1 to 25 of 263 PCI DSS Jobs

IT Security Architect - PCI DSS - Manchester An IT Security Architect with a PCI DSS & cloud background (AWS, GCP OR Azure) is required to join our global client's new UK cybersecurity team. The role is to lead the design and implementation of PCI DSS architecture on a global scale from their head office in … central Manchester. Skills & Experience Required: 5+ years of experience working in Cyber Security, PCI DSS within a cloud environment Have good Security architecture experience, ideally with a DevSecOps environment Excellent experience with PCI DSS and able to lead design Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and … standards such as GDPR, ISO, PCI, and NIST Confidence when speaking with stakeholders and clients Ideally, some relevant cybersecurity certifications - CISSP, CCSP, CISM etc Key Responsibilities: Lead the design and implementation of PCI DSS architectures, ensuring compliance with the highest security standards. Design and create secure Enterprise-Grade Architectures Across Cloud, Hybrid, and On-Prem Environments Conduct More ❯

GRC Specialist - PCI-DSS - Manchester We're seeking an experienced GRC Specialist with excellent cyber security, GRC & PCI-DSS payments experience to join our client's growing Cyber Security team. They need somebody who has excellent knowledge in PCI-DSS along with good governance, risk and compliance experience and familiarity with other standards. Experience … Required: At least 2-3 years in a Cyber security & GRC role Be a PCI-DSS expert around payments ISO 27001and GDPR Knowledge of Risk Management, including risk identification, assessment, and mitigation techniques Good experience around Audits and compliance Any penetration testing experience would be a bonus You'll work closely with both internal and external stakeholders across … UK based headquarters in Manchester, so it is a great time to join a global company that is going from strength to strength. Responsibilities Cyber Governance & Frameworks within a PCI-DSS environment Develop, maintain, and evolve the cyber governance and compliance framework. Define and manage information and cyber security policies, standards, and procedures. Ensure alignment with ISO More ❯

Lead Cyber Security Risk Consultant - PCI-DSS - Manchester We're seeking a strong Lead Cyber Security Risk Consultant with excellent cyber security, GRC & PCI-DSS payments experience to join our client's growing Cyber Security team. They need somebody who has excellent knowledge in PCI-DSS, ideally the subject matter expert, along with good … governance, risk and compliance experience Experience Required: At least 5 years in a Cyber security & GRC role, at Senior, lead or manager level. Be a PCI-DSS expert around payments ISO 27001and GDPR Knowledge of Risk Management, including risk identification, assessment, and mitigation techniques Good experience around Audits and compliance Any penetration testing experience would be a bonus … UK based headquarters in Manchester, so it is a great time to join a global company that is going from strength to strength. Responsibilities Cyber Governance & Frameworks within a PCI-DSS environment Develop, maintain, and evolve the cyber governance and compliance framework. Define and manage information and cyber security policies, standards, and procedures. Ensure alignment with ISO More ❯

hands on CISO or Security Director ready to lead, standardize, and scale the entire security posture for a hyper growth, globally expanding FinTech? Can you urgently drive mission critical PCI DSS compliance across multiple international environments while integrating disparate security practices from recent acquisitions? A high growth global FinTech, founded 4 years ago and backed by a major … function. This is a critical leadership role reporting to the executive team, demanding a candidate who can balance strategic vision with technical delivery. CISO Core Responsibilities: Mission-Critical Compliance (PCI DSS): Urgently own and successfully complete the certification for the third PCI DSS environment, ensuring continuous compliance across all card touching payments infrastructure. Security Strategy & Standardization … response activities and provide high level reporting on operational risk to the executive team and board. CISO Must Have Experience: Payments Security (Card Touching): Mandatory hands on experience in PCI DSS environments and security engineering for payments infrastructure, specifically dealing directly with card processing (not just merchant or wallet solutions). Technical Acumen: Proven ability to operate at More ❯

