1 to 25 of 181 PCI DSS Jobs in England

IT Security Architect - PCI DSS - Manchester An IT Security Architect with a PCI DSS & cloud background (AWS, GCP OR Azure) is required to join our global client's new UK cybersecurity team. The role is to lead the design and implementation of PCI DSS architecture on a global scale from their head office in … central Manchester. Skills & Experience Required: 5+ years of experience working in Cyber Security, PCI DSS within a cloud environment Have good Security architecture experience, ideally with a DevSecOps environment Excellent experience with PCI DSS and able to lead design Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and … standards such as GDPR, ISO, PCI, and NIST Confidence when speaking with stakeholders and clients Ideally, some relevant cybersecurity certifications - CISSP, CCSP, CISM etc Key Responsibilities: Lead the design and implementation of PCI DSS architectures, ensuring compliance with the highest security standards. Design and create secure Enterprise-Grade Architectures Across Cloud, Hybrid, and On-Prem Environments Conduct More ❯

GRC Specialist - PCI-DSS - Manchester We're seeking an experienced GRC Specialist with excellent cyber security, GRC & PCI-DSS payments experience to join our client's growing Cyber Security team. They need somebody who has excellent knowledge in PCI-DSS along with good governance, risk and compliance experience and familiarity with other standards. Experience … Required: At least 2-3 years in a Cyber security & GRC role Be a PCI-DSS expert around payments ISO 27001and GDPR Knowledge of Risk Management, including risk identification, assessment, and mitigation techniques Good experience around Audits and compliance Any penetration testing experience would be a bonus You'll work closely with both internal and external stakeholders across … UK based headquarters in Manchester, so it is a great time to join a global company that is going from strength to strength. Responsibilities Cyber Governance & Frameworks within a PCI-DSS environment Develop, maintain, and evolve the cyber governance and compliance framework. Define and manage information and cyber security policies, standards, and procedures. Ensure alignment with ISO More ❯

Lead Cyber Security Risk Consultant - PCI-DSS - Manchester We're seeking a strong Lead Cyber Security Risk Consultant with excellent cyber security, GRC & PCI-DSS payments experience to join our client's growing Cyber Security team. They need somebody who has excellent knowledge in PCI-DSS, ideally the subject matter expert, along with good … governance, risk and compliance experience Experience Required: At least 5 years in a Cyber security & GRC role, at Senior, lead or manager level. Be a PCI-DSS expert around payments ISO 27001and GDPR Knowledge of Risk Management, including risk identification, assessment, and mitigation techniques Good experience around Audits and compliance Any penetration testing experience would be a bonus … UK based headquarters in Manchester, so it is a great time to join a global company that is going from strength to strength. Responsibilities Cyber Governance & Frameworks within a PCI-DSS environment Develop, maintain, and evolve the cyber governance and compliance framework. Define and manage information and cyber security policies, standards, and procedures. Ensure alignment with ISO More ❯

hands on CISO or Security Director ready to lead, standardize, and scale the entire security posture for a hyper growth, globally expanding FinTech? Can you urgently drive mission critical PCI DSS compliance across multiple international environments while integrating disparate security practices from recent acquisitions? A high growth global FinTech, founded 4 years ago and backed by a major … function. This is a critical leadership role reporting to the executive team, demanding a candidate who can balance strategic vision with technical delivery. CISO Core Responsibilities: Mission-Critical Compliance (PCI DSS): Urgently own and successfully complete the certification for the third PCI DSS environment, ensuring continuous compliance across all card touching payments infrastructure. Security Strategy & Standardization … response activities and provide high level reporting on operational risk to the executive team and board. CISO Must Have Experience: Payments Security (Card Touching): Mandatory hands on experience in PCI DSS environments and security engineering for payments infrastructure, specifically dealing directly with card processing (not just merchant or wallet solutions). Technical Acumen: Proven ability to operate at More ❯

