Information Security Consultant, PCI Compliance (IT SCRTY ANL 4 TX)

#CA-PS
Reporting to the Deputy Chief Information Security Officer, the ISO Payment Card Industry Data Security Standard (PCI DSS) Compliance Consultant serves as a technical lead and subject matter expert, working with the UC Davis Merchant Support team in the UC Davis Controls and Accountability Unit, UC Davis Health technical and security personnel, qualified UC Davis Internal Security Assessors (ISAs), qualified external assessors (QSAs), IT and Security specialists, senior management, and Campus and UC Davis Health merchants to ensure all merchants are fully compliant with the PCI DSS year-round, and to complete the annual PCI DSS attestation through an external QSA audit company.

The Consultant leads and administers key aspects of the compliance program, including development of compliance standards and training of UC Davis employees who contribute to the overall program, analyzes complex compliance risks, monitors progress and alerts about potential challenges to compliance, and serves as a champion for evolving the program to ensure continued compliance as the PCI DSS evolves, and the complexity of compliance requirements increases. The Consultant serves both as the senior compliance assessor and as a mentor to others and provides strategic reporting and recommendations, monitors compliance and reports to senior management about its status.

This position provides the necessary oversight and program leadership to ensure ongoing compliance. Responsible for managing program requirements, guiding remediation efforts, and strengthening coordination across units that process payment card data, ensuring that compliance is maintained proactively and systematically.

Please note: To be considered for this position, candidates must already have authorization to work in the United States. Unfortunately, we are unable to provide visa sponsorship at this time

(In-State Only)

To see IET job postings, please visit

Apply By Date

6/10/2026 at 11:59pm

Qualifications

Minimum Qualifications - For full consideration, applicants are encouraged to upload license and/or certification if required of the position

• PCI DSS Internal Security Assessor (ISA) certification
• Bachelor's degree in a related area and/or equivalent experience/training.
• Minimum 3-4 years of experience working in information security, information technology, or risk management with a focus on PCI DSS compliance.
• Experience working with industry security standards, frameworks, regulations, and best practices. Experience writing and providing detailed status reports.
• Experience building and maintaining positive relationships and meeting client expectations with an emphasis on quality and timeliness of work.
• Experience managing and leading multiple projects under strict timelines in a demanding/dynamic environment, working with highly confidential information.
• Knowledge of information security fundamentals, risk management fundamentals and the PCI DSS.
• Written/verbal communication skills, interpersonal/collaborative skills, & ability to consult clients and communicate security/risk-related concepts to technical and non-technical audiences.

Preferred Qualifications

• Certified Information System Security Professional (CISSP), Certified Information System Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), or similar certification.
• Minimum 4 years of experience supporting information security activities and/or information risk management in a large organization.
• Experience in higher education, government, research, or the public sector.
• Experience conducting risk assessments and developing mitigation plans.
• Experience reviewing attestation reports (e.g., SOC 1/2), certifications, security testing reports, etc.
• Implementation level knowledge of information security standards and frameworks (e.g., ISO/IEC 27001/27002, PCI-DSS, NIST Cybersecurity Framework, FedRAMP, etc.)

Key Responsibilities

• 40% - PCI DSS Compliance and Information Security Consulting & Coordination
• 40% - Compliance Assessments
• 20% - Security Operations, Incident Response & Program Support

Department Overview

The Information Security Office (ISO), a division of Information & Educational Technology (IET), helps protect the confidentiality, availability, and integrity of UC Davis' information assets through consultation, services, and programs. The Information Security Consultant works with campus units to establish and maintain a strong and adaptive security posture and PCI DSS compliance that supports the mission of the University and protects the confidentiality and integrity of credit card information, and availability of merchant operations critical to UC Davis financial well being. This role strengthens the university's ability to proactively manage compliance obligations, reduce institutional risk, and ensure the continued secure processing of payment card transactions.