AD), Windows Server environments, and authentication solutions. Plan for scalability, redundancy, and high availability to support future growth. IT Security & Compliance: Ensure compliance with security and regulatory standards, including PCI DSS, Cyber Essentials+, DORA, and ISO 27001. Implement and enforce security best practices across infrastructure automation and cloud environments. Maintain accurate compliance documentation, including PCI DSS scope records and security policies. Secure high-value and high-risk data, such as cardholder (PCI) and personally identifiable information (PII). Cloud & Automation (these tools and skills will be taught): Implement and manage Infrastructure as Code (IaC) for cloud and on-premises environments. Learn how to automate configuration management, infrastructure provisioning, and application deployment. Configure and maintain … essential. Desirable (but not required) experience: Some interest in learning and using automation tools such as Azure DevOps, Terraform, Node-Red, Packer. Proven ability to secure high-value data (PCI cardholder data, PII) and implement security best practices. Scripting and automation skills (PowerShell, Python, Bash, or similar). Ability to design, implement, and maintain CI/CD pipelines for More ❯

with a Glasgow-based client who are looking for an Information Security Manager to harden their security posture, manage risk appetite, strengthen their GRC policies & controls focusing heavily on PCI-DSS & ISO27001, and manage their MSSP and a small team from a technical cyber perspective.The ideal candidate will have worked autonomously across these spaces previously. This role does … Doing: Assisting the Head of IT with developing the scope for ISO27001 certificationAchieving ISO27001 certification further down the lineCoordinating the client's efforts to achieve/maintain compliance with PCI-DSS and NIS. Leading a small but growing information security function. Liaising with the managed service security provider from a policy improvement and managed detection and response perspective. … strategy, making suggestions aligned with industry best-practice drawn from practical experience and security frameworks What I'm Looking For: Experience maintaining and developing security compliance in line with PCI-DSS and ISO27001. Experience working in an Information Security function in a managerial/mentorship capacity. Practical knowledge of PCI-DSS, ISO27001 and NIST.Experience implementing and More ❯

with a Glasgow-based client who are looking for an Information Security Manager to harden their security posture, manage risk appetite, strengthen their GRC policies & controls focusing heavily on PCI-DSS & ISO27001, and manage their MSSP and a small team from a technical cyber perspective. The ideal candidate will have worked autonomously across these spaces previously. This role … the Head of IT with developing the scope for ISO27001 certification Achieving ISO27001 certification further down the line Coordinating the client's efforts to achieve/maintain compliance with PCI-DSS and NIS. Leading a small but growing information security function. Liaising with the managed service security provider from a policy improvement and managed detection and response perspective. … strategy, making suggestions aligned with industry best-practice drawn from practical experience and security frameworks What I'm Looking For: Experience maintaining and developing security compliance in line with PCI-DSS and ISO27001. Experience working in an Information Security function in a managerial/mentorship capacity. Practical knowledge of PCI-DSS, ISO27001 and NIST. Experience implementing More ❯

office I'm looking for an Information Security Manager to work for a Glasgow-based client who are looking to harden their GRC policies and controls focusing heavily on PCI-DSS and ISO27001. This is a GRC-led leadership position and is integral to this organisation's ongoing information security journey. The ideal candidate will have worked autonomously … the Head of IT with developing the scope for ISO27001 certification Achieving ISO27001 certification further down the line Coordinating the client's efforts to achieve/maintain compliance with PCI-DSS and NIS. Leading a small but growing information security function. Liaising with the managed service security provider from a policy improvement perspective. Developing, enhancing and creating security … strategy, making suggestions aligned with industry best-practice drawn from practical experience and security frameworks What I'm Looking For: Experience maintaining and developing security compliance in line with PCI-DSS and ISO27001. Experience working in an Information Security function in a managerial/mentorship capacity. Practical knowledge of PCI-DSS, ISO27001 and NIST. Experience implementing More ❯

own the strategic and operational delivery of all information and cyber security activities. You'll develop and implement robust security policies, oversee incident response, and ensure compliance with GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus. You will be the single point of accountability for all security matters, reporting directly to the executive team and influencing critical … projects, platforms, data flows, and product development. Lead enterprise-wide information, cyber, and data security governance. Define and implement security frameworks, policies, and operating models. Ensure compliance with GDPR, PCI DSS, Cyber Essentials Plus, and ISO/IEC 27001:2022 aligned practices. Lead Data Protection Impact Assessments (DPIAs), data mapping, classification, and retention programs. Oversee incident response, vulnerability … Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure, AWS), on-premise networks, and hybrid architectures. Strong experience in Zero Trust security models. Experienced in More ❯

own the strategic and operational delivery of all information and cyber security activities. You'll develop and implement robust security policies, oversee incident response, and ensure compliance with GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus. You will be the single point of accountability for all security matters, reporting directly to the executive team and influencing critical … projects, platforms, data flows, and product development. Lead enterprise-wide information, cyber, and data security governance. Define and implement security frameworks, policies, and operating models. Ensure compliance with GDPR, PCI DSS, Cyber Essentials Plus, and ISO/IEC 27001:2022 aligned practices. Lead Data Protection Impact Assessments (DPIAs), data mapping, classification, and retention programs. Oversee incident response, vulnerability … Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure, AWS), on-premise networks, and hybrid architectures. Strong experience in Zero Trust security models. Experienced in More ❯

