1 to 25 of 384 PCI DSS Jobs

Role This is a unique and exciting opportunity for a seasoned PCI DSS expert to take ownership of and drive the growth of the Payment Card Industry (PCI) service line. This role is a perfect blend of deep technical consulting, strategic client advisory, and sophisticated business development. You will act as the lead subject matter expert, guiding … mid-market clients through the complexities of achieving and maintaining PCI DSS compliance. You will also contribute and share in the rewards for the commercial success of the practice, identifying and winning new business with both existing and prospective customers by acting as a trusted, credible advisor. Key Responsibilities Consulting & Delivery (approx. 80%) Lead and deliver a range … of PCI DSS compliance services, including Gap Analyses, Scoping Workshops, Remediation Advisory, and formal assessments (Report on Compliance (RoC) and Self-Assessment Questionnaires (SAQ)). Act as a virtual CISO or trusted security advisor to key clients, providing ongoing strategic guidance on their compliance programmes. Translate complex technical PCI DSS requirements and security findings into clear More ❯

Lead Cyber Security Risk Consultant - PCI-DSS - Manchester We're seeking a strong Lead Cyber Security Risk Consultant with excellent cyber security, GRC & PCI-DSS payments experience to join our client's growing Cyber Security team. They need somebody who has excellent knowledge in PCI-DSS, ideally the subject matter expert, along with good … compliance experience You'll have a small team of GRC Specialists to do the transactional work, so we're looking for someone who is confident and can provide the PCI-DSS expertise that is needed. Experience Required: At least 5 years in a Cyber security & GRC role, at Senior, lead or manager level. Be a PCI-DSS … UK based headquarters in Manchester, so it is a great time to join a global company that is going from strength to strength. Responsibilities Cyber Governance & Frameworks within a PCI-DSS environment Develop, maintain, and evolve the cyber governance and compliance framework. Define and manage information and cyber security policies, standards, and procedures. Ensure alignment with ISO More ❯

GRC Specialist - PCI-DSS - Manchester We're seeking an experienced GRC Specialist with excellent cyber security, GRC & PCI-DSS payments experience to join our client's growing Cyber Security team. They need somebody who has excellent knowledge in PCI-DSS along with good governance, risk and compliance experience and familiarity with other standards. Experience … Required: At least 2-3 years in a Cyber security & GRC role Be a PCI-DSS expert around payments ISO 27001and GDPR Knowledge of Risk Management, including risk identification, assessment, and mitigation techniques Good experience around Audits and compliance Any penetration testing experience would be a bonus You'll work closely with both internal and external stakeholders across … UK based headquarters in Manchester, so it is a great time to join a global company that is going from strength to strength. Responsibilities Cyber Governance & Frameworks within a PCI-DSS environment Develop, maintain, and evolve the cyber governance and compliance framework. Define and manage information and cyber security policies, standards, and procedures. Ensure alignment with ISO More ❯

PCI-DSS Compliance Manager - GRC/Payments Manchester £60-80k pa A successful technology company are seeking a PCI-DSS Compliance Manager to join their growing Security team and be responsible for risk management, compliance monitoring and governance support as well as 3rd party vendor risk management. Being experienced in Payments Compliance you will ensure … the company maintains compliance with all relevant regulations including PCI-DSS, GDPR, NIS Regulations and the Data Protection Act 2018. You will be able to demonstrate Attestation of Compliance (AoC) experience alongside experience of ensuring compliance with ISO27001 and relevant organisational standards. This role will require excellent technical GRC and PCI-DSS knowledge, good organisational skills … and the ability to communicate critical security information and requirements to both internal and external stakeholders. PCI-DSS and Attestation of Compliance experience is a must have for this position. Please send a CV detailing the required experience for consideration. PCI-DSS Compliance Manager - GRC/Payments Manchester £60-80k pa More ❯

WELCOME TO PCI PAL PCI Pal is a leading provider of SaaS solutions that empower companies to take payments securely, adhere to strict industry governance, and remove their business from the significant risks posed by non-compliance and data loss. We are integrated and resold by some of the world's leading business communications vendors, as well as … major payment service providers. We are currently looking for a GRC & Audit Lead to join our UK team. THE OPPORTUNITY: PCI Pal's Information Security team requires a dynamic and proactive individual to lead all Governance, Risk and Compliance (GRC), audit requirements for our team and the company. We are an agile and innovative team and are responsible for … that GRC and audit requirements are suitably managed, maintained and matured. YOU WILL BE RESPONSIBLE FOR: Managing, maintaining, and maturing the already established audit lifecycles for the following frameworks: PCI DSS v4.0, ISO 27001:2022, ISO 9001:2015, ISO 14001:2015, Cyber Essentials, Cyber Essentials Plus, SOC2 Type 1 – 3 & HIPAA Working in close collaboration with other team More ❯

