1 to 25 of 94 PCI DSS Jobs in the UK

compliance activities. Working closely with IT, security and business stakeholders, you'll help identify and mitigate risk, maintain compliance with key regulatory requirements (including PCI DSS and GDPR), and contribute to building a strong culture of security awareness. Key Responsibilities Information Security Frameworks - Support ongoing alignment with … development and maintenance of security policies, standards and procedures. Control Assurance - Assess security controls and provide recommendations for improvement. Compliance Activities - Support PCI DSS compliance requirements and collaborate with relevant stakeholders on GDPR adherence. Business Continuity & Disaster Recovery - Assist with BC/DR planning, testing and documentation. About ...

major initiatives Communicate security processes effectively to ensure compliance across all Council services Ensure compliance with external standards and frameworks such as PCI-DSS, HSCN (N3), DSP Toolkit, PSN and Cyber Essentials Plus Monitor and maintain PSN compliance, including annual health checks, responding to security breaches, and ensuring … appropriate reporting and remediation activities with service providers Monitor and maintain PCI-DSS compliance, including quarterly ASV scans, annual audits, and submissions, while managing responses to data breaches and ensuring corrective actions Collaborate with the ICT Platform Manager, Service Delivery Managers, and Enterprise Architect to embed cybersecurity ...

regulatory, operational and cybersecurity risk. You will take ownership of building and maintaining a robust compliance framework, ensuring adherence to FCA/PRA regulations, PCI DSS standards and broader industry requirements. Working cross-functionally with product, technology, legal and senior leadership teams, you’ll embed risk management into … hands-on role for someone who can both design frameworks and deliver them. Key Responsibilities Develop and maintain compliance programmes aligned with PCI DSS, FCA and other regulatory frameworks Lead enterprise-wide risk management processes and maintain a robust risk framework Manage regulatory reporting obligations ...

concurrency/low‐latency environments; lead efforts on caching, queues, and database optimisation. Implement best practices in security (including payment flows) and compliance (e.g., PCI‐DSS), championing code quality across the codebase. Own API architecture & integrations , including resilient error handling, idempotency, and graceful retries; support two‐way sync … MySQL with indexing and query optimisation; profiling for throughput. [ Security & payments: network security, payment gateways (e.g., Stripe/PayPal/bank APIs), understanding of PCI‐DSS . Quality: unit/integration testing, reviews, and design patterns to ensure maintainable code. What we’re looking for A strong track ...

environments. ControlCase offers certifications and a broad spectrum of cybersecurity services that meet the needs of companies required to certify or attest to CMMC, PCI DSS, HITRUST, SOC 2 Type II, ISO 27001, PCI PIN, PCI P2PE, PCI TSP, PA DSS, CSA STAR, CMMC ...

Landing Zone security and connectivity, collaborating with Network Engineering to validate secure firewall and VPN configurations. Compliance & Risk: Support audit readiness for ISO 27001, PCI DSS, and Cyber Essentials Plus, ensuring all remediation progress is tracked and documented. Essential Skills & Experience: Experience: 5–10 years in cloud … CSPM tools, and vulnerability management platforms. Security Principles: Practical understanding of Zero Trust architecture and secure-by-design methodologies. Compliance Knowledge: Familiarity with PCI DSS, NIST, and ISO 27001 frameworks. Desirable Skills: Awareness of AWS security fundamentals (Guard Duty, KMS, IAM Identity Center). Experience with Infrastructure ...

Landing Zone security and connectivity, collaborating with Network Engineering to validate secure firewall and VPN configurations. Compliance & Risk: Support audit readiness for ISO 27001, PCI DSS, and Cyber Essentials Plus, ensuring all remediation progress is tracked and documented. Essential Skills & Experience: Experience: 5–10 years in cloud … CSPM tools, and vulnerability management platforms. Security Principles: Practical understanding of Zero Trust architecture and secure-by-design methodologies. Compliance Knowledge: Familiarity with PCI DSS, NIST, and ISO 27001 frameworks. Desirable Skills: Awareness of AWS security fundamentals (Guard Duty, KMS, IAM Identity Center). Experience with Infrastructure ...

changes are implemented within agreed change windows to maintain business continuity. Compliance & Risk Management: - Ensure compliance with internal policies and external regulatory standards (SOX, PCI-DSS, etc.). - Maintain accurate records of change requests, approvals, and risk assessments. - Lead root cause analysis for unauthorised or failed changes … Release Management teams. Key Skills and Qualifications: Proven experience in IT Service Management or Change Management roles. Strong understanding of regulatory compliance (SOX, PCI-DSS, GDPR, etc.). Familiarity with DevOps, CI/CD pipelines, and Agile delivery models. Proficiency in ITSM tools (e.g., ServiceNow) and risk assessment ...

systems for feasibility, relevance, and risk Conduct business impact analysis, threat modelling, and security testing; support remediation actions Ensure compliance with Cyber Essentials, PCI-DSS, GDPR, and other relevant security standards Assure alignment with Government Functional Standard GovS 005: Digital, addressing gaps before handover Support planning of digital … Microsoft technologies (Azure, SharePoint, SQL) and core IT building blocks Cyber security qualifications (e.g. CISSP, CISM) and experience with Cyber Essentials Plus and PCI-DSS Understanding of GDPR and modern IT security tools and controls Proven experience designing and delivering secure, pragmatic technology solutions Strong grasp of SDLC ...

