1 to 25 of 93 PCI DSS Jobs

operating manual for how we behave. Head of GRC – Key Responsibilities Own the security policy framework, ensuring policies are current, proportionate, and aligned to PCI DSS, FCA expectations, UK GDPR, and DORA requirements. Maintain and operate the security risk register, ensuring risks are assessed consistently using a defined … Forum, presenting risk posture, compliance status, and material findings to the CISO, CIO and ELT. Design and maintain the control framework, mapping controls to PCI DSS, FCA, UK GDPR, and DORA requirements, and ensuring control effectiveness is tested on a continuous cycle. Produce KRI dashboards and risk reporting ...

security governance, operations, compliance, and risk management across a complex technology estate spanning payments, healthcare, and B2B SaaS. With ongoing M&A activity, active PCI-DSS obligations, and a rapidly evolving platform landscape, you’ll play a critical role in protecting our customers, supporting business growth, and embedding … Oversee security operations, including threat detection, incident response, and remediation Act as the executive lead during security incidents and manage external stakeholder communications Own PCI-DSS compliance across ClearAccept and ClearDebit payment platforms Lead the Group’s Governance, Risk and Compliance (GRC) function, including ISO 27001, Cyber Essentials ...

protect the confidentiality, integrity, and availability of our information assets, intellectual property, and customer data, ensuring strict compliance with regulatory frameworks including FCA, DORA, PCI DSS, and Edenred group security requirements.**Key Responsibilities:*** Lead the PayTech Information Security function with alignment to Edenred’s wider cyber risk management … Crime and Anti-Fraud teams to mitigate cyber risks related to financial crime.* Manage third-party security risk due diligence programs.* Lead and maintain PCI DSS and PCI PIN compliance and engagement with Qualified Security Assessors (QSAs).* Drive cyber awareness programs and phishing simulations to embed ...

protect the confidentiality, integrity, and availability of our information assets, intellectual property, and customer data, ensuring strict compliance with regulatory frameworks including FCA, DORA, PCI DSS, and Edenred group security requirements.**Key Responsibilities:*** Lead the PayTech Information Security function with alignment to Edenred’s wider cyber risk management … Crime and Anti-Fraud teams to mitigate cyber risks related to financial crime.* Manage third-party security risk due diligence programs.* Lead and maintain PCI DSS and PCI PIN compliance and engagement with Qualified Security Assessors (QSAs).* Drive cyber awareness programs and phishing simulations to embed ...

Lead Information Security Analyst Engineer/Architect to £54k + Benefits ISO27001, COBIT, SECURITY, ITIL, CISM, CISSP, PCI-DSS Lead Information Security Engineer/Analyst: Do you have a background working in an IT Security function and are able to identify and remediate threats or vulnerabilities, implement information … assets and mitigate against potential risks.You will be actively responsible for ensuring the successful achievement of external certifications such as ISO27001, MOU, PSN and PCI-DSS etc alongside managing security incident response plans. In addition, the Lead information Security Analyst/Engineer will provide advice and guidance ...

afterthought applied on top. Advise the CISO on technical security strategy, emerging technology risks, and the security implications of architectural decisions. Support PCI DSS compliance from an architectural perspective, ensuring the platform design supports scope minimisation, network segmentation, and the technical requirements of PCI DSS 4.0. … . Understanding of cryptographic principles and their practical application in payment systems: tokenisation, format‐preserving encryption, HSM/KMS key management, TLS configuration, and PCI P2PE concepts. Experience leading technical teams, mentoring engineers, and building team capability in a growing organisation. Ability to communicate architectural decisions and trade‐offs ...

afterthought applied on top. Advise the CISO on technical security strategy, emerging technology risks, and the security implications of architectural decisions. Support PCI DSS compliance from an architectural perspective, ensuring the platform design supports scope minimisation, network segmentation, and the technical requirements of PCI DSS 4.0. … . Understanding of cryptographic principles and their practical application in payment systems: tokenisation, format‐preserving encryption, HSM/KMS key management, TLS configuration, and PCI P2PE concepts. Experience leading technical teams, mentoring engineers, and building team capability in a growing organisation. Ability to communicate architectural decisions and trade‐offs ...

Express. Our consumer-facing brand, TicketyBoo, is a train ticket booking app available to passengers across Great Britain. We hold ISO 27001 accreditation and PCI DSS compliance, and operate in a regulated, high-availability environment where governance and security are central to everything we do. … inherit and build on the following: ISO 27001 - Information Security - Certified -Maintain and develop Cyber Essentials Plus - Newly achieved (June 2026) - Maintain annual renewal PCI DSS - Compliant - Maintain ISO 22301 - Business Continuity - Documentation complete, testing underway - Lead to certification ITIL v5 - Service Management - Programme in planning - Coordinate training ...

technical expertise in Microsoft Active Directory (AD), Windows Server environments, and authentication solutions. IT Security & Compliance: Ensure compliance with security and regulatory standards, including PCI DSS, Cyber Essentials+, DORA, and ISO 27001. Implement and enforce security best practices across infrastructure automation and cloud environments. Secure high-value … Cyber Essentials, NIST, ISO 27001). In-depth understanding of network security and compliance in regulated environments. Proven ability to secure high-value data (PCI cardholder data, PII) and implement security best practices. Strong networking knowledge (LAN, WAN, DNS, DHCP, VPN, TCP/IP). Proficiency in firewall ...

