Senior Security Certifications Expert

This is Adyen

Adyen provides payments, data, and financial products in a single solution for customers like Meta, Uber, H&M, and Microsoft - making us the financial technology platform of choice. At Adyen, everything we do is engineered for ambition. 

For our teams, we create an environment with opportunities for our people to succeed, backed by the culture and support to ensure they are enabled to truly own their careers. We are motivated individuals who tackle unique technical challenges at scale and solve them as a team. Together, we deliver innovative and ethical solutions that help businesses achieve their ambitions faster.

Senior Security Certifications Expert

We are looking for a highly proactive and organized Senior Security Certifications Expert to join our In-Person-Payments (IPP) Security & Certifications team. Adyen's In-Person Payments platform is one of the most complex payment infrastructures in the world, processing billions of euros annually across tens of thousands of merchant locations globally. The Payment Solution is the engine behind it all, governing the payment processing, certified hardware, and the software that keeps every transaction compliant, secure, and trusted by global payment schemes. The IPP Security & Certifications team is the function that keeps this infrastructure compliant, certified, and trusted by global payment schemes. 

This is a high-stakes, high-autonomy role where you will take genuine ownership of the PCI certification portfolio that underpins this infrastructure. Your success will not be measured by writing code or implementing fixes, but rather defined by knowing the landscape better than anyone in the room, aligning the right stakeholders, and ensuring nothing falls through the cracks. If you treat a compliance deadline as a problem to solve six months in advance, and can walk an engineering team through a PCI requirement and a QSA through an engineering decision with equal confidence — this role was built for you.

What you’ll do

• Lead the process: Take central ownership of PCI Certifications for our Payments Solution, encompassing DSS, PIN/KMO, P2PE, PTS, MPoC, and SSF.
• Manage the portfolio: Maintain a comprehensive, up-to-date inventory of all PCI certifications across hardware devices, software applications, and solution-level certifications.
• Plan proactively: Track expiry dates, re-evaluation windows, and delta certification triggers. Anticipate deadlines, engage leadership, and ensure engineering teams are prepared well in advance of audit cycles.
• Collaborate with assessors: Act as the primary point of contact with QSAs and external assessors, managing timelines, preparing assessment materials, coordinating interviews, and navigating follow-up inquiries.
• Partner with Engineering: Join vulnerability analysis and threat modeling sessions to provide practical, compliance-informed security guidance to engineers. Translate compliance requirements into actionable engineering tasks without slowing down the development lifecycle.
• Maintain documentation: Take full ownership of all security documentation required for assessments (asset inventories, threat models, data flow diagrams, etc.), ensuring audit readiness year-round.
• Engage with the industry: Represent Adyen at PCI SSC working groups and industry forums, contributing to the development of standards that will shape the future of payment security.

Who you are

• You have deep subject matter expertise in PCI frameworks and standards such as DSS, PIN/KMO, P2PE, PTS-POI, MPoC, SSF.
• You have a proven track record of orchestrating complex compliance pipelines, juggling multiple certifications, deadlines, and external assessors simultaneously.
• You are technically fluent enough to sit with hardware and software engineers, understand what they are building, and give them compliance guidance that is actually useful.
• You build trust on both sides: QSAs trust you because you are organized and prepared; engineers trust you because you make their lives easier.
• You operate with high autonomy. You do not need to be chased for updates and you do not wait for deadlines to appear before acting.
• You are a strong communicator who can clearly present complex compliance concepts to technical and non-technical audiences alike.
• PCI ISA certification is a strong advantage, though not a requirement for this role.

Why this role

The certifications you manage directly determine what Adyen can build, what it can sell, and where it can operate. This is not a compliance support function, it is a critical ownership role at the center of Adyen's most sensitive and heavily regulated payment infrastructure. The work is real, the ownership is genuine, and the impact is measurable.

Our Diversity, Equity and Inclusion commitments 

Our unique approach is a product of our diverse perspectives. This diversity of backgrounds and cultures is essential in helping us maintain our momentum. Our business and technical challenges are unique, and we need as many different voices as possible to join us in solving them - voices like yours. No matter who you are or where you’re from, we welcome you to be your true self at Adyen. 

Studies show that women and members of underrepresented communities apply for jobs only if they meet 100% of the qualifications. Does this sound like you? If so, Adyen encourages you to reconsider and apply. We look forward to your application!

What’s next?

Ensuring a smooth and enjoyable candidate experience is critical for us. We aim to get back to you regarding your application within 5 business days. Our interview process tends to take about 4 weeks to complete, but may fluctuate depending on the role. Learn more about our hiring process here. Don’t be afraid to let us know if you need more flexibility.

This role is based out of our Amsterdam office. We are an office-first company and value in-person collaboration; we do not offer remote-only roles.