POSITION INFORMATION

• Salary or Pay Range: $102,400.00/yr. - $202,400.00/yr. (Budgeted salary range $140,000/yr - $165,000/yr commensurate with experience)

• Salary Frequency: Annual
• Salary Grade: STEPS
• UC Job Title: IT SCRTY ANL 4 TX
• UC Job Code: 006365
• Number of Positions: 1
• Appointment Type: Staff: Career
• Percentage of Time: 100% Fixed
• Shift (Work Schedule): M-F, 8-5pm. Other hours may be required
• Location: Davis/Hybrid In-State Only
• Union Representation: TX-Technical Professionals
• Benefits Eligible: Yes
• This position is hybrid (mix of on-site and remote work)

Benefits

Outstanding benefits and perks are among the many rewards of working for the University of California. UC Davis offers a full range of benefits, resources and programs to help you bring your best self to work, as well as to help you and your family achieve your health, wellness, financial and career goals. Learn more about the benefits below and eligibility rules by visiting either our handy or and our .

If you are represented by a union, benefits are negotiated between the University of California (UC) and your union and finalized in a contract. Read your bargaining unit's employment contract, stay abreast of current negotiations and learn about collective bargaining at UC: https://ucnet.universityofcalifornia.edu/labor/bargaining-units/index.html

• High quality and low-cost medical plans to choose from to fit your family's needs
• UC pays for Dental and Vision insurance premiums for you and your family
• Extensive leave benefits including Pregnancy and Parental Leave, Family & Medical Leave
• Paid Holidays annually as stipulated in the UC Davis Health Policies or Collective Bargaining Agreement
• Paid Time Off/Vacation/Sick Time as stipulated in the UC Davis Health Policies or Collective Bargaining Agreement
• Continuing Education (CE) allowance and Education Reimbursement Program as stipulated in the UC Davis Health Policies or Collective Bargaining Agreement
• Access to free professional development courses and learning opportunities for personal and professional growth
• WorkLife and Wellness programs and resources
• On-site Employee Assistance Program including access to free mental health services
• Supplemental insurance offered including additional life, short/long term disability, pet insurance and legal coverage
• Public Service Loan Forgiveness (PSFL) Qualified Employer & Student Loan Repayment Assistance Program for qualified roles
• Retirement benefit options for eligible roles including Pension and other Retirement Saving Plans. More information on our retirement benefits can be found

Physical Demands

• Standing - Occasional Up to 3 Hours
• Walking - Occasional Up to 3 Hours
• Sitting - Continuous 6 to 8+ Hours
• Lifting/Carrying 0-25 Lbs - Never 0 Hours
• Lifting/Carrying 26-50 lbs - Never 0 Hours
• Lifting/Carrying over 50 lbs - Never 0 Hours
• Pushing/Pulling 0-25 Lbs - Never 0 Hours
• Pushing/Pulling 26-50 lbs - Never 0 Hours
• Pushing/Pulling over 50 lbs - Never 0 Hours
• Bending/Stooping - Never 0 Hours
• Squatting/Kneeling - Never 0 Hours
• Twisting - Never 0 Hours
• Climbing (e.g., stairs or ladders) - Never 0 Hours
• Reaching overhead - Never 0 Hours
• Keyboard use/repetitive motion - Continuous 6 to 8+ Hours

Environmental Demands

• Chemicals, dust, gases, or fumes - Never 0 Hours
• Loud noise levels - Never 0 Hours
• Marked changes in humidity or temperature - Never 0 Hours
• Microwave/Radiation - Never 0 Hours
• Operating motor vehicles and/or equipment - Never 0 Hours
• Extreme Temperatures - Never 0 Hours
• Uneven Surfaces or Elevations - Never 0 Hours

Mental Demands

• Sustained attention and concentration - Frequent 3 to 6 Hours
• Complex problem solving/reasoning - Frequent 3 to 6 Hours
• Ability to organize & prioritize - Frequent 3 to 6 Hours
• Communication skills - Frequent 3 to 6 Hours
• Numerical skills - Occasional Up to 3 Hours
• Constant Interaction - Occasional Up to 3 Hours
• Customer/Patient Contact - Occasional Up to 3 Hours
• Multiple Concurrent Tasks - Frequent 3 to 6 Hours

Work Environment

Hire MUST be located in-state. (Out of state applicants will be considered but must relocate instate if hired).

UC Davis is a smoke and tobacco free campus effective January 1, 2014. Smoking, the use of smokeless tobacco products, and the use of unregulated nicotine products (e-cigarettes) will be strictly prohibited on any UC Davis owned or leased property, indoors and outdoors, including parking lots and residential space.

Occasionally work flexible, alternate, and/or extended hours including nights and weekends to address specific operational needs. Vacation is restricted during peak work periods. Occasional travel to locations on and off campus. Adhere to workplace safety practices, read inform