Information Security Assessor- QSA Certified

This position is posted by Jobgether on behalf of a partner company. We are currently looking for an Information Security Assessor – QSA Certified in United States.

This role focuses on leading high-impact cybersecurity compliance assessments for organizations operating in complex and regulated environments. You will evaluate security controls, validate compliance against frameworks such as PCI DSS, and produce detailed, evidence-based reports that guide remediation and certification efforts. Working fully remotely, you will engage directly with client stakeholders to scope environments, assess risks, and identify compliance gaps. The position blends deep technical expertise with client advisory responsibilities, requiring strong communication and structured analytical thinking. You will also contribute to improving assessment methodologies and supporting internal quality standards. This is a highly autonomous role where accuracy, integrity, and clarity are essential to ensuring trusted compliance outcomes.

Accountabilities:

• Lead and execute PCI DSS and other security compliance assessments, including scoping, control validation, and reporting activities
• Produce formal assessment deliverables such as Reports on Compliance (ROC), Attestations of Compliance (AOC), and Self-Assessment Questionnaires (SAQ)
• Evaluate client environments to identify security gaps, risks, and remediation requirements aligned with regulatory frameworks
• Provide advisory support to clients during assessment preparation, including data flow analysis and gap assessments
• Develop and review technical documentation, policies, and procedures to ensure compliance alignment
• Collaborate with client stakeholders to clarify requirements, validate evidence, and support audit readiness
• Participate in pre-sales scoping discussions and contribute to proposals and client engagement planning
• Support internal methodology improvement, process standardization, and continuous service quality enhancement
• Maintain professional certifications and stay current with evolving cybersecurity and compliance standards

Requirements:

• 5+ years of IT experience with at least 3+ years in cybersecurity, risk, or compliance assessment roles
• Active QSA certification required, with CISA, CISM, or CISSP preferred
• Strong knowledge of PCI DSS frameworks and experience delivering ROC, AOC, and SAQ documentation
• Solid understanding of cloud environments (AWS, Azure, or GCP), network architecture, and enterprise systems
• Proven ability to lead client engagements and manage multiple priorities in a structured, deadline-driven environment
• Excellent written and verbal communication skills, including ability to explain technical concepts to executive stakeholders
• Experience with compliance tools or project management platforms (e.g., Monday.com, Asana, or similar) is a plus
• Familiarity with additional frameworks such as CMMC, FedRAMP, GDPR, or CCPA is an advantage
• Strong analytical mindset with attention to detail and commitment to audit-quality accuracy

Benefits:

• Fully remote work opportunity within the United States
• Competitive salary range of $100,000 – $150,000
• Occasional travel for onsite assessments when required
• Exposure to a wide range of cybersecurity frameworks and industries
• Opportunity to work on complex, high-impact compliance and security engagements
• Continuous professional development and certification maintenance support
• Collaborative, remote-first work culture focused on growth and expertise
• Involvement in both client-facing advisory work and internal methodology development

How Jobgether works: We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team. We appreciate your interest and wish you the best! Why Apply Through Jobgether? Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time. #LI-CL1