We are supporting a transformation program in the payments and card processing domain, focused on the modernization of card transaction systems and the implementation of an acquiring platform.
The scope includes card switching transformation and PCI DSS certification readiness for the acquiring environment.
Key responsibilities
Support definition and update of the Cardholder Data Environment (Cde) for PCI DSS certification readiness
Perform impact analysis from PCI DSS v3.2.1 to v4.0.1 (new and changed requirements)
Define high-level architecture and infrastructure guidelines aligned with PCI DSS 4.0.1
Conduct PCI DSS gap analysis (technical, process, organizational)
Define remediation roadmap based on compliance gaps
Define Cde scope boundaries (systems, integrations, data flows - acquiring environment)
Conduct pre-audit assessments (documentation review, interviews, workshops - non-Qsa scope)
MAP current environment vs PCI DSS requirements and identify gaps
Required skills
Strong experience in PCI DSS compliance projects
Experience defining Cde scope in acquiring environments
Background in payment systems / card processing ecosystems
Strong capability in gap analysis & pre-audit preparation
Knowledge of PCI DSS 4.0.1 requirements
Experience in complex financial / banking infrastructures
Ability to run workshops and stakeholder interviews
Nice to have:
Experience with payment switches / authorization systems
Cloud & hybrid infrastructure exposure
Security architecture / risk assessment backgroun