AD), Windows Server environments, and authentication solutions. Plan for scalability, redundancy, and high availability to support future growth. IT Security & Compliance: Ensure compliance with security and regulatory standards, including PCI DSS, Cyber Essentials+, DORA, and ISO 27001. Implement and enforce security best practices across infrastructure automation and cloud environments. Maintain accurate compliance documentation, including PCI DSS scope records and security policies. Secure high-value and high-risk data, such as cardholder (PCI) and personally identifiable information (PII). Cloud & Automation (these tools and skills will be taught): Implement and manage Infrastructure as Code (IaC) for cloud and on-premises environments. Learn how to automate configuration management, infrastructure provisioning, and application deployment. Configure and maintain … essential. Desirable (but not required) experience: Some interest in learning and using automation tools such as Azure DevOps, Terraform, Node-Red, Packer. Proven ability to secure high-value data (PCI cardholder data, PII) and implement security best practices. Scripting and automation skills (PowerShell, Python, Bash, or similar). Ability to design, implement, and maintain CI/CD pipelines for More ❯

own the strategic and operational delivery of all information and cyber security activities. You'll develop and implement robust security policies, oversee incident response, and ensure compliance with GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus. You will be the single point of accountability for all security matters, reporting directly to the executive team and influencing critical … projects, platforms, data flows, and product development. Lead enterprise-wide information, cyber, and data security governance. Define and implement security frameworks, policies, and operating models. Ensure compliance with GDPR, PCI DSS, Cyber Essentials Plus, and ISO/IEC 27001:2022 aligned practices. Lead Data Protection Impact Assessments (DPIAs), data mapping, classification, and retention programs. Oversee incident response, vulnerability … Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure, AWS), on-premise networks, and hybrid architectures. Strong experience in Zero Trust security models. Experienced in More ❯

own the strategic and operational delivery of all information and cyber security activities. You'll develop and implement robust security policies, oversee incident response, and ensure compliance with GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus. You will be the single point of accountability for all security matters, reporting directly to the executive team and influencing critical … projects, platforms, data flows, and product development. Lead enterprise-wide information, cyber, and data security governance. Define and implement security frameworks, policies, and operating models. Ensure compliance with GDPR, PCI DSS, Cyber Essentials Plus, and ISO/IEC 27001:2022 aligned practices. Lead Data Protection Impact Assessments (DPIAs), data mapping, classification, and retention programs. Oversee incident response, vulnerability … Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure, AWS), on-premise networks, and hybrid architectures. Strong experience in Zero Trust security models. Experienced in More ❯

regulatory compliance oversight. The ideal candidate will establish and maintain security standards across the product portfolio, oversee secure system environments, and act as the primary contact for ISO 27001, PCI DSS, and GDPR compliance. Additionally, this role will support our commercial teams by contributing to tender responses and ensuring client security assurance. The Company: They are a technology … management and penetration testing programs. Maintain strong identity, access, and privilege management controls. Compliance & Assurance (30%) Manage and maintain ISO 27001 certification and audit processes. Ensure ongoing compliance with PCI DSS for payment-related systems. Oversee GDPR compliance across products, services, and internal operations. Complete HECVAT assessments and respond to security questionnaires for higher education tenders. Support sales … SaaS or cloud environments (ISV or B2B preferred). Proven track record managing ISO 27001 certification and compliance. Hands-on experience implementing GDPR in software products. Working knowledge of PCI DSS and securing payment systems. Deep understanding of cloud security across Azure and/or AWS. Skilled in application security and the secure development lifecycle (SDLC). Experienced More ❯

impact projects within a forward-thinking, supportive environment that values expertise, innovation, and growth. KEY RESPONSIBILITIES: Deliver high-quality GRC services, including: ISO 27001 NIST Gap Analysis CAF Assessments PCI DSS CSMA, ISF, and CIS Assessments Develop and maintain in-house methodologies, templates, and delivery playbooks for core GRC services. Conduct client workshops, interviews, and assessments to gather … Computer Science, Risk Management, or a related field, or equivalent professional experience. - ESSENTIAL Professional Experience One or more of the following: ISO 27001 Lead Auditor or Lead Implementer certification PCI DSS Qualified Security Assessor (QSA) or Internal Security Assessor (ISA) NIST Cybersecurity Framework or CAF-related training/accreditation Certified Information Systems Security Professional (CISSP) Certified Information Security … tabletop exercises, or assurance testing engagements. - DESIRABLE Other Requirements Strong understanding of governance, risk, and compliance principles, including key frameworks and regulations such as ISO 27001, NIST CSF, CAF, PCI DSS, and GDPR. - ESSENTIAL Excellent written and verbal communication skills, with the ability to translate technical requirements into business language. - ESSENTIAL Ability to travel to client sites as More ❯

