23 of 23 Permanent PCI DSS Jobs in London

looking for someone to own compliance end‐to‐end at Fresha. We’re already HIPAA and ISO27001 certified, we’re heading into a PCI DSS audit shortly, and later this year we’ll have GDPR and SOC 2 Type II coming up. The role is based … friendly office in London: The Bower, 207‐122, Old Street, London EC1V 9NR. What you’ll own Audits and certifications Run the PCI DSS audit to completion, then GDPR and SOC 2 Type II this year Serve as the main point of contact for external auditors—scoping, evidence ...

client-facing environments. Practical experience implementing, assessing, or managing security frameworks and standards such as ISO/IEC 27001, NIST, Cyber Essentials, CIS Controls, PCI DSS, and NCSC Cyber Assessment Framework (CAF). Strong understanding of information security governance, risk management, compliance and assurance principles. Experience conducting risk … Certified Information Security Manager) CRISC (Certified in Risk and Information Systems Control) CISMP or equivalent security qualification Cyber Essentials Assessor qualification Relevant NIST, CAF, PCI DSS, or risk management certifications Degree-level qualification in Cyber Security, Information Security, Computer Science, Risk Management, or related discipline Our Benefits ...

using Databricks, Snowflake, ETL pipelines, and Big Data tools. Champion Data Governance practices including classification, cataloging, and lineage. Ensure compliance with ISO 27001, GDPR, PCI DSS, and other security standards. Embed DevSecOps principles into CI/CD pipelines and platform delivery. Produce High‐Level and Low‐Level Designs … teams for seamless integration. Support business development initiatives, contributing to bids and proposals. Business Analysis experience and stakeholder engagement skills. Security - ISO 27001, GDPR, PCI DSS, IDAM, DevSecOps Agile - SAFe, DevOps, Scrum Collaboration - Stakeholder Engagement, Governance, Team Mentoring Business - Business Analysis, Bid Support, Multi‐sector Delivery Upon employment ...

Responsibilities are: Formulate, develop and implement IT Security strategy, policies, programs and procedures that are aligned to the MHR UK Lead and drive PCI-DSS Compliance program together with identified business stakeholders Keep up to date on new and emerging security technologies and their relevance Track and document … controls and measures for effective threats mitigation Perform periodic IT Security audits across UK properties to ensure compliance to established IT Security policies, PCI-DSS and regulatory requirements Hospitality or similar industry experience is advantageous We offer a benefits package including Social Events, Wellbeing and Team Activities Training ...

Strong working knowledge of recognised security frameworks and standards, including NIST Cybersecurity Framework, OWASP, SANS Top 25, and regulatory requirements such as GDPR and PCI DSS. Demonstrated technical expertise across modern technologies and architectures, including virtualisation, cloud computing, and serverless deployments. Hands-on experience with Microsoft Azure, Microsoft Defender … operating system security and system-hardening practices, including CIS benchmarks. Experience working with information security frameworks and regulatory standards such as ISO 27001, NIST, PCI DSS, GDPR, and Cyber Essentials. Knowledge of general IT audit processes, including conducting risk assessments and supporting audit activities. Exposure to threat hunting ...

programmes in complex, multi-site, or multi-cloud enterprise environments. Familiarity with compliance and regulatory frameworks relevant to enterprise clients (NIS2, DORA, ISO 27001, PCI-DSS, NIST CSF). Working knowledge of at least two or more leading security vendors at an architectural level (e.g. Palo Alto/ ...

Provide security consultancy into complex IT and digital initiatives Advise clients on cyber risk, governance and regulatory compliance frameworks including: ISO 27001 NIST GDPR PCI-DSS Conduct threat modelling and identify security vulnerabilities within solution designs Recommend pragmatic risk mitigation strategies to technical and non-technical stakeholders Support ...

leadership team. 2. Regulatory Compliance & Engagement Ensure full compliance with DORA (ICT risk management, incident reporting, resilience testing, third-party risk), PSD2-SCA, PCI-DSS, SWIFT CSP, GDPR (as it relates to ICT), and EBA guidelines. Act as the primary liaison for DNB, EBA, and other regulators; manage ...

across cloud, network, and enterprise systems Advising on secure design, risk, and compliance across complex IT estates Applying frameworks like ISO 27001, NIST, GDPR, PCI-DSS in real environments Running threat modelling and identifying architectural vulnerabilities Working closely with architects, engineers, and stakeholders to influence secure solutions Translating ...

defend ME+EM customers from fraudulent "copycat" websites and email scams. Global Data Privacy: Ensure our operations remain compliant with UK/EU GDPR and PCI-DSS 4.0 as we scale into the US and other international markets. Policy Maintenance: Ensure internal security policies are practical, up-to-date ...

