Senior Cyber Security Engineer

job Description

Our esteemed Randstad client in Washington, D.C. is seeking a Senior Cyber Security Engineer for a 12+ month contract role. This crucial position requires a deep understanding of PCI scoped environments, PCI DSS compliance, risk assessment, architectural design, and a strong grasp of cutting-edge cyber technologies.

Key Qualifications and Responsibilities:

• In-depth knowledge of PCI DSS standards and a comprehensive understanding of the cardholder data security requirements.
• Proven experience in architecting and designing PCI-scoped systems, as well as policy development.
• Hands-on experience in implementing and assessing security controls, including expertise in Cloud Security (IaaS, PaaS, and SaaS), AWS, Azure, and other cloud environments.
• Proficiency in Network Segmentation, Data Encryption, Data Classification, Access Controls, Network Security (FW, IDS, IPS, etc.), and Web Application Firewall Security.
• Possession of one or more industry-recognized cybersecurity or cloud security certifications such as CISA, CISM, CISSP, CCSP, CEH, CGRC, and AWS/AZURE certs.

Minimum Skillset Requirements:

• Expertise in PCI-DSS, NIST CSF/RMF, 800-53 controls, CIS, OWASP, data privacy, ISO 27001, SOC2 requirements.
• PCIP certification.
• Proven PCI experience with enterprise security architectures, designs, and implementations.
• Evaluate, manage, and assess in-house and third-party vendors for compliance with PCI DSS.
• Review existing and proposed security architectures, identifying PCI DSS security design gaps, and providing recommendations for changes or enhancements.
• Proficiency in creating and maintaining detailed documentation of security policies, standards, procedures, guidelines, and controls for audit and compliance purposes.
• Experience with Agile/SAFe development methodologies.
• Involvement in vulnerability management, penetration testing, and incident response related to payment card data.
• Familiarity with Zero Trust Architecture concepts.