PCI Security Architect / InfoSec Engineer

About Us

Here at Baylor Scott & White Health we promote the well-being of all individuals, families, and communities. Baylor Scott and White is the largest not-for-profit healthcare system in Texas that empowers you to live well.

Our Core Values are:

• We serve faithfully by doing what's right with a joyful heart.
• We never settle by constantly striving for better.
• We are in it together by supporting one another and those we serve.
• We make an impact by taking initiative and delivering exceptional experience.

Benefits

Our benefits are designed to help you live well no matter where you are on your journey. For full details on coverage and eligibility, visit the Baylor Scott & White Benefits Hub to explore our offerings, which may include:

• Immediate eligibility for health and welfare benefits
• 401 (k) savings plan with dollar-for-dollar match up to 5%
• Tuition Reimbursement
• PTO accrual beginning Day 1Note: Benefits may vary based upon position type and/or level

Job Summary

The PCI Security Analyst / Technical Engineer is responsible for supporting PCI DSS compliance initiatives from both a technical and operational perspective. This role involves conducting security assessments, implementing security controls, analyzing technical configurations, and supporting audits and compliance projects. The ideal candidate has experience as a former Qualified Security Assessor (QSA) or Internal Security Assessor (ISA) and possesses deep technical expertise in securing cardholder data environments (CDEs).

Salary: The pay range for this position is $41.97/hour ($87,297/year) for those with entry-level qualifications up to $72.62 ($151,0493) for those highly experienced. The specific rate will depend upon the successful candidate's specific qualifications and prior experience.

Key Responsibilities

• Perform security assessments of systems, networks, and applications to ensure compliance with PCI DSS.
• Design, implement, and maintain security controls to protect payment card data.
• Conduct vulnerability scans, penetration testing, and security monitoring activities.
• Analyze system and network configurations to identify compliance gaps and security risks.
• Provide technical guidance on PCI DSS remediation efforts, working closely with IT and security teams.
• Develop and maintain security policies, procedures, and documentation related to PCI DSS.
• Collaborate with QSAs and internal teams during PCI DSS assessments and audits.
• Conduct root cause analysis for security incidents related to PCI DSS scope.
• Stay informed on the latest security threats, vulnerabilities, and industry trends affecting PCI compliance.

Belonging Statement

We believe that all people should feel welcomed, valued, and supported.

Preferred Qualifications

• Bachelor’s degree in Cybersecurity, Information Technology, or a related field.
• 5+ years of experience in security engineering, risk management, or compliance.
• Former QSA or ISA highly preferred.
• In-depth knowledge of PCI DSS requirements and security best practices.
• Strong technical expertise in firewalls, network security controls, encryption, and vulnerability management.
• Experience with security tools such as SIEM, IDS/IPS, vulnerability scanners, and endpoint protection.
• Certifications such as CISSP or Security+ required.
• Must pass the PCI ISA certification within 6 months of hire.
• Familiarity with CIS and NIST frameworks.
• Experience with P2PE, APIs, and payment technologies.
• Knowledge of EPIC systems, Clover POIs, and Ingenico devices.
• Excellent analytical, problem-solving, and communication skills.

Minimum Qualifications

• Bachelor's or 4 years of work experience above the minimum qualification
• 5 Years of Experience

As a health care system committed to improving the health of those we serve, we are asking our employees to model the same behaviours that we promote to our patients. As of January 1, 2012, Baylor Scott & White Health no longer hires individuals who use nicotine products. We are an equal opportunity employer committed to ensuring a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.