1 to 25 of 66 Permanent PCI DSS Jobs in England

AD), Windows Server environments, and authentication solutions. Plan for scalability, redundancy, and high availability to support future growth. IT Security & Compliance: Ensure compliance with security and regulatory standards, including PCI DSS, Cyber Essentials+, DORA, and ISO 27001. Implement and enforce security best practices across infrastructure automation and cloud environments. Maintain accurate compliance documentation, including PCI DSS scope records and security policies. Secure high-value and high-risk data, such as cardholder (PCI) and personally identifiable information (PII). Cloud & Automation (these tools and skills will be taught): Implement and manage Infrastructure as Code (IaC) for cloud and on-premises environments. Learn how to automate configuration management, infrastructure provisioning, and application deployment. Configure and maintain … essential. Desirable (but not required) experience: Some interest in learning and using automation tools such as Azure DevOps, Terraform, Node-Red, Packer. Proven ability to secure high-value data (PCI cardholder data, PII) and implement security best practices. Scripting and automation skills (PowerShell, Python, Bash, or similar). Ability to design, implement, and maintain CI/CD pipelines for More ❯

Administrator to strengthen our IT team. About the Role You’ll manage and optimise Linux systems (Red Hat/CentOS), support Windows environments, and ensure infrastructure security and compliance (PCI DSS). This role involves working across hybrid cloud setups, particularly AWS, and collaborating with cross-functional teams to maintain scalable, high-performance systems. Key Responsibilities Install, configure … IP) Manage user access and permissions Apply security patches and updates Support AWS infrastructure (EC2, S3, IAM, VPC) Implement backup and disaster recovery Maintain documentation and asset inventories Ensure PCI DSS compliance and assist with incident response Collaborate with development, security, and operations teams Drive automation and process improvements Qualifications & Experience Degree in Computer Science, IT, or equivalent … experience 3–5 years of Linux administration (Red Hat/CentOS) Windows environment experience Networking knowledge (CCNA level or equivalent) AWS familiarity Understanding of PCI DSS and secure practices Scripting and automation skills (Bash, Python, Ansible) Strong troubleshooting and documentation abilities Preferred Skills RHCSA or higher certification CCNA certification Experience with monitoring and config management tools Familiarity with More ❯

security controls catalogue, policies, and procedures aligned with NIST CSF Collaborate with business units to integrate security measures into operations Support compliance activities for frameworks such as Cyber Essentials, PCI DSS, and the Group Information Security Framework Facilitate reviews and updates to ensure controls remain effective against evolving threats Essential skills: Minimum 2 year's experience in information … controls catalogue in a financial services environment (highly desirable) Proven experience in delivering security projects within a federated organisation Desirable skills: Knowledge of NIST CSF, ISO 27001, Cyber Essentials, PCI DSS, DORA Understanding of risk methodologies and data analysis for reporting Strong documentation skills (control matrices, process flows, SOPs) Excellent communication skills for both technical and non-technical More ❯

and business risk Embed Engineering Excellence: Champion a "security as engineering" mindset, integrating vulnerability management into CI/CD pipelines and development workflows Drive Compliance: Ensure all processes meet PCI-DSS, 3DS, SOC2, and ISO requirements with robust audit trails and evidence collection Enable Teams: Create frameworks and playbooks that empower engineering teams to resolve vulnerabilities efficiently, particularly … you'll bring: Proven Track Record: 7+ years in security engineering with at least 3 years leading vulnerability management programmes in regulated environments Financial Services Experience: Deep understanding of PCI-DSS requirements, authenticated scanning, and financial services security standards Technical Depth: Hands-on experience with vulnerability scanning tools (Tenable preferred), SAST/DAST implementation, and security automation Engineering More ❯

optimise payment processes, ensuring transactions run smoothly and reliably. Share your expertise with the team through code reviews, documentation, and knowledge-sharing sessions. Implement industry-standard security practices, including PCI DSS considerations, fraud prevention, and rate limiting. Integrate with third-party payment gateways and APIs while ensuring compliance with local and international regulations. Partner with product managers to … issues for non-technical audiences. Collaborative mindset with openness to feedback and new ideas. Strong problem-solving skills with both critical and creative thinking. Familiarity with compliance frameworks (GDPR, PCI DSS, PSD2). Experience handling multiple currencies, sales tax, 3D Secure, tokenization, fraud prevention, and disputes/chargebacks. Bonus Points Experience with brewing PHP fixes while fending off More ❯

