24 of 24 Permanent PCI DSS Jobs in the Thames Valley

vulnerability scanners, firewalls, antivirus, and endpoint protection platforms. Familiarity with cloud security (AWS, Azure, or GCP) and hybrid environments. Good understanding of regulatory frameworks and standards (ISO 27001, NIST, PCI DSS). Professional certifications such as CISSP, CISM, CEH, or CompTIA Security+ are highly desirable. Excellent analytical, problem-solving, and communication skills. Desirable: Experience in the finance or More ❯

vulnerability scanners, firewalls, antivirus, and endpoint protection platforms. Familiarity with cloud security (AWS, Azure, or GCP) and hybrid environments. Good understanding of regulatory frameworks and standards (ISO 27001, NIST, PCI DSS). Professional certifications such as CISSP, CISM, CEH, or CompTIA Security+ are highly desirable. Excellent analytical, problem-solving, and communication skills. Desirable: Experience in the finance or More ❯

Terraform, or XSOAR. Collaborate with infrastructure and DevOps teams to embed security into CI/CD pipelines, containers (GKE), and API services. Compliance & Risk Alignment Ensure operational alignment with PCI-DSS, ISO 27001, SOC 2, NIST, and GDPR requirements. Support internal and external audits with relevant security evidence and reports. Work closely with GRC teams to implement controls … response and recovery Security orchestration (SOAR), preferably Chronicle + XSOAR IAM, policy enforcement, logging, and access reviews in GCP Proven experience working in FinTech or financial services, ideally under PCI-DSS, ISO 27001, or SOC 2. Strong Scripting or automation experience (Python, Terraform, Bash). Knowledge of threat modelling and attack frameworks (MITRE ATT&CK, Kill Chain). More ❯

Terraform, or XSOAR. Collaborate with infrastructure and DevOps teams to embed security into CI/CD pipelines, containers (GKE), and API services. Compliance & Risk Alignment Ensure operational alignment with PCI-DSS, ISO 27001, SOC 2, NIST, and GDPR requirements. Support internal and external audits with relevant security evidence and reports. Work closely with GRC teams to implement controls … response and recovery Security orchestration (SOAR), preferably Chronicle + XSOAR IAM, policy enforcement, logging, and access reviews in GCP Proven experience working in FinTech or financial services, ideally under PCI-DSS, ISO 27001, or SOC 2. Strong Scripting or automation experience (Python, Terraform, Bash). Knowledge of threat modelling and attack frameworks (MITRE ATT&CK, Kill Chain). More ❯

Terraform, or XSOAR. Collaborate with infrastructure and DevOps teams to embed security into CI/CD pipelines, containers (GKE), and API services. Compliance & Risk Alignment Ensure operational alignment with PCI-DSS, ISO 27001, SOC 2, NIST, and GDPR requirements. Support internal and external audits with relevant security evidence and reports. Work closely with GRC teams to implement controls … response and recovery Security orchestration (SOAR), preferably Chronicle + XSOAR IAM, policy enforcement, logging, and access reviews in GCP Proven experience working in FinTech or financial services, ideally under PCI-DSS, ISO 27001, or SOC 2. Strong Scripting or automation experience (Python, Terraform, Bash). Knowledge of threat modelling and attack frameworks (MITRE ATT&CK, Kill Chain). More ❯

Lambda, Elastic Search, Kibana and Kinesis. AWS certification. Knowledge of AWS Workforce Management tools including Quality Monitoring scorin Experience with working in a regulated financial services environment including ISO27001, PCI-DSS and Sarbanes Oxley. Experience with Microsoft technologies including Microsoft Teams direct routing, Microsoft 365 and Azure Entra ID. Experience with Avaya Aura solutions/Verint WFM Applications More ❯

Lambda, Elastic Search, Kibana and Kinesis. AWS certification. Knowledge of AWS Workforce Management tools including Quality Monitoring scorin Experience with working in a regulated financial services environment including ISO27001, PCI-DSS and Sarbanes Oxley. Experience with Microsoft technologies including Microsoft Teams direct routing, Microsoft 365 and Azure Entra ID. Experience with Avaya Aura solutions/Verint WFM Applications More ❯

ISO/IEC 27001, SOC 2, SOX, ITIL, COBIT, and NIST. Knowledge of legal, regulatory and privacy requirements, such as Personally Identifiable Information (PII) Protection and Payment Card Industry (PCI)/Data Security Standard An ability to think strategically and drive change A deep understanding of Tech Security risks and mitigating solutions A diverse security background with knowledge in More ❯

Azumi collection has 41 venues worldwide across five unique brands—including Zuma, ROKA, Oblix, Inko Nito and Etaru. What you will do: Lead our global cybersecurity strategy, aligning with PCI DSS, GDPR, ISO27001, and evolving regulatory requirements. Own incident response and risk mitigation, overseeing system security across POS, Azure, networks, and customer data platforms. Collaborate cross-functionally with … Champion a security-first culture, driving awareness, training, and the adoption of modern threat detection and prevention tools. What we look for: Strong understanding of compliance standards such as PCI DSS, GDPR, SOC2, ISO27001, Cyber Essentials Impressive verbal and written communication skills Experience with Azure CSSIP/CSIM/CompTIA+ or equivalent qualification 2 years’ experience in cyber More ❯