based transaction systems, including payment card processing infrastructure, in a team that values collaboration, security, and reliability. You’ll work closely with third-party service providers, ensure compliance with PCI DSS, and help build secure abstractions over APIs that interface with our clients. The In-Car Payments Engineering team at Arrive is responsible for delivering cutting-edge, in … directly from their vehicles. What you will do Maintain and expand our serverless card payment infrastructure built with TypeScript, Node.js, and AWS (Lambda, API Gateway, DynamoDB). Ensure continued PCI DSS compliance. Work with others to fix bugs, implement minimal new features, trace errors, and ensure security patches are applied in production and pre-production environments. Support a … RESTful design, and secure authentication. Demonstrated knowledge of API security and OWASP Top 10 vulnerabilities. Experience with Docker, Linux, Git, and container-based environments. Hands-on development experience with PCI DSS, payment systems, or other regulated environments is essential Excellent communicator with a self-starter attitude and comfort working autonomously. Demonstrable expertise and understanding of API development/ More ❯

based transaction systems, including payment card processing infrastructure, in a team that values collaboration, security, and reliability. You’ll work closely with third-party service providers, ensure compliance with PCI DSS, and help build secure abstractions over APIs that interface with our clients. The In-Car Payments Engineering team at Arrive is responsible for delivering cutting-edge, in … directly from their vehicles. What you will do Maintain and expand our serverless card payment infrastructure built with TypeScript, Node.js, and AWS (Lambda, API Gateway, DynamoDB). Ensure continued PCI DSS compliance. Work with others to fix bugs, implement minimal new features, trace errors, and ensure security patches are applied in production and pre-production environments. Support a … RESTful design, and secure authentication. Demonstrated knowledge of API security and OWASP Top 10 vulnerabilities. Experience with Docker, Linux, Git, and container-based environments. Hands-on development experience with PCI DSS, payment systems, or other regulated environments is essential Excellent communicator with a self-starter attitude and comfort working autonomously. Demonstrable expertise and understanding of API development/ More ❯

of Cyber Security, you'll set strategy, lead a growing team, and drive transformation across security governance, operations, compliance, cloud, and risk. You'll implement frameworks aligned to GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus , while modernising hybrid environments across Azure, AWS, Nutanix, and on-prem . Key Responsibilities Define and deliver a 3-5 year … through training, phishing simulations, and awareness programmes Drive security into operational teams, vendors, partners, and third-party risk management Success Measures Strategy delivered within first 90 days Strong GDPR & PCI audit outcomes Reduction in vulnerabilities and phishing incidents Improved audit ratings and team engagement What We're Looking For Senior leadership experience in cyber/security CISSP, CISM, CISA … or equivalent Strong track record with ISO 27001, NIST, PCI DSS, Cyber Essentials Plus Hands-on background across Azure, AWS, hybrid infrastructure, and modern security tooling Strong communicator with excellent stakeholder influence What's on Offer Up to 20% bonus Healthcare, pension, holidays 2-stage process with quick turnaround A major role in a major business - apply now More ❯

for cloud-related security breaches, ensuring minimal downtime and data loss. Develop automated workflows for vulnerability management, incident detection, and response. Align security measures with financial regulations such as PCI DSS, ISO 27001, SOC 2, and GDPR. Support Atom’s AI team with AI and Automation specific infrastructure security needs. Partner with DevOps and engineering teams to integrate … experience with container security tools for Kubernetes and Docker environments. Advanced scripting and automation skills (Python, PowerShell, Bash, etc.) Demonstrated ability to navigate and implement compliance frameworks such as PCI DSS, GDPR, SOC 2, and ISO 27001. Familiarity with financial industry-specific security and privacy standards. Relevant Security certifications (e.g. CISSP, SSCP, CCSM, CISM, etc.) Relevant public-cloud More ❯

and compliant. You’ll manage cyber and data protection risks, oversee our technical infrastructure, and ensure we meet key security standards such as ISO 27001, Cyber Essentials, PSN, and PCI-DSS. You’ll also manage our client's corporate insurance function, helping ensure our policies and coverage are robust and compliant. What You’ll Do • Lead the development and … server infrastructure (on-premise and cloud). • Promote cyber awareness and best practice across the organisation. • Ensure successful completion of security audits and certifications (ISO 27001, Cyber Essentials, PSN, PCI-DSS). • Manage the corporate insurance service, working with governance officers and external partners. • Build strong working relationships with internal teams, senior managers, and external regulators such as … operations. • Excellent problem-solving, communication, and leadership skills. Desirable qualifications and experience: • CISM, CISSP, ISO 27001 Lead Implementer/Auditor, or ITIL certification. • Experience with frameworks such as PSN, PCI-DSS, NHS DSP Toolkit, or CAF. • Understanding of insurance laws and governance Should you have any questions or wish to apply please do not hesitate to contact Clear More ❯

