Full-Time

Security Advisor

PCI Practice

Confirmed live in the last 24 hours

Nelnet

Nelnet

1,001-5,000 employees

Energy
Financial Services
Education

Compensation Overview

$95kAnnually

Senior

Remote in USA

Category
Cybersecurity
IT Project Management
IT & Security
Requirements
  • Minimum acceptable education requirements: Bachelor’s degree, and/or 5 years’ experience in the information security industry (preferably at an institution of higher education)
  • Minimum acceptable certification requirements: Possess at least one of the industry-recognized information security and/or audit certification(s) required to obtain the Qualified Security Assessor (QSA) certification.
  • Candidates must agree to prepare for and pass the PCI Qualified Security Assessor (QSA) certification and any other certifications as directed by their manager.
  • Minimum acceptable work experience requirements: All candidates must have a minimum of five years of relevant information security experience, to align with the minimum experience requirements for a QSA.
  • This experience must cover at least one year each in application security, information systems security, network security, IT security auditing, and information security risk assessment or risk management.
  • At least two years’ experience working with PCI DSS compliance is required, either as an assessor or internally to manage PCI DSS compliance.
  • Knowledge and experience with consulting, implementing, or supporting PCI DSS and other compliance/assessment efforts including: Understanding and familiarity with PCI DSS and supporting standards/programs, including but not limited to: PTS, SSF, P2PE, SPoC, MPoC, etc.
  • Core PCI DSS compliance program elements, such as policy, procedure, training, service provider oversight, device protection, inventory/scope verification, and incident response.
  • Familiarity with industry-standard security and compliance documents/frameworks, such as NIST SP 800-171, NIST CSF, ISO 27001, GLBA and other standards.
Responsibilities
  • Security Advisors are responsible for assessing and reporting on customer business and technical environments, operations/procedures, administration of infrastructure (from network border to endpoints and everything in-between), and overall compliance programs, as measured against relevant industry standards.
  • Consult both onsite and remotely with customers to collect, review, and analyze data related to current institutional policies, business practices and procedures, network infrastructure, IT system configurations and physical security as they relate to multiple compliance requirements (primarily PCI DSS).
  • Performing gap analysis of sampled merchant environments and overall compliance program/centralized controls.
  • Provide in-person or remote orientation sessions to customer personnel.
  • Review requirements with third-party service providers as necessary to clarify roles and help the customers achieve information security and compliance objectives.
  • Make recommendations for remediation steps required to achieve information security and compliance objectives.
  • Upon requests from ongoing customers, the Security Advisor may review customer-prepared industry reports (such as a PCI Self-Assessment Questionnaire) and provide feedback/guidance to ensure accurate reporting, or in some cases assist the customer with the preparation of required industry-standard reporting obligations.
  • Perform gap assessments through interviews, observations, evidence review, and physical/remote assessments to evaluate customer networks, infrastructure and operations as it relates to compliance objectives (primarily PCI DSS).
  • Report on findings and provide customers with remediation options when appropriate.
  • Participate in sales calls as an industry expert. Attend conferences as appropriate.
  • Prepare and perform industry-related presentations and/or webcasts. Other sales/marketing support duties as requested.

Company Stage

IPO

Total Funding

N/A

Headquarters

Lincoln, Nebraska

Founded

1977

Growth & Insights
Headcount

6 month growth

0%

1 year growth

0%

2 year growth

0%
Simplify Jobs

Simplify's Take

What believers are saying

  • Collaboration with Convera enhances appeal to international students, expanding customer base and revenue.
  • Investment in Hudl and Allo diversifies Nelnet's portfolio, mitigating traditional business risks.
  • Partnership with Otus may attract more clients in the K-12 education sector.

What critics are saying

  • Website and call center outages could lead to customer dissatisfaction and reputational damage.
  • Reduction in call center hours and layoffs may impact timely customer service and retention.
  • Shift from student loans could challenge Nelnet's market position and expertise in the sector.

What makes Nelnet unique

  • Nelnet's strategic investment in Edge Focus enhances fintech solutions and consumer finance innovations.
  • Partnership with Otus provides advanced data analytics capabilities for K-12 education services.
  • Investment in Nave Analytics supports sustainable agricultural technologies, aligning with global sustainability trends.

Help us improve and share your feedback! Did you find this helpful?