Text size Increase Font-SizeDecrease Font-SizeReset Font-Size

Career Opportunities

Communications Specialist

Reporting to the Communications Manager, the Communications Specialist is a marketing-communications position that involves contributing to the development of, and leading execution of, communication strategies to reach the Council’s key audiences. A primary focus will be to help run a busy press office and speaking bureau to execute a proactive communications program that includes: media and analyst relations, messaging development, internal and member communications, public affairs, collateral development, web and social media communications and influencer relations (e.g. industry association liaison.). Learn more...

Standards Manager

The Standards Manager will play a key role in the ongoing development of the PCI security standards, as well as contribute to other Council program initiatives. The Standards Manager will work directly with the working groups of the PCI Council to draft content for our portfolio of standards including the PCI Data Security Standard (DSS), Payment Application Data Security Standard (PA-DSS), PIN Transaction Security (PTS), as well as the development of new and emerging standards and guidance documents, information supplements and the Self-Assessment Questionnaires. The Standards Manager will also be responsible for supporting project management for ongoing work assignments and status reporting of deliverables to senior leadership. Learn more...

PCI SSC Standards Trainer

While reporting directly to the PCI Security Standards Council Training Programs Director, the PCI SSC Standards Trainer will play a key role in the education and certification of Qualified Security Assessors (QSA) and Payment Application Qualified Security Assessors (PA-QSA) as well as contribute to other Council program initiatives. You will also teach the intent of the Data Security Standard (DSS) and Payment Application Data Security Standard (PA-DSS) to information security professionals utilizing former assessor and information security experience to share the applicability of the PCI requirements, as well as insight from former QSA or similar assessment work. For the purposes of training, you will support the Council's communication plan which may include training other entities such as Approved Scanning Vendors (ASV), merchants and service providers. Learn more...

PCI SSC Standards Manager for Device Standards

The Standards Manager for Device Standards will play a significant role in the ongoing development of the PCI PIN Transaction Security (PTS) standards, as well as contribute to other Council program initiatives. The Standards Manager for Device Standards will work directly with the working groups of the PCI Council, industry stakeholders and other subject matter experts to develop and draft content for our portfolio of standards. This will include the PCI PTS Point of Interaction (POI) Security Requirements, the PCI PTS Hardware Security Modules (HSM) Security Requirements, the supporting laboratory test scripts, device vendor questionnaires, PIN Security Requirements and Program manuals, and engagement on the development of new and emerging standards, guidance documents and information supplements. The Standards Manager for Device Standards will also be responsible for supporting project management for ongoing work assignments and status reporting of deliverables to senior leadership. Learn more...


Back to Top

The PCI Security Standards Council (the "Council") provides a variety of tools, questionnaires, guidance, FAQs, training resources and other materials and information to assist organizations seeking to achieve compliance with its standards (the "Standards"). Third party products and services are also available, but the Council does not endorse or recommend any such third party products or services, and advises all organizations seeking to achieve compliance to become familiar with the Standards and related requirements before purchasing third party products or services. Ultimately, all applicable requirements must be met in order to achieve compliance, regardless of whether or what third party products or services are used.