1 to 25 of 109 Permanent PCI DSS Jobs in the UK excluding London

Lead Cyber Security Risk Consultant - PCI-DSS - Manchester We're seeking a strong Lead Cyber Security Risk Consultant with excellent cyber security, GRC & PCI-DSS payments experience to join our client's growing Cyber Security team. They need somebody who has excellent knowledge in PCI-DSS, ideally the subject matter expert, along with good … compliance experience You'll have a small team of GRC Specialists to do the transactional work, so we're looking for someone who is confident and can provide the PCI-DSS expertise that is needed. Experience Required: At least 5 years in a Cyber security & GRC role, at Senior, lead or manager level. Be a PCI-DSS … UK based headquarters in Manchester, so it is a great time to join a global company that is going from strength to strength. Responsibilities Cyber Governance & Frameworks within a PCI-DSS environment Develop, maintain, and evolve the cyber governance and compliance framework. Define and manage information and cyber security policies, standards, and procedures. Ensure alignment with ISO More ❯

IT Security Architect - PCI DSS - Manchester An IT Security Architect with a PCI DSS & cloud background (AWS, GCP OR Azure) is required to join our global client's new UK cybersecurity team. The role is to lead the design and implementation of PCI DSS architecture on a global scale from their head office in … central Manchester. Skills & Experience Required: 5+ years of experience working in Cyber Security, PCI DSS within a cloud environment Have good Security architecture experience, ideally with a DevSecOps environment Excellent experience with PCI DSS and able to lead design Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and … standards such as GDPR, ISO, PCI, and NIST Confidence when speaking with stakeholders and clients Ideally, some relevant cybersecurity certifications - CISSP, CCSP, CISM etc Key Responsibilities: Lead the design and implementation of PCI DSS architectures, ensuring compliance with the highest security standards. Design and create secure Enterprise-Grade Architectures Across Cloud, Hybrid, and On-Prem Environments Conduct More ❯

GRC Specialist - PCI-DSS - Manchester We're seeking an experienced GRC Specialist with excellent cyber security, GRC & PCI-DSS payments experience to join our client's growing Cyber Security team. They need somebody who has excellent knowledge in PCI-DSS along with good governance, risk and compliance experience and familiarity with other standards. Experience … Required: At least 2-3 years in a Cyber security & GRC role Be a PCI-DSS expert around payments ISO 27001and GDPR Knowledge of Risk Management, including risk identification, assessment, and mitigation techniques Good experience around Audits and compliance Any penetration testing experience would be a bonus You'll work closely with both internal and external stakeholders across … UK based headquarters in Manchester, so it is a great time to join a global company that is going from strength to strength. Responsibilities Cyber Governance & Frameworks within a PCI-DSS environment Develop, maintain, and evolve the cyber governance and compliance framework. Define and manage information and cyber security policies, standards, and procedures. Ensure alignment with ISO More ❯

PCI-DSS Compliance Manager - GRC/Payments Manchester £60-80k pa A successful technology company are seeking a PCI-DSS Compliance Manager to join their growing Security team and be responsible for risk management, compliance monitoring and governance support as well as 3rd party vendor risk management. Being experienced in Payments Compliance you will ensure … the company maintains compliance with all relevant regulations including PCI-DSS, GDPR, NIS Regulations and the Data Protection Act 2018. You will be able to demonstrate Attestation of Compliance (AoC) experience alongside experience of ensuring compliance with ISO27001 and relevant organisational standards. This role will require excellent technical GRC and PCI-DSS knowledge, good organisational skills … and the ability to communicate critical security information and requirements to both internal and external stakeholders. PCI-DSS and Attestation of Compliance experience is a must have for this position. Please send a CV detailing the required experience for consideration. PCI-DSS Compliance Manager - GRC/Payments Manchester £60-80k pa More ❯