compliant. You’ll manage cyber and data protection risks, oversee our technical infrastructure, and ensure our client meets key security standards such as ISO 27001, Cyber Essentials, PSN, and PCI-DSS. You’ll also manage the client's corporate insurance function, helping ensure the policies and coverage are robust and compliant. What You’ll Do • Lead the development and … server infrastructure (on-premise and cloud). • Promote cyber awareness and best practice across the organisation. • Ensure successful completion of security audits and certifications (ISO 27001, Cyber Essentials, PSN, PCI-DSS). • Manage the corporate insurance service, working with governance officers and external partners. • Build strong working relationships with internal teams, senior managers, and external regulators such as … operations. • Excellent problem-solving, communication, and leadership skills. Desirable qualifications and experience: • CISM, CISSP, ISO 27001 Lead Implementer/Auditor, or ITIL certification. • Experience with frameworks such as PSN, PCI-DSS, NHS DSP Toolkit, or CAF. • Understanding of insurance laws and governance. Should you have any questions or wish to apply please do not hesitate to contact Clear More ❯

team Accountable by delivering on promises and pursuing growth and personal improvement where developmental feedback is received Critical Competencies – Technical Fit Good understanding of at least one audit framework; PCI DSS, ISO 27001, Cyber Essentials, NIST, SOC 2, NIS2, Microsoft 365 Certification, etc Ability to deliver, without supervision/support, at least one Cyber Practice GRC service Aptitude … managing workload accordingly Ability to quickly learn and understand new skills and technologies specific to the Cyber Security industry Desirable Competencies Exposure to multiple industry audit/compliance frameworks; PCI DSS, ISO 27001, Cyber Essentials, NIST, SOC 2, NIS2, etc Exposure to Amazon AWS, Microsoft Azure or Google GCPs cloud platforms Data Privacy Experience, e.g. GDPR, DPA2018 More ❯

lifecycle for various kinds of applications, ensuring data is protected and governed. Essential & Desirable KnowledgeProficiency in MS Office applications (Excel, Word, and PowerPoint) is essential.GDPR - ISO27001 - Cyber Essentials Plus - PCI DSS - OneTrust.Practical application ability with Microsoft Access, Project, Visio, SQL, Python and Tableau is desirable.Practical application ability with Data Governance and Data Quality Management tools is desirable.Essential & Desirable … problem-solving skills. Ability to work under pressure.Ability to pick up new concepts and skills.Good awareness and understanding of current regulatory compliance requirements: PRA, FCA, ISO27001 - GDPR - Cyber Essentials - PCI -DSS A good team player with a flexible approach and a proactive "can do" attitude.Develops in accordance with standards and agreed industry best practice Hays Specialist Recruitment Limited More ❯

lifecycle for various kinds of applications, ensuring data is protected and governed. Essential & Desirable KnowledgeProficiency in MS Office applications (Excel, Word, and PowerPoint) is essential.GDPR - ISO27001 - Cyber Essentials Plus - PCI DSS - OneTrust.Practical application ability with Microsoft Access, Project, Visio, SQL, Python and Tableau is desirable.Practical application ability with Data Governance and Data Quality Management tools is desirable. Essential … problem-solving skills. Ability to work under pressure.Ability to pick up new concepts and skills.Good awareness and understanding of current regulatory compliance requirements: PRA, FCA, ISO27001 - GDPR - Cyber Essentials - PCI -DSS A good team player with a flexible approach and a proactive "can do" attitude.Develops in accordance with standards and agreed industry best practice Hays Specialist Recruitment Limited More ❯

evolving threats. Youll be part of a collaborative, award-winning team that blends deep technical knowledge with commercial insight , supporting global organisations with frameworks including ISO 27001, SOC 2, PCI-DSS, GDPR, DORA, and NIS2 . The Role: Lead and deliver GRC engagements for large enterprise clients , including readiness assessments, internal audits, and advisory projects. Act as a … consultancy methodologies. Desired Experience: Proven experience in GRC consulting, audit, or information security management within large or regulated organisations. Strong knowledge of ISO 27001 and SOC 2 (experience with PCI-DSS, NIST, DORA, or NIS2 advantageous). Excellent communication and presentation skills, confident in C-level workshops and stakeholder management . Organised, self-motivated, and experienced managing multiple More ❯