Antom, WorldFirst and ANEXT Bank. Role Overview: As a Lead Cyber Security Specialist, you will ensure alignment with European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk, outsourcing compliance, and identity governance to safeguard operational resilience. What … Support compliance with GDPR and complementary regulations like DORA (Digital Operational Resilience Act), ensuring alignment in areas such as incident reporting and data protection. Translate requirements from PSD2 SCA, PCI DSS, and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain Security Policies and procerdures Third … with least privilege principles and regulatory requirements. Security awareness management experience. What we are looking for: 5+ years in GRC roles; financial services or banking. Understanding of GDPR, DORA, PCI DSS, and outsourcing/third-party risk requirements. Hands-on experience with ISO 27001 implementation and third-party risk tools. Proficiency in IAM (Identity and Access Management) solutions More ❯

businesses: Alipay+, Antom, WorldFirst and ANEXT Bank. Role Overview: As a GRC Lead, you will ensure alignment with European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk, outsourcing compliance, and identity governance to safeguard operational resilience. What … Support compliance with GDPR and complementary regulations like DORA (Digital Operational Resilience Act), ensuring alignment in areas such as incident reporting and data protection. Translate requirements from PSD2 SCA, PCI DSS, and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain Security Policies and procedures Third … requirements. Security awareness management experience. What we are looking for: Experience: 5+ years in GRC roles; financial services or banking experience is a strong plus. Understanding of GDPR, DORA, PCI DSS, and outsourcing/third-party risk requirements. Hands-on experience with ISO 27001 implementation and third-party risk tools. Proficiency in IAM (Identity and Access Management) solutions More ❯

stakeholders, translating complex data needs into actionable plans. Mentor and lead data engineers, fostering continuous learning and technical excellence. Ensure compliance with data security, privacy, and regulatory standards (e.g., PCI-DSS, GDPR). Essential: 7+ years in Data Engineering, with 2+ years in a Principal or Lead role. Proven experience designing and delivering enterprise data strategies. Exceptional communication More ❯

ISMS) capable of demonstrating compliance against internal security requirements and external commitments including certification and regulatory requirements. Provide subject matter expertise in the application of established standards including NIST, PCI-DSS, GDPR, COBIT, ISO 27001 and Cyber Essential compliance to any new or existing programme of work. Prepare and support internal and/or external compliance audit activities. … we continue to deliver for our customers. LI-KS1 Possess one of the Risk or security certifications (CISSP, CRISC, CISM). Have good knowledge and practical experience of NIST, PCI-DSS, GDPR, COBIT, ISO 27001, or Cyber Essentials. Previous experience in a similar role, with the ability to work in a dynamic and changing environment. Excellent team player More ❯

deliver consistently. Ideal, But Not Required 5+ years of managing multiple engineering teams with high performance. FinTech SaaS experience. Track record of delivering results in a highly regulated environment (PCI-DSS and/or HIPAA compliant). Our Offer Work with colleagues that lift you up, challenge you, celebrate you and help you grow. We come from many More ❯

assurance services, we offer an incredible opportunity to be part of an experienced team, build your skills, and grow professionally. Dionach by Nomios holds impressive certifications, including CREST, CHECK, PCI QSA, and ISO 27001. With our focus on enhancing customers' security and fostering team development, you will be joining a company that prioritizes both your growth and the safety More ❯

assurance services, we offer an incredible opportunity to be part of an experienced team, build your skills, and grow professionally. Dionach by Nomios holds impressive certifications, including CREST, CHECK, PCI QSA, and ISO 27001. With our focus on enhancing customers' security and fostering team development, you'll be joining a company that prioritizes both your growth and the safety More ❯

within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll need Proven experience More ❯

assurance services, we offer an incredible opportunity to be part of an experienced team, build your skills, and grow professionally. Dionach by Nomios holds impressive certifications, including CREST, CHECK, PCI QSA, and ISO 27001. With our focus on enhancing customers' security and fostering team development,be joining a company that prioritizes both your growth and the safety of our More ❯

in a financial services context Desirable (Nice to have) Experience in fintech, payments, banking, or working with payments and cards Experience of working in a regulated and/or PCI/SOC2 compliant company with high availability and high security requirements Experience with Node and React in production systems Our tech stack: Rails/Node/React/MySQL More ❯

Be available as part of the on-call team to provide 7 x 24 Emergency service (non-office hours standby) (10) Proved experience in acquiring ISO 9000/27000 PCI-DSS certificates for clients. This is by no means a standard Critical Facility Manager/MEP opportunity, based on what opportunities this could lead to in the future More ❯

requirements. Although you won't need experience in all of these areas, their current accreditations are as follows: ISO 9001, 27001, 27701, 27017, 22301, 14001, 20000-1, 42001, 13485, PCI-DSS, SOC 2 Type 2, CE+. The company work on a hybrid model typically involving 3 days a week in the office. Examples of responsibilities: Coordination of the More ❯

requirements. Although you won't need experience in all of these areas, their current accreditations are as follows: ISO 9001, 27001, 27701, 27017, 22301, 14001, 20000-1, 42001, 13485, PCI-DSS, SOC 2 Type 2, CE+. The company work on a hybrid model typically involving 2-3 days a week in the office. Examples of responsibilities: Coordination of More ❯

selection and contract negotiations alongside procurement. Escalate and resolve critical payment issues, ensuring service improvements are implemented. Stay current on regulatory and technological changes in the payment space (e.g., PCI-DSS, PSD2). Represent the client in external forums, helping shape the payment roadmap. Define and maintain a single JLP-wide payments strategy and associated KPIs. Produce insightful More ❯

databases and optimising SQL queries Desirable (Nice to have) Experience in fintech, payments, banking, or working with payments and cards Experience of working in a regulated and/or PCI/SOC2 compliant company with high availability and demanding security requirements What we offer 25 days annual leave Annual wellness day off Access to one-to-one confidential counselling More ❯