1

Pci Dss Risk Assessment Jobs (NOW HIRING)

Payment Risk Specialist

Barnegat, NJ · On-site

$104K/yr

Risk Assessment and Mitigation: * Conduct regular risk assessments to identify potential ... In-depth knowledge of card scheme rules (Visa, Mastercard, Amex), PCI DSS standards, and relevant ...

... DSS) and other compliance frameworks (e.g.: ISO 27001) Should have experience related to vendor ... PCI Qualified Security Assessor (QSA) or Internal Security Assessor (ISA) Certified Information ...

Support UMB's PCI-DSS compliance and assessment activities while supporting our internal technology ... Strong knowledge of risk and controls, including working knowledge of standards and frameworks such ...

Previously supported audits pertaining to SOC2 Type 2 and/or PCI-DSS (Level 1 or hands-on SAQs) * Experience with or exposure to vendor risk assessment processes and third-party risk management

next page

Showing results 1-20

Pci Dss Risk Assessment information

See salary details

$14

$30

$74

How much do pci dss risk assessment jobs pay per hour?

As of Jul 1, 2026, the average hourly pay for pci dss risk assessment in the United States is $30.34, according to ZipRecruiter salary data. Most workers in this role earn between $19.47 and $38.70 per hour, depending on experience, location, and employer.

What is a PCI DSS risk assessment?

A PCI DSS risk assessment is a formal process required by the Payment Card Industry Data Security Standard (PCI DSS) to identify, evaluate, and address potential risks that could impact the security of cardholder data. It involves analyzing how sensitive payment information is handled, stored, and transmitted within an organization, and identifying any vulnerabilities that could lead to data breaches or non-compliance. Organizations use the findings from the assessment to implement security controls and processes that help protect cardholder data and maintain PCI DSS compliance.

What are the key skills and qualifications needed to thrive as a PCI DSS Risk Assessor, and why are they important?

To thrive as a PCI DSS Risk Assessor, you need expertise in information security, risk management, compliance frameworks, and ideally a degree in IT or cybersecurity. Familiarity with PCI DSS standards, risk assessment tools, vulnerability scanners, and certifications like PCI Professional (PCIP) or Certified Information Systems Auditor (CISA) is typically required. Strong analytical thinking, communication, and attention to detail are crucial soft skills for effective risk evaluation and reporting. These skills and qualifications are vital to ensure organizations maintain compliance, reduce risk, and protect sensitive payment card data.

Is PCI compliance legitimate?

PCI compliance is a legitimate standard established by the Payment Card Industry Security Standards Council to ensure secure handling of cardholder data. Achieving PCI DSS (Data Security Standard) compliance involves meeting specific security requirements, which is essential for organizations processing credit card transactions. For a PCI DSS Risk Assessment role, understanding these standards helps evaluate and mitigate security risks effectively.

Who can perform a PCI DSS assessment?

A PCI DSS assessment can be performed by qualified security assessors (QSAs) or internal security teams with appropriate training and expertise in PCI DSS requirements. These professionals must understand payment card industry standards, security controls, and compliance processes to accurately evaluate an organization's adherence to PCI DSS.

What does a PCI compliance specialist do?

A PCI compliance specialist assesses and ensures that organizations meet the Payment Card Industry Data Security Standard (PCI DSS) requirements for protecting cardholder data. They conduct risk assessments, develop compliance strategies, and implement security controls, often using tools like vulnerability scanners and security frameworks. Their role helps prevent data breaches and maintain secure payment environments.

What is the difference between Pci Dss Risk Assessment vs Pci Dss Compliance Analyst?

AspectPci Dss Risk AssessmentPci Dss Compliance Analyst
Primary FocusIdentifying and evaluating security risks related to PCI DSS requirementsEnsuring ongoing compliance with PCI DSS standards and policies
ResponsibilitiesRisk identification, vulnerability assessment, mitigation planningPolicy implementation, audit preparation, compliance documentation
Required SkillsRisk management, security assessment, knowledge of PCI DSSCompliance auditing, documentation, regulatory knowledge
Work EnvironmentSecurity teams, risk management departmentsCompliance teams, audit departments

While both roles involve PCI DSS standards, the Pci Dss Risk Assessment focuses on identifying and evaluating security risks, whereas the Pci Dss Compliance Analyst concentrates on maintaining compliance and preparing for audits. Understanding these differences helps organizations assign the right responsibilities to ensure security and compliance.

Does PCI DSS require risk assessments?

Yes, PCI DSS requires organizations to perform risk assessments to identify and evaluate security vulnerabilities related to cardholder data. These assessments help ensure that appropriate controls are in place to protect sensitive information and maintain compliance with the standard.

What are some common challenges faced during PCI DSS risk assessments, and how can they be addressed?

A frequent challenge in PCI DSS risk assessments is ensuring comprehensive identification and documentation of all systems and processes that store, process, or transmit cardholder data. Overlooking assets or data flows can lead to compliance gaps. Additionally, coordinating with various departments to collect accurate information can be complex. These challenges can be addressed by establishing clear communication channels, using detailed data flow diagrams, and conducting regular cross-functional meetings to maintain up-to-date asset inventories and processes.
More about Pci Dss Risk Assessment jobs
What cities are hiring for Pci Dss Risk Assessment jobs? Cities with the most Pci Dss Risk Assessment job openings:
What states have the most Pci Dss Risk Assessment jobs? States with the most job openings for Pci Dss Risk Assessment jobs include:
Infographic showing various Pci Dss Risk Assessment job openings in the United States as of June 2026, with employment types broken down into 10% As Needed, 10% Full Time, and 80% Part Time. Highlights an 94% Physical, 1% Hybrid, and 5% Remote job distribution, with an average salary of $63,100 per year, or $30.3 per hour.

