ZipRecruiter

Log In

1

Pci Dss Risk Assessment Jobs in Reston, VA (NOW HIRING)

TLA-LLC

Information System Security Analyst

Mclean, VA · On-site

... PCI-DSS). • Security Measures: Install, configure, and maintain security software and tools, such as firewalls, data encryption programs, and antivirus systems. • Risk Assessment: Perform risk ...

TLA-LLC

Security Assessor

Mclean, VA · On-site

... PCI DSS, HIPAA, FedRAMP). • Remediation and Collaboration: Collaborate with system owners, IT ... A minimum of 3-5 years of experience in cybersecurity, risk management, or security assessment ...

TLA-LLC

Security Assessor

Mclean, VA

... PCI DSS, HIPAA, FedRAMP). Remediation and Collaboration: Collaborate with system owners, IT teams ... A minimum of 3-5 years of experience in cybersecurity, risk management, or security assessment ...

ORBIS Inc

Cybersecurity Lead

Washington, DC

$126K - $170.20K/yr

... such as the DoD Risk Management Framework (RMF), NIST standards, HIPAA, or PCI DSS. * Vulnerability Analysis: Performing high-level vulnerability assessments and security audits to pinpoint ...

ORBIS, Inc.

Cybersecurity Lead

Washington, DC · On-site

$125.70K - $169.90K/yr

... such as the DoD Risk Management Framework (RMF), NIST standards, HIPAA, or PCI DSS. * Vulnerability Analysis: Performing high-level vulnerability assessments and security audits to pinpoint ...

SAIC

IT Security Auditor

Springfield, VA

... PCI DSS. * Control Testing: Verifying the effectiveness of internal security measures like ... Risk Assessment: Analyzing data to prioritize security risks based on their potential impact and ...

Neumo

Security Analyst (On-Site)

Centreville, VA · On-site

Familiarity with PCI-DSS and SOC 2 standards. * Vulnerability and Risk Assessment. * Digital Forensics and Incident Response. * Relevant certifications (e.g., Sec+, CYSA+, Azure/AWS security ...

next page

Showing results 1-20

People also search for

All JobsPci Dss Risk Assessment JobsPci Dss Risk Assessment Jobs in Reston, VA

Pci Dss Risk Assessment information

See Reston, VA salary details

$15

$31

$77

How much do pci dss risk assessment jobs pay per hour?

As of May 31, 2026, the average hourly pay for pci dss risk assessment in Reston, VA is $31.56, according to ZipRecruiter salary data. Most workers in this role earn between $20.24 and $40.24 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a PCI DSS Risk Assessor, and why are they important?

To thrive as a PCI DSS Risk Assessor, you need expertise in information security, risk management, compliance frameworks, and ideally a degree in IT or cybersecurity. Familiarity with PCI DSS standards, risk assessment tools, vulnerability scanners, and certifications like PCI Professional (PCIP) or Certified Information Systems Auditor (CISA) is typically required. Strong analytical thinking, communication, and attention to detail are crucial soft skills for effective risk evaluation and reporting. These skills and qualifications are vital to ensure organizations maintain compliance, reduce risk, and protect sensitive payment card data.

What are some common challenges faced during PCI DSS risk assessments, and how can they be addressed?

A frequent challenge in PCI DSS risk assessments is ensuring comprehensive identification and documentation of all systems and processes that store, process, or transmit cardholder data. Overlooking assets or data flows can lead to compliance gaps. Additionally, coordinating with various departments to collect accurate information can be complex. These challenges can be addressed by establishing clear communication channels, using detailed data flow diagrams, and conducting regular cross-functional meetings to maintain up-to-date asset inventories and processes.

What is a PCI DSS risk assessment?

A PCI DSS risk assessment is a formal process required by the Payment Card Industry Data Security Standard (PCI DSS) to identify, evaluate, and address potential risks that could impact the security of cardholder data. It involves analyzing how sensitive payment information is handled, stored, and transmitted within an organization, and identifying any vulnerabilities that could lead to data breaches or non-compliance. Organizations use the findings from the assessment to implement security controls and processes that help protect cardholder data and maintain PCI DSS compliance.