make a real impact What you’ll be doing: Leading vulnerability assessments and coordinating regular penetration testing across systems and products Owning risk remediation actions, from security audits to PCI scans and compliance reporting Working across cloud (AWS), infrastructure, and software environments to ensure security best practices are embedded throughout Supporting the secure design of products and infrastructure, providing … tools Writing clear, actionable reports for both technical and executive audiences, including regular updates on the security landscape Aligning with frameworks such as ISO 27001, Cyber Essentials+, GDPR, and PCI-DSS Collaborating with compliance, IT, and engineering to deliver secure, scalable solutions What you’ll bring to the table: Proven experience in a security-focused role (ideally … grasp of access controls, identity management, and cloud security (especially AWS) Familiarity with secure software development practices and working alongside dev teams Understanding of key frameworks like ISO 27001, PCI-DSS, and GDPR Bonus points for scripting/automation experience (PowerShell, Python, etc.) or exposure to tools like Keeper, Keycloak, or IAM A proactive mindset and excellent communication More ❯

is well defined. Engage risk review and assurance activities across existing suppliers. Provide IT and business advice on aspects of security standards and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Engage with I&T system owners to provide training in relation to information security, cyber resilience, phishing, and facilitation of cyber scenario desktop simulations … consequences across both IT and manufacturing environments in manufacturing or similar industries. Experience working with information security standards and frameworks such as and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Proven analytical, problem-solving, planning, project delivery and supplier work packages management skills. Demonstrable experience of engaging across all levels of a company in More ❯

are captured, prioritised, communicated and plans for remediation are put into place. Governance & Compliance: Ensure all release activities comply with internal controls, audit requirements, and regulatory standards (e.g., SOX, PCI-DSS, GDPR, PRA/FCA). Maintain comprehensive release documentation, including approvals, risk assessments, rollback plans, and post-implementation reviews. Serve as a key point of contact for … CD pipelines (e.g., Jenkins, Azure DevOps), and enterprise architecture platforms. Excellent leadership, communication, and stakeholder management skills. Understanding of regulatory and compliance standards relevant to banking (e.g., DORA, SOX, PCI-DSS, GDPR). Experience with scaled agile frameworks (e.g., SAFe). Knowledge of risk management, audit controls, and change governance in regulated environments in the banking sector. Experience More ❯

baselines in line with compliance standards. Support cloud infrastructure (AWS EC2, S3, IAM, VPC). Implement robust backup and disaster recovery processes. Maintain clear documentation, logs, and inventories. Ensure PCI DSS compliance and assist with incident response activities. Work cross-functionally with engineering, security, and operations teams. Drive improvements and automation using scripting and modern tooling. What You … Linux systems administration (Red Hat/CentOS). Experience supporting Windows environments. Strong networking knowledge (CCNA-level). Hands-on AWS experience (EC2, S3, IAM, VPC). Understanding of PCI DSS and secure system practices. Scripting and automation skills (Bash, Python, Ansible). Excellent troubleshooting and documentation capabilities. Nice to Have RHCSA (or higher). CCNA certification. Experience More ❯

and maintaining key certifications such as ISO/IEC 27001 , SOC 2 Type II , Cyber Essentials Plus , and CREST SOC accreditation , as well as supporting sector-specific frameworks including PCI DSS and NCSC CIR/CHECK . The ideal candidate will have a strong background in cybersecurity assurance , experience engaging with external auditors and customers , and a proactive … ongoing maintenance of SOC-related certifications including SOC 2 Type II , SOC 3 , ISO/IEC 27001 , Cyber Essentials Plus , and CREST . Manage sector-specific compliance such as PCI DSS and NCSC CIR/CHECK . Ensure timely renewals and proactively address compliance gaps. Security Assurance for SOC Operations Integrate certification and assurance requirements into SOC governance More ❯

their main base of operations here, in the UK, as an experienced GRC IT Security Analyst ? Do you have experience in the GRC IT Security space with audits, ISO27001, PCI DSS, SOC2, NIST & current compliance regulations? (Some, or all is fine!) If so & you are looking to expand your IT Security career, meet new team members, embrace new … you’ll already know what the role will entail, but see below for things we’ll need to see in order to be considered: - Knowledge and experience of ISO27001, PCI DSS, SOC2, NIST and CIS benchmarking - Knowledge and experience achieving and maintaining compliance with relevant legislation, such as DPA, GDPR - Knowledge of cloud environments (AWS, Azure) & Windows, &/ More ❯