Application Security Data Protection & Encryption Kubernetes, Containers, and DevSecOps/MLOps practices SIEM, logging, and monitoring Zero Trust architectures Skilled in applying frameworks such as NIST CSF, ISO 27001, PCI DSS, CSA CCM, NIST AI RMF . Hands-on with tools for vulnerability management, secrets management, CSPM, and CWPP . Relevant certifications strongly preferred (CISSP, CCSP, TOGAF, AWS More ❯

initiatives, including migration of legacy applications to cloud-native platforms and adoption of SaaS/PaaS solutions. Understanding of UK financial regulations, GDPR, and industry standards (ISO 27001, NIST, PCI DSS, etc). Experience running risk assessments, threat modelling, and security testing programmes. Ability to engage and influence senior stakeholders, balancing security with commercial and operational priorities. Strong More ❯

with security controls such as Firewalls, IDS, IPS, and NAC. Familiarity with cloud platforms: AWS, GCP, Azure, and Microsoft Office 365. Knowledge of information security standards including ISO 27001, PCI-DSS, GDPR. Strong grasp of IT domains including Linux, Windows, networking, containers, IAM, and monitoring. Understanding of ISO27001, ISO27005, NIST security controls, WAF, and network segmentation. Desirable Extras More ❯

network architectures (e.g., LAN, WAN, DMZ) and topologies, network protocols, routing, switching, and subnetting. Ensure network security measures are aligned with relevant compliance standards and regulations (e.g., GDPR, HIPAA, PCI DSS). Conduct regular security audits and assessments to identify and address compliance gaps. Familiarity with industry standards and frameworks like NIST Cybersecurity Framework, ISO 27001, and CIS More ❯

artefacts including standards and blueprints. What You'll Bring Prior and proven experience gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications More ❯

design and implementation of security solutions Proficient in security modelling, frameworks, and tools (e.g., SparxEA, Archi) with deep knowledge of security principles, methodologies, and industry standards (NIST, ISO 27001, PCI-DSS, GDPR) Skilled in threat and risk modelling, governance, and aligning security controls with business strategy, regulation, and technical constraints Stakeholder engagement and communication skills, with experience in More ❯

Application Firewalls, Intrusion Detection/Prevention, Incident Response, and Security Information and Event Management (SIEM), Identify and Access Management (IAM) controls. Implementation experience with compliance frameworks such as NIST, PCI-DSS, ISO/IEC 27001, ISO/IEC 27017, FISC, etc Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status More ❯

risk management tools and techniques Experience of security governance and compliance, ideally gained in financial services organisations Demonstrable understanding of Information Security control standards and frameworks e.g. ISO27001, NIST, PCI DSS Awareness and understanding of the Information Security threat landscape Deep understanding of Information Security solutions and controls Experience of Cloud security solutions and standards is highly advantageous More ❯

Lead roles JSP440, JSP604/453 & JSP490 Working with system secure design MOD/GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience More ❯

team at the Intellectual Property Office. Playing a key part in an established team, the individual is responsible for ensuring the continued compliance with key security standards, such as PCI, ISO27001, secure by design, GovAssure etc. It is essential that this role ensures that security architecture alongside compliance are understood and therefore the role will include championing security by … but are not limited to: Ensure security architecture aligns with wider Gov security policies and frameworks, legal frameworks, industry regulations and best practise (e.g ISO 27001, NCSC Standards, GDPR, PCI DSS, GovAssure, Secure by Design). Support the secure by design champion in building awareness and understanding of secure by design framework across DDaT. Manage the security architecture More ❯

response and investigations of incidents to identify severity and sources, including the monitoring of alerts and springing into action to remediate threats, ensuring that detailed documentation is maintained Undertaking PCI compliance auditing Collaborating with security partners to ensure a robust security posture and undertake due diligence during the onboarding process for non-system suppliers Managing the ongoing monitoring of More ❯

finish. Bonus points if you bring: Experience with AppSec and DevSecOps. Hands-on knowledge of Azure, AWS, and/or Google Cloud. Familiarity with standards like ISO2700X, ISO31000, NIST800, PCI-DSS. Certifications such as CISSP, CCSP, CRISC, CISM, or SABSA. Why QBE? At My Best? At QBE, we want our people to feel rewarded and inspired to perform at More ❯

incident response, containment, and recovery activities. Oversee vulnerability management: assessing risks, tracking remediation, and validating fixes. Support forensic investigations and evidence handling when needed. Contribute to compliance activities including PCI DSS evidence gathering and audit readiness. Deliver security awareness training, phishing simulations, and staff engagement campaigns. Provide local insights to the Group Information Security team to strengthen overall … experience: Experience working in security operations, SOC, or incident response. Knowledge of SIEM tools, vulnerability management, and log analysis. Understanding of security frameworks such as ISO 27001, NIST, or PCI DSS. Strong communication skills to engage with IT teams, business stakeholders, and non-technical staff. Ability to work independently at Heron Foods while remaining aligned to Group Information Security. More ❯