office I'm looking for an Information Security Manager to work for a Glasgow-based client who are looking to harden their GRC policies and controls focusing heavily on PCI-DSS and ISO27001. This is a GRC-led leadership position and is integral to this organisation's ongoing information security journey. The ideal candidate will have worked autonomously … the Head of IT with developing the scope for ISO27001 certification Achieving ISO27001 certification further down the line Coordinating the client's efforts to achieve/maintain compliance with PCI-DSS and NIS. Leading a small but growing information security function. Liaising with the managed service security provider from a policy improvement perspective. Developing, enhancing and creating security … strategy, making suggestions aligned with industry best-practice drawn from practical experience and security frameworks What I'm Looking For: Experience maintaining and developing security compliance in line with PCI-DSS and ISO27001. Experience working in an Information Security function in a managerial/mentorship capacity. Practical knowledge of PCI-DSS, ISO27001 and NIST. Experience implementing More ❯

office I'm looking for an Information Security Manager to work for a Glasgow-based client who are looking to harden their GRC policies and controls focusing heavily on PCI-DSS and ISO27001. This is a GRC-led leadership position and is integral to this organisation's ongoing information security journey. The ideal candidate will have worked autonomously … the Head of IT with developing the scope for ISO27001 certification Achieving ISO27001 certification further down the line Coordinating the client's efforts to achieve/maintain compliance with PCI-DSS and NIS. Leading a small but growing information security function. Liaising with the managed service security provider from a policy improvement perspective. Developing, enhancing and creating security … strategy, making suggestions aligned with industry best-practice drawn from practical experience and security frameworks What I'm Looking For: Experience maintaining and developing security compliance in line with PCI-DSS and ISO27001. Experience working in an Information Security function in a managerial/mentorship capacity. Practical knowledge of PCI-DSS, ISO27001 and NIST. Experience implementing More ❯

office I'm looking for an Information Security Manager to work for a Glasgow-based client who are looking to harden their GRC policies and controls focusing heavily on PCI-DSS and ISO27001. This is a GRC-led leadership position and is integral to this organisation's ongoing information security journey. The ideal candidate will have worked autonomously … the Head of IT with developing the scope for ISO27001 certification Achieving ISO27001 certification further down the line Coordinating the client's efforts to achieve/maintain compliance with PCI-DSS and NIS. Leading a small but growing information security function. Liaising with the managed service security provider from a policy improvement perspective. Developing, enhancing and creating security … strategy, making suggestions aligned with industry best-practice drawn from practical experience and security frameworks What I'm Looking For: Experience maintaining and developing security compliance in line with PCI-DSS and ISO27001. Experience working in an Information Security function in a managerial/mentorship capacity. Practical knowledge of PCI-DSS, ISO27001 and NIST. Experience implementing More ❯

office I'm looking for an Information Security Manager to work for a Glasgow-based client who are looking to harden their GRC policies and controls focusing heavily on PCI-DSS and ISO27001. This is a GRC-led leadership position and is integral to this organisation's ongoing information security journey. The ideal candidate will have worked autonomously … the Head of IT with developing the scope for ISO27001 certification Achieving ISO27001 certification further down the line Coordinating the client's efforts to achieve/maintain compliance with PCI-DSS and NIS. Leading a small but growing information security function. Liaising with the managed service security provider from a policy improvement perspective. Developing, enhancing and creating security … strategy, making suggestions aligned with industry best-practice drawn from practical experience and security frameworks What I'm Looking For: Experience maintaining and developing security compliance in line with PCI-DSS and ISO27001. Experience working in an Information Security function in a managerial/mentorship capacity. Practical knowledge of PCI-DSS, ISO27001 and NIST. Experience implementing More ❯

office I'm looking for an Information Security Manager to work for a Glasgow-based client who are looking to harden their GRC policies and controls focusing heavily on PCI-DSS and ISO27001. This is a GRC-led leadership position and is integral to this organisation's ongoing information security journey. The ideal candidate will have worked autonomously … the Head of IT with developing the scope for ISO27001 certification Achieving ISO27001 certification further down the line Coordinating the client's efforts to achieve/maintain compliance with PCI-DSS and NIS. Leading a small but growing information security function. Liaising with the managed service security provider from a policy improvement perspective. Developing, enhancing and creating security … strategy, making suggestions aligned with industry best-practice drawn from practical experience and security frameworks What I'm Looking For: Experience maintaining and developing security compliance in line with PCI-DSS and ISO27001. Experience working in an Information Security function in a managerial/mentorship capacity. Practical knowledge of PCI-DSS, ISO27001 and NIST. Experience implementing More ❯