WELCOME TO PCI PAL PCI Pal is a leading provider of SaaS solutions that empower companies to take payments securely, adhere to strict industry governance, and remove their business from the significant risks posed by non-compliance and data loss. We are integrated and resold by some of the world's leading business communications vendors, as well as … major payment service providers. We are currently looking for a GRC & Audit Lead to join our UK team. THE OPPORTUNITY: PCI Pal's Information Security team requires a dynamic and proactive individual to lead all Governance, Risk and Compliance (GRC), audit requirements for our team and the company. We are an agile and innovative team and are responsible for … that GRC and audit requirements are suitably managed, maintained and matured. YOU WILL BE RESPONSIBLE FOR: Managing, maintaining, and maturing the already established audit lifecycles for the following frameworks: PCI DSS v4.0, ISO 27001:2022, ISO 9001:2015, ISO 14001:2015, Cyber Essentials, Cyber Essentials Plus, SOC2 Type 1 – 3 & HIPAA Working in close collaboration with other team More ❯

with a Glasgow-based client who are looking for an Information Security Manager to harden their security posture, manage risk appetite, strengthen their GRC policies & controls focusing heavily on PCI-DSS & ISO27001, and manage their MSSP and a small team from a technical cyber perspective.The ideal candidate will have worked autonomously across these spaces previously. This role does … Doing: Assisting the Head of IT with developing the scope for ISO27001 certificationAchieving ISO27001 certification further down the lineCoordinating the client's efforts to achieve/maintain compliance with PCI-DSS and NIS. Leading a small but growing information security function. Liaising with the managed service security provider from a policy improvement and managed detection and response perspective. … strategy, making suggestions aligned with industry best-practice drawn from practical experience and security frameworks What I'm Looking For: Experience maintaining and developing security compliance in line with PCI-DSS and ISO27001. Experience working in an Information Security function in a managerial/mentorship capacity. Practical knowledge of PCI-DSS, ISO27001 and NIST.Experience implementing and More ❯

with a Glasgow-based client who are looking for an Information Security Manager to harden their security posture, manage risk appetite, strengthen their GRC policies & controls focusing heavily on PCI-DSS & ISO27001, and manage their MSSP and a small team from a technical cyber perspective. The ideal candidate will have worked autonomously across these spaces previously. This role … the Head of IT with developing the scope for ISO27001 certification Achieving ISO27001 certification further down the line Coordinating the client's efforts to achieve/maintain compliance with PCI-DSS and NIS. Leading a small but growing information security function. Liaising with the managed service security provider from a policy improvement and managed detection and response perspective. … strategy, making suggestions aligned with industry best-practice drawn from practical experience and security frameworks What I'm Looking For: Experience maintaining and developing security compliance in line with PCI-DSS and ISO27001. Experience working in an Information Security function in a managerial/mentorship capacity. Practical knowledge of PCI-DSS, ISO27001 and NIST. Experience implementing More ❯

office I'm looking for an Information Security Manager to work for a Glasgow-based client who are looking to harden their GRC policies and controls focusing heavily on PCI-DSS and ISO27001. This is a GRC-led leadership position and is integral to this organisation's ongoing information security journey. The ideal candidate will have worked autonomously … the Head of IT with developing the scope for ISO27001 certification Achieving ISO27001 certification further down the line Coordinating the client's efforts to achieve/maintain compliance with PCI-DSS and NIS. Leading a small but growing information security function. Liaising with the managed service security provider from a policy improvement perspective. Developing, enhancing and creating security … strategy, making suggestions aligned with industry best-practice drawn from practical experience and security frameworks What I'm Looking For: Experience maintaining and developing security compliance in line with PCI-DSS and ISO27001. Experience working in an Information Security function in a managerial/mentorship capacity. Practical knowledge of PCI-DSS, ISO27001 and NIST. Experience implementing More ❯

regulatory compliance oversight. The ideal candidate will establish and maintain security standards across the product portfolio, oversee secure system environments, and act as the primary contact for ISO 27001, PCI DSS, and GDPR compliance. Additionally, this role will support our commercial teams by contributing to tender responses and ensuring client security assurance. The Company: They are a technology … management and penetration testing programs. Maintain strong identity, access, and privilege management controls. Compliance & Assurance (30%) Manage and maintain ISO 27001 certification and audit processes. Ensure ongoing compliance with PCI DSS for payment-related systems. Oversee GDPR compliance across products, services, and internal operations. Complete HECVAT assessments and respond to security questionnaires for higher education tenders. Support sales … SaaS or cloud environments (ISV or B2B preferred). Proven track record managing ISO 27001 certification and compliance. Hands-on experience implementing GDPR in software products. Working knowledge of PCI DSS and securing payment systems. Deep understanding of cloud security across Azure and/or AWS. Skilled in application security and the secure development lifecycle (SDLC). Experienced More ❯