better way for us to communicate, please do let us know. Security, Cyber, Risk, Compliance, Governance, Advisory, Consulting, Consultant, Roadmaps, Incidents, 27001, NIST CSF, PCI DSS, GDPR, SOC2, CIS, CISSP, CISM, Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral ...

environments. Desirable Skills: Hands-on experience securing containers and serverless technologies. Familiarity with security frameworks (NIST CSF, CIS) and compliance requirements (GDPR, PCI-DSS, CRA) from a technical implementation perspective. Degrees and certifications (e.g., OSCP, OSWE, GWAPT, CISSP) are advantageous; however, we welcome demonstrable, hands-on technical capability ...

tolerance, and auto-scaling patterns. Solid understanding of Domain-Driven Design (DDD), Hexagonal Architecture, CQRS, and Event Sourcing. Knowledge of regulatory and compliance frameworks: PCI DSS, ISO 27001, GDPR, PSD2, Cyber Essentials+. Familiarity with architecture modelling platforms (LeanIX, BizzDesign, SparxEA) and use of modelling standards (UML, C4, BPMN ...

standards such as ISO/IEC 27001 and Cyber Essentials, and you know how to apply information and security legislation – including GDPR, FOI and PCI DSS – in ways that enable delivery rather than restrict it. You also stay close to the evolving threat landscape and understand the organisational ...

Assess privileged access risk, identify control gaps and define practical mitigation actions. Contribute to governance, policy and compliance work across frameworks including SOX, GDPR, PCI-DSS and HIPAA. Work with cloud environments including AWS, Azure and GCP where privileged access design needs to reflect modern infrastructure. Candidate Profile ...

Oversee daily operations of digital systems, applications, and infrastructure Lead and develop the application support function Ensure strong cyber security, GDPR compliance, and PC-DSS/Cyber Essentials Plus standards Support successful technical project delivery Champion quality assurance and robust testing Identify opportunities to improve efficiency and optimise digital … operations management Strong leadership, communication, and problem-solving skills Solid understanding of infrastructure, application support, and project delivery Cyber security knowledge and compliance experience PCI-DSS experience (implementation or maintenance preferred) Cyber Essentials Plus experience (required) Background in SaaS or digital product environments Experience building internal teams ...

need to “be a developer” but you do need to understand the implications of security on engineering velocity. • Knowledge of and experience with PCI-DSS will be desirable. • Multiple examples of completed projects in security engineering or closely related areas. • Azure or AWS cloud security certifications (preferred). ...

required. Produce and maintain detailed network documentation using Microsoft Visio. Maintain and continuously improve network security posture in line with regulatory frameworks including PCI-DSS, PII, CIS and NIST. Required Experience & Skills 5–7+ years of experience designing, implementing and supporting medium to large enterprise networks (10,000+ ...

required. Produce and maintain detailed network documentation using Microsoft Visio. Maintain and continuously improve network security posture in line with regulatory frameworks including PCI-DSS, PII, CIS and NIST. Required Experience & Skills 5–7+ years of experience designing, implementing and supporting medium to large enterprise networks (10,000+ ...

Experience in designing distributed systems and microservices architecture Expertise in API design, integrations, and middleware technologies Strong knowledge of payment systems, including EMV and PCI-DSS compliance. Proficiency in cloud platforms such as AWS, Azure, or GCP Strong understanding of databases (SQL/NoSQL) and data flow design ...

essential: Strong GRC background Governance, Risk and Compliance background Strong TSA (Telecom Security Act) experience Experience with TSA submissions Experience in conducting risk assessments PCI DSS, ISO 27001, NIS 2 Excellent communication skills Salary: Up to £110,000 + bonus + package Location: London (good work from home ...

Azure; multi-region preferred) Strong background in integrating third-party risk vendors Domain & Regulatory Knowledge Strong understanding of: AMLD requirements PSD2/PSD3 PCI DSS EMI/E-money licensing constraints Familiarity with explainable AI in risk decisioning Audit and regulatory inspection readiness What Makes This Role Different ...

massive compliance burden that typically comes with it. In simple terms, they help businesses move fast without breaking security or getting crushed by PCI requirements. Their customers range from fast-growing fintech companies to large-scale payment platforms, all dealing with the same expensive and complex problem. They grew … companies and businesses handling card data Run deep discovery on customer infrastructure, compliance gaps, and business drivers Lead demos and technical conversations around tokenization, PCI scope reduction, and payment workflows Manage multi-threaded deals across technical and executive stakeholders Drive pilots and technical validation processes with engineering teams Build ...