1 to 25 of 114 PCI DSS Jobs in the UK

PCI DSS QSA (Senior Consultant) Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR London Description Summary of role NCC Group provides Information Assurance consultancy to help businesses protect critical systems and information. We do this by defining security strategies, developing policies, conducting security maturity … demand augmentation roles Data discovery and mapping Risk advisory and assurance Business resilience Data privacy and GDPR ISO 27001 assessments Supply chain assurance PCI 3DS, PCI P2PE, PCI SSF audits Incident response readiness and planning Card production and PIN audits Cyber maturity assessments Incident response planning Gold ...

looking for someone to own compliance end‐to‐end at Fresha. We’re already HIPAA and ISO27001 certified, we’re heading into a PCI DSS audit shortly, and later this year we’ll have GDPR and SOC 2 Type II coming up. The role is based … friendly office in London: The Bower, 207‐122, Old Street, London EC1V 9NR. What you’ll own Audits and certifications Run the PCI DSS audit to completion, then GDPR and SOC 2 Type II this year Serve as the main point of contact for external auditors—scoping, evidence ...

Lead Information Security Analyst Engineer/Architect to £54k + Benefits ISO27001, COBIT, SECURITY, ITIL, CISM, CISSP, PCI-DSS Lead Information Security Engineer/Analyst: Do you have a background working in an IT Security function and are able to identify and remediate threats or vulnerabilities, implement information … assets and mitigate against potential risks.You will be actively responsible for ensuring the successful achievement of external certifications such as ISO27001, MOU, PSN and PCI-DSS etc alongside managing security incident response plans. In addition, the Lead information Security Analyst/Engineer will provide advice and guidance ...

Lead Information Security Analyst/Engineer to £55k + Benefits ISO27001, COBIT, SECURITY, ITIL, CISM, CISSP, PCI-DSS Lead Information Security Engineer/Analyst: Do you have a background working in an IT Security function? Do you have a broad technical skill set and are able to identify … mitigate against potential risks. You will be actively responsible for ensuring the successful achievement of external certifications such as ISO27001, MOU, PSN and PCI-DSS etc alongside managing security incident response plans. In addition, the Lead information Security Analyst/Engineer will provide advice and guidance on government ...

organisation’s subject matter expert for audits, reviews and security assurance activities Maintain compliance with key standards and certifications, including Cyber Essentials and PCI-DSS Lead or support the investigation of security incidents, ensuring lessons learned are captured and acted upon Provide guidance on information governance, including data … CISM or ISO 27001, or equivalent experience. As the Information Security Manager, you will have a solid understanding of security standards and frameworks, including PCI-DSS, and be confident working with both technical and non-technical stakeholders, translating complex issues into clear, practical guidance. You will be highly ...

organisation’s subject matter expert for audits, reviews and security assurance activities Maintain compliance with key standards and certifications, including Cyber Essentials and PCI-DSS Lead or support the investigation of security incidents, ensuring lessons learned are captured and acted upon Provide guidance on information governance, including data … CISM or ISO 27001, or equivalent experience. As the Information Security Manager, you will have a solid understanding of security standards and frameworks, including PCI-DSS, and be confident working with both technical and non-technical stakeholders, translating complex issues into clear, practical guidance. You will be highly ...

client-facing environments. Practical experience implementing, assessing, or managing security frameworks and standards such as ISO/IEC 27001, NIST, Cyber Essentials, CIS Controls, PCI DSS, and NCSC Cyber Assessment Framework (CAF). Strong understanding of information security governance, risk management, compliance and assurance principles. Experience conducting risk … Certified Information Security Manager) CRISC (Certified in Risk and Information Systems Control) CISMP or equivalent security qualification Cyber Essentials Assessor qualification Relevant NIST, CAF, PCI DSS, or risk management certifications Degree-level qualification in Cyber Security, Information Security, Computer Science, Risk Management, or related discipline Our Benefits ...

ideally within financial services, banking, or payments. Experience in InfoSec and Cyber Security. Experience setting up policies and processes in InfoSec area. Familiarity with PCI-DSS, ISO27001, SOC 2/3 or other global standards. Familiarity with regulatory requirements (DORA, PCI-DSS, PSD2, GDPR). Understanding … identify areas for improvement. Performing security risk and control assessments for new products or initiatives. Working with third party InfoSec auditors (penetration testing, PCI compliance etc.). Conduct regular risk assessments and vulnerability assessments to identify security gaps and develop appropriate mitigation plans. Conducting regulatory gap analysis for regulations ...

