1 to 25 of 57 Permanent PCI DSS Jobs in the UK excluding London

Exchange and is part of the FTSE 100 Index. Due to continued growth, they are keen to appoint an experienced Information Security Compliance Manager (PCI-DSS), paying a salary range up to £75,000 plus car allowance and bonus. The role is based out of the Birmingham offices … hybrid model. As an experienced Information Security Compliance Manager (PCI-DSS), you will be responsible for driving the highest standards of payment card data security across group. This role will oversee and ensure adherence to PCI DSS Requirements and Security Assessment Procedures, conduct regular gap analyses ...

infrastructure. Their platform orchestrates payment transactions across dozens of processes. Their card tokenisation service keeps sensitive card data out of merchant systems under full PCI DSS compliance. The CRM platform ties it all together for sales marketing and support teams. The role: You will be the person responsible … effective. Building and maintaining CICD pipelines that let engineers ship with confidence. Managing infrastructure as code for the GCP environments with particular focus on PCI compliance systems. Keeping the local development environments working so engineers can run the full stack on their machines. Improving observability, making sure they know ...

ensuring minimal downtime and data loss. Develop automated workflows for vulnerability management, incident detection, and response. Align security measures with financial regulations such as PCI DSS, ISO 27001, SOC 2, and GDPR. Support Atom’s AI team with AI and Automation specific infrastructure security needs. Partner with DevOps … Kubernetes and Docker environments. Advanced scripting and automation skills (Python, PowerShell, Bash, etc.) Demonstrated ability to navigate and implement compliance frameworks such as PCI DSS, GDPR, SOC 2, and ISO 27001. Familiarity with financial industry-specific security and privacy standards. Relevant Security certifications (e.g. CISSP, SSCP, CCSM, CISM ...

organisation's cyber and information security strategy. Lead, mentor, and develop the security team, supporting high performance and continuous improvement. Oversee compliance with PCI-DSS, ISO 27001, Cyber Essentials Plus, GDPR, and other regulatory requirements. Conduct security risk assessments, maintain governance frameworks, and ensure robust oversight. Set, enforce … certification (e.g., CISSP, CISM, or equivalent). Strong experience in cyber security leadership, strategy development, and operational oversight. Knowledge and hands-on involvement with PCI-DSS, ISO 27001, and Cyber Essentials Plus. Experience managing and developing security teams and influencing organisational change. Strong communication skills with the ability ...

review and assurance activities across existing suppliers. Provide IT and business advice on aspects of security standards and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Engage with I&T system owners to provide training in relation to information security, cyber resilience, phishing, and facilitation … manufacturing environments in manufacturing or similar industries. Experience working with information security standards and frameworks such as and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Proven analytical, problem-solving, planning, project delivery and supplier work packages management skills. Demonstrable experience of engaging across ...

aligns with business requirements. * Payments Domain Expertise o Analyze payment gateways, card networks, digital wallets, and real-time payment systems. o Understand compliance requirements (PCI DSS, PSD2, tokenization, fraud prevention). * Stakeholder Management o Act as a liaison between product, technology, and operations teams. o Conduct workshops, demos … settlement processes. * Domain Expertise o Hands-on experience in Payments industry (cards, wallets, UPI, ACH, etc.). o Understanding of regulatory and compliance frameworks (PCI DSS, PSD2). * Soft Skills o Excellent communication and documentation skills. o Strong analytical and problem-solving abilities. * Education o Bachelor's degree ...

growing security programme . Key Responsibilities Develop and maintain GRC processes, policies, and procedures. Ensure compliance with UK-centric frameworks and standards, including PCI-DSS and Cyber Essentials Plus . Support internal audits, risk assessments, and governance reviews. Assist with new product reviews and collaborate on secure … Communicate GRC matters effectively to technical and non-technical stakeholders. Essential: Minimum 2 years' experience in Governance, Risk & Compliance roles. Hands-on experience with PCI-DSS and Cyber Essentials (ideally completed these processes more than once). Strong understanding of UK regulatory frameworks and internal policy compliance. Experience ...

compliance with internal polices and external regulations - including data protection legislation and sector specific standards. GRC Analyst: Responsibilities Ensure group complies with relevant regulations: PCI-DSS, NHS DSPT, ISO27001 Monitor/Report compliance with policies and procedures Assist with audits and assessments Develop GRC processes and procedures Select … Risk management - identify/prioritise risks based on impact Develop risk management strategies in line with governance frameworks GRC Analyst: Experience Managing group compliance - PCI-DSS, Cyber Essentials, ISO27001 Experience of ITSM tools Knowledge of developing Governance frameworks Familiar with GRC tools Data privacy regulations - DPA 2018 Knowledge ...

risk, and security governance frameworks. This senior leadership role requires deep expertise across regulatory, industry, and cybersecurity standards— specifically the UK Telecom Security Act, PCI DSS, ISO 27001, and NIS2. You will act as the organisation’s authoritative subject-matter expert, ensuring end to end compliance, overseeing risk … delivering a GRC strategy that ensure alignment with business objectives and regulatory obligations. You will be an authority on the Telecoms Security Act, PCI DSS, NIS2 and ISO27001, and will have proven experience with risk management and security assurance.This is an outstanding opportunity for an accomplished GRC Manager ...

hybrid infrastructures Partner with engineering teams to embed data protection into application architecture and CI/CD pipelines Support compliance initiatives including GDPR, HIPAA, PCI DSS, and SOC 2 Conduct data-focused risk assessments and threat modelling Monitor and respond to data-related security incidents and alerts Develop ...