examples of working in a service critical environment are advantageous. As a DevOps Engineer you will be responsible for ensuring all deployment processes and automation meet regulatory requirements, namely PCI DSS, ISO27001, and Cyber Security Essentials. This will include the introduction of standards to ensure conformity within the PayPoint development and deployment workflows. This role is Hybrid with … and firewall management • Certification in Azure, AWS, or DevOps methodologies • Experience with chaos engineering and resilience testing • Familiarity with service mesh technologies (Istio, Linkerd, cilium) Really Nice to Have: • PCI-DSS compliance experience • Experience in financial services or regulated industries • Knowledge of ITIL or similar service management frameworks • Experience with automated testing frameworks and test automation • Understanding of More ❯

examples of working in a service critical environment are advantageous. As a DevOps Engineer you will be responsible for ensuring all deployment processes and automation meet regulatory requirements, namely PCI DSS, ISO27001, and Cyber Security Essentials. This will include the introduction of standards to ensure conformity within the PayPoint development and deployment workflows. This role is Hybrid with … and firewall management • Certification in Azure, AWS, or DevOps methodologies • Experience with chaos engineering and resilience testing • Familiarity with service mesh technologies (Istio, Linkerd, cilium) Really Nice to Have: • PCI-DSS compliance experience • Experience in financial services or regulated industries • Knowledge of ITIL or similar service management frameworks • Experience with automated testing frameworks and test automation • Understanding of More ❯

strengthen the organisation’s security and compliance posture. Key Responsibilities Lead and enhance governance, risk, and compliance frameworks. Manage internal/external audits and risk assessments. Ensure compliance with PCI DSS, ISO 27001, GDPR, and NIST. Develop and improve policies, procedures, and vendor risk management. Support incident response and promote a culture of security awareness. Experience & Skills Proven … leadership in GRC or Information Security. Strong knowledge of ISO 27001, PCI DSS, GDPR, NIST. Experience managing audits and compliance programmes. Excellent communication and stakeholder management. Hands-on technical understanding of security controls. Desirable: Certifications: CISM, CRISC, ISO 27001 Lead Auditor (or equivalent). Experience with cloud security (AWS/Azure) and enterprise-scale environments. Benefits Salary up More ❯

and compliant. You’ll manage cyber and data protection risks, oversee our technical infrastructure, and ensure we meet key security standards such as ISO 27001, Cyber Essentials, PSN, and PCI-DSS. You’ll also manage our client's corporate insurance function, helping ensure our policies and coverage are robust and compliant. What You’ll Do • Lead the development and … server infrastructure (on-premise and cloud). • Promote cyber awareness and best practice across the organisation. • Ensure successful completion of security audits and certifications (ISO 27001, Cyber Essentials, PSN, PCI-DSS). • Manage the corporate insurance service, working with governance officers and external partners. • Build strong working relationships with internal teams, senior managers, and external regulators such as … operations. • Excellent problem-solving, communication, and leadership skills. Desirable qualifications and experience: • CISM, CISSP, ISO 27001 Lead Implementer/Auditor, or ITIL certification. • Experience with frameworks such as PSN, PCI-DSS, NHS DSP Toolkit, or CAF. • Understanding of insurance laws and governance Should you have any questions or wish to apply please do not hesitate to contact Clear More ❯

compliant. You’ll manage cyber and data protection risks, oversee our technical infrastructure, and ensure our client meets key security standards such as ISO 27001, Cyber Essentials, PSN, and PCI-DSS. You’ll also manage the client's corporate insurance function, helping ensure the policies and coverage are robust and compliant. What You’ll Do • Lead the development and … server infrastructure (on-premise and cloud). • Promote cyber awareness and best practice across the organisation. • Ensure successful completion of security audits and certifications (ISO 27001, Cyber Essentials, PSN, PCI-DSS). • Manage the corporate insurance service, working with governance officers and external partners. • Build strong working relationships with internal teams, senior managers, and external regulators such as … operations. • Excellent problem-solving, communication, and leadership skills. Desirable qualifications and experience: • CISM, CISSP, ISO 27001 Lead Implementer/Auditor, or ITIL certification. • Experience with frameworks such as PSN, PCI-DSS, NHS DSP Toolkit, or CAF. • Understanding of insurance laws and governance. Should you have any questions or wish to apply please do not hesitate to contact Clear More ❯

