Bcd travel services b.v. Senior audit assurance team member – pci dss remote full time, mexico, colombia, costa rica the senior audit assurance team member will support the organization’s pci compliance program by evaluating, monitoring, and demonstrating adherence to pci dss requirements for both internal and external audits. The role requires ownership of compliance processes and the development of supporting documentation. This individual will also work to improve and streamline internal procedures that support ongoing pci and other compliance efforts. As a senior audit assurance team member – pci dss, you will
* review and validate compliance evidence to ensure alignment with pci dss requirements; recommend alternative evidence where needed
* own and manage core compliance processes, including evidence collection, tracking, and remediation workflows
* design and implement standardized processes or templates to enhance automation and efficiency in audit deliverables
* collaborate with internal teams and external assessors to communicate, educate, and demonstrate various security standards (pci, iso, etc.) requirements effectively
* assess and document security and compliance risks in the context of business operations
* develop, communicate, and help execute remediation plans to address compliance gaps and reduce organizational risk
about you
* professional certifications such as cisa, cism, cissp, or equivalent
* current or former as a pci-qsa or pci-isa, with a deep understanding of pci dss v4.0.1 requirements
* strong audit experience with additional frameworks such as iso 27001, soc 1, soc 2, and cmmc
* proven expertise in auditing and scoping pci dss compliance across complex, non-traditional, and emerging cardholder data environments
* audit experience with enterprise-level security tools and technologies such as multi-factor authentication (mfa), centralized logging, privileged access management (pam), key management/encryption vaults, vulnerability scans, and anti-malware platforms
* excellent communication skills, with the ability to convey technical concepts to non-technical stakeholders