Payment Risk Specialist

exogroup

Barnegat, NJ • On-site

$104K/yr

Full-time

Medical

Posted 15 days ago


Job description

About Adnovation:


At Adnovation we develop and create innovative B2C membership-based entertainment products. Our team specializes in digital advertising, customer acquisition, and monetization of traffic through the most reliable payment, security, and advertising partners. We are part of EXOGROUP, a set of companies made up of +200 talents and offering a wide range of services within the digital business landscape with headquarters in Barcelona and offices in Dublin, Porto and Valencia.


Role:

The Payments Risk Specialist will be a key member of the Payments team, responsible for developing, implementing, and overseeing the risk management framework for all card payment operations. This role requires a deep understanding of card scheme rules, regulatory requirements (e.g., PSD2, GDPR), fraud prevention strategies, and risk assessment methodologies. The Payments Risk Specialist will proactively identify, assess, and mitigate risks associated with card payments, ensuring the security and integrity of transactions while optimizing the customer experience. This role involves collaborating closely with the card payments manager, payment providers specialist, finance, and customer support teams, as well as external partners such as card schemes, risk control tools and payment processors.


Responsibilities:

  1. Risk Strategy and Framework Development:
    • Develop and maintain a comprehensive risk management strategy and framework specifically for card payments, aligned with the overall company risk appetite and regulatory requirements.
    • Define and implement risk policies, procedures, and controls across the entire card payment lifecycle, including onboarding, transaction processing, chargebacks, and fraud management.
    • Establish key risk indicators (KRIs) and metrics to monitor and report on the effectiveness of risk mitigation efforts.
  2. Risk Assessment and Mitigation:
    • Conduct regular risk assessments to identify potential vulnerabilities and threats related to card payments, including fraud, operational errors, compliance breaches, and reputational risks.
    • Develop and implement effective risk mitigation strategies and controls, working closely with relevant teams to ensure their adoption and effectiveness.
    • Evaluate the risk implications of new card payment products, features, and integrations, providing recommendations to ensure secure and compliant implementation.
  3. Fraud Prevention and Detection:
    • Lead the development and implementation of advanced fraud and friendly fraud detection and prevention strategies, leveraging data analytics, machine learning, and industry best practices.
    • Monitor fraud trends and patterns, adapting strategies and rules to proactively address emerging threats.
    • Manage relationships with fraud prevention vendors and evaluate the effectiveness of their solutions.
  4. Compliance and Regulatory Adherence:
    • Ensure compliance with all relevant card scheme rules (e.g., Visa, Mastercard), industry standards (e.g., PCI DSS), and regulatory requirements (e.g., PSD2, GDPR) related to card payments.
    • Stay up-to-date on changes in regulations and scheme rules, assessing their impact and implementing necessary adjustments to policies and procedures.
    • Manage audits and assessments related to card payment risk and compliance.
  5. Incident Management and Reporting:
    • Develop and maintain incident response plans for card payment related security breaches and fraud incidents.
    • Lead the investigation and resolution of security incidents, ensuring timely and effective containment, eradication, and recovery.
    • Prepare and present regular reports on card payment risk metrics, fraud trends, and compliance status to relevant stakeholders.
  6. Collaboration and Communication:
    • Communicate risk-related information clearly and effectively to both technical and non-technical audiences.
    • Build and maintain strong relationships with external partners, including card schemes, payment processors, and regulatory bodies.


Requirements:

  • Bachelor's degree in Finance, Business Administration, Computer Science, Information Security, or a related field. Master's degree preferred.
  • Extensive experience in risk management within the card payments industry, with a strong focus on fraud prevention and compliance.
  • In-depth knowledge of card scheme rules (Visa, Mastercard, Amex), PCI DSS standards, and relevant regulatory frameworks (PSD2, GDPR).
  • Proven experience in developing and implementing risk management frameworks, policies, and procedures for card payments.
  • Strong analytical and problem-solving skills, with the ability to interpret complex data and identify patterns and trends.
  • Proficiency in data analysis tools (e.g., SQL, Excel, BI tools) and experience with fraud detection and prevention technologies.
  • Excellent communication, presentation, and interpersonal skills, with the ability to influence and collaborate effectively across different teams and levels.
  • Ability to work independently, manage multiple priorities, and thrive in a fast-paced and dynamic environment.


What you'll find working at Adnovation:


We offer the opportunity for permanent training, personal development, ambitious career growth, and a competitive salary!


Most of all, we offer a position in a team that thrives on being successful and being industry leaders and innovators. If you have a winning mentality, this position is for you!


Experience our benefits:

  • Private health care insurance;
  • Flexitime and Summer Schedule;
  • Your Birthday off as a paid holiday;
  • Flexible compensation plan: travel, meals & childcare;
  • Subsidized Catering;
  • Spanish, English, and Portuguese language lessons;
  • Additional internal and external trainings through our EXOGROUP University program;
  • Access to quality trainings through Udemy platform;
  • English, Portuguese & Spanish language lessons;
  • Training budget & study leave;
  • Subsidised Gym;
  • Calm App subscription;
  • Employee referral program - Earn 2500 Euros by referring someone!
  • Monday team breakfast;
  • Daily organic fruit;
  • Free weekly yoga classes;
  • Hybrid remote work.


Is this not the right role for you? Then make sure to check out all other roles we have open for you on ourcareers website.


The companies that are part ofEXOGROUPare the data controllers regarding your personal data, in order to consider your application for present or future vacancies in our organization. For more information about the processing of your personal data and on how to exercise your rights of access, rectification, suppression, limitation, portability and opposition please visit theProtection Informative Clause Candidates.