lifecycle for various kinds of applications, ensuring data is protected and governed. Essential & Desirable KnowledgeProficiency in MS Office applications (Excel, Word, and PowerPoint) is essential.GDPR - ISO27001 - Cyber Essentials Plus - PCI DSS - OneTrust.Practical application ability with Microsoft Access, Project, Visio, SQL, Python and Tableau is desirable.Practical application ability with Data Governance and Data Quality Management tools is desirable.Essential & Desirable … problem-solving skills. Ability to work under pressure.Ability to pick up new concepts and skills.Good awareness and understanding of current regulatory compliance requirements: PRA, FCA, ISO27001 - GDPR - Cyber Essentials - PCI -DSS A good team player with a flexible approach and a proactive "can do" attitude.Develops in accordance with standards and agreed industry best practice Hays Specialist Recruitment Limited More ❯

make a real impact What you’ll be doing: Leading vulnerability assessments and coordinating regular penetration testing across systems and products Owning risk remediation actions, from security audits to PCI scans and compliance reporting Working across cloud (AWS), infrastructure, and software environments to ensure security best practices are embedded throughout Supporting the secure design of products and infrastructure, providing … tools Writing clear, actionable reports for both technical and executive audiences, including regular updates on the security landscape Aligning with frameworks such as ISO 27001, Cyber Essentials+, GDPR, and PCI-DSS Collaborating with compliance, IT, and engineering to deliver secure, scalable solutions What you’ll bring to the table: Proven experience in a security-focused role (ideally … grasp of access controls, identity management, and cloud security (especially AWS) Familiarity with secure software development practices and working alongside dev teams Understanding of key frameworks like ISO 27001, PCI-DSS, and GDPR Bonus points for scripting/automation experience (PowerShell, Python, etc.) or exposure to tools like Keeper, Keycloak, or IAM A proactive mindset and excellent communication More ❯

of disaster recovery and business continuity plans. Produce reports and metrics for senior IT and governance stakeholders Stay updated with the latest threats, trends, and compliance requirements (e.g., GDPR, PCI DSS, Cyber Essentials) Person Specification Essential: Demonstrable experience in a related role Excellent problem-solving, analytical, and communication skills An appetite for keeping up to date with the … UK Desirable: Industry certifications (e.g., CompTIA Security+, SSCP) Experience in the charity or non-profit sector Familiarity with Microsoft Azure cloud platforms and identity management Experience with compliance frameworks (PCI DSS, Cyber Essentials) Experience with auditing and compliance Experience of BCP/DR More ❯

AWS services (Lambda, EventBridge, Kinesis, Glue, Athena). Security, Compliance & Governance Implement IAM, KMS encryption, VPC networking, and PrivateLink for secure connectivity. Ensure compliance with GDPR/UK GDPR, PCI-DSS, ISO 27001, and sector-specific standards (e.g., NHS DSP Toolkit, HIPAA). Define data retention policies, PIA/DPIA frameworks, and lawful intercept/emergency call handling. … enterprise-scale Amazon Connect implementations with complex integrations. Expertise in AWS services: IAM, VPC, Lambda, API Gateway, EventBridge, Kinesis, CloudWatch, DynamoDB. Strong knowledge of security and compliance frameworks (GDPR, PCI-DSS, ISO 27001, NHS DSP Toolkit). Hands-on experience with IaC (CloudFormation/Terraform/CDK) and serverless development (Node.js/Python). Preferred Qualifications AWS Solutions More ❯

is well defined. Engage risk review and assurance activities across existing suppliers. Provide IT and business advice on aspects of security standards and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Engage with I&T system owners to provide training in relation to information security, cyber resilience, phishing, and facilitation of cyber scenario desktop simulations … consequences across both IT and manufacturing environments in manufacturing or similar industries. Experience working with information security standards and frameworks such as and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Proven analytical, problem-solving, planning, project delivery and supplier work packages management skills. Demonstrable experience of engaging across all levels of a company in More ❯

and maintaining key certifications such as ISO/IEC 27001 , SOC 2 Type II , Cyber Essentials Plus , and CREST SOC accreditation , as well as supporting sector-specific frameworks including PCI DSS and NCSC CIR/CHECK . The ideal candidate will have a strong background in cybersecurity assurance , experience engaging with external auditors and customers , and a proactive … ongoing maintenance of SOC-related certifications including SOC 2 Type II , SOC 3 , ISO/IEC 27001 , Cyber Essentials Plus , and CREST . Manage sector-specific compliance such as PCI DSS and NCSC CIR/CHECK . Ensure timely renewals and proactively address compliance gaps. Security Assurance for SOC Operations Integrate certification and assurance requirements into SOC governance More ❯

