1 to 25 of 148 PCI DSS Jobs

IT Security Architect - PCI DSS - Manchester An IT Security Architect with a PCI DSS & cloud background (AWS, GCP OR Azure) is required to join our global client's new UK cybersecurity team. The role is to lead the design and implementation of PCI DSS architecture on a global scale from their head office in … central Manchester. Skills & Experience Required: 5+ years of experience working in Cyber Security, PCI DSS within a cloud environment Have good Security architecture experience, ideally with a DevSecOps environment Excellent experience with PCI DSS and able to lead design Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and … standards such as GDPR, ISO, PCI, and NIST Confidence when speaking with stakeholders and clients Ideally, some relevant cybersecurity certifications - CISSP, CCSP, CISM etc Key Responsibilities: Lead the design and implementation of PCI DSS architectures, ensuring compliance with the highest security standards. Design and create secure Enterprise-Grade Architectures Across Cloud, Hybrid, and On-Prem Environments Conduct More ❯

GRC Specialist - PCI-DSS - Manchester We're seeking an experienced GRC Specialist with excellent cyber security, GRC & PCI-DSS payments experience to join our client's growing Cyber Security team. They need somebody who has excellent knowledge in PCI-DSS along with good governance, risk and compliance experience and familiarity with other standards. Experience … Required: At least 2-3 years in a Cyber security & GRC role Be a PCI-DSS expert around payments ISO 27001and GDPR Knowledge of Risk Management, including risk identification, assessment, and mitigation techniques Good experience around Audits and compliance Any penetration testing experience would be a bonus You'll work closely with both internal and external stakeholders across … UK based headquarters in Manchester, so it is a great time to join a global company that is going from strength to strength. Responsibilities Cyber Governance & Frameworks within a PCI-DSS environment Develop, maintain, and evolve the cyber governance and compliance framework. Define and manage information and cyber security policies, standards, and procedures. Ensure alignment with ISO More ❯

Lead Cyber Security Risk Consultant - PCI-DSS - Manchester We're seeking a strong Lead Cyber Security Risk Consultant with excellent cyber security, GRC & PCI-DSS payments experience to join our client's growing Cyber Security team. They need somebody who has excellent knowledge in PCI-DSS, ideally the subject matter expert, along with good … governance, risk and compliance experience Experience Required: At least 5 years in a Cyber security & GRC role, at Senior, lead or manager level. Be a PCI-DSS expert around payments ISO 27001and GDPR Knowledge of Risk Management, including risk identification, assessment, and mitigation techniques Good experience around Audits and compliance Any penetration testing experience would be a bonus … UK based headquarters in Manchester, so it is a great time to join a global company that is going from strength to strength. Responsibilities Cyber Governance & Frameworks within a PCI-DSS environment Develop, maintain, and evolve the cyber governance and compliance framework. Define and manage information and cyber security policies, standards, and procedures. Ensure alignment with ISO More ❯

hands on CISO or Security Director ready to lead, standardize, and scale the entire security posture for a hyper growth, globally expanding FinTech? Can you urgently drive mission critical PCI DSS compliance across multiple international environments while integrating disparate security practices from recent acquisitions? A high growth global FinTech, founded 4 years ago and backed by a major … function. This is a critical leadership role reporting to the executive team, demanding a candidate who can balance strategic vision with technical delivery. CISO Core Responsibilities: Mission-Critical Compliance (PCI DSS): Urgently own and successfully complete the certification for the third PCI DSS environment, ensuring continuous compliance across all card touching payments infrastructure. Security Strategy & Standardization … response activities and provide high level reporting on operational risk to the executive team and board. CISO Must Have Experience: Payments Security (Card Touching): Mandatory hands on experience in PCI DSS environments and security engineering for payments infrastructure, specifically dealing directly with card processing (not just merchant or wallet solutions). Technical Acumen: Proven ability to operate at More ❯

