Senior Security Consultant PCI QSA

5 days ago


Cochin, Kerala, India ValueMentor Full time ₹ 8,00,000 - ₹ 24,00,000 per year

Job Summary

This role will be responsible for supporting the organization's security initiatives, ensuring compliance with industry standards, and maintaining a secure, risk-aware environment. The role will work closely with clients, understand their security and compliance requirements, plan engagements, and ensure high-quality delivery of services. The role will work closely with cross-functional teams to ensure successful delivery of client projects. The role demands technical expertise, deep regulatory knowledge, client management capabilities. Focus will be on delivering value through risk framework development, vendor risk assessments, compliance training, and tailored client advisory.

Key Responsibilities, Deliverables / Outcomes

  1. Practice Delivery

  2. Conduct PCI DSS assessments for clients in line with PCI Security Standards Council guidelines.

  3. Provide consulting to implement and manage Information Security Management Systems (ISMS).

  4. Provide consulting to implement and maintenance of ISO 27001:2022 and/or NIST CSF standards within the organization.

  5. Perform Gap Assessment and threat modeling. Conduct risk assessment and create the Risk Treatment Plans (RTPs).

  6. Conduct in-depth analysis of complex security issues, identifying root causes and developing practical, data-driven solutions.

  7. Define and assess the Client's risk appetite and tolerance levels and develop and monitor Key Risk Indicators (KRIs) for Clients.

  8. Provide expert guidance to clients on remediation plans and achieving/maintaining compliance.

  9. Develop and document information security policies, processes, standards, and procedures in collaboration with other stakeholders.

  10. Identify and interpret legal, regulatory, and statutory information security compliance requirements relevant to Client operations.

  11. Conduct internal audits, assess security controls, and manage remediation plans.

  12. Deliver tailored, value-driven solutions while managing expectations, timelines, and budgets effectively.

  13. Conduct final PCI QSA audits and Develop Reports on Compliance (ROC) and Attestation of Compliance (AOC).

  14. Act as the liaison for external compliance assessments and audits, ensuring thorough preparation, evidence gathering, and successful audit outcomes.

  15. Client Engagement

  16. Ensure a Client-centric approach by actively managing expectations, delivering value, and exceeding stakeholder requirements.

  17. Communicate risk assessments and mitigation plans to senior management within Client organizations.

  18. Deliver presentations and briefings to senior management and stakeholders, communicating complex security concepts in an understandable manner.

  19. Ensure effective communication of these policies and procedures across the Client's organization and ensure these policies are integrated into business operations.

  20. Engage in Client Meetings & Interactions to identity new prospects, relationship building & gathering market intelligence and feedback on services provided.

  21. Learning & Initiatives

  22. Independently manage information security projects, ensuring adherence to deadlines and delivery goals.

  23. Take ownership of tasks and consistently meet deadlines, demonstrating accountability in managing security initiatives.

  24. Efficiently allocate and manage project resources and ensure timely and concise Project status updates to all stakeholders.

  25. Work as part of a collaborative team, fostering a culture of cooperation, open communication, and shared success.

  26. Stay up-to-date with PCI SSC updates, security threats, and regulatory changes.

  27. Deliver training and awareness sessions on compliance and security best practices.

  28. Maintain all QSA certification requirements as per PCI SSC guidelines.

  29. Identify and implement means to reduce and streamline efforts using technology.

  30. Operations Management

  31. Track performance using Balanced Scorecard that tracks key metrics like client satisfaction (e.g., NPS), delivery timelines, and learning & growth.

  32. Timely adherence to PMS initiatives like Timesheet, Bi-Weekly reviews etc

Key Skills

  • PCI QSA

  • In-depth knowledge of ISO 27001 standard

  • Extensive knowledge on application of data classification framework/concepts, Identity and Access Management Concepts, Secure Software Development Lifecycle concepts, network defense.

