Senior Consultant, Technical Payments - PCI QSA, P2PE, PIN

Coalfire is a cybersecurity advisor that helps private and public-sector organizations avert threats, close gaps, and effectively manage risk. They provide independent, tailored advice, assessments, technical testing, and cyber engineering services to help clients develop scalable programs that improve their security posture and achieve business objectives.

Coalfire

Employee count: 1001-5000

United Kingdom only

Stay safe on Himalayas

Never send money to companies. Jobs on Himalayas will never require payment from applicants.

About Coalfire

Coalfire is on a mission to make the world a safer place by solving our clients’ hardest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and ultimately help companies navigate the ever-changing cybersecurity landscape. We are headquartered in Chicago, Illinois with offices across the U.S. and U.K., and we support clients around the world.

But that’s not who we are – that’s just what we do.

We are thought leaders, consultants, and cybersecurity experts, but above all else, we are a team of passionate problem-solvers who are hungry to learn, grow, and make a difference.

Position Summary

This is a great opportunity to grow your career and lead enterprise engagements as a Senior Consultant for our Payments Solution Validation team.

In this role you will lead and perform assessments of client environments against regulatory and industry security standards, with a primary focus on PCI Point-to-Point Encryption (P2PE) and PCI PIN Security standards.

As a senior member of the Payments Solution Validation team, you will evaluate technical controls, encryption architectures, and secure key-management practices for financial institutions and payment solution providers.

You will act as a trusted advisor, guiding clients on data protection strategies, encryption best practices, and overall PCI compliance while delivering high-quality assessment reports and attestations.

This position is a remote position that must be located in the United Kingdom (England, Scotland, Wales, and/or Northern Ireland). Coalfire has an office in Manchester, UK so there is opportunity to work in the office in a hybrid capacity if preferred.

What You'll Do

Leads audits and assessments including audit planning, evidence review, controls evaluation, and client interviews.

Prepare relevant frameworks assessment reports and attestations.

Manage priorities, tasks and hours on projects in coordination with project managers to meet delivery utilization targets.

Ensure all deliverables meet Coalfire quality standards and timelines.

Proactively escalate client or project risks to management. Interface with clients throughout the engagement, including executive and technical stakeholders

Build and maintain strong, collaborative client relationships

Maintain industry certifications and deepen subject matter expertise through continuous professional development.

Travel up to 30% as required

What You'll Bring

5+ years in IT security, payments security and/or application development

Bachelor’s degree or equivalent combination of education and work experience

Knowledge of industry cryptography standards such as ISO 11568 and 13491, ANSI X9.97, and NIST 140-2 Level 3

Strong understanding of PCI compliance, encryption, key management, PKI, HSMs, POI key-injection, physical security controls

Experience with security audits, risk assessments, and gap analyses

A commitment to your profession demonstrated by participation in industry events, seminars, blogs, and memberships in professional associations

Strong consulting skills with executive leadership and technical teams; ability to advise, challenge, and influence while building trust

Excellent written and verbal communication skills

Ability to lead and facilitate meetings with small and large groups

Strong customer service, stakeholder management, and project management skills

Ability to manage multiple initiatives and projects independently in a fast‑paced consulting environment

Hold certifications in the below categories

Information security certification: CISSP, CISM, ISO Lead 27001:2022 Lead Implementer

Audit certification: CISA, GSNA, ISO 27001:2022 Lead Auditor, IRCA ISMS Auditor or higher, IIA Certified Internal Auditor (CIA)

Willingness and ability to pursue P2PE-Assessor and/or QPA (PIN Assessor) certification

Bonus Points

Current or former PCI-QSA certification
Current or former P2PE certification
Current or former PIN certification

Why You’ll Want to Join Us

At Coalfire, you’ll find the support you need to thrive personally and professionally. In many cases, we provide a flexible work model that empowers you to choose when and where you’ll work most effectively – whether you’re at home or an office.

Regardless of location, you’ll experience a company that prioritizes connection and wellbeing and be part of a team where people care about each other and our communities. You’ll have opportunities to join employee resource groups, participate in in-person and virtual events, and more. And you’ll enjoy competitive perks and benefits to support you and your family, like paid parental leave, flexible time off, certification and training reimbursement, digital mental health and wellbeing support membership, and comprehensive insurance options.

At Coalfire, equal opportunity and pay equity is integral to the way we do business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Coalfire is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation to participate in the job application or interview process, contact our Human Resources team at HumanResourcesMB@coalfire.com.

Apply now

Please let Coalfire know you found this job on Himalayas. This helps us grow!

Apply now

About the job

Apply before

Jul 24, 2026

Posted on

May 25, 2026

Job type

Full Time

Experience level

Senior

Education

Bachelor degree

Experience

5 years minimum

Experience accepted in place of education

Location requirements

United Kingdom

Hiring timezones

United Kingdom +/- 0 hours

Browse similar jobs

Remote Senior PCI-Compliance Jobs Remote Full Time PCI-Compliance Jobs Remote Senior PCI-Compliance Jobs in United Kingdom Remote Full Time Jobs in United Kingdom Remote PCI-Compliance Jobs in United Kingdom

About Coalfire

Learn more about Coalfire and their company culture.

View company profile

Coalfire's customers operate in a world where cyber threats are constantly evolving and the security of their digital assets is paramount. Many organizations struggle to navigate the complex landscape of cybersecurity and compliance, facing challenges such as managing vulnerabilities, meeting stringent regulatory requirements like FedRAMP, PCI, HITRUST, ISO, SOC, and CMMC, and securing their cloud environments. This is why Coalfire provides a comprehensive suite of cybersecurity and compliance services, designed to help businesses avert threats, close security gaps, and effectively manage cyber risk. Our customers need to ensure their operations are secure and compliant so they can focus on their core business objectives and drive innovation. We partner with them to develop scalable security programs that not only improve their security posture but also fuel their continued success. Whether it's through independent and tailored advice, thorough assessments, technical testing, or cyber engineering services, Coalfire empowers clients to understand the vulnerabilities and threats their organization faces.

Our clients, which include Fortune 500 companies, cloud service providers, and organizations in sectors like technology, healthcare, finance, and retail, are looking for ways to simplify compliance, reduce risk, and keep their businesses secure. Coalfire addresses these needs by offering expert advisory for global Governance, Risk, and Compliance (GRC) frameworks, a range of cybersecurity services including penetration testing and threat and vulnerability management, and compliance automation through our proprietary platforms. We understand that for many, especially those migrating to or operating in the cloud, the journey can be complex. That's why we offer specialized services like our Accelerated Cloud Engineering (ACE) to help clients deploy FedRAMP-compliant environments efficiently. Our focus on DevSecOps platforms and services aims to integrate security into the development lifecycle, supporting numerous AppSec projects. By providing solutions and services to some of the largest hyperscale Cloud Service Providers and leading SaaS companies, we help our customers leverage security and compliance to their advantage, enabling them to innovate and differentiate themselves in the market.

Tech stack

Learn about the tools and technologies that Coalfire uses to build, market, and sell its products.

View tech stack

GitHub

GitLab

Box

Terraform

ELK

Splunk Enterprise

CrowdStrike

Kentico

Ansible

Smartsheet

Microsoft Excel

Coalfire employees can create an account to update this tech stack.

Apply now

Please let Coalfire know you found this job on Himalayas. This helps us grow!

Apply now