Qsa Jobs (NOW HIRING)

US Base Salary Range: $100,000 - $120,000

Bonterra exists to propel every doer of good to their peak impact. We measure that impact against our vision to increase the giving rate as a percentage of GDP from 2% to 3% by 2033. We know that this goal is lofty, but we are confident that the right technology and expertise will strengthen trust in the sector, allowing the social good industry to accelerate growth and reach peak impact. Bonterra's differentiated, end-to-end solutions collectively support a unique network of over 20,000 customers, including over 16,000 nonprofit organizations and over 50 percent of Fortune 100 companies. Learn more at bonterratech.com.

Bonterra's Information Security, Risk & Compliance team is hiring a Senior PCI Compliance Analyst to manage our PCI DSS Level 1 certification program and support related frameworks such as ISO 27001:2022 and SOC reporting. This role works horizontally across the company, partnering with Product Security on modernization efforts and ensuring operational excellence in control performance, reporting, and certification.

Job Responsibilities:

• Collaborate with Information Security, Risk & Compliance team members and control owners companywide

• Lead PCI DSS Level 1 readiness, certification activities, and coordination with QSA assessors

• Maintain scope documentation, evidence, and operational reports for PCI controls

• Partner with Product Security on modernization initiatives that reduce PCI scope and improve control design

• Manage issues, exceptions, and risk acceptance tracking with timely remediation

• Align PCI evidence and controls with ISO 27001 and SOC frameworks to streamline reporting

• Support audits, vendor assessments, and customer due-diligence requests related to PCI

• Maintain compliance ticket queues, supplier/control registers, and awareness activities

Requirements

• 5 or more years of PCI DSS program management experience with direct involvement in Level 1 merchant or service provider assessments under DSS v4.0.1

• Demonstrated ability to conduct independent risk analysis at the requirement level, including scoping determinations, compensating control construction, and risk acceptance documentation

• Experience engaging QSAs from an authoritative posture, substantiating risk positions with documented evidence rather than deferring to QSA interpretation

• Hands-on field experience working directly within engineering and infrastructure teams to evaluate control implementation at the technical layer and translate requirements into actionable remediation tasks

• Familiarity with ISO 27001 and cloud-native service environments

• Strong analytical, organizational, and communication skills with the ability to produce defensible compliance documentation under audit conditions

• Experience with GRC platforms, ticketing systems, and security tooling (for example SIEM or vulnerability scanners)

• Preferred certifications: PCIP, ISA (prior QSA credential strongly preferred), CISA, CISM, CISSP

At Bonterra, we're building AI-powered tools to solve real human challenges-and we want teammates who share that enthusiasm.We value people who will champion AI and bring diverse perspectives from different industries, backgrounds, and cultures. Together, we create AI that breaks down barriers, empowers communities, and delivers better outcomes.

At this time, we are unable to consider candidates who require current or future sponsorship for employment authorization.

____________________________________________________________________________________

At Bonterra, we're innovating with a higher purpose: to increase giving to 3% of US GDP by 2033, creating $573 billion more in global impact every year. At Bonterra, we foster an inclusive, equitable culture where every team member belongs and contributes to meaningful impact. Read more about our values and culture here.

We offer a comprehensive benefits package that supports your health, well-being and growth - explore full details here.

Compensation and benefits for this role apply to full-time employees in the United States and may vary based on local standards, laws and norms. Pay is determined by location, skills, experience, and education, and is one part of Bonterra's total rewards package, which may also include bonuses, incentives, equity, and a comprehensive benefits program.

____________________________________________________________________________________

At Bonterra, we are proud to be an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We provide equal employment opportunities without regard to race, color, religion, sex (including pregnancy, sexual orientation, or gender identity), national origin, age, disability, veteran status, or any other characteristic protected by law.

If you require a reasonable accommodation during the application process, please submit a request.