Azure adoption and hybrid cloud solutions Maintaining core services (AD, DNS, DHCP) and planning Entra ID migration Ensuring infrastructure meets security and compliance standards (PCI DSS, ISO 27001, GDPR) Delivering 2nd/3rd line support and resolving complex issues Supporting disaster recovery, backup, and monitoring processes Acting … work A collaborative team player with clear communication skills Proactive with a focus on continuous improvement Desirable experience includes Azure migrations, scripting/automation, PCI DSS environments, and working within the charity or public sector. Job Offer Opportunity to lead cloud transformation initiatives Remote working pattern, with occasional ...

effectiveness of controls; maintain a risk register; and surface material risk decisions to leadership. Compliance and audits: Own SOC 2 Type II and PCI DSS end‐to‐end with continuous control monitoring and evidence collection between audits. Serve as the primary contact for external auditors. Application and cloud … security, with 3+ years leading a security program or a major security function. Direct experience owning SOC 2 Type II audits end‐to‐end; PCI DSS experience strongly preferred. Proven, hands‐on ownership of vulnerability management programs at scale. Experience managing an MSSP/MDR relationship for SIEM ...

time Define security and compliance requirements and work closely with Engineering and IT teams to ensure they are implemented effectively Maintain existing compliance across PCI DSS, ISO27001, SOC2 and Cyber Essentials, and lead new compliance initiatives across additional standards such as ISO 27017 and ISO 27018 Manage audits … support a small team, creating focus, trust and shared direction About You_ You've worked in security and compliance within a payments, fintech or PCI-regulated environment You have strong, hands-on experience with PCI DSS, ISO27001 and SOC2, including preparing for and delivering audits ...

cybersecurity team. This role is predominantly end-client facing, advising on security best practices, vulnerability management and security standard compliance (e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. Skills & Experience Required: 2+ years of experience working in Cyber Security within an AWS cloud environment Vulnerability … management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with stakeholders and clients, as well as the ability to provide training and mentoring around cybersecurity Ideally, some relevant cybersecurity certifications This role ...

Logical and efficient, with a keen attention to detail Self-motivated Desirable: JNCIP or equivalent (e.g. CCNA) Experience of working within industry standards (e.g. PCI DSS, ISO270001, ITILv4) Experience configuring and maintaining VPNs An understanding of network cable patching and key standards for installation of structured cabling … awareness of PCI DSS What You’ll get in Return Salary starting £37,685 18 Month Fixed Term Contract Monday to Friday, 8:00am to 4:00pm, with the opportunity of 2 days a week remote working (changing to 1 day a week remote working from January ...

executive role entails governance, operations, compliance, and risk management within a complex technology environment. The ideal candidate will have significant CISO experience, especially with PCI-DSS compliance, and possess strong leadership skills. Competitive salary, benefits, and a hybrid working model are offered. #J-18808-Ljbffr ...

Terraform Maintain and improve local development environments so engineers can run the full platform effectively Enhance monitoring, alerting and observability across all services Support PCI-DSS compliance requirements through secure infrastructure design and operational controls Implement and manage network segmentation, secrets management, access controls and audit processes Collaborate … line and using Git-based workflows Desirable Experience Experience in any of the following areas would be advantageous: Istio or other service mesh technologies PCI-DSS or other regulated/compliance-driven environments Google Cloud Platform services including KMS, Cloud Armor, Binary Authorization and Datastore ...

implementation and monitoring of disaster recovery solutions and backup strategies. Ensure compliance with internal security policies and regulatory requirements (e.g., GDPR, ISO27001, PCI DSS v4.0). Provide support and root cause analysis for complex issues. Document system configurations, changes and operating procedures. Participate in infrastructure projects, including system ...

implementation and monitoring of disaster recovery solutions and backup strategies. Ensure compliance with internal security policies and regulatory requirements (e.g., GDPR, ISO27001, PCI DSS v4.0). Provide support and root cause analysis for complex issues. Document system configurations, changes and operating procedures. Participate in infrastructure projects, including system ...

security clearance to be considered. Technical Knowledge Security frameworks including ISO 27001, NIST CSF, CIS and NCSC guidance Regulatory landscape including GDPR and PCI DSS Familiarity with HMG and NCSC standards Modern technology environments: Cloud platforms such as Azure, AWS and Google Cloud Microsoft 365 Infrastructure and network ...

Coordinator) or Delivery Team Security Lead beneficial MOD/GDS Secure by Design Familiarity with JSP440, JSP604/453, JSP490, Supplier Chain Assurance, GDPR, PCI DSS, ICO, ISO 27001, NIST CSF, CIS Controls v8 Certifications (Desirable) CIISEC UK Cyber Security Council registration (Chartered or Principal) AWS/Azure ...

Responsibilities Manage vulnerability management and remediation activities across applications and infrastructure Coordinate penetration testing, remediation and assurance activities with third parties Support ongoing PCI DSS compliance, including assessments, evidence and control testing Configure and operate security tools, including vulnerability scanners and endpoint protection Monitor and respond to security … network and cloud security concepts (DMZ, TCP/IP, Cloud platforms) Solid awareness of current cyber threats, risks and mitigation techniques Desirable: Experience supporting PCI or other regulatory compliance frameworks Exposure to managing penetration testing programmes end-to-end Ethical hacking or information security certifications (e.g. CISSP, CCSP, Microsoft ...

What You'll Bring Prior and proven experience gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures ...

What You'll Bring Prior and proven experience gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures ...

tier strategy consultancy (e.g., McKinsey, Bain, BCG, Oliver Wyman). Experience with the application of information security standards and best practices (PCI‐DSS, HIPAA, ISO27001, NIST, CIS, CSA). Understanding of security needs of the payment ecosystem, including traditional financial services customers and related segments such as merchants ...

Defence clients * Support secure-by-design initiatives and threat modelling activities * Advise on regulatory and compliance frameworks including ISO 27001, NIST, GDPR, and PCI-DSS * Identify vulnerabilities and communicate security risks and mitigation strategies to technical and non-technical stakeholders * Contribute to innovation, research, and continuous improvement across ...