PCI QSA Sr. Consultant - Japan

Insight Assurance is a global audit firm on a mission to transform how organizations achieve cybersecurity and compliance. Founded by former Big 4 (EY) professionals, we deliver next-generation audit services across SOC 2, ISO 27001, PCI DSS (QSA), HITRUST, CMMC (C3PAO), and FedRAMP (3PAO) frameworks.

We’re not your traditional audit firm — we’re tech-enabled, leveraging compliance automation and advanced collaboration tools to make audits faster, smarter, and more impactful for our clients.

Recognized on the Inc. 5000 and Fast 50 lists, Insight Assurance is one of the fastest-growing global audit firms, with 170+ professionals supporting nearly 2,000 clients across the Americas, EMEA, and APAC.

The PCI-QSA Senior Consultant is responsible for executing PCI DSS compliance assessments and audits, ensuring that client environments meet applicable security standards. This role combines technical expertise, audit execution, and client advisory to identify risks, assess controls, and support organizations in achieving and maintaining compliance.

Experience  

• Minimum 3 years of experience in information security.  
• Minimum 3 years of experience in PCI DSS assessments (internal, external or   
QSA).  
• Experience performing security audits or compliance engagements.  

Certification  

• Active QSA certification (required).  
• Additional certifications such as CISSP, CISA, or CISM are a plus.

Core Responsibilities  

• Perform PCI DSS assessments, including on-site and remote audits.  
• Evaluate the design and operating effectiveness of security controls.  
• Review client documentation, systems, and processes for compliance readiness.  
• Document audit procedures, findings, and recommendations.  
• Identify compliance gaps and provide remediation guidance.  
• Prepare clear and structured audit reports and deliverables.  
• Maintain regular communication with clients throughout engagements.  
• Ensure adherence to internal quality standards and audit methodologies.  
• Support clients in understanding compliance requirements and next steps.  
• Stay current with PCI DSS standards and evolving security practices.  

Required Skills / Competencies  

• Strong knowledge of PCI DSS and compliance requirements.  
• Solid understanding of network security, segmentation, access controls, and   
encryption.  
• Strong analytical and problem-solving skills.  
• Excellent written and verbal communication skills.  
• Ability to explain technical concepts to non-technical stakeholders.  
• High attention to detail and documentation discipline.  
• Ability to work independently and manage multiple priorities.  
• Strong client-facing and relationship management skills.

Performance Expectations  

• Deliver audit engagements on time and with high quality.  
• Maintain accurate, complete, and audit-ready documentation.  
• Provide clear, actionable remediation recommendations.  
• Demonstrate ownership of assigned engagements and deliverables.  
• Maintain effective communication with clients and internal teams.  
• Adhere to internal methodologies and quality standards.  
• Continuously enhance technical and compliance knowledge.  

Experience / Education / Certification Requirements  

Bachelor’s degree (Master’s preferred) in:  
• Cybersecurity  
• Information Systems / MIS  
• Computer Science  
• Business or related field  

BENEFITS

• Paid Time Off and Paid Holidays
• Performance Bonuses
• 100% Remote

Privacy Notice CCPA: 

• Insight Assurance shares your personal data/information with Greenhouse recruiting because this is the tool we use for the recruitment process.
• Insight Assurance does not sell personal data/information under any circumstances.
• You may exercise your rights under personal data protection legislation by reaching out to us via: HR@insightassurance.com or submit a request via mail at 400 N Tampa St. 15th Floor Suite 122, Tampa, FL 33602

Privacy Notice GDPR:

This notice informs you about the categories of Personal Data/ Information and the Purpose and Scope of Processing Activities to be undertaken by Insight Assurance (we, us, our), under its job application and recruitment process.

We resort to Greenhouse.com as the platform that supports our recruitment process, and therefore your Personal Data/ Information will be Processed on this tool (hosted, shared with, cross-referenced, accessed by our team); we have in place contractual terms and the commitment of Greenhouse.com that ensures the Security and Confidentiality plus Purpose limitation with regards to the Processing of your Personal Data.

When you reply to one of your job postings, you voluntarily and freely submit your Personal Data to us; this, allied with the fact that the Processing by us (and over Greenhouse.com) of that Personal Data has the sole Purpose of validating your application and proceeding with the inherent scrutiny and decision, allows us to argue having Legitimate Interest as the applicable Legal Basis to undertake the Processing of your Personal Data under this scope.

We are a U.S. based company, hence some or all Personal Data pertaining to you will be hosted in the U.S.

The categories of Personal Data under Processing consist of:

• Identification
• Contact
• Education and Professional
• Interview performance
• Evaluation

You may exercise several Rights as determined under applicable Personal Data Protection legislation, in short:

• Right of Access – meaning getting information about the Personal Data under Processing by us, except for the information you already know;
• Right of Erasure – you may ask for us to erase all Personal Data pertaining to you under Processing; this may imply you being excluded from the recruitment process, for without information we cannot proceed with it;
• Right of Opposition or Restriction of Processing – you may ask us to stop some Processing or restrict the Processing of some Personal Data, this may imply you being excluded from the recruitment process, at our sole discretion also for without information we cannot proceed with it;
• Rectification – you can rectify your Personal Data at anytime