aligns with business requirements. * Payments Domain Expertise o Analyze payment gateways, card networks, digital wallets, and real-time payment systems. o Understand compliance requirements (PCI DSS, PSD2, tokenization, fraud prevention). * Stakeholder Management o Act as a liaison between product, technology, and operations teams. o Conduct workshops, demos … settlement processes. * Domain Expertise o Hands-on experience in Payments industry (cards, wallets, UPI, ACH, etc.). o Understanding of regulatory and compliance frameworks (PCI DSS, PSD2). * Soft Skills o Excellent communication and documentation skills. o Strong analytical and problem-solving abilities. * Education o Bachelor's degree ...

risk, and security governance frameworks. This senior leadership role requires deep expertise across regulatory, industry, and cybersecurity standards specifically the UK Telecom Security Act, PCI DSS, ISO 27001, and NIS2. You will act as the organisations authoritative subject-matter expert, ensuring end to end compliance, overseeing risk posture … delivering a GRC strategy that ensure alignment with business objectives and regulatory obligations. You will be an authority on the Telecoms Security Act, PCI DSS, NIS2 and ISO27001, and will have proven experience with risk management and security assurance. This is an outstanding opportunity for an accomplished ...

risk, and security governance frameworks. This senior leadership role requires deep expertise across regulatory, industry, and cybersecurity standards— specifically the UK Telecom Security Act, PCI DSS, ISO 27001, and NIS2. You will act as the organisation’s authoritative subject-matter expert, ensuring end to end compliance, overseeing risk … delivering a GRC strategy that ensure alignment with business objectives and regulatory obligations. You will be an authority on the Telecoms Security Act, PCI DSS, NIS2 and ISO27001, and will have proven experience with risk management and security assurance.This is an outstanding opportunity for an accomplished GRC Manager ...

SECURE has Strategically Partnered with a leading consultancy to support a FinTech leader operating under strict Regulatory Frameworks (FCA/PCI DSS). They are undertaking a strategic pivot to an AI-Native, " Dark NOC " Ecosystem , seeking a Leader to Architect this Capability from the "Ground Up". … . AI-Native Operations: Experience Implementing AIOps, Agentic AI & DSLMs (Domain Specific Language Models). Regulated Environments: Experience Operating Mission-Critical Networks under FCA, PCI DSS, or ISO 27001 Standards. Advanced Networking: Deep Expertise in BGP, OSPF, VXLAN EVPN & Azure Networking (ExpressRoute/Global Reach). Security Convergence ...

comfortable discussing) Communicate PayAgency’s control posture in a clear, non-technical way Be able to discuss security/compliance basics such as PCI-DSS , data protection, and (where relevant) PSD2/SCA and operational resilience expectations (DORA awareness is a plus) Reporting & CRM Discipline Maintain accurate … style sales environments Nice-to-Have (Big Plus) Existing network: iGaming operators, affiliates, PSPs, ISOs, aggregators, platform providers Familiarity with compliance/security topics: PCI-DSS , PSD2/SCA, AML/KYB flows Experience negotiating complex commercial terms (reserves caps, multi-currency settlement, payout logic) Experience with CRMs ...

verbal communication skills. Preferred Certifications such as CISSP, GIAC (GCIH, GCIA, GCTI). Experience with malware analysis, APT detection, and regulatory frameworks (GDPR, PCI DSS). Familiarity with Infrastructure as Code tools and cloud platforms. Soft Skills Strong problem-solving and analytical mindset. Ability to work under pressure ...

independently while contributing effectively as part of a team Desirable: Experience working in or alongside a SOC environment Knowledge of NIST, NIS-R and PCI DSS Experience with WAF, IDS/IPS, firewalls and network security tools Exposure to automation or scripting Experience with cybersecurity training and awareness ...

hybrid infrastructures Partner with engineering teams to embed data protection into application architecture and CI/CD pipelines Support compliance initiatives including GDPR, HIPAA, PCI DSS, and SOC 2 Conduct data-focused risk assessments and threat modelling Monitor and respond to data-related security incidents and alerts Develop ...

benchmarks, NIST, Cyber Essentials. Ability to explain technical concepts to non-technical audiences. Strong documentation, analysis and problem-solving skills. Experience in security auditing, PCI DSS, CSIRT processes and change management. Degree-level education or equivalent experience. Certifications such as CySA+, CISSP, Microsoft Certified Professional, ITIL ...

Coordinator) or Delivery Team Security Lead experience MOD/GDS Secure by Design Familiarity with: JSP440, JSP604/453, JSP490 Supplier Chain Assurance GDPR, PCI DSS, ICO ISO 27001, NIST CSF, CIS Controls v8 Skills in: Threat modelling (kill chain, attack trees, etc.) Cloud security (AWS, Azure), containerisation ...

Active Directory, SSL, 2FA, OT skills are essential for this position. Knowledge of information security standards (e.g., ISO 17799/27002/27001/PCI DSS/SIEM, etc.), rules and regulations related to information security and data confidentiality (e.g., FERPA, HIPAA, etc.) and key network security principles ...

data platforms (Azure Data Factory, Data Lake, SQL, or similar). Knowledge of API, container security, Kubernetes, and infrastructure-as-code security. Familiarity with PCI, GDPR, data privacy requirements, and compliance frameworks. Exposure to adaptive protection, insider risk management, and automated DLP frameworks. Personal Attributes Strong communicator able ...

What You'll Bring Prior and proven experience gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures ...

What You'll Bring Prior and proven experience gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures ...

Compliance Ensure vulnerability management activities align with internal information security policies, standards, and procedures. Support compliance with relevant regulatory and security frameworks (e.g. GDPR, PCI DSS). Produce regular vulnerability risk reports, dashboards, and KPIs for senior stakeholders. Provide evidence and reporting to support audits, penetration tests ...

JSP490 Working with system secure design MOD/GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards ...