IT Security Engineer

PAX at a Glance

At PAX, you’ll work alongside a collaborative, forward-thinking team in a fast-paced environment where innovation is encouraged and ideas move quickly from concept to reality.

IT Security Engineer Job Summary:

We are seeking an experienced and hands-on Senior Information Security Engineer to lead vulnerability management, cloud security governance, and compliance-driven security control design across our AWS-based infrastructure.
This role goes beyond operational security monitoring. The ideal candidate must be capable of performing gap assessments against financial institution and regulatory requirements (including PCI-DSS), designing practical security control solutions, and working closely with system engineers to implement and validate those controls.
This individual will serve as the primary security owner for customer security reviews and external PCI-DSS audits.

This is an onsite role in our Jacksonville office working Monday – Friday, 9:00am to 6:00pm.

Email Us Your Resume and Contact Info to Apply

What You’ll Be Doing:

1. Vulnerability Management

  • Own and manage the end-to-end vulnerability management lifecycle
  • Perform risk-based vulnerability triage using CVSS and business context
  • Define remediation priorities and enforce SLA adherence
  • Manage exception processes and risk acceptance documentation
  • Conduct weekly vulnerability review meetings
  • Deliver executive-level vulnerability reporting and trend analysis

2. Security Control Design & Implementation

  • Perform security gap assessments against:
    • PCI-DSS requirements
    • Customer contractual security requirements
    • Internal security policies
    • Design practical and scalable security control solutions when gaps are identified
    • Translate compliance requirements into technical implementation plans
    • Develop remediation roadmaps with clear milestones
    • Work directly with system engineers to implement security controls
    • Validate and formally accept implemented controls
    • Ensure evidence collection meets audit standards
  • Examples of control areas include:
    • Access control and IAM hardening
    • Network segmentation and security group design
    • Logging and monitoring architecture
    • Patch and configuration management controls
    • Encryption and key management
    • Secure baseline configuration (CIS benchmarks)
    • Change management enforcement

3. AWS Cloud Security Governance

  • Define and maintain AWS security baselines
  • Continuously assess cloud security posture
  • Identify misconfigurations and reduce attack surface
  • Review public exposure risks
  • Strengthen identity and access management controls

4. Compliance & Audit Leadership

  • Act as primary security contact for customer security assessments
  • Lead preparation for external PCI-DSS audits
  • Coordinate internal teams to collect and validate audit evidence
  • Respond to customer security questionnaires
  • Track audit findings and drive remediation to closure
  • Maintain audit-ready documentation

5. Policy & Security

  • Develop and maintain security policies and standards
  • Improve the Vulnerability Management Program
  • Define security KPIs and metrics
  • Support incident investigations when required
  • Provide internal security guidance and training

What You’ll Need:

  • 5+ years of experience in Information Security or Cloud Security
  • Strong hands-on AWS security experience
  • Proven experience supporting PCI-DSS audits
  • Experience designing and implementing security controls
  • Experience performing gap assessments against regulatory standards
  • Deep understanding of vulnerability management processes
  • Strong knowledge of IAM, network security, encryption, and logging
  • Ability to independently lead audit discussions
  • Strong documentation and cross-team coordination skills

Preferred Qualifications (Nice to Have)

  • Experience securing on-premise infrastructure environments
  • Familiarity with hybrid cloud/on-prem security architectures
  • AWS Security Specialty certification
  • CISSP, CISM, or equivalent certifications
  • Experience in SOC 2 or ISO 27001 environments
  • Ability to communicate in Mandarin Chinese (to collaborate with China-based development teams)

Who We Are

PAX Technology is redefining the future of payments—and we’re looking for bold thinkers, builders, and innovators to join us.

As a global leader in payment solutions, we power millions of devices across 120+ countries, helping businesses deliver faster, smarter, and more seamless commerce experiences.

We’re not just building hardware—we’re building solutions. With a dynamic ecosystem of partners, cutting-edge technology, and a relentless focus on innovation, we’re transforming what’s possible in payments. If you’re ready to make an impact in a fast-moving, global tech environment, we want to hear from you.

Life at PAX

What can PAX do for you?

  • We offer comprehensive benefits packages including:
  • Medical, dental, vision, life, and AD&D insurance
  • Short & Long-term disability
  • 401(k) Plan
  • Paid vacation and paid holidays
  • Employee Assistance Program
  • Quarterly Stipend for team building activities

Ready to make an impact? Apply now and be part of what’s next in payments.

Email Us Your Resume and Contact Info to Apply

EEO Statement

PAX is an equal opportunity employer. All qualified applicants will receive consideration without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other protected characteristics. This policy applies to all terms and conditions of recruitment and employment.