IHT Cyber Security Analyst IV (PCI Focus)

Job Title: IHT Cyber Security Analyst IV (PCI Focus)

Location: Boise, ID (Hybrid – 2–3 days onsite at Plaza 4)
Employment Type: 12-Month Contract (High likelihood of extension)
Start Date: ASAP
Work Authorization: Must be on Vendor W2 (No exceptions)
Compensation: Target ~$70/hr on W2

Role Overview

We are seeking a highly experienced and driven Cyber Security Analyst IV to take ownership of a critical, high-visibility PCI compliance initiative. This is a net-new role designed for a hands-on expert who can lead from the front—starting Day 1—by identifying gaps, building a roadmap, and driving execution.

This is not a passive compliance or audit-support role. We are looking for a true leader who has successfully driven PCI compliance programs end-to-end and can influence stakeholders, implement strategy, and elevate the organization’s security posture.

Key Responsibilities

• Act as a senior cybersecurity consultant, leading enterprise-wide initiatives to identify, assess, and mitigate security risks and gaps.
• Own and drive PCI compliance efforts, including initial gap analysis, roadmap development, and ongoing program maturity.
• Lead the development, enhancement, and implementation of security policies, standards, and SOPs.
• Conduct complex risk assessments, including third-party/vendor risk, and guide business leaders in risk-based decision-making.
• Take a lead role in security incident response, including investigation, resolution, and mentoring team members on advanced techniques.
• Oversee and optimize daily security operations, including monitoring tools, vulnerability management, and remediation strategies.
• Design and deliver security awareness and training programs across the organization.
• Evaluate emerging threats and technologies, driving continuous improvement and innovation in cybersecurity practices.
• Collaborate with Cyber Security Engineers, IT leadership, legal, and vendors to strengthen security frameworks and operational processes.
• Serve as a key liaison between technical teams and executive leadership, presenting insights and recommendations.
• Provide leadership and mentorship across projects, initiatives, and junior team members.

Primary Focus Areas

• PCI Compliance Leadership (Hands-on ownership, not advisory only)
• Gap Analysis & Remediation Planning
• Project Planning & Execution
• Stakeholder & Vendor Management
• Tooling Environment: Archer

Required Qualifications

• 8–12 years of experience in Cybersecurity, Information Security, or related fields
• Proven track record of DRIVING PCI compliance programs end-to-end
  • Note: Candidates with only audit/support experience will not be considered
• Strong experience in risk assessments, incident response, and security operations
• Demonstrated ability to work independently with high ownership and accountability
• Excellent documentation, organizational, and analytical skills
• Strong communication and presentation skills, including experience engaging with executive leadership

Preferred Qualifications

• Certifications such as QSA (Qualified Security Assessor) or ISA (Internal Security Assessor)
• Experience in Healthcare or regulated industries
• Familiarity with Archer or similar GRC tools