AD), Windows Server environments, and authentication solutions. Plan for scalability, redundancy, and high availability to support future growth. IT Security & Compliance: Ensure compliance with security and regulatory standards, including PCI DSS, Cyber Essentials+, DORA, and ISO 27001. Implement and enforce security best practices across infrastructure automation and cloud environments. Maintain accurate compliance documentation, including PCI DSS scope records and security policies. Secure high-value and high-risk data, such as cardholder (PCI) and personally identifiable information (PII). Cloud & Automation (these tools and skills will be taught): Implement and manage Infrastructure as Code (IaC) for cloud and on-premises environments. Learn how to automate configuration management, infrastructure provisioning, and application deployment. Configure and maintain … essential. Desirable (but not required) experience: Some interest in learning and using automation tools such as Azure DevOps, Terraform, Node-Red, Packer. Proven ability to secure high-value data (PCI cardholder data, PII) and implement security best practices. Scripting and automation skills (PowerShell, Python, Bash, or similar). Ability to design, implement, and maintain CI/CD pipelines for More ❯

with a Glasgow-based client who are looking for an Information Security Manager to harden their security posture, manage risk appetite, strengthen their GRC policies & controls focusing heavily on PCI-DSS & ISO27001, and manage their MSSP and a small team from a technical cyber perspective.The ideal candidate will have worked autonomously across these spaces previously. This role does … Doing: Assisting the Head of IT with developing the scope for ISO27001 certificationAchieving ISO27001 certification further down the lineCoordinating the client's efforts to achieve/maintain compliance with PCI-DSS and NIS. Leading a small but growing information security function. Liaising with the managed service security provider from a policy improvement and managed detection and response perspective. … strategy, making suggestions aligned with industry best-practice drawn from practical experience and security frameworks What I'm Looking For: Experience maintaining and developing security compliance in line with PCI-DSS and ISO27001. Experience working in an Information Security function in a managerial/mentorship capacity. Practical knowledge of PCI-DSS, ISO27001 and NIST.Experience implementing and More ❯

with a Glasgow-based client who are looking for an Information Security Manager to harden their security posture, manage risk appetite, strengthen their GRC policies & controls focusing heavily on PCI-DSS & ISO27001, and manage their MSSP and a small team from a technical cyber perspective. The ideal candidate will have worked autonomously across these spaces previously. This role … the Head of IT with developing the scope for ISO27001 certification Achieving ISO27001 certification further down the line Coordinating the client's efforts to achieve/maintain compliance with PCI-DSS and NIS. Leading a small but growing information security function. Liaising with the managed service security provider from a policy improvement and managed detection and response perspective. … strategy, making suggestions aligned with industry best-practice drawn from practical experience and security frameworks What I'm Looking For: Experience maintaining and developing security compliance in line with PCI-DSS and ISO27001. Experience working in an Information Security function in a managerial/mentorship capacity. Practical knowledge of PCI-DSS, ISO27001 and NIST. Experience implementing More ❯

office I'm looking for an Information Security Manager to work for a Glasgow-based client who are looking to harden their GRC policies and controls focusing heavily on PCI-DSS and ISO27001. This is a GRC-led leadership position and is integral to this organisation's ongoing information security journey. The ideal candidate will have worked autonomously … the Head of IT with developing the scope for ISO27001 certification Achieving ISO27001 certification further down the line Coordinating the client's efforts to achieve/maintain compliance with PCI-DSS and NIS. Leading a small but growing information security function. Liaising with the managed service security provider from a policy improvement perspective. Developing, enhancing and creating security … strategy, making suggestions aligned with industry best-practice drawn from practical experience and security frameworks What I'm Looking For: Experience maintaining and developing security compliance in line with PCI-DSS and ISO27001. Experience working in an Information Security function in a managerial/mentorship capacity. Practical knowledge of PCI-DSS, ISO27001 and NIST. Experience implementing More ❯