Azure adoption and hybrid cloud solutions Maintaining core services (AD, DNS, DHCP) and planning Entra ID migration Ensuring infrastructure meets security and compliance standards (PCI DSS, ISO 27001, GDPR) Delivering 2nd/3rd line support and resolving complex issues Supporting disaster recovery, backup, and monitoring processes Acting … work A collaborative team player with clear communication skills Proactive with a focus on continuous improvement Desirable experience includes Azure migrations, scripting/automation, PCI DSS environments, and working within the charity or public sector. Job Offer Opportunity to lead cloud transformation initiatives Remote working pattern, with occasional ...

product and delivery teams in Agile and DevOps environments to embed security by design. Support compliance with security and regulatory frameworks including ISO 27001, PCI DSS, OWASP and internal standards. Review security posture of vendors and outsourced services, providing due diligence and third-party risk assurance. Present security … cloud security, secure application delivery, third-party risk management and access management practices. Experience applying recognised frameworks and standards such as ISO 27001, PCI DSS, OWASP, NIST and enterprise security control frameworks. Ability to translate complex technical risks into business language and provide clear, evidence-based recommendations. Exposure ...

product and delivery teams in Agile and DevOps environments to embed security by desi gn.Support compliance with security and regulatory frameworks including ISO 27001, PCI DSS, OWASP and internal standar ds.Review security posture of vendors and outsourced services, providing due diligence and third-party risk assuran ce.Present security … cloud security, secure application delivery, third-party risk management and access management practic es.Experience applying recognised frameworks and standards such as ISO 27001, PCI DSS, OWASP, NIST and enterprise security control framewor ks.Ability to translate complex technical risks into business language and provide clear, evidence-based recommendatio ns.Exposure ...

internal and external auditors as appropriate to assess the standard of information and IT security across Robertson to meet the requirements of ISO 27001, PCI DSS, NIST 800-53 and Cyber Essentials Plus. Answer security questionnaires, assist in bid responses and develop cyber security plans as part … Proven track record of delivering cost effective solutions to protect corporate assets and experience of achieving compliance against industry security standards such as ISO27001, PCI‐DSS, NIST 800 Series. Demonstrable experience in Security Risk management. Leadership experience with ability to mentor a team and to drive IT, Information ...

time Define security and compliance requirements and work closely with Engineering and IT teams to ensure they are implemented effectively Maintain existing compliance across PCI DSS, ISO27001, SOC2 and Cyber Essentials, and lead new compliance initiatives across additional standards such as ISO 27017 and ISO 27018 Manage audits … support a small team, creating focus, trust and shared direction About You_ You've worked in security and compliance within a payments, fintech or PCI-regulated environment You have strong, hands-on experience with PCI DSS, ISO27001 and SOC2, including preparing for and delivering audits ...

Maintain Compliance Frameworks: Create, update, and align compliance policies, procedures, and technical controls with SOC 2 (Type 1 & 2), ISO 27001, HIPAA, and PCI DSS standards. Lead Compliance Certifications: Oversee and execute SOC 2 and ISO 27001 implementation and certification projects across multi‐cloud environments (AWS, GCP, Azure … firm (e.g., Deloitte, PwC, EY, KPMG) in an advisory or assurance capacity. Consulting experience. Familiarity with additional frameworks and regulations (e.g., HiTRUST, PCI DSS, NIST, GDPR, HIPAA). What We Offer Career Development: Clear growth path with mentorship and training opportunities. Technical Training: Comprehensive onboarding on security ...

cybersecurity team. This role is predominantly end-client facing, advising on security best practices, vulnerability management and security standard compliance (e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. Skills & Experience Required: 2+ years of experience working in Cyber Security within an AWS cloud environment Vulnerability … management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with stakeholders and clients, as well as the ability to provide training and mentoring around cybersecurity Ideally, some relevant cybersecurity certifications This role ...

