Description

About Us

Here at Baylor Scott & White Health we promote the well-being of all individuals, families, and communities. Baylor Scott and White is the largest not-for-profit healthcare system in Texas that empowers you to live well.

Our Core Values are:

• We serve faithfully by doing what's right with a joyful heart.
• We never settle by constantly striving for better.
• We are in it together by supporting one another and those we serve.
• We make an impact by taking initiative and delivering exceptional experience.

Benefits
Our benefits are designed to help you live well no matter where you are on your journey. For full details on coverage and eligibility, visit the Baylor Scott & White Benefits Hub to explore our offerings, which may include:

• Eligibility on day 1 for all benefits
• Dollar-for-dollar 401(k) match, up to 5%
• Debt-free tuition assistance, offering access to many no-cost and low-cost degrees, certificates and more
• Immediate access to time off benefits
• At Baylor Scott & White Health, your well-being is our top priority.

Note: Benefits may vary based on position type and/or level

Job Summary:

The PCI Security Analyst / Technical Engineer is responsible for supporting PCI DSS compliance initiatives from both a technical and operational perspective. This role involves conducting security assessments, implementing security controls, analyzing technical configurations, and supporting audits and compliance projects. The ideal candidate has experience as a former Qualified Security Assessor (QSA) or Internal Security Assessor (ISA) and possesses deep technical expertise in securing cardholder data environments (CDEs).

Salary: The pay range for this position is $41.97/hour ($87,297/year) for those with entry-level qualifications up to $72.62 ($151,0493) for those highly experienced. The specific rate will depend upon the successful candidate's specific qualifications and prior experience.

Key Responsibilities:

• Perform security assessments of systems, networks, and applications to ensure compliance with PCI DSS.
• Design, implement, and maintain security controls to protect payment card data.
• Conduct vulnerability scans, penetration testing, and security monitoring activities.
• Analyze system and network configurations to identify compliance gaps and security risks.
• Provide technical guidance on PCI DSS remediation efforts, working closely with IT and security teams.
• Develop and maintain security policies, procedures, and documentation related to PCI DSS.
• Collaborate with QSAs and internal teams during PCI DSS assessments and audits.
• Conduct root cause analysis for security incidents related to PCI DSS scope.
• Stay informed on the latest security threats, vulnerabilities, and industry trends affecting PCI compliance.

Belonging Statement
We believe that all people should feel welcomed, valued and supported, and that our workforce should be reflective of the communities we serve.

Preferred Qualifications:

• Bachelor's degree in Cybersecurity, Information Technology, or a related field.
• 5+ years of experience in security engineering, risk management, or compliance.
• Former QSA or ISA highly preferred.
• In-depth knowledge of PCI DSS requirements and security best practices.
• Strong technical expertise in firewalls, network security controls, encryption, and vulnerability management.
• Experience with security tools such as SIEM, IDS/IPS, vulnerability scanners, and endpoint protection.
• Certifications such as CISSP or Security+ required.
• Must pass the PCI ISA certification within 6 months of hire.
• Familiarity with CIS and NIST frameworks.
• Experience with P2PE, APIs, and payment technologies.
• Knowledge of EPIC systems, Clover POIs, and Ingenico devices.
• Excellent analytical, problem-solving, and communication skills.

Minimum Qualifications

• Bachelor's or 4 years of work experience above the minimum qualification
• 5 Years of Experience