regulatory compliance oversight. The ideal candidate will establish and maintain security standards across the product portfolio, oversee secure system environments, and act as the primary contact for ISO 27001, PCI DSS, and GDPR compliance. Additionally, this role will support our commercial teams by contributing to tender responses and ensuring client security assurance. The Company: They are a technology … management and penetration testing programs. Maintain strong identity, access, and privilege management controls. Compliance & Assurance (30%) Manage and maintain ISO 27001 certification and audit processes. Ensure ongoing compliance with PCI DSS for payment-related systems. Oversee GDPR compliance across products, services, and internal operations. Complete HECVAT assessments and respond to security questionnaires for higher education tenders. Support sales … SaaS or cloud environments (ISV or B2B preferred). Proven track record managing ISO 27001 certification and compliance. Hands-on experience implementing GDPR in software products. Working knowledge of PCI DSS and securing payment systems. Deep understanding of cloud security across Azure and/or AWS. Skilled in application security and the secure development lifecycle (SDLC). Experienced More ❯

impact projects within a forward-thinking, supportive environment that values expertise, innovation, and growth. KEY RESPONSIBILITIES: Deliver high-quality GRC services, including: ISO 27001 NIST Gap Analysis CAF Assessments PCI DSS CSMA, ISF, and CIS Assessments Develop and maintain in-house methodologies, templates, and delivery playbooks for core GRC services. Conduct client workshops, interviews, and assessments to gather … Computer Science, Risk Management, or a related field, or equivalent professional experience. - ESSENTIAL Professional Experience One or more of the following: ISO 27001 Lead Auditor or Lead Implementer certification PCI DSS Qualified Security Assessor (QSA) or Internal Security Assessor (ISA) NIST Cybersecurity Framework or CAF-related training/accreditation Certified Information Systems Security Professional (CISSP) Certified Information Security … tabletop exercises, or assurance testing engagements. - DESIRABLE Other Requirements Strong understanding of governance, risk, and compliance principles, including key frameworks and regulations such as ISO 27001, NIST CSF, CAF, PCI DSS, and GDPR. - ESSENTIAL Excellent written and verbal communication skills, with the ability to translate technical requirements into business language. - ESSENTIAL Ability to travel to client sites as More ❯

success. Managing security strategy development and defining roadmaps in alignment with client business objectives. Perform security program assessments against established frameworks and best practices such as NIST CSF, CIS, PCI DSS, HIPAA, ISO, SOC 1/2 Prepare the clients for security audits such as PCI DSS, ISO 27k, SOC . Partner with the Client Account … Directory, application security, etc) CISSP/CCSP/CCSK certification or its equivalent is preferred. Expert knowledge of at least 2 security frameworks or certifications such as NIST, CIS, PCI DSS, HIPAA, SOC 1/2 Entrepreneurial DNA with clear ownership of execution and delivery of client satisfaction Strong strategic and analytical mindset with exceptional problem solving skills More ❯

. In this role, you will work directly with client organizations and their teams to assess their IT environments against a wide range of industry standards and regulations, including PCI DSS, ISO 27001/2, GDPR, NIS2, DORA , and other relevant EU frameworks or regulations . Your primary responsibilities will include collaborating closely with stakeholders, supporting the consulting … is 100% remote, with the requirement to travel to client locations in the EU region to support the audit work as needed. Qualifications and Desired Skills: Must be a PCI DSS certified QSA Must have recent and extensive IT Security auditing or consulting experience Prefer a bachelor’s degree with a specialization in information assurance At least … vulnerability assessments, system hardening, secure software development, application security, encryption, and key management best practices etc. In-depth knowledge and work experience with IT Security standards/frameworks, including PCI DSS, ISO 27001/2, GDPR, NIS2, DORA , and other relevant EU frameworks or regulations . At least one certification from each group is preferred: Group 1- CISA More ❯