Implement data classification, sensitivity labels, retention controls, and DLP using Microsoft Purview/AIP. Enforce encryption-in-transit and at-rest across Azure and on-prem environments. Support GDPR, PCI DSS, and organisational data protection requirements. Azure Cloud Security Deliver cloud-native security configuration for Azure Landing Zones, subscriptions, and resource groups. Manage cloud security posture using Defender … to validate secure ExpressRoute, VPN, and firewall configurations — Network Engineering operates the underlying infrastructure. Ensure consistent security policy enforcement across Azure workloads. Compliance, Audit & Risk Management Support ISO 27001, PCI DSS, Cyber Essentials Plus, and NIST compliance activities. Prepare audit evidence, configuration exports, policy documentation, and control validation artefacts. Maintain risk registers, track remediation progress, and support risk … vulnerability management tools. Experience securing Windows Server, PKI/ADCS, domain controllers, and virtualisation environments. Practical understanding of Zero Trust security principles and secure-by-design. Strong understanding of PCI DSS, ISO 27001, Cyber Essentials Plus, and NIST controls. Ability to perform forensic investigation, log analysis, and threat triage. Desirable Skills Awareness of AWS security fundamentals (GuardDuty, Security More ❯

own the strategic and operational delivery of all information and cyber security activities. You'll develop and implement robust security policies, oversee incident response, and ensure compliance with GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus. You will be the single point of accountability for all security matters, reporting directly to the executive team and influencing critical … projects, platforms, data flows, and product development. Lead enterprise-wide information, cyber, and data security governance. Define and implement security frameworks, policies, and operating models. Ensure compliance with GDPR, PCI DSS, Cyber Essentials Plus, and ISO/IEC 27001:2022 aligned practices. Lead Data Protection Impact Assessments (DPIAs), data mapping, classification, and retention programs. Oversee incident response, vulnerability … Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure, AWS), on-premise networks, and hybrid architectures. Strong experience in Zero Trust security models. Experienced in More ❯

own the strategic and operational delivery of all information and cyber security activities. You'll develop and implement robust security policies, oversee incident response, and ensure compliance with GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus. You will be the single point of accountability for all security matters, reporting directly to the executive team and influencing critical … projects, platforms, data flows, and product development. Lead enterprise-wide information, cyber, and data security governance. Define and implement security frameworks, policies, and operating models. Ensure compliance with GDPR, PCI DSS, Cyber Essentials Plus, and ISO/IEC 27001:2022 aligned practices. Lead Data Protection Impact Assessments (DPIAs), data mapping, classification, and retention programs. Oversee incident response, vulnerability … Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure, AWS), on-premise networks, and hybrid architectures. Strong experience in Zero Trust security models. Experienced in More ❯

regulatory compliance oversight. The ideal candidate will establish and maintain security standards across the product portfolio, oversee secure system environments, and act as the primary contact for ISO 27001, PCI DSS, and GDPR compliance. Additionally, this role will support our commercial teams by contributing to tender responses and ensuring client security assurance. The Company: They are a technology … management and penetration testing programs. Maintain strong identity, access, and privilege management controls. Compliance & Assurance (30%) Manage and maintain ISO 27001 certification and audit processes. Ensure ongoing compliance with PCI DSS for payment-related systems. Oversee GDPR compliance across products, services, and internal operations. Complete HECVAT assessments and respond to security questionnaires for higher education tenders. Support sales … SaaS or cloud environments (ISV or B2B preferred). Proven track record managing ISO 27001 certification and compliance. Hands-on experience implementing GDPR in software products. Working knowledge of PCI DSS and securing payment systems. Deep understanding of cloud security across Azure and/or AWS. Skilled in application security and the secure development lifecycle (SDLC). Experienced More ❯

