← all jobs

[Remote] Sr. GRC/PCI Compliance Analyst

Work from home Full-time role Hiring

Note: The job is a remote job and is open to candidates in USA. Direct Travel is a leading provider of corporate travel management services, and they are seeking a detail-oriented GRC / PCI Compliance Analyst to support achieving PCI DSS Level 1 Service Provider compliance. The role involves driving control implementation, documentation, and audit readiness across the organization, ensuring that controls are designed, documented, validated, and audit-ready.

Responsibilities

  • Support the implementation and operationalization of PCI DSS v4.0 controls across infrastructure, applications, and business processes
  • Partner with control owners to ensure requirements are clearly understood and effectively implemented
  • Track control status, gaps, and remediation progress
  • Develop and maintain: Policies, standards, and procedures aligned to PCI DSS Control narratives and process documentation Evidence artifacts required for audit Build and manage a centralized evidence repository mapped to PCI requirements. Ensure all documentation is accurate, complete, and audit-defensible
  • Prepare the organization for PCI assessment by: Validating control implementation Conducting internal readiness reviews Identifying and remediating documentation gaps Support the QSA audit process, including: Responding to evidence requests Coordinating interviews and walkthroughs Tracking audit findings and follow-ups
  • Assist in maintaining: Data flow diagrams System inventories Cardholder Data Environment (CDE) documentation Map controls to PCI DSS requirements and ensure traceability between: Requirements Controls Evidence
  • Support PCI gap assessments across systems, applications, and vendors. Track and manage remediation items, ensuring timely closure. Identify control weaknesses and escalate risks to the Program Director
  • Work closely with: IT / Security Business and Operations teams Application Development teams Legal / Compliance / Risk Ensure alignment between technical implementation and compliance requirements
  • Support documentation and validation of scope reduction initiatives, including: Tokenization implementations Segmentation strategies Ensure evidence clearly demonstrates reduction of PCI scope and removal of PAN from systems where applicable

Skills

  • Bachelor's degree in Computer Science, Information Technology, or a related field or equivalent experience
  • 5+ years of experience in GRC, compliance, or information security
  • Hands-on experience supporting PCI DSS audits or compliance programs
  • Strong understanding of PCI DSS requirements and control structure
  • Control documentation and evidence expectations
  • Experience managing audit evidence and documentation repositories
  • Strong organizational skills with high attention to detail
  • Experience supporting a PCI DSS ROC (merchant or service provider)
  • ISA (Internal Security Assessor) certification
  • Experience with GRC tools (e.g., OneTrust (preferred), Archer, ServiceNow GRC)
  • Audit/evidence management platforms
  • Familiarity with ISO 27001
  • SOC 1 / SOC 2
  • GDPR or data privacy frameworks

Benefits

  • Medical, Dental, and Vision benefits
  • Employee rewards and recognitions program
  • Total Rewards Package which includes Wellness, Sustainability, DE&I initiatives, and Mental Health Support

Company Overview

  • Direct Travel is a leading provider of corporate travel management services. It was founded in 1984, and is headquartered in Atlanta, Georgia, USA, with a workforce of 1001-5000 employees. Its website is https://www.dt.com/gitravel/.

Apply To This Job

More open positions

Governance, Risk & Compliance (GRC) Analyst | Information Security | Phoenix AZ Hybrid | Arizona State Agency | Contract to Hire

Work from home Full-time role

GRC Architect -Remote

Work from home Full-time role

Senior GRC Security Analyst (remote)

Work from home Full-time role

GRC Analyst Remote (US)

Work from home Full-time role

GRC Analyst at Suzy Remote

Work from home Full-time role

Site Reliability Engineer

Work from home Full-time role

ASAP Opening: Remote Special Education Teacher | Weekly Pay

Work from home Full-time role

[Remote] Business Development Executive - NY

Work from home Full-time role

Remote Data Entry Specialist – Virtual Home‑Based Position with careerzynith – Competitive Salary, Flexible Hours, Career Growth

Work from home Full-time role

Entry-Level Online Chat Specialist – Real‑Time Customer Engagement & Support for careerzynith

Work from home Full-time role

[Remote] Technical Account Manager

Work from home Full-time role

SDET Engineer (Remote)

Work from home Full-time role

Care Coordinator, Care Anywhere (Remote AZ, CA, NV | Bilingual Spanish | Medical Assistant)

Work from home Full-time role

Investment Banking & Investment Analyst; Remote

Work from home Full-time role

Data Entry Specialist - Apple Inc (Remote, Entry Level/No Experience)

Work from home Full-time role

Experienced Entry Level Customer Engagement Assistant – Remote Opportunity for Career Growth and Development

Work from home Full-time role

Immediate Hiring: Bilingual Healthcare Customer Service Representative - Spanish-English - Remote USA at careerzynith

Work from home Full-time role

[Remote] Inside Sales Representative II- Canada Government

Work from home Full-time role

Transitions Manager

Work from home Full-time role

Experienced Full Stack Customer Service Representative – Remote Call Center Operations at careerzynith

Work from home Full-time role

[Remote] RAC System Design Engineer (Mechanical)

Work from home Full-time role