Entrust logo
Entrust

We are an innovative leader in identity-centric security solutions, providing integrated, AI-enabled offerings.

Senior Security Compliance Analyst – PCI DSS, U.S. Fed

Security AnalystSecurity AnalystFull TimeRemoteSeniorTeam 1,001-5,000H1B SponsorCompany SiteLinkedIn

Location

Minnesota

Posted

3 days ago

Salary

$119.1K - $174.6K / year

Seniority

Senior

Bachelor Degree5 yrs expEnglishCloud

Job Description

Senior Security Compliance Analyst – PCI DSS, U.S. Fed

Entrust

• Lead and support end-to-end compliance efforts across multiple environments, including readiness assessments, audits, and continuous monitoring activities • Leading PCI DSS compliance-related activities and certification • Supporting U.S. Federal readiness efforts, including gap assessments against NIST SP 800-53 • Maintaining required evidence artifacts and ensuring traceability of evidence • Interpreting and operationalizing compliance requirements into actionable control activities for engineering and operations • Serving as SME for PCI DSS and NIST 800-53 compliance • Supporting development of FedRAMP artifacts • Partnering with control owners to ensure controls meet PCI DSS and NIST 800-53 requirements • Supporting external audits by preparing evidence and responding to auditor requests • Driving coordination with third parties to ensure shared control alignment • Ensuring audit readiness through continuous proactive gap assessments and control testing throughout the year • Identifying, assessing, and communicating compliance and security risks to stakeholders • Identifying, tracking, and driving closure of audit findings and control deficiencies • Contributing to the development and maintenance of security policies, standards, and procedures

Job Requirements

  • 5+ years in security compliance, audit, or GRC with a strong understanding of administrative, technical, and physical controls
  • Hands-on technical and audit experience with PCI DSS and NIST 800-53 compliance
  • Ability to work across multiple time zones with virtual global teams
  • Strong technical understanding of cloud environments and shared responsibility models
  • Experience working in SaaS or cloud-native environments
  • Experience working cross-functionally with engineering and infrastructure teams

Benefits

  • comprehensive health and well-being programs including medical, vision, dental
  • generous 401(k) matching contribution
  • life and disability insurance
  • mental health coaching
  • virtual fitness programs
  • paid personal time off plus 12 paid holidays
  • parental leave
  • education reimbursement

Related Job Pages

More Security Analyst Jobs

Bolster, Inc logo

Security Analyst I – Trust & Safety

Bolster, Inc

Detect, Monitor, and Take Down Fake Sites and Content at Internet Scale.

Full TimeRemoteTeam 11-50H1B No Sponsor

• Review the latest threats targeting Bolster's customers and prospects. • Analyse online content across multiple platforms. • Train Bolster's AI engine based on the latest threats. • Investigate online activity and infrastructure to determine the fraud source. • Engage with hosting providers, registrars, registries and platforms to shut down online threats. • Track ongoing enforcement efforts and content change. • Provide support and written responses to customer queries. • Support sales and customer success teams with threat intelligence. • Generate monthly and ad-hoc reports summarizing metrics and trends. • Respond to security alerts to support issue resolution. • Research security issues and work with internal teams. • Help manage and improve the issue-tracking process. • Create and enhance operational metrics.

India
Mindworks logo

Senior Red Team and Offensive Security Analyst

Mindworks

Múltiplas soluções de TI para o seu negócio. Outsourcing, Infraestrutura, Conectividade e Cibersegurança.

Full TimeRemoteTeam 51-200Since 1999H1B No Sponsor

• Perform tests on web applications, APIs, internal and external infrastructure, cloud environments, and Active Directory. • Conduct manual vulnerability validations, controlled exploitation, authorized post-exploitation, and impact analysis. • Review technical findings, evidence, severity assessments, recommendations, and reports produced by the team. • Serve as an operational second opinion for defining processes and work instructions. • Support sensitive technical decisions related to significant findings, false positives, critical risks, and operational validations. • Review and standardize methodologies, playbooks, checklists, templates, and internal procedures. • Support phishing, smishing, and vishing campaigns, including planning, technical validation, result analysis, and recommendations. • Support OSINT activities, password analysis, credential exposure reviews, and monitoring of the Deep and Dark Web. • Contribute to the design of future services, including adversary simulations, tabletop exercises, ransomware simulations, and full Red Team exercises. • Support the definition of technical scope, effort estimates, and consultative discussions with clients.

Brazil

Role Description Reporting to the Group Security Operations Manager, the purpose of the IT Security Analyst is to assist with maintaining and enhancing our IT infrastructure and carrying out information security related tasks. You'll work directly with the Group SecOps Manager to keep our ISMS, ISO 27001 and security posture in good shape, and act as the first point of triage for security incidents in UK working hours before escalation. We are seeking a motivated and detail-oriented IT Security Analyst to join our team. In this role, you will be responsible for: - Performing regular scheduled IT security tasks - Conducting audits, reviews, and validation of security controls in accordance with our established policies and procedures The IT Security Analyst will play a critical role in safeguarding our organisation's information assets and ensuring compliance with applicable regulations. The role provides a great opportunity to build on existing experience and take a career in IT Operations, Security and Support to the next level in the Idox, working in a forward-thinking environment with a team around them that’s passionate about technology and innovation. You will find our full job description located HERE . Company Description

United Kingdom
water IT Security & Defense logo

Security Analyst, 2nd Level

water IT Security & Defense

We make IT Security a Defensive Art - powered by Microsoft

Full TimeRemoteTeam 51-200H1B No Sponsor

• Für unsere vielfältigen Kund:innen analysierst und eskalierst du Security Incidents - inklusive Root-Cause-Analysen, Eskalationsprozessen und aktivem Threat Hunting. • Du hast Lust, nicht nur zu reagieren, sondern aktiv mitzugestalten? In Workshops und regelmäßigen Jour-Fixen bist du die zentrale Ansprechperson für unsere Kund:innen rund ums Incident Handling & Co. • Du sorgst du dafür, dass bei uns alles rundläuft. • Im Wechsel mit dem Team übernimmst du die Rufbereitschaft – auch mal nachts oder am Wochenende. • Zusammen mit unserem Engineering Team sorgst du dafür, dass wir und unsere Kund:innen immer einen Schritt voraus sind.

Germany