Team Development Build, mentor, and lead engineering and technology teams. Establish a culture of excellence, innovation, and accountability. Security, Risk & Compliance Ensure full compliance with international regulatory standards. Oversee PCI DSS, PCI PIN and local data protection adherence. Oversee fraud prevention, risk management, and transaction monitoring in the technology flows. Partner with compliance teams to proactively address … experience with local switch integrations and payment network connectivity. Proven track record in vendor selection, implementation, and delivery across SaaS, Cloud, and On-Prem. Strong knowledge of regulatory frameworks, PCI DSS, and PCI PIN. Experience building and scaling engineering teams in regulated environments. For a discreet and confidential conversation, please do feel free to either PM me More ❯

implementation roadmaps. Build, mentor, and lead engineering and technology teams. Establish a culture of excellence, innovation, and accountability. Security, Risk & Compliance Ensure full compliance with international regulatory standards. Oversee PCI DSS, PCI PIN and local data protection adherence. Oversee fraud prevention, risk management, and transaction monitoring in the technology flows. Partner with compliance teams to proactively address … experience with local switch integrations and payment network connectivity. Proven track record in vendor selection, implementation, and delivery across SaaS, Cloud, and On-Prem. Strong knowledge of regulatory frameworks, PCI DSS, and PCI PIN. Experience building and scaling engineering teams in regulated environments. More ❯

own the strategic and operational delivery of all information and cyber security activities. You'll develop and implement robust security policies, oversee incident response, and ensure compliance with GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus. You will be the single point of accountability for all security matters, reporting directly to the executive team and influencing critical … projects, platforms, data flows, and product development. Lead enterprise-wide information, cyber, and data security governance. Define and implement security frameworks, policies, and operating models. Ensure compliance with GDPR, PCI DSS, Cyber Essentials Plus, and ISO/IEC 27001:2022 aligned practices. Lead Data Protection Impact Assessments (DPIAs), data mapping, classification, and retention programs. Oversee incident response, vulnerability … Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure, AWS), on-premise networks, and hybrid architectures. Strong experience in Zero Trust security models. Experienced in More ❯

own the strategic and operational delivery of all information and cyber security activities. You'll develop and implement robust security policies, oversee incident response, and ensure compliance with GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus. You will be the single point of accountability for all security matters, reporting directly to the executive team and influencing critical … projects, platforms, data flows, and product development. Lead enterprise-wide information, cyber, and data security governance. Define and implement security frameworks, policies, and operating models. Ensure compliance with GDPR, PCI DSS, Cyber Essentials Plus, and ISO/IEC 27001:2022 aligned practices. Lead Data Protection Impact Assessments (DPIAs), data mapping, classification, and retention programs. Oversee incident response, vulnerability … Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure, AWS), on-premise networks, and hybrid architectures. Strong experience in Zero Trust security models. Experienced in More ❯

own the strategic and operational delivery of all information and cyber security activities. You'll develop and implement robust security policies, oversee incident response, and ensure compliance with GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus. You will be the single point of accountability for all security matters, reporting directly to the executive team and influencing critical … projects, platforms, data flows, and product development. Lead enterprise-wide information, cyber, and data security governance. Define and implement security frameworks, policies, and operating models. Ensure compliance with GDPR, PCI DSS, Cyber Essentials Plus, and ISO/IEC 27001:2022 aligned practices. Lead Data Protection Impact Assessments (DPIAs), data mapping, classification, and retention programs. Oversee incident response, vulnerability … Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure, AWS), on-premise networks, and hybrid architectures. Strong experience in Zero Trust security models. Experienced in More ❯

own the strategic and operational delivery of all information and cyber security activities. You'll develop and implement robust security policies, oversee incident response, and ensure compliance with GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus. You will be the single point of accountability for all security matters, reporting directly to the executive team and influencing critical … projects, platforms, data flows, and product development. Lead enterprise-wide information, cyber, and data security governance. Define and implement security frameworks, policies, and operating models. Ensure compliance with GDPR, PCI DSS, Cyber Essentials Plus, and ISO/IEC 27001:2022 aligned practices. Lead Data Protection Impact Assessments (DPIAs), data mapping, classification, and retention programs. Oversee incident response, vulnerability … Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure, AWS), on-premise networks, and hybrid architectures. Strong experience in Zero Trust security models. Experienced in More ❯

