1 to 25 of 121 Permanent PCI DSS Jobs in London

PCI DSS Project Manager required to lead and manage an online retailer's PCI DSS recertification process. The successful candidate will be responsible for overseeing the entire recertification project, including planning, execution, monitoring, and closure. The ideal candidate will have a strong technical understanding of PCI DSS requirements and extensive project management experience, with a proven track record of successfully managing complex, compliance-focused projects in highly regulated environments. Key Responsibilities: Project Leadership & Management: Lead and manage the PCI DSS recertification project, ensuring all activities are completed on time, within scope, and … in alignment with PCI DSS standards. Cross-functional Collaboration: Work closely with internal stakeholders, including IT, security, legal, compliance, and business units, to ensure alignment on goals, timelines, and resource allocation. Compliance Management: Oversee the analysis of current systems, processes, and controls to identify any gaps in PCI More ❯

Head of Payment Permanent role Job Location: London (Hybrid) Tech Stack: SWIFT, SEPA, BACS, PCI DSS, ACH, FedWire Languages: SQL, Python, R, REST Payment Systems: SWIFT, SEPA, BACS, ACH, FedWire Compliance & Security: PCI DSS, AML/KYC Data Tools: Excel, Tableau, Oracle Financial Services (OFSAA), SAP … FICO Data Privacy & Regulations: Data encryption, Compliance Management (PCI DSS certification) Must Have: Compliance with AML/KYC, PCI DSS, payment platforms (SWIFT, SEPA), risk management skills Nice to have: Tableau, Oracle Financial Services (OFSAA), SAP FICO, certification in anti-money laundering (CAMS More ❯

ANEXT Bank. Role Overview: As a GRC Lead , you will ensure alignment with European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk , outsourcing compliance , and identity governance … complementary regulations like DORA (Digital Operational Resilience Act) , ensuring alignment in areas such as incident reporting and data protection. Translate requirements from PSD2 SCA , PCI DSS , and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain … looking for: Experience: 5+ years in GRC roles ; financial services or banking experience is a strong plus . Regulatory Knowledge: Understanding of GDPR , DORA , PCI DSS, and outsourcing/third-party risk requirements. Technical Skills: Hands-on experience with ISO 27001 implementation and third-party risk tools . More ❯

environments. ControlCase offers certifications and a broad spectrum of cybersecurity services that meet the needs of companies required to certify or attest to CMMC, PCI DSS, HITRUST, SOC 2 Type II, ISO 27001, PCI PIN, PCI P2PE, PCI TSP, PA DSS, CSA STAR, CMMC More ❯

Protection Regulation) ISO 27001 (Information Security Management Systems) Cyber Essentials Plus (UK government-backed security framework) DORA (Digital Operational Resilience Act) - EU financial sector PCI-DSS (if handling payment data) Experience in: Managing vendor risk assessments for third-party compliance. Handling incident response & reporting (e.g., Data Breach Notifications … ability to brief executives and regulators. Ability to design, implement, and enforce security policies . Key Responsibilities: Ensure compliance with GDPR, Cyber Essentials Plus, PCI-DSS, and other applicable standards. Align ISMS activities with ISO 27001 framework. Develop and implement security policies, controls, and procedures. Conduct security risk More ❯

security standards and monitor compliance. Manage security reviews during vendor onboarding and contract renewals. Governance, Risk, and Compliance Ensure compliance with relevant regulations (e.g., PCI DSS, GDPR, SOC 2, ISO 27001) and internal policies. Maintain up-to-date knowledge of emerging threats, regulatory changes, and best practices. Establish … response. Relevant certifications such as CISSP, CISM are highly desirable. Strong knowledge of security frameworks (e.g., NIST, CIS, ISO 27001) and compliance standards (e.g., PCI-DSS, PSD2, GDPR). Hands-on experience with security technologies (e.g., SIEM, endpoint protection, cloud security tools). Exceptional leadership and communication skills More ❯

security monitoring, logging, and alerting to ensure visibility into security events. Support compliance initiatives and audits to ensure adherence to industry standards (e.g., GDPR, PCI-DSS, HIPAA). Collaborate with teams to integrate security throughout the application lifecycle and provide security training. Required Skills & Experience : Strong experience with … CloudTrail, Config, WAF). Proficiency in CloudFormation, Terraform, and scripting languages like Python or Bash. Knowledge of compliance standards (SOC 2, ISO 27001, GDPR, PCI-DSS) and experience ensuring compliance in AWS environments. Experience with security incident response, monitoring, and post-incident remediation. Ability to assess and mitigate More ❯

security risks. Define and enforce security policies for IAM, encryption, network segmentation, and threat detection. Ensure AWS environments comply with industry regulations (e.g., GDPR, PCI-DSS, HIPAA) and integrate necessary controls. Work with DevOps and development teams to integrate security throughout the SDLC and DevOps pipelines. Use IaC … of AWS security best practices for IAM, encryption, and data protection. Familiarity with cloud security frameworks and regulatory standards (SOC 2, ISO 27001, GDPR, PCI-DSS). Experience with Terraform, CloudFormation, or AWS CDK for automating security and infrastructure provisioning. Hands-on experience with AWS security services (GuardDuty More ❯

