Intaso is representing a leading independent cyber security consultancy dedicated to helping UK businesses navigate the complex world of digital risk. They are recognised as a trusted partner to a growing portfolio of mid-market commercial clients, providing pragmatic, risk-based security advice that goes beyond simple box-ticking.
The Role
This is a unique and exciting opportunity for a seasoned PCI DSS expert to take ownership of and drive the growth of the Payment Card Industry (PCI) service line. This role is a perfect blend of deep technical consulting, strategic client advisory, and sophisticated business development.
You will act as the lead subject matter expert, guiding mid-market clients through the complexities of achieving and maintaining PCI DSS compliance. You will also contribute and share in the rewards for the commercial success of the practice, identifying and winning new business with both existing and prospective customers by acting as a trusted, credible advisor.
Key Responsibilities
Consulting & Delivery (approx. 80%)
* Lead and deliver a range of PCI DSS compliance services, including Gap Analyses, Scoping Workshops, Remediation Advisory, and formal assessments (Report on Compliance (RoC) and Self-Assessment Questionnaires (SAQ)).
* Act as a virtual CISO or trusted security advisor to key clients, providing ongoing strategic guidance on their compliance programmes.
* Translate complex technical PCI DSS requirements and security findings into clear, business-oriented language for senior stakeholders, including C-level executives.
* Develop pragmatic and cost-effective remediation roadmaps to help clients address compliance gaps.
* Stay at the forefront of the PCI DSS standard, including all updates (e.g., PCI DSS v4.0) and their implications for clients.
* Produce high-quality, professional reports and deliverables for clients.
Business Development & Practice Growth (approx. 20%)
* Develop and execute the commercial strategy for the PCI DSS service line.
* Proactively identify and cultivate new business opportunities within the existing client base and with new prospects.
* Build and maintain a strong network of contacts and potential clients within the UK mid-market.
* Lead pre-sales activities, including initial client conversations, requirements gathering, solution scoping, and the creation of compelling proposals and Statements of Work (SoW).
* Confidently present capabilities and value proposition to potential clients.
* Collaborate with the marketing team to develop collateral, thought leadership (blogs, whitepapers), and campaigns to promote the PCI service line.
* Represent the business at industry events, webinars, and conferences.
Required Skills & Experience
* Extensive, hands-on experience leading and delivering PCI DSS assessments and advisory projects for a reputable consultancy or QSA company.
* Proven track record in a client-facing, highly consultative role with the ability to build strong, trust-based relationships.
* Demonstrable commercial acumen and experience in identifying, nurturing, and closing business opportunities in a sophisticated, value-led manner.
* Excellent communication and interpersonal skills, with the ability to engage credibly with technical teams, business managers, and C-level executives.
* Strong understanding of the UK mid-market commercial landscape.
* Broad knowledge of complementary security domains and standards (e.g., ISO 27001, Cyber Essentials, cloud security, risk management).
* Self-motivated, proactive, and able to work with a high degree of autonomy.
* Full UK driving licence and willingness to travel to client sites.
Desirable Attributes
* Ideally should be a current and active PCI DSS Qualified Security Assessor (QSA).
* Additional industry certifications such as CISSP, CISM, or CISA.
* Experience in mentoring junior consultants.
* Experience in developing or refining consulting methodologies and service offerings.
* Established network of contacts in the retail, hospitality, or e-commerce sectors.
What We Offer
* A competitive salary and a generous performance-related bonus structure directly linked to the success of the service line.
* The opportunity to build and shape a key practice area with a significant degree of autonomy.
* A clear path for career progression in a growing consultancy.
* A dedicated budget for training, professional development, and certifications.
* Flexible and hybrid working arrangements.
* Contributory pension scheme and private health insurance.
* A collaborative and supportive team environment where your contribution is valued and has a direct impact on the company's success.