1

Pci Dss Risk Assessment Jobs in Raleigh, NC (NOW HIRING)

You can assess ambiguity, identify real risk, prioritize effectively, and drive pragmatic solutions ... Experience owning or supporting PCI-DSS and similar frameworks * Proven ability to influence cross ...

... drivers (e.g., PCI DSS risks, device constraints, reconciliation issues) into actionable ... assess performance, stability, customer-experience outcomes, and compliance alignment during ...

... as PCI DSS, CMMC, GDPR, FERPA, HIPAA/HITECH, GLBA, and FTC Red Flags. The Security Advisor will ... Understanding of risk assessments and targeted risk analyses. * Technical understanding of ...

Perform PKI current-state assessments (architecture, governance, lifecycle processes). * Evaluate ... Ensure alignment with industry regulations (HIPAA, PCI-DSS, SOX, etc.). * Support audit readiness ...

Senior Software Engineer

Raleigh, NC · Remote

$168K - $203K/yr

... , PCI-DSS. Prociency in scripting, cloud architecture, and problem-solving skills are required ... Demonstrated ability to collaborate with Enterprise Architecture, CyberSec and Risk Teams. Requires ...

next page

Showing results 1-20

Pci Dss Risk Assessment information

See Raleigh, NC salary details

$14

$29

$71

How much do pci dss risk assessment jobs pay per hour?

As of Jul 17, 2026, the average hourly pay for pci dss risk assessment in Raleigh, NC is $29.49, according to ZipRecruiter salary data. Most workers in this role earn between $18.94 and $37.64 per hour, depending on experience, location, and employer.

What is a PCI DSS risk assessment?

A PCI DSS risk assessment is a formal process required by the Payment Card Industry Data Security Standard (PCI DSS) to identify, evaluate, and address potential risks that could impact the security of cardholder data. It involves analyzing how sensitive payment information is handled, stored, and transmitted within an organization, and identifying any vulnerabilities that could lead to data breaches or non-compliance. Organizations use the findings from the assessment to implement security controls and processes that help protect cardholder data and maintain PCI DSS compliance.

What are the key skills and qualifications needed to thrive as a PCI DSS Risk Assessor, and why are they important?

To thrive as a PCI DSS Risk Assessor, you need expertise in information security, risk management, compliance frameworks, and ideally a degree in IT or cybersecurity. Familiarity with PCI DSS standards, risk assessment tools, vulnerability scanners, and certifications like PCI Professional (PCIP) or Certified Information Systems Auditor (CISA) is typically required. Strong analytical thinking, communication, and attention to detail are crucial soft skills for effective risk evaluation and reporting. These skills and qualifications are vital to ensure organizations maintain compliance, reduce risk, and protect sensitive payment card data.

Is PCI compliance legitimate?

PCI compliance is a legitimate standard established by the Payment Card Industry Security Standards Council to ensure secure handling of cardholder data. Achieving PCI DSS (Data Security Standard) compliance involves meeting specific security requirements, which is essential for organizations processing credit card transactions. For a PCI DSS Risk Assessment role, understanding these standards helps evaluate and mitigate security risks effectively.

Who can perform a PCI DSS assessment?

A PCI DSS assessment can be performed by qualified security assessors (QSAs) or internal security teams with appropriate training and expertise in PCI DSS requirements. These professionals must understand payment card industry standards, security controls, and compliance processes to accurately evaluate an organization's adherence to PCI DSS.

What does a PCI compliance specialist do?

A PCI compliance specialist assesses and ensures that organizations meet the Payment Card Industry Data Security Standard (PCI DSS) requirements for protecting cardholder data. They conduct risk assessments, develop compliance strategies, and implement security controls, often using tools like vulnerability scanners and security frameworks. Their role helps prevent data breaches and maintain secure payment environments.

What is the difference between Pci Dss Risk Assessment vs Pci Dss Compliance Analyst?

AspectPci Dss Risk AssessmentPci Dss Compliance Analyst
Primary FocusIdentifying and evaluating security risks related to PCI DSS requirementsEnsuring ongoing compliance with PCI DSS standards and policies
ResponsibilitiesRisk identification, vulnerability assessment, mitigation planningPolicy implementation, audit preparation, compliance documentation
Required SkillsRisk management, security assessment, knowledge of PCI DSSCompliance auditing, documentation, regulatory knowledge
Work EnvironmentSecurity teams, risk management departmentsCompliance teams, audit departments

While both roles involve PCI DSS standards, the Pci Dss Risk Assessment focuses on identifying and evaluating security risks, whereas the Pci Dss Compliance Analyst concentrates on maintaining compliance and preparing for audits. Understanding these differences helps organizations assign the right responsibilities to ensure security and compliance.

Does PCI DSS require risk assessments?

Yes, PCI DSS requires organizations to perform risk assessments to identify and evaluate security vulnerabilities related to cardholder data. These assessments help ensure that appropriate controls are in place to protect sensitive information and maintain compliance with the standard.