Be Doing: Develop and implement information security policies, standards, and guidance in collaboration with stakeholders. Ensure compliance with industry standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC 2. Coordinate responses to internal and external audits and liaise with key stakeholders. Develop and deliver security policy … tech company or regulated industry. Experience in developing and implementing information security policies, standards, and procedures. Familiarity with security standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC2. Strong skills in security metrics and reporting. Ability to engage collaboratively with technical and non-technical stakeholders. Excellent More ❯

standards, and procedures Work with IT and development teams to implement secure system designs and configurations Support compliance initiatives (e.g., ISO 27001, NIST, GDPR, PCI-DSS) by assisting with audits and documentation Conduct security awareness training and phishing simulations for employees Keep up-to-date with the latest More ❯

employed technologies. Exposure to software development and understanding of secure code development. Compliance: Experience/willingness to assess Cyber Essential assessments and knowledge of PCI DSS requirements, in particular PCI ASV testing. Cloud Services: Understanding of cloud services, architecture, and technologies. Certifications: CPSA or higher qualifications are More ❯

Prevention, Incident Response, and Security Information and Event Management (SIEM), Identify and Access Management (IAM) controls. - Implementation experience with compliance frameworks such as NIST, PCI-DSS, ISO/IEC 27001, ISO/IEC 27017, FISC, etc. Amazon is committed to a diverse and inclusive workplace. Amazon is an More ❯

Operating System security and system hardening concepts such as CIS Benchmarks. Experience in working with information security frameworks and regulatory requirements including ISO27001, NIST, PCI DSS, GDPR, Cyber Essentials. Experience of general IT Audit processes and conducting risk assessments. You will be a proactive self-starter with strong More ❯

and effective. ️ Is This You? CISSP, CISA, or CISM certification is strongly recommended, but not required. ISO 27001/27701/42001, SOC-2, PCI DSS, and GDPR knowledge, experience, and qualifications are highly desirable. At least 5 years of relevant industry experience in information security, with a More ❯

and provideinsights into threatsfacing the bank. Awareness of common Cyber Incidents and Security breaches(OWASP). Desirable Knowledge or experience in SOC2, ISO 27K, PCI DSS and GDPR. Previous experience working withinan organisations Cyber Incident Responsefunction. Hands on experience with Information Securitytools. Please contact me if you would More ❯

and provideinsights into threatsfacing the bank. Awareness of common Cyber Incidents and Security breaches(OWASP). Desirable Knowledge or experience in SOC2, ISO 27K, PCI DSS and GDPR. Previous experience working withinan organisations Cyber Incident Responsefunction. Hands on experience with Information Securitytools. Please contact me if you would More ❯

and provideinsights into threatsfacing the bank. Awareness of common Cyber Incidents and Security breaches(OWASP). Desirable Knowledge or experience in SOC2, ISO 27K, PCI DSS and GDPR. Previous experience working withinan organisations Cyber Incident Responsefunction. Hands on experience with Information Securitytools. Please contact me if you would More ❯

security engineering and operations. In-depth knowledge of networking protocols, operating systems, and cloud technologies. Strong understanding of security principles, practices, and frameworks (e.g., PCI, NIST, ISO 27001). Experience with security tools such as SIEM, IDS/IPS, endpoint protection, and penetration testing tools. Experience with public cloud More ❯

security restructure programmes, projects of both a GRC and technical nature alongside frameworks such as ISO27001/2:2005/13, DORA, NIS 2, PCI-DSS, GDPR-DPO, NIST CSF SP800-53, PSD-2, FCA/PRA, and MS Azure. Ownership of Strategic, Operational, and Tactical IT Security More ❯

Ability to travel to meet business needs Preferred competencies: Relevant cyber security or other qualifications, certifications such as CSX-P, CDPSE, SSCP, CAP, OWASP, PCI DSS Security Cleared with potential to gain enhanced clearances Experience implementing privacy solutions based on the requirements of the EU GDPR and UK More ❯

concepts including cryptography, authentication and authorization, access control, secure architectures, threat modeling, vulnerabilities and software security. Strong knowledge of regulatory requirements (e.g. GDPR, ISO27001, PCI-DSS) and experience in regulatory reporting. 3-5 years of experience in GRC, risk management, or compliance. A bachelor's degree in computer More ❯

core payments platform, aligning architecture with business goals. Oversee the implementation and maintenance of secure transaction processing systems. Ensure adherence to payment security frameworks (PCI DSS, PSD2, SCA). IT Infrastructure & Vendor Management: Lead cloud infrastructure and security strategies. Manage relationships with third-party IT service providers, ensuring More ❯

and penetration testing tools (e.g., Metasploit, Burp Suite, Kali Linux). Familiarity with common security frameworks and compliance requirements (e.g., NIST, ISO 27001, GDPR, PCI-DSS) Relevant certifications (e.g., CEH, OSCP, CISSP, CISM, GIAC) are strongly preferred. More ❯

Cyber Security or Cyber Security Professional Qualifications/Certifications Desirable: General understanding of IT Security principles, standards and regulations (e.g. ISO 27001, NIST, CIS, PCI DSS and GDPR) CISM/CISSP Patch Management Applications, EDR/XDR systems. Antivirus, NAC - Forescout Vulnerability Scanning Tool e. Tenable One, Qualisys More ❯

Cyber Security or Cyber Security Professional Qualifications/Certifications Desirable: General understanding of IT Security principles, standards and regulations (e.g. ISO 27001, NIST, CIS, PCI DSS and GDPR) CISM/CISSP Patch Management Applications, EDR/XDR systems. Antivirus, NAC - Forescout Vulnerability Scanning Tool e. Tenable One, Qualisys More ❯