PCI Compliance Officer
UTAH STATE UNIVERSITY
LOGAN, UT
Apply
JOB DETAILS
LOCATION
LOGAN, UT
POSTED
30+ days ago
Requisition ID: 2025-9291
# of Openings: 1
Location: US-UT-Logan
Category: Information Technology
Position Type: Benefited Full-Time
Job Classification: Exempt
College: Finance and Administrative Service
Department: Controllers Office
Advertised Salary: Commensurate with experience, plus excellent benefits
Overview
Utah State University is seeking an experienced PCI Compliance Officer to oversee and coordinate adherence to Payment Card Industry Data Security Standard (PCI DSS) requirements across all payment environments. This critical role ensures the protection of cardholder data and institutional reputation by leading efforts to meet rigorous PCI DSS compliance standards across diverse business functions.
This role will provide ecommerce solutions, merchant services, and payment card compliance support to an ever-expanding University community. Utah State University has payment sites that serve student services, clinical services, donations, product sales, and various auxiliary areas across campus. The position supports and advances the goals of USU's Information Security Policy and broader institutional Information Security Program through collaboration with the Chief Information Security Officer (CISO) and the University's IT and security staff.
Responsibilities
* PCI DSS Governance and Coordination
* Lead and coordinate USU's PCI compliance program and serve as chair of the campus-wide PCI Compliance Committee.
* Lead the PCI Committee through evaluation and approval of new merchant requests, third-party payment processors, gateways, and vendors for compliance.
* Ensure that departments handling payment card transactions understand and apply PCI DSS requirements.
* Maintain a centralized inventory of merchant IDs, credit card terminals, gateways, third-party processors, and ecommerce websites.
* Develop and implement security policies, standards, and best practices related to cardholder data protection.
* Create and oversee a chargeback administration process
* Risk Assessment and Continuous Improvement
* Conduct periodic PCI DSS risk assessments and compliance gap analysis.
* Track and coordinate remediation efforts for non-compliance or risk issues.
* Maintain compliance records and evidence for audits and support audit activities from internal and external parties.
* Technical Security and Vendor Oversight
* Partner with IT teams to ensure cardholder data environments are securely designed and maintained (e.g., segmentation, tokenization, encryption).
* Review and manage third-party service providers and payment processors compliance documentation including responsibility matrixes, Self-Assessment Questionnaires (SAQs), Reports on Compliance (ROCs), and Attestations of Compliance (AOCs).
* Participate in the incident response process for payment-related security events.
* Policy, Training and Campus Engagement
* Create and maintain training to educate staff on payment acceptance responsibilities, risks, and best practices to ensure PCI DSS compliance.
* Promote and enforce PCI-related policies and procedures align with USU's Policy 5200.
* Participate in RFP requirements, vendor evaluations, and project... For full info follow application link.
USU recognizes and values the importance of diversity and inclusion in enriching the employment experience of its employees and in supporting the university's academic mission of learning, discovery, and engagement. USU is an Equal Opportunity employer and does not discriminate in any of its programs and activities based on race, color, religion, sex, national origin, age, genetic i
nformation, sexual orientation or gender identity/expression, disability, status as a protected veteran, or any other status protected by University policy or local, state, or federal law (https://equity.usu.edu/non-discriminati n).
About the Company
U