defining security strategies, conducting compliance audits, developing policies, conducting security maturity and risk assessments and architecture reviews, and delivering security awareness & training sessions. We also provide security staff augmentation to clients so that our consultants may occupy security roles within the client environment in the short, medium, or long term.

Our core information risk management and compliance services include:

Strategy policy and awareness
Virtual security team
Data discovery and mapping
Risk assessment and design review
Continuity/Resilience
Data privacy and GDPR
PCI 3DS, PCI P2PE, PCI SSF audits
Incident response planning
PCI Card Production and PIN audits
Cyber security review

Alongside our core services, we have a range of bespoke services to help organizations protect their systems and information:

Security Architecture Review
Information Security Awareness and Training Programmes
Information Security Policy Development
Security Transformation Programmes

We have a fantastic new opportunity to join our Global Professional Services division for a PCI Qualified Security Assessor (QSA) Consultant. The ideal candidate will have commercial experience within the information and assurance field, gained from delivering a diverse range of security and assurance services ideally into a broad client base. In addition to your technical skills, you will have strong client-facing skills and be comfortable dealing with senior client stakeholders.

The Challenge

Liaise with the Resource Management and Sales team during the sales cycle to assist in quantifying, pricing, and organizing the consulting resources required for the project delivery.
Assist with sales proposals, bids, and tenders for delivery of PCI and Audit & Compliance services.
Conduct on-site and remote activities to advise, assess, analyse, and report in line with the engagement project requirements. This will involve meeting client stakeholders, conducting documentation reviews, auditing technical solutions and systems, as well as presenting information and advice to senior business partners.
Translate the technical and non-technical findings from an assessment or exercise into relevant, actionable information for customers.
Responsible for adhering to all internal policy and procedures in relation to security and quality best practices.
Ability to travel to client sites in the UK and abroad to perform engagements of varying durations as required.

Above all, we would like to speak with people who are passionate about what they do. You hold or have held a PCI Qualified Security Assessor (QSA) qualification and delivered PCI DSS assessments. You hold or have held other PCI assessor qualifications such as PCI 3DS Assessor, PCI Card Production Security Assessor (CPSA), P2PE Assessor, Qualified PIN Assessor (QPA), or Secure Software Assessor. You are interested in expanding your PCI skills to include assessing against these standards.

You will be working in areas mainly focusing on PCI QSA; however, other skills include NIST 800-53, SANS Top 20 CSC, ISO 27001, Risk Assessment (ISO27005), EU GDPR, and other frameworks as requested by clients.

Have the ability to deliver projects within time and budget and to a high level of customer satisfaction – exercising customer care at all times.

Demonstrate a strong ability to develop a rapport with customers and to engender long-lasting relationships. Have strong business, consultancy, and technical skills within the IT Security Industry. Excellent communication and presentation skills are essential.

The following additional attributes would be advantageous:

Excellent attention to detail and documentation.
You have performed an Internal Security Assessor (ISA) role supporting PCI DSS assessments.
Qualified Security Assessor (QSA).
Industry standards such as NIST 800-53, SANS 20 CSC, ISO 2700 Series, GDPR.

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.