engineers, developers, and business leaders to ensure security is embedded by design, not added as an afterthought. Your work will span from threat modeling and risk assessment to architecting PCI-DSS compliant solutions, building the secure infrastructure that underpins our global mobility and payments platforms. This is your opportunity to influence how a fast-growing technology company manages … teams. Conduct risk assessments and threat modeling, proactively identifying vulnerabilities and mitigation strategies. Develop and maintain security policies and frameworks aligned with NIST, ISO 27001, and CIS Controls. Lead PCI-DSS architecture and compliance, ensuring both front- and back-office systems meet standards. Guide and mentor teams in best-practice security engineering, fostering a culture of continuous improvement. … understanding of AWS security, hybrid cloud design, and modern DevSecOps principles. Strong knowledge of frameworks such as NIST, ISO 27001, OWASP, and CIS. Experience designing and implementing secure, compliant PCI-DSS solutions. Solid grounding in tools and technologies like SIEM, IDS/IPS, DLP, endpoint protection, IAM, and encryption. Ability to communicate complex concepts clearly and influence at More ❯

based transaction systems, including payment card processing infrastructure, in a team that values collaboration, security, and reliability. You’ll work closely with third-party service providers, ensure compliance with PCI DSS, and help build secure abstractions over APIs that interface with our clients. The In-Car Payments Engineering team at Arrive is responsible for delivering cutting-edge, in … directly from their vehicles. What you will do Maintain and expand our serverless card payment infrastructure built with TypeScript, Node.js, and AWS (Lambda, API Gateway, DynamoDB). Ensure continued PCI DSS compliance. Work with others to fix bugs, implement minimal new features, trace errors, and ensure security patches are applied in production and pre-production environments. Support a … RESTful design, and secure authentication. Demonstrated knowledge of API security and OWASP Top 10 vulnerabilities. Experience with Docker, Linux, Git, and container-based environments. Hands-on development experience with PCI DSS, payment systems, or other regulated environments is essential Excellent communicator with a self-starter attitude and comfort working autonomously. Demonstrable expertise and understanding of API development/ More ❯

based transaction systems, including payment card processing infrastructure, in a team that values collaboration, security, and reliability. You’ll work closely with third-party service providers, ensure compliance with PCI DSS, and help build secure abstractions over APIs that interface with our clients. The In-Car Payments Engineering team at Arrive is responsible for delivering cutting-edge, in … directly from their vehicles. What you will do Maintain and expand our serverless card payment infrastructure built with TypeScript, Node.js, and AWS (Lambda, API Gateway, DynamoDB). Ensure continued PCI DSS compliance. Work with others to fix bugs, implement minimal new features, trace errors, and ensure security patches are applied in production and pre-production environments. Support a … RESTful design, and secure authentication. Demonstrated knowledge of API security and OWASP Top 10 vulnerabilities. Experience with Docker, Linux, Git, and container-based environments. Hands-on development experience with PCI DSS, payment systems, or other regulated environments is essential Excellent communicator with a self-starter attitude and comfort working autonomously. Demonstrable expertise and understanding of API development/ More ❯

of Cyber Security, you'll set strategy, lead a growing team, and drive transformation across security governance, operations, compliance, cloud, and risk. You'll implement frameworks aligned to GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus , while modernising hybrid environments across Azure, AWS, Nutanix, and on-prem . Key Responsibilities Define and deliver a 3-5 year … through training, phishing simulations, and awareness programmes Drive security into operational teams, vendors, partners, and third-party risk management Success Measures Strategy delivered within first 90 days Strong GDPR & PCI audit outcomes Reduction in vulnerabilities and phishing incidents Improved audit ratings and team engagement What We're Looking For Senior leadership experience in cyber/security CISSP, CISM, CISA … or equivalent Strong track record with ISO 27001, NIST, PCI DSS, Cyber Essentials Plus Hands-on background across Azure, AWS, hybrid infrastructure, and modern security tooling Strong communicator with excellent stakeholder influence What's on Offer Up to 20% bonus Healthcare, pension, holidays 2-stage process with quick turnaround A major role in a major business - apply now More ❯

Description: Proficiency in key management systems and tools (e.g., HSMs, KMS, PKI) Strong understanding of cryptographic algorithms and protocols Experience with security standards and frameworks (e.g., NIST, ISO 27001, PCI DSS) Familiarity with cloud-based key management services (e.g., AWS KMS, Azure Key Vault) Proficiency in Linux and Windows operating systems Strong experience with automation using Perl, python … Skills: Proficiency in key management systems and tools (e.g., HSMs, KMS, PKI) Strong understanding of cryptographic algorithms and protocols Experience with security standards and frameworks (e.g., NIST, ISO 27001, PCI DSS) Familiarity with cloud-based key management services (e.g., AWS KMS, Azure Key Vault) Proficiency in Linux and Windows operating systems Strong experience with automation using Perl, python More ❯

