PCI Compliance Program Manager

About Us

Here at Baylor Scott & White Health we promote the well-being of all individuals, families, and communities. Baylor Scott and White is the largest not-for-profit healthcare system in Texas that empowers you to live well.

• We serve faithfully by doing what's right with a joyful heart.
• We never settle by constantly striving for better.
• We are in it together by supporting one another and those we serve.
• We make an impact by taking initiative and delivering exceptional experience.

Our benefits are designed to help you live well no matter where you are on your journey. For full details on coverage and eligibility, visit the Baylor Scott & White Benefits Hub to explore our offerings, which may include:

• Immediate eligibility for health and welfare benefits
• 401 (k) savings plan with dollar-for-dollar match up to 5%
• Tuition Reimbursement
• PTO accrual beginning Day 1
  
  Note:
  
  Benefits may vary based upon position type and/or level

The PCI Compliance Program Manager is responsible for leading the organization’s Payment Card Industry Data Security Standard (PCI DSS) compliance efforts. This role requires a strategic approach to compliance management, ensuring that PCI DSS controls are effectively implemented, maintained, and continuously improved. The Program Manager collaborates with various internal and external stakeholders to uphold the security of payment card data, drive risk mitigation initiatives, and align compliance efforts with broader information security objectives.

The pay range for this position is $48.72/hour ($101,3372/year) for those with entry-level qualifications up to $84.42 ($175,593) for those highly experienced. The specific rate will depend upon the successful candidate's specific qualifications and prior experience.

• Perform security assessments of systems, networks, and applications to ensure compliance with PCI DSS.
• Design, implement, and maintain security controls to protect payment card data.
• Conduct vulnerability scans, penetration testing, and security monitoring activities.
• Analyze system and network configurations to identify compliance gaps and security risks.
• Provide technical guidance on PCI DSS remediation efforts, working closely with IT and security teams.
• Develop and maintain security policies, procedures, and documentation related to PCI DSS.
• Collaborate with QSAs and internal teams during PCI DSS assessments and audits.
• Conduct root cause analysis for security incidents related to PCI DSS scope.
• Stay informed on the latest security threats, vulnerabilities, and industry trends affecting PCI compliance.

We believe that all people should feel welcomed, valued, and supported.

• Bachelor’s degree in Information Security, IT, Business, or a related field.
• 7+ years of experience in compliance, risk management, or IT security, with a strong focus on PCI DSS.
• PMP certification preferred, in addition to experience managing enterprise-wide compliance initiatives.
• Strong understanding of security frameworks, including NIST, CIS, and PCI DSS.
• Certifications such as PCI Professional (PCIP), Certified Information Systems Security Professional (CISSP), or Security+ preferred.
• Must pass the PCI ISA certification within 6 months of hire.
• Experience in a healthcare environment, including EPIC systems.
• Familiarity with retail operations, payment technologies, and point-of-sale (POS) systems.
• Excellent project management, leadership, and communication skills.
• Ability to work cross‑functionally in a fast‑paced, regulated environment.

• Bachelor's or 4 years of work experience above the minimum qualification5 Years of Experience

As a health care system committed to improving the health of those we serve, we are asking our employees to model the same behaviours that we promote to our patients. As of January 1, 2012, Baylor Scott & White Health no longer hires individuals who use nicotine products. We are an equal opportunity employer committed to ensuring a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.