such as Lambda, EventBridge, Kinesis, Glue, Athena, and CloudWatch. Security & Compliance Implement IAM policies, KMS encryption, VPC networking, and PrivateLink to secure data and connectivity. Ensure adherence to GDPR, PCI-DSS, ISO 27001, and industry-specific standards. Develop data retention policies, privacy impact frameworks, and procedures for emergency call handling. DevOps & Automation Establish CI/CD pipelines for … Connect solutions at enterprise scale with complex integrations. Proficient with AWS services: IAM, VPC, Lambda, API Gateway, EventBridge, Kinesis, CloudWatch, DynamoDB. Strong understanding of security and compliance frameworks (GDPR, PCI-DSS, ISO 27001). Hands-on experience with Infrastructure as Code (CloudFormation, Terraform, CDK) and serverless development (Node.js/Python). Preferred Qualifications AWS Solutions Architect - Professional or More ❯

such as Lambda, EventBridge, Kinesis, Glue, Athena, and CloudWatch. Security & Compliance Implement IAM policies, KMS encryption, VPC networking, and PrivateLink to secure data and connectivity. Ensure adherence to GDPR, PCI-DSS, ISO 27001, and industry-specific standards. Develop data retention policies, privacy impact frameworks, and procedures for emergency call handling. DevOps & Automation Establish CI/CD pipelines for … Connect solutions at enterprise scale with complex integrations. Proficient with AWS services: IAM, VPC, Lambda, API Gateway, EventBridge, Kinesis, CloudWatch, DynamoDB. Strong understanding of security and compliance frameworks (GDPR, PCI-DSS, ISO 27001). Hands-on experience with Infrastructure as Code (CloudFormation, Terraform, CDK) and serverless development (Node.js/Python). Preferred Qualifications AWS Solutions Architect - Professional or More ❯

such as Lambda, EventBridge, Kinesis, Glue, Athena, and CloudWatch. Security & Compliance Implement IAM policies, KMS encryption, VPC networking, and PrivateLink to secure data and connectivity. Ensure adherence to GDPR, PCI-DSS, ISO 27001, and industry-specific standards. Develop data retention policies, privacy impact frameworks, and procedures for emergency call handling. DevOps & Automation Establish CI/CD pipelines for … Connect solutions at enterprise scale with complex integrations. Proficient with AWS services: IAM, VPC, Lambda, API Gateway, EventBridge, Kinesis, CloudWatch, DynamoDB. Strong understanding of security and compliance frameworks (GDPR, PCI-DSS, ISO 27001). Hands-on experience with Infrastructure as Code (CloudFormation, Terraform, CDK) and serverless development (Node.js/Python). Preferred Qualifications AWS Solutions Architect - Professional or More ❯

practice is a part of our overall Technology Consulting Division. The Cyber Security practice includes coverage of focused domains such as Technical Security Assessments, Assessment against cyber security frameworks, PCI DSS assessments, Cloud Security Reviews, Cyber Security Audits, Cyber Security Strategy and Advisory work. Cyber Security is a high-growth area for Protiviti globally. You will be part … other clients. Do Your Talents Include the Following? In-depth knowledge and understanding of industry cyber security frameworks such as ISO 27001, NIST CSF, NIS 2 and/or PCI DSS. Hands-on experience in implementing or assessing against these frameworks is a must-have requirement. Demonstrated ability to lead, manage and develop teams and deliver cybersecurity engagements to … experience, preferably in consulting and/or professional services. Demonstrable track record of continual growth across various roles. Relevant industry certifications such as CISSP, CISM, CISA, ISO 27001 LA, PCI DSS QSA are strongly preferred Offices - The Shard, London - Hybrid/Remote Working £100k-126k, Annual performance bonus & benefits Robert Half Ltd acts as an employment business for More ❯

teams to support transparency and accountability. Mentor and develop junior compliance colleagues, fostering a culture of continuous improvement. Contribute to maintaining ISO 27001 certification and other relevant standards (e.g. PCI DSS, Information Security). Lead business continuity planning and ensure ongoing operational resilience. Manage corporate insurance coverage and relationships with insurers. All team members are required to complete … approach to risk mitigation. Confident communicator, able to simplify complex issues and influence at senior levels. Experience leading compliance monitoring, audits, investigations, and remediation initiatives. Familiarity with ISO 27001 , PCI DSS , and other information security frameworks. Experience managing business continuity and insurance programmes. Leadership capability with a track record of mentoring others and representing compliance at Board or More ❯