regulatory compliance oversight. The ideal candidate will establish and maintain security standards across the product portfolio, oversee secure system environments, and act as the primary contact for ISO 27001, PCI DSS, and GDPR compliance. Additionally, this role will support our commercial teams by contributing to tender responses and ensuring client security assurance. The Company: They are a technology … management and penetration testing programs. Maintain strong identity, access, and privilege management controls. Compliance & Assurance (30%) Manage and maintain ISO 27001 certification and audit processes. Ensure ongoing compliance with PCI DSS for payment-related systems. Oversee GDPR compliance across products, services, and internal operations. Complete HECVAT assessments and respond to security questionnaires for higher education tenders. Support sales … SaaS or cloud environments (ISV or B2B preferred). Proven track record managing ISO 27001 certification and compliance. Hands-on experience implementing GDPR in software products. Working knowledge of PCI DSS and securing payment systems. Deep understanding of cloud security across Azure and/or AWS. Skilled in application security and the secure development lifecycle (SDLC). Experienced More ❯

impact projects within a forward-thinking, supportive environment that values expertise, innovation, and growth. KEY RESPONSIBILITIES: Deliver high-quality GRC services, including: ISO 27001 NIST Gap Analysis CAF Assessments PCI DSS CSMA, ISF, and CIS Assessments Develop and maintain in-house methodologies, templates, and delivery playbooks for core GRC services. Conduct client workshops, interviews, and assessments to gather … Computer Science, Risk Management, or a related field, or equivalent professional experience. - ESSENTIAL Professional Experience One or more of the following: ISO 27001 Lead Auditor or Lead Implementer certification PCI DSS Qualified Security Assessor (QSA) or Internal Security Assessor (ISA) NIST Cybersecurity Framework or CAF-related training/accreditation Certified Information Systems Security Professional (CISSP) Certified Information Security … tabletop exercises, or assurance testing engagements. - DESIRABLE Other Requirements Strong understanding of governance, risk, and compliance principles, including key frameworks and regulations such as ISO 27001, NIST CSF, CAF, PCI DSS, and GDPR. - ESSENTIAL Excellent written and verbal communication skills, with the ability to translate technical requirements into business language. - ESSENTIAL Ability to travel to client sites as More ❯

success. Managing security strategy development and defining roadmaps in alignment with client business objectives. Perform security program assessments against established frameworks and best practices such as NIST CSF, CIS, PCI DSS, HIPAA, ISO, SOC 1/2 Prepare the clients for security audits such as PCI DSS, ISO 27k, SOC . Partner with the Client Account … Directory, application security, etc) CISSP/CCSP/CCSK certification or its equivalent is preferred. Expert knowledge of at least 2 security frameworks or certifications such as NIST, CIS, PCI DSS, HIPAA, SOC 1/2 Entrepreneurial DNA with clear ownership of execution and delivery of client satisfaction Strong strategic and analytical mindset with exceptional problem solving skills More ❯

and access control mechanisms. Conduct vulnerability assessments and remediation using tools like Nessus, Tenable, Qualys, and Trivy. Ensure compliance with industry frameworks and regulations (ISO 27001, NIST 800-53, PCI DSS, HIPAA, FedRAMP, CJIS). Collaborate with application and infrastructure teams to embed security best practices throughout the software development lifecycle. Configure network segmentation, security groups, and endpoint … Terraform, Ansible, Docker, Kubernetes, Jenkins, GitHub Actions. Experience implementing and managing CSPM and CWPP solutions (Wiz, Prisma Cloud, Ermetic, CrowdStrike). Solid understanding of compliance standards (ISO 27001, NIST, PCI DSS, HIPAA, FedRAMP). Strong analytical, troubleshooting, and collaboration skills, with the ability to manage security across complex enterprise environments. Preferred Qualification Proven expertise in multi-cloud security … such as Wiz, Prisma Cloud, CrowdStrike, and CyberArk, integrating them for continuous posture management, threat detection, and compliance. Deep understanding of security frameworks and compliance standards (ISO 27001, NIST, PCI DSS, FedRAMP) with the ability to align enterprise cloud environments to governance best practices. More ❯

