Information Security Consultant
CurrentAs an Information Security Consultant with ControlCase, My responsibilities mainly focus on the core business service of PCI DSS Compliance, which includes Auditing the Client environment and Reviewing the Security Controls as per PCI DSS requirements, GAP Assessment, providing remediation support and providing comprehensive reports on findings and action items to re-mediate/fix the identified gaps. In addition to the mentioned activities, the following assessments are carried out as part of the PCI DSS Audit assignments.- PCI DSS Scoping.- Network Architecture Review.- Firewall Rule-set Reviews and Hardening review as per PCI DSS.- Server, Database and Application Review as per PCI DSS.- Physical Security Review.- Logging, Incident Management, Security devices review.- Organizational Policy and Procedure review.- GAP Assessment and remediation support.- Initial and Re-Certification Audits.- Evidence Collection, Evidence review and Report on Compliance Preparation.