  • Working knowledge about cloud security concepts and cloud platforms

  • Working Understanding of OSI communication layers and network communication protocols

Key Competencies

  • Analysis Skills

  • Customer Focus

  • Communications- Oral & written

  • Adaptability to Change

  • Problem Solving Skills



  • Cochin, Kerala, India Soffit Infrastructure Services (P) Ltd Full time

    The Information Security Consultant will be responsible for the implementation, assessment, and management of ISO 27001:2022, ISO 27002, and SOC 2 standards for clients. This role involves working independently or alongside senior consultants to help clients achieve and maintain information security compliance and other best practices. The consultant will...


  • Cochin, Kerala, India Soffit Infrastructure Services (P) Ltd Full time

    The Information Security Consultant will be responsible for the implementation, assessment, and management of ISO 27001:2022, ISO 27002, and SOC 2 standards for clients. This role involves working independently or alongside senior consultants to help clients achieve and maintain information security compliance and other best practices. The consultant will...


  • Cochin, Kerala, India Soffit Infrastructure Services (P) Ltd Full time

    The Information Security Consultant will be responsible for the implementation, assessment, and management of ISO 27001:2022, ISO 27002, and SOC 2 standards for clients. This role involves working independently or alongside senior consultants to help clients achieve and maintain information security compliance and other best practices. The consultant will...


  • Cochin, Kerala, India Soffit Infrastructure Services (P) Ltd Full time ₹ 5,00,000 - ₹ 15,00,000 per year

    The position will be primarily responsible for implementation of ISO 27001:2013 standard for clients. The position will work independently or with senior consultants for the implementation and management of information security compliance and/or other best practices.Key Performance IndicatorsExperience in ISO 27001 control verification and compliance: Assist...


  • Cochin, Kerala, India Mantle Solutions Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    Job DescriptionTitle: Lead Offensive SecurityDepartment: Security Assurance TeamSummary: As a Lead Offensive Security, you will be part of the Security Assurance Team responsible for evaluating and strengthening Lulu Retails cybersecurity posture. This role contributes to the broader objectives of IT security, cyber resilience, and regulatory...

  • L2 Security Analyst

    2 weeks ago


    Cochin, Kerala, India Art Technology and Software Full time ₹ 8,00,000 - ₹ 12,00,000 per year

    Job Title : Infosec L2 Security Analyst (Security Operations Center - Advanced)Location :From Kochi Office (Onsite)Job SummaryThe L2 Security Analyst is responsible for performing advanced incident analysis, investigating security escalations from L1 analysts, conducting vulnerability assessments, and actively supporting threat hunting and malware analysis....


  • Cochin, Kerala, India mispa Technologies GmbH Full time

    Senior Network Security EngineerCochin -KeralaGrow and shape a secure future together with usmispa Technologies is an innovative IT security services and solution provider with head office in Langenfeld (Rhineland), Germany and Dev & Operations Center in Cochin (India), established in 2014.We focus on IT consulting, professional services and managed services...


  • Cochin, Kerala, India mispa Technologies GmbH Full time ₹ 6,00,000 - ₹ 18,00,000 per year

    Senior Network Security EngineerCochin -KeralaGrow and shape a secure future together with usmispa Technologies is an innovative IT security services and solution provider with head office in Langenfeld (Rhineland), Germany and Dev & Operations Center in Cochin (India), established in 2014.We focus on IT consulting, professional services and managed services...


  • Cochin, Kerala, India ChiSquarelabs Full time ₹ 9,00,000 - ₹ 12,00,000 per year

    Job Title: Application Security ConsultantLocation: Infopark Phase 2, CochinJob Type: Full TimeExperience Required: 2-3YearsDepartment: Information SecurityWho are we?We are a fast-growing AI, Data Science, Data Engineering, Clinical Decision support, Information & Cyber Security compliance focused organization with a presence in Kochi, UK and US. We aspire...


  • Cochin, Kerala, India Peak Performance Advisors (OPS) PVTLTD Full time ₹ 4,80,000 - ₹ 60,00,000 per year

    Job Title: Senior Financial ConsultantLocation: Kochi, Kerala (Hybrid – 3 days/month at Palarivattom office)Employment Type: Full-time, PermanentExperience Required: 5–10 yearsSalary: ₹40,000 – ₹50,000 per monthAbout the RoleWe are looking for a seasoned and strategic Senior Financial Consultant to take a leadership role in delivering financial...