Description

*About Us* Here at Baylor Scott & White Health we promote the well-being of all individuals, families, and communities. Baylor Scott and White is the largest not-for-profit healthcare system in Texas that empowers you to live well. *Our Core Values are:* * We serve faithfully by doing what's right with a joyful heart. * We never settle by constantly striving for better. * We are in it together by supporting one another and those we serve. * We make an impact by taking initiative and delivering exceptional experience. *Benefits* Our benefits are designed to help you live well no matter where you are on your journey. For full details on coverage and eligibility, visit the Baylor Scott & White Benefits Hub to explore our offerings, which may include: * Eligibility on day 1 for all benefits * Dollar-for-dollar 401(k) match, up to 5% * Debt-free tuition assistance, offering access to many no-cost and low-cost degrees, certificates and more * Immediate access to time off benefits * At Baylor Scott & White Health, your well-being is our top priority. Note: Benefits may vary based on position type and/or level *Job Summary*: The PCI Security Analyst / Technical Engineer is responsible for supporting PCI DSS compliance initiatives from both a technical and operational perspective. This role involves conducting security assessments, implementing security controls, analyzing technical configurations, and supporting audits and compliance projects. The ideal candidate has experience as a former Qualified Security Assessor (QSA) or Internal Security Assessor (ISA) and possesses deep technical expertise in securing cardholder data environments (CDEs). *Salary: *The pay range for this position is $41.97/hour ($87,297/year) for those with entry-level qualifications up to $72.62 ($151,0493) for those highly experienced. The specific rate will depend upon the successful candidate's specific qualifications and prior experience. *Key Responsibilities:* * Perform security assessments of systems, networks, and applications to ensure compliance with PCI DSS. * Design, implement, and maintain security controls to protect payment card data. * Conduct vulnerability scans, penetration testing, and security monitoring activities. * Analyze system and network configurations to identify compliance gaps and security risks. * Provide technical guidance on PCI DSS remediation efforts, working closely with IT and security teams. * Develop and maintain security policies, procedures, and documentation related to PCI DSS. * Collaborate with QSAs and internal teams during PCI DSS assessments and audits. * Conduct root cause analysis for security incidents related to PCI DSS scope. * Stay informed on the latest security threats, vulnerabilities, and industry trends affecting PCI compliance. *Belonging Statement* We believe that all people should feel welcomed, valued and supported, and that our workforce should be reflective of the communities we serve. *Preferred Qualifications:* * Bachelor's degree in Cybersecurity, Information Technology, or a related field. * 5+ years of experience in security engineering, risk management, or compliance. * Former QSA or ISA highly preferred. * In-depth knowledge of PCI DSS requirements and security best practices. * Strong technical expertise in firewalls, network security controls, encryption, and vulnerability management. * Experience with security tools such as SIEM, IDS/IPS, vulnerability scanners, and endpoint protection. * Certifications such as CISSP or Security+ required. * Must pass the PCI ISA certification within 6 months of hire. * Familiarity with CIS and NIST frameworks. * Experience with P2PE, APIs, and payment technologies. * Knowledge of EPIC systems, Clover POIs, and Ingenico devices. * Excellent analytical, problem-solving, and communication skills. *Minimum Qualifications* * Bachelor's or 4 years of work experience above the minimum qualification * 5 Years of Experience