cybersecurity, with at least 1 year supporting azure, IIS, Active Directory, SQL database, and critical infrastructure environments. Familiarity with SIEM tools, log analysis, and incident response workflows. Familiarity with PCI DSS 4.0+ security requirements. Working knowledge of networking protocols, system hardening, and asset inventory practices. Strong analytical, communication, and collaboration skills. Experience supporting or securing tolling systems, traffic … management infrastructure, or roadside equipment. Knowledge of security frameworks such as PCI DSS, NIST 800-53, NIST 800-82, or CIS Controls. Certifications such as GICSP, GCIA, CompTIA Security+, or CISSP. Experience working with third-party vendors and supporting environments with both state-managed and vendor-managed components. Requirements: Experience supporting or securing tolling systems, traffic management infrastructure … or roadside equipment -Highly desired 5 Years Knowledge of security frameworks such as PCI DSS, SEC 530, NIST 800-53, NIST 800-82, or CIS Controls -Highly desired 5 Years Experience working with third-party vendors and supporting environments with both state-managed and vendor-managed components -Highly desired 5 Years More ❯

an experienced Information Security Analyst to join our client who will play a key role in driving compliance, governance, and continual improvement across key security frameworks including ISO 27001, PCI DSS, and Cyber Essentials Plus. Key Responsibilities: • Lead on the operation and continual improvement of the Information Security Management System (ISMS) • Coordinate internal and external audit readiness for … ISO 27001, PCI DSS, and Cyber Essentials Plus • Draft and update information security policies, procedures, and technical standards • Work with procurement and commercial teams to support supplier assurance and risk assessment • Contribute to tender responses and bid processes, ensuring security and compliance requirements are met • Promote good security practices and raise awareness across departments • Act as an escalation … and standards relating to information and cyber security Key Skills & Experience: Essential: • Background in IT, Cyber Security, Information Systems, or a related discipline • Strong working knowledge of ISO 27001, PCI DSS, and Cyber Essentials Plus • Proven ability to support and prepare for audits, including evidence collation and audit readiness • Excellent attention to detail and ability to produce high More ❯

an experienced Information Security Analyst to join our client who will play a key role in driving compliance, governance, and continual improvement across key security frameworks including ISO 27001, PCI DSS, and Cyber Essentials Plus. Key Responsibilities: * Lead on the operation and continual improvement of the Information Security Management System (ISMS) * Coordinate internal and external audit readiness for … ISO 27001, PCI DSS, and Cyber Essentials Plus * Draft and update information security policies, procedures, and technical standards * Work with procurement and commercial teams to support supplier assurance and risk assessment * Contribute to tender responses and bid processes, ensuring security and compliance requirements are met * Promote good security practices and raise awareness across departments * Act as an escalation … and standards relating to information and cyber security Key Skills & Experience: Essential: * Background in IT, Cyber Security, Information Systems, or a related discipline * Strong working knowledge of ISO 27001, PCI DSS, and Cyber Essentials Plus * Proven ability to support and prepare for audits, including evidence collation and audit readiness * Excellent attention to detail and ability to produce high More ❯

your whole self to work bringing your energy and creativity to make a positive difference, then this is the job for you. We have an exciting opportunity for a PCI and Compliance Lead to join our Information Security team for a fixed term of 18 months. The Benefits Salary - up to £64,898 p.a. – depending on skills and experience. … community organisations. The Role Reporting to our Information Security Assurance Manager, you’ll be responsible for oversight, management and continuous compliance of the Payment Card Industry Data Security Standard (PCI DSS) requirements across the Society within the Information Security Assurance Team. You’ll assist in the oversight and control of all aspects of the Information Security Management System … line risk colleagues, Payments and Technology. You’ll manage the relationship with Qualified Security Assessors (QSAs); coordinating annual assessment and remediation activities, Regulatory Bodies; providing evidence and reporting for PCI compliance, and Third-Party Service Providers; completing assurance reviews and compliance verifications for suppliers handling PCI data. About You We’re looking for someone with significant experience in More ❯

security (firewalls, VPCs), and identity and access management (IAM) for data and model assets. Compliance & Governance: Ensure the MLOps platform adheres to stringent financial industry regulations (e.g., GDPR, SOX, PCI-DSS, SWIFT CSCF) and internal policies (Model Risk Management). Automate compliance evidence collection. Threat Modeling & Risk Assessment: Proactively conduct threat modeling for AI/ML systems, identifying … and/or Bash. Ability to write automation scripts and understand data science code for security reviews. Financial Sector Compliance: Familiarity with financial industry regulations and standards (e.g., GDPR, PCI-DSS, SWIFT CSCF) and their technical implications. Qualifications & Experience (Preferred) Relevant security certifications (e.g., CISSP, CCSP, AWS/Azure Security Specialist). Kubernetes security certifications (e.g., CKS - Certified More ❯