and access control mechanisms. Conduct vulnerability assessments and remediation using tools like Nessus, Tenable, Qualys, and Trivy. Ensure compliance with industry frameworks and regulations (ISO 27001, NIST 800-53, PCI DSS, HIPAA, FedRAMP, CJIS). Collaborate with application and infrastructure teams to embed security best practices throughout the software development lifecycle. Configure network segmentation, security groups, and endpoint … Terraform, Ansible, Docker, Kubernetes, Jenkins, GitHub Actions. Experience implementing and managing CSPM and CWPP solutions (Wiz, Prisma Cloud, Ermetic, CrowdStrike). Solid understanding of compliance standards (ISO 27001, NIST, PCI DSS, HIPAA, FedRAMP). Strong analytical, troubleshooting, and collaboration skills, with the ability to manage security across complex enterprise environments. Preferred Qualification Proven expertise in multi-cloud security … such as Wiz, Prisma Cloud, CrowdStrike, and CyberArk, integrating them for continuous posture management, threat detection, and compliance. Deep understanding of security frameworks and compliance standards (ISO 27001, NIST, PCI DSS, FedRAMP) with the ability to align enterprise cloud environments to governance best practices. More ❯

engineers, developers, and business leaders to ensure security is embedded by design, not added as an afterthought. Your work will span from threat modeling and risk assessment to architecting PCI-DSS compliant solutions, building the secure infrastructure that underpins our global mobility and payments platforms. This is your opportunity to influence how a fast-growing technology company manages … teams. Conduct risk assessments and threat modeling, proactively identifying vulnerabilities and mitigation strategies. Develop and maintain security policies and frameworks aligned with NIST, ISO 27001, and CIS Controls. Lead PCI-DSS architecture and compliance, ensuring both front- and back-office systems meet standards. Guide and mentor teams in best-practice security engineering, fostering a culture of continuous improvement. … understanding of AWS security, hybrid cloud design, and modern DevSecOps principles. Strong knowledge of frameworks such as NIST, ISO 27001, OWASP, and CIS. Experience designing and implementing secure, compliant PCI-DSS solutions. Solid grounding in tools and technologies like SIEM, IDS/IPS, DLP, endpoint protection, IAM, and encryption. Ability to communicate complex concepts clearly and influence at More ❯

based transaction systems, including payment card processing infrastructure, in a team that values collaboration, security, and reliability. You’ll work closely with third-party service providers, ensure compliance with PCI DSS, and help build secure abstractions over APIs that interface with our clients. The In-Car Payments Engineering team at Arrive is responsible for delivering cutting-edge, in … directly from their vehicles. What you will do Maintain and expand our serverless card payment infrastructure built with TypeScript, Node.js, and AWS (Lambda, API Gateway, DynamoDB). Ensure continued PCI DSS compliance. Work with others to fix bugs, implement minimal new features, trace errors, and ensure security patches are applied in production and pre-production environments. Support a … RESTful design, and secure authentication. Demonstrated knowledge of API security and OWASP Top 10 vulnerabilities. Experience with Docker, Linux, Git, and container-based environments. Hands-on development experience with PCI DSS, payment systems, or other regulated environments is essential Excellent communicator with a self-starter attitude and comfort working autonomously. Demonstrable expertise and understanding of API development/ More ❯

across all regions and entities. The scope includes KYC/KYB/AML vendor integrations, funnel efficiency, and cost optimization , as well as leading broader compliance projects such as PCI DSS certification, GDPR/data protection, FATF Travel Rule, and other regulatory requirements . You will be responsible for building scalable, automated solutions that support compliance operations worldwide … providers, build redundancy, and improve vendor routing to optimize both funnel performance and cost. Global Compliance Projects : Work with the compliance team to lead and deliver product solutions for PCI DSS, GDPR, FATF Travel Rule, AMLD , and other frameworks across jurisdictions. Automation & Efficiency : Identify manual workflows across compliance and risk operations, and design product-led automations with the … collaborate with engineers on backend workflows, APIs, and data pipelines. Proven success in automating compliance/risk operations and delivering compliance projects globally. Strong knowledge of global regulatory frameworks (PCI DSS, GDPR, FATF Travel Rule, AMLD, sanctions). Excellent stakeholder management; ability to align compliance, legal, operations, partnerships, engineering, and leadership. Nice-to-Haves Experience in high-growth More ❯

