Systems Engineer (PCI Vulnerability Mitigation)

Job Description

Job Description: Systems Engineer (PCI Vulnerability Mitigation) Position Overview: We are seeking a highly skilled Systems Engineer with experience in identifying, mitigating, and managing PCI DSS (Payment Card Industry Data Security Standard) related vulnerabilities. The ideal candidate will have a strong background in systems engineering, security best practices, and vulnerability management to ensure the protection of sensitive payment data across enterprise systems. Key Responsibilities: - Identify, assess, and remediate vulnerabilities across infrastructure, applications, and cloud environments. - Collaborate with Security, Infrastructure, and Development teams to prioritize and implement vulnerability remediation efforts. - Perform vulnerability scans, risk assessments, and penetration tests to identify PCI-related risks. - Analyze scan results from tools such as Qualys, Tenable, or similar to prioritize vulnerabilities based on risk impact. - Develop and maintain system hardening standards in alignment with PCI DSS and industry best practices. - Create and maintain technical documentation, including vulnerability remediation plans, system configurations, and security policies. - Support audit and compliance assessments by providing evidence of vulnerability management and patching efforts. - Automate patch management and vulnerability remediation processes using tools like Ansible, PowerShell, or Python. - Monitor emerging threats, vulnerabilities, and vendor security patches to proactively address potential risks. Required Skills and Qualifications: - Bachelor's degree in Computer Science, Information Technology, or a related field (or equivalent experience). - 3+ years of experience in systems engineering or vulnerability management with a focus on PCI DSS compliance. - Experience with vulnerability scanning tools such as Qualys, Tenable or Nessus. - Hands-on experience in patch management and system hardening across Windows, Linux, and cloud platforms. - Solid understanding of network protocols, firewalls, and secure system configurations. - Experience with SIEM tools and log analysis for identifying security incidents. - Scripting skills (PowerShell, Python, Bash) to automate security tasks. - Strong documentation and communication skills. Preferred Qualifications: - Relevant certifications such as CompTIA Security+, CISSP, or PCI Professional (PCIP). - Experience with cloud environments (AWS, Azure, GCP) and cloud security controls. - Knowledge of container security (Docker, Kubernetes). - Experience working in Agile or DevOps environments.