What is the difference between Pci Dss Risk Assessment vs Pci Dss Compliance Analyst?

AspectPci Dss Risk AssessmentPci Dss Compliance Analyst
Primary FocusIdentifying and evaluating security risks related to PCI DSS requirementsEnsuring ongoing compliance with PCI DSS standards and policies
ResponsibilitiesRisk identification, vulnerability assessment, mitigation planningPolicy implementation, audit preparation, compliance documentation
Required SkillsRisk management, security assessment, knowledge of PCI DSSCompliance auditing, documentation, regulatory knowledge
Work EnvironmentSecurity teams, risk management departmentsCompliance teams, audit departments

While both roles involve PCI DSS standards, the Pci Dss Risk Assessment focuses on identifying and evaluating security risks, whereas the Pci Dss Compliance Analyst concentrates on maintaining compliance and preparing for audits. Understanding these differences helps organizations assign the right responsibilities to ensure security and compliance.

What job categories do people searching Pci Dss Risk Assessment jobs in Reston, VA look for? The top searched job categories for Pci Dss Risk Assessment jobs in Reston, VA are:
What cities near Reston, VA are hiring for Pci Dss Risk Assessment jobs? Cities near Reston, VA with the most Pci Dss Risk Assessment job openings:
Pci Dss Risk Assessment jobs near you
Governance, Risk, and Compliance (GRC) Analyst

Governance, Risk, and Compliance (GRC) Analyst

EdgeConneX

Herndon, VA

Other

Posted 5 days ago

Job description

We are seeking a highly motivated and experienced Governance, Risk, and Compliance (GRC) Analyst to join our team. The ideal candidate will have at least five years of experience in GRC or IT risk, a bachelor's degree or higher in a related field, and professional certifications in GRC or cybersecurity. As a GRC Analyst, you will play a pivotal role in ensuring our organization adheres to regulatory requirements, manage risks effectively, and maintain robust governance practices for industry standards, frameworks and international data protection law.

Responsibilities:

  • Develop, implement, and maintain governance, risk, and compliance frameworks, policies, standards and procedures.
  • Conduct risk assessments and analyze potential threats to the organization's information systems and business operations.
  • Monitor compliance with internal policies and external regulatory requirements (e.g., NIS2, DORA, ISO27001, AICPA Trust Principles, NIST, CIS, GDPR, SOX, HIPAA).
  • Track changes to regional data protection law in the regions where EdgeConneX operates (APAC, EU, North America and South America)
  • Collaborate with cross-functional teams to identify, assess, and mitigate risks across the organization.
  • Maintain risk registers, compliance metrics, and reporting dashboards
  • Support third-party risk management and vendor security assessments
  • Prepare and present regular reports on risk management activities, compliance status, and remediation efforts to management.
  • Support internal and external audits, including gathering documentation and facilitating audit processes.
  • Stay up to date with changes in relevant laws, regulations, and industry best practices.
  • Assist in the development and delivery of training programs related to governance, risk, and compliance topics.
  • Contribute to continuous improvement of GRC processes and tooling

Required education & experience:

  • Bachelor's degree or higher in Information Security, Computer Science, Business Administration, or a related field.
  • Minimum of 5 years of professional experience in governance, risk, and compliance or a related discipline.
  • Professional certifications such as CISA, CRISC, CISSP, CISM, ISO27001LA or similar are required.
  • Strong understanding of regulatory requirements and frameworks (e.g., ISO 27001, NIST, PCI DSS).
  • Risk assessment methodologies and control testing
  • Excellent analytical and problem-solving skills.
  • Strong communication and interpersonal skills, with the ability to work collaboratively across departments.
  • Experience with:
    • Policy development and lifecycle management
    • Third-party/vendor risk assessments
    • GRC tools and risk management platforms (e.g., DRATA, VANTA, Archer, OneTrust)
  • Detail-oriented and highly organized, with a proactive approach to identifying and managing risks.

Preferred experience:

  • Experience with GRC software platforms and tools.
  • Project management experience or certification.
  • Experience in a regulated industry (e.g., datacenter, finance, technology).
  • Ability to train and mentor junior staff.

Apply