of Cyber Security, you'll set strategy, lead a growing team, and drive transformation across security governance, operations, compliance, cloud, and risk. You'll implement frameworks aligned to GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus , while modernising hybrid environments across Azure, AWS, Nutanix, and on-prem . Key Responsibilities Define and deliver a 3-5 year … through training, phishing simulations, and awareness programmes Drive security into operational teams, vendors, partners, and third-party risk management Success Measures Strategy delivered within first 90 days Strong GDPR & PCI audit outcomes Reduction in vulnerabilities and phishing incidents Improved audit ratings and team engagement What We're Looking For Senior leadership experience in cyber/security CISSP, CISM, CISA … or equivalent Strong track record with ISO 27001, NIST, PCI DSS, Cyber Essentials Plus Hands-on background across Azure, AWS, hybrid infrastructure, and modern security tooling Strong communicator with excellent stakeholder influence What's on Offer Up to 20% bonus Healthcare, pension, holidays 2-stage process with quick turnaround A major role in a major business - apply now More ❯

for cloud-related security breaches, ensuring minimal downtime and data loss. Develop automated workflows for vulnerability management, incident detection, and response. Align security measures with financial regulations such as PCI DSS, ISO 27001, SOC 2, and GDPR. Support Atom’s AI team with AI and Automation specific infrastructure security needs. Partner with DevOps and engineering teams to integrate … experience with container security tools for Kubernetes and Docker environments. Advanced scripting and automation skills (Python, PowerShell, Bash, etc.) Demonstrated ability to navigate and implement compliance frameworks such as PCI DSS, GDPR, SOC 2, and ISO 27001. Familiarity with financial industry-specific security and privacy standards. Relevant Security certifications (e.g. CISSP, SSCP, CCSM, CISM, etc.) Relevant public-cloud More ❯

as a partner to the business and provide oversight, assurance and governance to ensure controls are effectively implemented. Security Frameworks : Understanding of security frameworks such as ISO:27001 and PCI-DSS. Strong Communication Skills : Ability to communicate effectively to colleagues at all levels, both verbally and in writing, and translate complex technical information to non-technical audiences while building … strong relationships with key stakeholders. What's involved: Implement and maintain established control frameworks such as ISO27001 and PCI-DSS and other relevant security frameworks, including the creation of policies, standards, and other documentation. Lead the governance, oversight, and assurance on technical security controls and technical design on both new and existing solutions in FCG's network and … frameworks, including experience and proficiency in cloud security. Experience and expertise in Azure environment security, vulnerability management, and associated processes. Detailed knowledge of Information Security frameworks and standards, particularly PCI-DSS, ISO27001, and other cyber frameworks. Experience of managing Information Security in an Agile Change Environment. Proven track record of undertaking control assurance reviews against best practice standards More ❯

lifecycle for various kinds of applications, ensuring data is protected and governed. Essential & Desirable KnowledgeProficiency in MS Office applications (Excel, Word, and PowerPoint) is essential.GDPR - ISO27001 - Cyber Essentials Plus - PCI DSS - OneTrust.Practical application ability with Microsoft Access, Project, Visio, SQL, Python and Tableau is desirable.Practical application ability with Data Governance and Data Quality Management tools is desirable.Essential & Desirable … problem-solving skills. Ability to work under pressure.Ability to pick up new concepts and skills.Good awareness and understanding of current regulatory compliance requirements: PRA, FCA, ISO27001 - GDPR - Cyber Essentials - PCI -DSS A good team player with a flexible approach and a proactive "can do" attitude.Develops in accordance with standards and agreed industry best practice Hays Specialist Recruitment Limited More ❯

risk posture, compliance status, and strategic improvement initiatives. Own and manage the Information Security Risk Register; ensure risks are assessed, documented, and mitigated effectively. Lead compliance efforts across GDPR, PCI DSS, and other applicable regulations. Conduct and coordinate enterprise-wide risk assessments, audits, and internal reviews. Champion a pragmatic, risk based approach to security - balancing protection, productivity, and … data security. Experience managing or working with vulnerability management tools, SIEM/SOC environments, and incident response processes. Familiarity with frameworks and standards such as ISO 27001, NIST, CIS, PCI DSS, and GDPR. Excellent communication and stakeholder management skills, with the ability to influence at all levels of the organisation. Analytical, pragmatic, and calm under pressure - with a More ❯

