Security Consultant(PCI QSA) - Germany

The Security Consultant (PCI QSA) will lead security consultancy and assessment engagements and pre-sales processes with clients within financial services and payment card industries. Focusing on delivery of Payment Compliance services, which include but are not limited to:

• PCI data security standard assessments
• Support in PCI Specialized assessments (PCI PIN, PCI P2PE, etc.)
• SWIFT
• Gap Analysis
• Policy and procedure review
• Advisory for audit preparation and remediation, Pre-Sales
• Starting with the information received from the sales team, independently carry out the estimate of the effort required to deliver a security service, reporting the result to the regional lead for approval.
• Lead customer engagements and provide senior cyber security advice and services to a broad range of clients and industries. Provide detailed analytical reporting, internal reporting metrics and program management. Provide leadership and mentorship to Junior consultants.

Delivery

• Prepare, organize and support delivery by team members of engagements onsite and offsite including but not limited to gap analysis, security assessment, risk and/or compliance assessment using one or more industry or regulatory standard or framework.

Processes and Documentation

• Assess compliance related documentation including policies, procedures, standards and legislative directives.
• Provide remediation support and guidance on the security aspects of the administration and maintenance of processes and documentation, infrastructure components, applications, services and security systems.
• Deliver detailed reports following Integrity360's reporting best practice and templates.
• Ensure QA process for Payments Compliance standards is initiated and applied for relevant projects, in cooperation with QA and Backoffice team.
• Establish new standards and reviews of existing documentation to ensure the correct application of the processes.
• In cooperation with Practice Lead(s) and other consultants, estimate, plan and monitor team budget.
• Provide regular status update to internal stakeholders (Practice Lead(s), PMO).
• Participate in continuous improvement of internal processes (reporting tools, assessment automation etc.)

Communication

• Participate in external conferences and promote Integrity360 by identifying important industry events.
• Support marketing activities related to existing Professional Service portfolio and customer acquisition working in collaboration with marketing team.
• Act as a communication point between regional team, other professional services teams, Customer Success and other departments.
• Supports sales team in development and effort estimations for new opportunities (e.g. new and evolving industry standards).
• Stay up to date on developments in the Payments Compliance realm, understanding new standards and regulations and their impact on Integrity360.

Do you have experience in UNIX?, * Relevant Experience in Fintech industry and security standards and directives consultancy services (e.g. PCI DSS, PSD2, ISO 27001, SWIFT, etc.)

• Cryptographic techniques including algorithms, key management, and key lifecycle.
• Physical security techniques for high-security areas
• Authentication methods and techniques
• Security integrity controls
• Computer Networking (routing, switching, firewall network filtering)
• Operating Systems hardening and administration (Linux/Unix, Windows).
• Public key infrastructure (PKI) and the role and operations of a Certification Authority (CA) and Registration Authority (RA)
• Hardware security modules (HSMs) operations, policies, and procedures
• POI key-injection systems and techniques including key-loading devices (KLDs) and key management methods, such as Master/Session or DUKPT
• Excellent written and oral language skills in German and English. Must be able to conduct assessments in both languages.

Core Competencies

• Problem solving (analysis, helicopter view, problem setting, decision making)
• Planning and organization (time management, scheduling and control)
• Communication (clearness, listening, persuasion, negotiation, public speaking)
• Networking (reinforce relationships, use emotional intelligence and personal proximity)
• Results orientation (delivering solutions, work under pressures)
• Leading and empowering people (self-confidence, establishing focus, providing motivational support and feedback, fostering teamwork and integration)
• Economic sensitivity (economic variables evaluation, profit & loss dynamics), * Certified Qualified Security Assessor (QSA)
• Willingness to travel 30 - 40%

Nice to haves:

Any one or more of the following certifications:

• Certified Qualified PIN Assessor
• Certified P2PE Assessor/P2PE Application Assessor

Integrity360 is the largest independent cyber security provider in Europe, with a growing international presence spanning the UK, Ireland, mainland Europe, Africa and the Caribbean. With over 700 employees, across 12 locations, and six Security Operations Centres (SOCs)-including locations in Dublin, Sofia, Stockholm, Madrid, Rome and Cape Town-we support more than 2,500 clients across a wide range of industries. Over 80% of our team are technical experts, focused on helping clients proactively identify, protect, detect and respond to threats in an ever-evolving cyber landscape. Our security-first approach positions cyber resilience as a business enabler, empowering organisations to operate with confidence. At Integrity360, people come first. We invest heavily in learning, development and progression, fostering a dynamic culture where innovation, collaboration and continuous growth are at the heart of what we do. If you're ready to take your cyber security career to the next level, we'd love to hear from you.