for cloud-related security breaches, ensuring minimal downtime and data loss. Develop automated workflows for vulnerability management, incident detection, and response. Align security measures with financial regulations such as PCI DSS, ISO 27001, SOC 2, and GDPR. Support Atom’s AI team with AI and Automation specific infrastructure security needs. Partner with DevOps and engineering teams to integrate … experience with container security tools for Kubernetes and Docker environments. Advanced scripting and automation skills (Python, PowerShell, Bash, etc.) Demonstrated ability to navigate and implement compliance frameworks such as PCI DSS, GDPR, SOC 2, and ISO 27001. Familiarity with financial industry-specific security and privacy standards. Relevant Security certifications (e.g. CISSP, SSCP, CCSM, CISM, etc.) Relevant public-cloud More ❯

80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO/IEC 27001/2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience activities. Monitor the effectiveness of security controls to ensure … analysis. A knowledge of the data protection act (UK GDPR) and how it applies to information and cyber security A knowledge of card payment system security as defined in PCI-DSS V4.0 Qualifications A security certification such as CISM, CISMP, CISSP or equivalent would be desirable. A relevant IT or security-based degree or equivalent practical experience. More ❯

80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO/IEC 27001/2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience activities. Monitor the effectiveness of security controls to ensure … analysis. A knowledge of the data protection act (UK GDPR) and how it applies to information and cyber security A knowledge of card payment system security as defined in PCI-DSS V4.0 Qualifications A security certification such as CISM, CISMP, CISSP or equivalent would be desirable. A relevant IT or security-based degree or equivalent practical experience. More ❯

risk posture, compliance status, and strategic improvement initiatives. Own and manage the Information Security Risk Register; ensure risks are assessed, documented, and mitigated effectively. Lead compliance efforts across GDPR, PCI DSS, and other applicable regulations. Conduct and coordinate enterprise-wide risk assessments, audits, and internal reviews. Champion a pragmatic, risk based approach to security - balancing protection, productivity, and … data security. Experience managing or working with vulnerability management tools, SIEM/SOC environments, and incident response processes. Familiarity with frameworks and standards such as ISO 27001, NIST, CIS, PCI DSS, and GDPR. Excellent communication and stakeholder management skills, with the ability to influence at all levels of the organisation. Analytical, pragmatic, and calm under pressure - with a More ❯

and compliant. You’ll manage cyber and data protection risks, oversee our technical infrastructure, and ensure we meet key security standards such as ISO 27001, Cyber Essentials, PSN, and PCI-DSS. You’ll also manage our client's corporate insurance function, helping ensure our policies and coverage are robust and compliant. What You’ll Do • Lead the development and … server infrastructure (on-premise and cloud). • Promote cyber awareness and best practice across the organisation. • Ensure successful completion of security audits and certifications (ISO 27001, Cyber Essentials, PSN, PCI-DSS). • Manage the corporate insurance service, working with governance officers and external partners. • Build strong working relationships with internal teams, senior managers, and external regulators such as … operations. • Excellent problem-solving, communication, and leadership skills. Desirable qualifications and experience: • CISM, CISSP, ISO 27001 Lead Implementer/Auditor, or ITIL certification. • Experience with frameworks such as PSN, PCI-DSS, NHS DSP Toolkit, or CAF. • Understanding of insurance laws and governance Should you have any questions or wish to apply please do not hesitate to contact Clear More ❯

compliant. You’ll manage cyber and data protection risks, oversee our technical infrastructure, and ensure our client meets key security standards such as ISO 27001, Cyber Essentials, PSN, and PCI-DSS. You’ll also manage the client's corporate insurance function, helping ensure the policies and coverage are robust and compliant. What You’ll Do • Lead the development and … server infrastructure (on-premise and cloud). • Promote cyber awareness and best practice across the organisation. • Ensure successful completion of security audits and certifications (ISO 27001, Cyber Essentials, PSN, PCI-DSS). • Manage the corporate insurance service, working with governance officers and external partners. • Build strong working relationships with internal teams, senior managers, and external regulators such as … operations. • Excellent problem-solving, communication, and leadership skills. Desirable qualifications and experience: • CISM, CISSP, ISO 27001 Lead Implementer/Auditor, or ITIL certification. • Experience with frameworks such as PSN, PCI-DSS, NHS DSP Toolkit, or CAF. • Understanding of insurance laws and governance. Should you have any questions or wish to apply please do not hesitate to contact Clear More ❯