Qualified Security Assessor/ISA (PCI DSS)

Job Title: Qualified Security Assessor/ISA (PCI DSS)
Location: Glasgow (Hybrid)
Salary/Rate: £400-420 Per Day
Start Date: 30/06/25
Job Type: 6 month contract - Inside IR35

Company Introduction

We have an exciting opportunity now available with one of our sector-leading consultancy clients! They are currently looking for a Qualified Security Assessor/ISA (PCI DSS certified) to join their team for a six-month contract.

Job Responsibilities/Objectives

As a QSA or ISA, you will be responsible for conducting formal assessments of organisation's compliance with the Payment Card Industry Data Security Standard (PCI DSS). You will evaluate security controls, identify gaps, and provide guidance to help organisations achieve and maintain compliance. This role requires deep technical knowledge, strong communication skills, and a commitment to upholding the integrity of the PCI DSS program.

• Conduct PCI DSS assessments for merchants and service providers.
• Review and validate security controls, policies, and procedures.
• Perform on-site inspections, interviews, and technical testing.
• Document findings and prepare detailed Reports on Compliance (RoC) and Attestations of Compliance (AoC).
• Provide remediation guidance and support to clients.
• Maintain up-to-date knowledge of PCI DSS standards and related security practices.
• Ensure independence and objectivity in all assessments.
• Participate in internal quality assurance and peer review processes.

Required Skills/Experience
The ideal candidate will have the following:

• In-depth knowledge of network security, encryption, Firewalls, and access control.
• Familiarity with cloud security and modern IT architectures.
• Strong analytical and problem-solving skills.
• Excellent written and verbal communication.
• Ability to manage multiple assessments and deadlines.

Required Qualifications

For QSA:

• Employed by a PCI SSC-approved QSA Company.
• Successfully completed PCI SSC QSA training and certification.
• Holds at least one recognised industry certification (eg, CISSP, CISA, CISM, GIAC).
• Preferably of 5 years of commercial experience in IT security, audit, or compliance.

For ISA:

• Employed by a PCI SSC-registered ISA Sponsor Company.
• Completed ISA training and certification through PCI SSC.
• Strong understanding of internal security controls and PCI DSS requirements.

Certifications (Preferred):

• CISSP, CISA, CISM, CRISC, CEH, OSCP, or similar.
• PCI DSS QSA/ISA certification (mandatory for role).

If you are interested in this opportunity, please apply now with your updated CV in Microsoft Word/PDF format.

Disclaimer
Notwithstanding any guidelines given to level of experience sought, we will consider candidates from outside this range if they can demonstrate the necessary competencies.

Square One is acting as both an employment agency and an employment business, and is an equal opportunities recruitment business. Square One embraces diversity and will treat everyone equally. Please see our website for our full diversity statement.