What are some common challenges faced during PCI DSS risk assessments, and how can they be addressed?

A frequent challenge in PCI DSS risk assessments is ensuring comprehensive identification and documentation of all systems and processes that store, process, or transmit cardholder data. Overlooking assets or data flows can lead to compliance gaps. Additionally, coordinating with various departments to collect accurate information can be complex. These challenges can be addressed by establishing clear communication channels, using detailed data flow diagrams, and conducting regular cross-functional meetings to maintain up-to-date asset inventories and processes.
What are popular job titles related to Pci Dss Risk Assessment jobs in Raleigh, NC? For Pci Dss Risk Assessment jobs in Raleigh, NC, the most frequently searched job titles are:
What job categories do people searching Pci Dss Risk Assessment jobs in Raleigh, NC look for? The top searched job categories for Pci Dss Risk Assessment jobs in Raleigh, NC are:
What cities near Raleigh, NC are hiring for Pci Dss Risk Assessment jobs? Cities near Raleigh, NC with the most Pci Dss Risk Assessment job openings:
PCI-QSA Security Consultant

Other

Re-posted yesterday


Job description

Company Description

Ask IT Consulting Inc, backed by a $500 million Microtek group company, provides an industry leading blend of technology, business consulting, and outsourcing services. Ask IT is a minority-owned enterprise; it has been founded on providing the highest quality possible and on the devotion to customer satisfaction. ASK IT consulting is an equal opportunity employer, which is a global staffing, consulting and technology solutions company, offering industry-specific solutions to fortune 500 clients and worldwide corporations.  

Job Description

Contract resource with senior Information Security Analyst skillset, with focus on PCI-DSS skillset for agency PCI-DSS compliance assessment support throughout year and for annual QSA engagement coordination.

Complete Description The Department of Transportation is seeking a short-term contractor to implement and maintain information security best practices within the NCDOT environment related to assessing and maintaining PCI-DSS compliance for NCDOT. The contractor will help implement and monitor PCI environments using those best industry practices, IDS/IPS, SIEM, employee awareness training tools and related technologies in support of assessing and maintaining PCI-DSS compliance.

The position is responsible for assisting information security analysts and application & service owners with PCI-DSS compliance tasks such evidence preparation, gathering and submission to the PCI-DSS assessor for annual compliance. The position provides input into the creation of hardening standards, researches security best practices and other industry security trends to use as input into the improvement of the agency information security program in addition specifically to PCI-DSS compliance. The position also participates in the information security incident management processes.

The candidate must be an experienced information security analyst possessing advanced experience with the following:

2+ years prior experience supporting, ideally leading, a Level 1 or Level 2 organization's PCI-DSS compliance effort, working with ISA or QSA.

Deep understanding of PCI-DSS 3.0/3.1 and preceding version requirements.

Analysis and review of security events until closure; this includes investigating and recommending appropriate corrective actions.

Conducting internal vulnerability assessments and scheduling of third party external scans. 

Management and verification of user PCI security awareness & training.

Hands-on implementation of security devices and applications to monitor and review network, servers, and applications.


Qualifications

Skilled information security professional with advanced knowledge & experience developing and implementing PCI policies, standards and procedures.

Experience supporting, maintaining & implementing security for a large organization assessed against PCI-DSS and level 1 or 2

Advanced experience with security technologies including IDS/IPS, firewalls, SIEM, network analysis tools, malware analysis

Advanced knowledge of security standards and frameworks including but not limited to: OWASP, ISO 27001 and NIST

Experience implementing and executing security incident response

BA or BS in Computer Science, Management Information Systems, or equivalent experience

Must have excellent communication skills (written and verbal) and have the ability to communicate with all levels of staff and management

Previous or current PCI QSA or ISA certification.

CISSP, GIAC, CEH, Security+ or related security certifications

Additional Information

 If you are interested in finding out more about opportunities near you, , please email me at ryanaskitc.com



Ask IT Consulting logo

About Ask IT Consulting

Sourced by ZipRecruiter

Ask IT Consulting, based in Holtsville, NY, US, is a dynamic player in the IT and business solutions industry. Their services portfolio, as outlined on their official website (askitc.com), spans across a broad spectrum which includes IT consulting, talent management, digital and technology solutions. Founded with the goal to provide clients with the highest quality IT services, the company has steadily evolved and expanded as a leading resource, maintaining a powerful presence in the fields of information technology and business solutions alike. Ask IT Consulting believes firmly in its core values, which pivots upon integrity, excellence, respect, commitment, and diversity. As part of its mission, the company strives to deliver innovative and effective solutions for their clients that are tailored to meet their unique needs and objectives.

Industry

It services

Company size

51 - 200 Employees

Headquarters location

Holtsville, NY, US

Year founded

2008

Social media