Security Manager – IT Risk & PCI

Patterson isnt just a place to work its a partner that cares about your success.

One of the distinguishing marks of our company is the talented people who embrace the people-first always advancing and results-driven culture. Professional growth abounds in this motivating environment. We value the diverse talents and experiences our employees bring to Patterson and believe that they build a stronger and successful organization.

As the Security Manager IT Risk & PCI Compliance you will lead a team and provide hands-on leadership and strategic execution across the organizations information security compliance and risk programs. This essential role is responsible for driving consistent scalable execution of regulatory and assurance activities with a primary focus on PCI DSS merchant and payment product security policy and control governance and audit readiness.

This position partners closely with the Security Program Director broader security team Technology Finance Legal Regulatory Compliance Internal Audit and business stakeholders to translate regulatory and controls requirements into operational processes that support the business while protecting sensitive information. The Manager plays a critical role in ensuring compliance programs are sustainable well-documented and integrated into day-to-day operations.

Essential Functions

To perform this job successfully an employee must be able to perform each essential function satisfactorily with or without reasonable accommodation. To request a reasonable accommodation notify Human Resources or the manager who oversees the position.

• Manage and lead execution of the PCI DSS compliance program including annual scoping assessments remediation tracking and ongoing compliance for Patterson business entities and payment environments.

• Perform PCI security reviews for Patterson products and merchant-facing solutions ensuring required controls are designed implemented and operating effectively (e.g. payment service providers payment platforms and solutions merchant services).

• Serve as the primary point of coordination with external assessors auditors and payment stakeholders including support for merchant auditing and payment-related compliance activities.

• Own and maintain security policies standards and procedures ensuring alignment with PCI DSS NIST CSF ISO SOX ITGC and applicable regulatory requirements.

• Translate regulatory audit and product security requirements into operational controls and workflows partnering with Technology and business teams to embed compliance into system design and operations.

• Ensure audit readiness and evidence integrity by maintaining clear documentation control ownership and tracking within GRC tooling (e.g. Vanta ServiceNow) and driving remediation through closure.

• Accountable for setting goals performance development source developmental opportunities and provide long-term career guidance to team members

• Support hiring onboarding and development of team members as the program scales including delegation of execution-focused work.

Additional functions

In addition to the essential functions listed above the incumbent may perform the following additional functions.

• Provide day-to-day leadership guidance and mentoring to analysts and contract resources supporting compliance and audit activities.

• Contribute to cross-functional risk management activities including issue tracking risk acceptance support and alignment with enterprise risk processes.

• Support third-party security and vendor risk activities related to PCI-relevant vendors and payment partners.

• Develop and deliver compliance metrics status reporting and audit-readiness views for leadership and executive stakeholders.

Required Qualifications

• Bachelorsor MastersDegree with an emphasis in security technology or engineering or equivalent work experience

• At least6yearswork experience in information technology cyber security or information security

• At least3years of experience coaching mentoring and developing a team of people as a manager of people

• Demonstrated experience owning information security compliance programs including supporting policies standards and procedures to execute maintain and align controls to organizational needs and frameworks

• Demonstrated continuous improvement mindset with experience designing and evolving security compliance and audit workflows including leveraging GRC platforms (e.g. Vanta) to build and maintain scalable controls

Preferred Qualifications

• PCI Internal Security Assessor (ISA) (strongly preferred)

• CISSP (preferred)

Whats In It For You:

We provide competitive benefits unique incentive programs and rewards for our eligible employees:

• Full Medical Dental and Vision benefits and an integrated Wellness Program

• 401(k) Match Retirement Savings Plan

• Paid Time Off (PTO)

• Holiday Pay & Floating Holidays

• Volunteer Time Off (VTO)

• Educational Assistance Program

• Full Paid Parental and Adoption Leave

• LifeWorks (Employee Assistance Program)

• Patterson Perks Program

The potential compensation range for this role is below. The final offer amount could exceed this range based on various factors such as candidate location (geographical labor market) experience and skills.

EEO Statement

Patterson provides equal employment opportunities to applicants and employees without regard to race; color; sex; gender identity; sexual orientation; religious practices and observances; national origin; pregnancy childbirth or other related medical conditions; status as a protected veteran or spouse/family member of a protected veteran; or disability.