Group is seeking a Senior Consultant (PCI DSS QSA) to join our Cyber Services division in Manchester. The role involves providing high-quality information assurance consultancy to clients, contributing to cybersecurity efforts, and mentoring junior consultants. The ideal candidate will hold a PCI QSA qualification and possess ...

event-driven architectures Implement secure, compliant workflows including authentication, call recording controls, and data protection mechanisms Ensure all solutions meet regulatory standards including PCI-DSS, GDPR, and financial services compliance requirements Build reporting and analytics solutions using Contact Lens and Connect Analytics for operational and regulatory insight Support … systems using AWS Lambda, API Gateway, and REST APIs Proficiency in Python or Node.js for serverless development Understanding of regulatory frameworks such as GDPR, PCI-DSS, and FCA requirements Experience with Contact Lens or similar analytics and quality monitoring tools Experience with Terraform or CloudFormation in production ...

leading by example Partner with Fraud, Compliance, and Risk teams on security events involving payment systems, cardholder data, or regulatory reporting obligations under PCI DSS and related frameworks Who You Are 5+ years of hands‐on experience in security operations with strong expertise in incident response, digital forensics … communicate with technical and non‐technical stakeholders during security incidents and investigations Experience in payment processing, fintech, or other highly regulated environments; familiarity with PCI DSS incident handling requirements a plus Proven ability to work independently while demonstrating sound judgment about when to engage team members or elevate ...

controls across end-to-end systems Practical knowledge of security controls and their implementation Experience working with security standards and regulatory frameworks such as PCI DSS and data protection requirements Strong end-to-end security design capability Ability to demonstrate ownership and contribution to security decisions within projects … Desirable Experience: Knowledge of security frameworks and standards including ISO 27001, PCI DSS, COBIT, NIST and OWASP Relevant certifications such as CISSP, CISM, CCSP, CEH or OSCP Experience working within public and/or private cloud environments This is an excellent opportunity for a Cyber Security professional seeking ...

linking threats, risks and controls) Deepening understanding of security controls and their practical application Gaining further exposure to security standards and regulatory frameworks (e.g. PCI DSS, data protection) Strengthening end-to-end security design capability (e.g. threat modelling, control coverage) Providing clearer examples of individual contribution and ownership … security decisions Any experience of these would be really useful Awareness of industry related security standards such as ISO 27000 series, PCI DSS, COBIT, NIST, OWASP. Certifications in Security Management such as CISSP/CISM/CCSP or equivalent. Certifications in technical Security domains such as CEH/ ...

linking threats, risks and controls) Deepening understanding of security controls and their practical application Gaining further exposure to security standards and regulatory frameworks (e.g. PCI DSS, data protection) Strengthening end-to-end security design capability (e.g. threat modelling, control coverage) Providing clearer examples of individual contribution and ownership … security decisions Any experience of these would be really useful Awareness of industry related security standards such as ISO 27000 series, PCI DSS, COBIT, NIST, OWASP. Certifications in Security Management such as CISSP/CISM/CCSP or equivalent. Certifications in technical Security domains such as CEH/ ...

pipelines (GitHub Actions) Support monitoring, alerting, and system observability Security and Compliance Implement secure coding practises across all services Operate within regulated environments (PCI DSS, PSD2, SCA) Collaboration Collaborate closely with engineers, product teams, and stakeholders Contribute to technical discussions and promote engineering best practises Support quality assurance … prevention, tokenisation, and settlement Cloud experience, preferably with Azure Hands‐on experience with Kubernetes, Terraform, and CI/CD pipelines Knowledge of regulated environments (PCI DSS, PSD2, SCA) Experience in retail or high-transaction environments is advantageous What’s on Offer Six-month contract outside IR35, with potential ...

implementation and monitoring of disaster recovery solutions and backup strategies. Ensure compliance with internal security policies and regulatory requirements (e.g., GDPR, ISO27001, PCI DSS v4.0). Provide support and root cause analysis for complex issues. Document system configurations, changes and operating procedures. Participate in infrastructure projects, including system ...

implementation and monitoring of disaster recovery solutions and backup strategies. Ensure compliance with internal security policies and regulatory requirements (e.g., GDPR, ISO27001, PCI DSS v4.0). Provide support and root cause analysis for complex issues. Document system configurations, changes and operating procedures. Participate in infrastructure projects, including system ...

security clearance to be considered. Technical Knowledge Security frameworks including ISO 27001, NIST CSF, CIS and NCSC guidance Regulatory landscape including GDPR and PCI DSS Familiarity with HMG and NCSC standards Modern technology environments: Cloud platforms such as Azure, AWS and Google Cloud Microsoft 365 Infrastructure and network ...