Join Our Talent Network

Smart decisions. Lasting value.

Apply Now    

Information Security Consultant- PCI

Req #: 13471
Location: Oak Brook, IL
Job Category: Risk Consulting
Job Summary

The Information Security Senior Consultant (PCI) will be responsible for supporting planning, supervising staff, and executing IT Security and Privacy, Payment Card Industry (PCI) Consulting, and attestation projects. The Information Security Senior Consultant will serve as a project or team lead to ensure high-quality delivery. This position will perform work, as well as oversee the technical work of some junior level personnel. This position will work directly with other project leads, managers, and/or executives to communicate business and technical aspects of the work being performed. The Information Security Senior Consultant will set performance expectations for junior level personnel and provide constructive performance feedback on a regular basis. This position may also assist the engagement economics of the projects, including budget status tracking, billing, and collection analysis. The Information Security Senior Consultant will perform the following responsibilities:

 

  • Conduct and lead Information Security Projects
  • PCI Data Security Assessments
  • Network Security Assessments
  • IT Risk Assessments
  • IT Security Technology Implementations
  • Evaluate and/or Implement IS solutions and controls to ensure data security and integrity for our clients.
  • Prepare reports or other necessary documentation to detail results of evaluation and otherwise meet the objectives of the Project.
  • Submit recommendations to client for corrective action or to support a recommended approach to solving the client’s needs.
  • Participate in planning and implementing client information systems, including structure, process, and security.
  • Participates in strategic and tactical objectives to include new product offerings, identify additional client needs, and generating new business leads.
  • Correspond with a variety of clients and communicate security issues, recommendations, and deliverables effectively.

Qualifications

 

  • Bachelor's degree required, candidates must possess significant analytical skills which likely evolved from early academic training in Business Administration, Computer Science, Engineering, Information Systems or similar discipline.
  • Minimum 2-4 years of business experience in the areas of Information Security.
  • Certified Information Systems Security Professionals (CISSP) or willingness to obtain
  • PCI Qualified Security Assessor (QSA) or Internal Security Assessor (ISA) designation or willingness to obtain
  • Experience within consulting or professional services, or at leading industry public companies is preferred.
  • Experience with Payment Card Industry, payment applications, or POS/UAT/ATM hardware is preferred.
  • Knowledge of point to point encryption, tokenization, Chip and PIN (EMV), and mobile payment solutions.
  • This position requires national travel.
  • Knowledge of internetworking technology.
  • System and network administration experience on UNIX (any flavor) and Windows platforms is essential.
  • Knowledge of security areas such as Auditing, Policy, Database Security, Firewall Design and Implementation, Risk Analysis, Identity Management, Access Management, or Web Services, Application development is very desirable.
  • Writing and interpersonal communication skills are expected to be of a high quality.
  • The ability to handle multiple projects concurrently is a must.

 

Additional Skills Desired:

 

MBA and/or postgraduate work would be beneficial, but is not required for consideration.

Certifications from the following are highly desirable:

QSA, CISA, CISSP, CCSK, CEH, Microsoft, Cisco, HPUX, other vendor, application, or system certifications.

 

Technology:

- Network Security Practices: Auditing, planning, design, implementation, testing, and management

- Network Operating Systems: Windows, UNIX

- Internet/Intranet/Extranet: Network infrastructure development/deployment, DNS, FTP, and Web servers

- Network architecture and protocols: TCP/IP, IPX, SNMP, HTTP, NetBIOS/NetBEUI, IPSec, PPTP

- Network firewalls, application gateways, proxy servers

- Database Security: MS SQL, Oracle

- Network Device Access to controls to include Cisco routers and other network devices

- Active Directory and Group Policy

- Network Analysis Tools: Network General Sniffer, LANalyzer, NetXray

- Cryptographic tools, methods, systems and protocols: HTTPS, IPsec, PGP, 3DES

 

 

Visit Crowecareers.com and find out what it's like to work with people who love what they do!


Company Overview

Crowe Horwath LLP is one of the largest public accounting and consulting firms in the United States. Under its core purpose of “Building Value with Values®,” Crowe uses its deep industry expertise to provide audit services to public and private entities, while also helping clients reach their goals with tax, advisory, risk and performance services. With offices coast to coast and 3,000 personnel, Crowe is recognized by many organizations as one of the country's best places to work. Crowe serves clients worldwide as an independent member of Crowe Horwath International, one of the largest global accounting networks in the world, consisting of more than 150 independent accounting and advisory services firms in more than 100 countries around the world.

Apply Now    

Search Jobs

Why Crowe

Connect to Crowe Careers