The Opportunity
NCC Group provides Information Assurance consultancy to help companies protect critical systems and information. We do this by defining security strategies, conducting compliance audits, developing policies, conducting security maturity and risk assessments and architecture reviews and by delivering security awareness & training sessions. We also provide security staff augmentation to clients so that our consultants may occupy security roles within the client environment in the short, medium or long term.
Our core information risk management and compliance services include:
Strategy policy and awareness Virtual security team
Data discovery and mapping Risk assessment and design review
Continuity/Resilience Data privacy and GDPR
ISO 27001 Supplier assured
PCI 3DS, PCI P2PE, PCI SSF audits Incident response planning
PCI Card Production and PIN audits Cyber security review
Alongside our core services, we have a range of bespoke services to help organisations protect their systems and information:
Risk Assessments
Security Architecture Review
Information Security Awareness and Training Programmes
Information Security Policy Development
Security Transformation Programmes
We have a fantastic new opportunity to join our Global Professional Services division for a PCI Qualified Security Assessor (QSA) Consultant. The ideal candidate will have commercial experience within the information and assurance field, gained from delivering a diverse range of security and assurance services ideally into a broad client base. In addition to your technical skills, you will have strong client facing skills and be comfortable dealing with senior client stakeholders.
The Challenge
Liaise with the Resource Management and Sales team during the sales cycle to assist in quantifying, pricing and organising the consulting resources required for the project delivery.
Assist with sales proposals, bids and tenders for delivery of PCI and Audit & Compliance services.
You will conduct on-site and remote activities to advice, assess, analyse and report in line with the engagement project requirements. This will involve meeting client stakeholders, conduct of documentation reviews, auditing technical solutions and systems as well as presenting information and advice to senior business partners.
Translate the technical and non-technical findings from an assessment or exercise into relevant, actionable information for customers
Responsible for adhering to all internal policy and procedures in relation to security and quality best practice
Ability to travel to client sites in the UK and abroad to perform engagements of varying durations as required
Essential Skills
Above all, we would like to speak with people who are passionate about what they do.
You hold or have held a PCI Qualified Security Assessor (QSA) qualification and delivered PCI DSS assessments.
You hold or have held other PCI assessor qualifications such as PCI 3DS Assessor, PCI Card Production Security Assessor (CPSA), P2PE Assessor, Qualified PIN Assessor (QPA) or Secure Software Assessor. You are interested in expanding your PCI skills to include assessing against these standards.
You will be working in areas mainly focusing on PCI QSA however other skills include as NIST 800-53, SANS Top 20 CSC, ISO 27001, Risk Assessment (ISO27005) EU GDPR and other frameworks as requested by clients.
Have the ability to deliver projects within time and in budget and to a high level of customer satisfaction – exercising customer care at all times
Demonstrate a strong ability to develop a rapport with customers and to engender long lasting relationships
Have strong business, consultancy and technical skills within the IT Security Industry
Excellent communication and presentation skills
The following additional attributes would be advantageous:
Excellent attention to detail and documentation
You have performed an Internal Security Assessor (ISA) role supporting PCI DSS assessments.
Qualified Security Assessor (QSA)
Industry standards such as NIST 800-53, SANS 20 CSC, ISO 2700 Series, GDPR
Customer facing experience
NCSC CCP, CISSP would be an advantage
Please do not hesitate to apply.
The latest news, articles, and resources, sent to your inbox weekly.
Role Description:As an Operational Security Officer for IBM Mainframe Z Series, your primary role is to maintain and improve the overall security posture of the organization's IT infrastructure that is based on IBM Mainframe Z Series technology.You will work closely with the security team and other stakeholders to identify potential...
AXA Group Bristol
Ideas | People | TrustWe’re BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today’s changing world.We work with the companies that are Britain’s economic engine – ambitious, entrepreneurially-spirited and high‑growth businesses that fuel the economy - and directly advise the owners...
Tower, Greater London
Apprentice Fire & Security EngineerPostcodes: RH, GU, RG, AL, HP, EN, WD, HA, UB, TW, KT, SM, CR, WC, SW, NW, N, W, E, SEAlarm Communications Limited are a leading team of fire protection, commercial security and building management systems specialists, with our Head Office located in Surrey. Our client...
Alarm Communications Limited London
Hello. We’re Haleon.A new world-leading consumer health company. Shaped by all who join us. Together, we’re improving everyday health for billions of people. By growing and innovating our global portfolio of category-leading brands – including Sensodyne, Panadol, Advil, Voltaren, Theraflu, Otrivin, and Centrum – through a unique combination of deep...
Haleon Weybridge
Job ref:LF1211844_1698656263Location:BerkshireSector:Job type:Salary:£40000 - £48800 per annum + Benefits packageContact:Laura FitzgeraldEmail:Published:1 day agoStart date:ASAPRole:Security EngineerLocation:Onsite in BasingstokeSalary:Up to £48,800 per annum + benefitsSC clearance required to startWe are looking for a qualified application developer or integration engineer with an interest in Security.Key experience in areas such as information security (PKI)...
CBS Butler Berkshire
Job DescriptionYour CareerThe Principal Consultant on the Offensive Security team is focused on assessing and challenging the security posture across a comprehensive portfolio of clients. The individual will utilize a variety of tools developed and act as a key team member and leader in client engagements. They will be the...
Palo Alto Networks London