and compliant. You’ll manage cyber and data protection risks, oversee our technical infrastructure, and ensure we meet key security standards such as ISO 27001, Cyber Essentials, PSN, and PCI-DSS. You’ll also manage our client's corporate insurance function, helping ensure our policies and coverage are robust and compliant. What You’ll Do • Lead the development and … server infrastructure (on-premise and cloud). • Promote cyber awareness and best practice across the organisation. • Ensure successful completion of security audits and certifications (ISO 27001, Cyber Essentials, PSN, PCI-DSS). • Manage the corporate insurance service, working with governance officers and external partners. • Build strong working relationships with internal teams, senior managers, and external regulators such as … operations. • Excellent problem-solving, communication, and leadership skills. Desirable qualifications and experience: • CISM, CISSP, ISO 27001 Lead Implementer/Auditor, or ITIL certification. • Experience with frameworks such as PSN, PCI-DSS, NHS DSP Toolkit, or CAF. • Understanding of insurance laws and governance Should you have any questions or wish to apply please do not hesitate to contact Clear More ❯

compliant. You’ll manage cyber and data protection risks, oversee our technical infrastructure, and ensure our client meets key security standards such as ISO 27001, Cyber Essentials, PSN, and PCI-DSS. You’ll also manage the client's corporate insurance function, helping ensure the policies and coverage are robust and compliant. What You’ll Do • Lead the development and … server infrastructure (on-premise and cloud). • Promote cyber awareness and best practice across the organisation. • Ensure successful completion of security audits and certifications (ISO 27001, Cyber Essentials, PSN, PCI-DSS). • Manage the corporate insurance service, working with governance officers and external partners. • Build strong working relationships with internal teams, senior managers, and external regulators such as … operations. • Excellent problem-solving, communication, and leadership skills. Desirable qualifications and experience: • CISM, CISSP, ISO 27001 Lead Implementer/Auditor, or ITIL certification. • Experience with frameworks such as PSN, PCI-DSS, NHS DSP Toolkit, or CAF. • Understanding of insurance laws and governance. Should you have any questions or wish to apply please do not hesitate to contact Clear More ❯

team Accountable by delivering on promises and pursuing growth and personal improvement where developmental feedback is received Critical Competencies – Technical Fit Good understanding of at least one audit framework; PCI DSS, ISO 27001, Cyber Essentials, NIST, SOC 2, NIS2, Microsoft 365 Certification, etc Ability to deliver, without supervision/support, at least one Cyber Practice GRC service Aptitude … managing workload accordingly Ability to quickly learn and understand new skills and technologies specific to the Cyber Security industry Desirable Competencies Exposure to multiple industry audit/compliance frameworks; PCI DSS, ISO 27001, Cyber Essentials, NIST, SOC 2, NIS2, etc Exposure to Amazon AWS, Microsoft Azure or Google GCPs cloud platforms Data Privacy Experience, e.g. GDPR, DPA2018 More ❯

them into the organization's security posture. Provide leadership, mentorship, and guidance to junior security staff or team members. Ensure compliance with relevant regulations and industry standards (e.g., OWASP, PCI-DSS, GDPR Required Skills and Qualifications: Minimum 12 years of experience in web security, information security, or a related field. Strong expertise in web application security, network security … protection. Deep understanding of OWASP Top 10, common web vulnerabilities, and secure coding practices. Experience with penetration testing and incident response. Familiarity with regulatory requirements and security frameworks (e.g., PCI-DSS, GDPR, ISO 27001 Strong analytical and problem-solving skills. Excellent leadership, communication, and team collaboration abilities. Relevant certifications such as CISSP, CEH, OSCP, or equivalent are highly More ❯