incident response, containment, and recovery activities. Oversee vulnerability management: assessing risks, tracking remediation, and validating fixes. Support forensic investigations and evidence handling when needed. Contribute to compliance activities including PCI DSS evidence gathering and audit readiness. Deliver security awareness training, phishing simulations, and staff engagement campaigns. Provide local insights to the Group Information Security team to strengthen overall … experience: Experience working in security operations, SOC, or incident response. Knowledge of SIEM tools, vulnerability management, and log analysis. Understanding of security frameworks such as ISO 27001, NIST, or PCI DSS. Strong communication skills to engage with IT teams, business stakeholders, and non-technical staff. Ability to work independently at Heron Foods while remaining aligned to Group Information Security. More ❯

incident response, containment, and recovery activities. Oversee vulnerability management: assessing risks, tracking remediation, and validating fixes. Support forensic investigations and evidence handling when needed. Contribute to compliance activities including PCI DSS evidence gathering and audit readiness. Deliver security awareness training, phishing simulations, and staff engagement campaigns. Provide local insights to the Group Information Security team to strengthen overall … experience: Experience working in security operations, SOC, or incident response. Knowledge of SIEM tools, vulnerability management, and log analysis. Understanding of security frameworks such as ISO 27001, NIST, or PCI DSS. Strong communication skills to engage with IT teams, business stakeholders, and non-technical staff. Ability to work independently at Heron Foods while remaining aligned to Group Information Security. More ❯

incident response, containment, and recovery activities. Oversee vulnerability management: assessing risks, tracking remediation, and validating fixes. Support forensic investigations and evidence handling when needed. Contribute to compliance activities including PCI DSS evidence gathering and audit readiness. Deliver security awareness training, phishing simulations, and staff engagement campaigns. Provide local insights to the Group Information Security team to strengthen overall … experience: Experience working in security operations, SOC, or incident response. Knowledge of SIEM tools, vulnerability management, and log analysis. Understanding of security frameworks such as ISO 27001, NIST, or PCI DSS. Strong communication skills to engage with IT teams, business stakeholders, and non-technical staff. Ability to work independently at Heron Foods while remaining aligned to Group Information Security. More ❯

and integrations with modern platforms (Azure, Data Lake, Fabric). Manage BAU operations: patching, security updates, backups and incident resolution. Partner with teams and providers to ensure governance, GDPR, PCI-DSS compliance and operational excellence. Support new change deployments and contribute to the cloud and automation journey. What we're looking for Deep expertise in Microsoft SQL Server More ❯

applications. Ensure high availability and resilience of mission-critical platforms such as core banking, trading, or payments engines. Cybersecurity & Compliance Establish and enforce cybersecurity policies in line with FCA, PCI-DSS, GDPR, and other relevant standards. Lead risk assessments, vulnerability testing, and incident response exercises. Maintain audit-ready documentation and support external reviews. Team & Vendor Management Recruit, lead More ❯

to business and technology audits. The role will also help provide ongoing assurance that digital systems and data are safe and secure. Key Accountabilities & Responsibilities: Be an SME for PCI DSS and contribute to and ensure compliance governance to security standards. Contribute to business and technology audits. Engagement with 3rd party partners as a SME and to ensure … in projects. Skills, Experience and Knowledge: Proven experience of IT GRC and Information/Cyber security Proven experience of risk and control management Proven experience of standards including ISO27001, PCI, GDPR/DPA & NIST Communication of complex ideas clearly in a non-technical way Strong stakeholder and 3rd party management experience Strong communication and collaboration Confident at working with More ❯

/TypeScript, as well as our backend services in C# (.NET), and Golang. Operate and maintain systems in Google Cloud Platform (GCP) and Amazon Web Services (AWS) environments. Ensure PCI compliance standards are upheld throughout the system. Work with the support team to triage, investigate, and resolve technical support tickets related to the payment platform and other customer facing … . Familiarity with CI/CD and infrastructures automation tools (Jenkins/Github Actions/Docker/Terraform). Familiarity with RESTful APIs and event-driven architectures. Knowledge of PCI DSS Compliance. Strong troubleshooting and debugging skills; experience working in production environments. Ability to break down complex problems and communicate them clearly to technical and non-technical audiences. More ❯