Coordinator) or Delivery Team Security Lead experience MOD/GDS Secure by Design Familiarity with: JSP440, JSP604/453, JSP490 Supplier Chain Assurance GDPR, PCI DSS, ICO ISO 27001, NIST CSF, CIS Controls v8 Skills in: Threat modelling (kill chain, attack trees, etc.) Cloud security (AWS, Azure), containerisation ...

Office 365), Automation Tools & Scripting Languages (Python, Java, PowerShell). Strong Knowledge of ITIL Principles & Security Governance Frameworks (such as ISO 27001, NIST, PCI DSS, CIS Controls). Responsibilities of Cyber Security Engineer will include: Deploy & Oversee Security Tools & Technologies to effectively protect the IT environment. C ontribute ...

governance forums and working groups to monitor control effectiveness and provider performance Ensure compliance with relevant laws, regulations, and industry standards (e.g., GDPR, PCI DSS, NIST CSF) Influence cyber security improvements by reviewing IT/security architectures and providing expert challenge Oversee incident response readiness and assurance ...

Active Directory, SSL, 2FA, OT skills are essential for this position. Knowledge of information security standards (e.g., ISO 17799/27002/27001/PCI DSS/SIEM, etc.), rules and regulations related to information security and data confidentiality (e.g., FERPA, HIPAA, etc.) and key network security principles ...

What You'll Bring Prior and proven experience gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures ...

backup and recovery solutions Managing SQL Server backup, maintenance, and redundancy Regularly testing disaster recovery processes Security & Compliance Supporting ISO27001, Cyber Essentials Plus, and PCI compliance Carrying out vulnerability scanning and remediation Maintaining system security through patching, hardening, encryption, and certificate management Managing email security and filtering What were ...

security best practice (ISO27001, NIST CSF, Cyber Essentials, OWASP). Knowledge and adherence to data protection legislation and regulatory requirements (e.g. GDPR, FCA SYSC, PCI DSS). Extensive experience and understanding of security analysis tools, defensive technologies and other security technologies (e.g. SIEM, VAS, IDS/IPS, Firewalls ...

Compliance Ensure vulnerability management activities align with internal information security policies, standards, and procedures. Support compliance with relevant regulatory and security frameworks (e.g. GDPR, PCI DSS). Produce regular vulnerability risk reports, dashboards, and KPIs for senior stakeholders. Provide evidence and reporting to support audits, penetration tests ...

JSP490 Working with system secure design MOD/GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards ...

Active Directory, SSL, 2FA, OT skills are essential for this position. Knowledge of information security standards (e.g., ISO 17799/27002/27001/PCI DSS/SIEM, etc.), rules and regulations related to information security and data confidentiality (e.g., FERPA, HIPAA, etc.) and key network security principles ...

Experience of security governance and compliance, ideally gained in financial services organisations Demonstrable understanding of Information Security control standards and frameworks e.g. ISO27001, NIST, PCI DSS Awareness and understanding of the Information Security threat landscape Deep understanding of Information Security solutions and controls Experience of Cloud security solutions ...

deployment processes for efficiency and consistency. Security: Expertise in cloud security best practices, identity and access management (IAM), encryption, and compliance frameworks (e.g., PCI DSS, NIST). Networking: Strong knowledge of cloud networking concepts, including virtual networks, subnets, security groups, load balancers, and VPN configurations. DevOps Principles ...

Programmes for internal staff awareness KNOWLEDGE AND SKILLS ESSENTIAL CRITERIA GDPR Compliance Hardware firmware and Microsoft patching requirements Asset Management Management Reporting Microsoft Defender PCI-DSS DESIRABLE CRITERIA (experience of) NHS DSP Toolkit NIS2 ISO27001 Microsoft Sentinel (or other SIEM solution) Microsoft Purview Strategy creation We reserve ...

regulatory deadlines. Regulatory Compliance Oversight: Ensure adherence to UK GDPR, DPA 2018, PECR and relevant global frameworks such as CCPA, HIPAA, ISO 27001, NIST, PCI‐DSS and SOX. Audits & Assessments: Conduct data protection and information governance audits, gap analyses, and assessments to identify risks and improvement opportunities. Third ...

registers and compliance monitoring activities. Produce compliance reports, dashboards and metrics for management and senior stakeholders. Assist with internal and external audits, including GDPR, PCI DSS and financial audits. Maintain compliance tracking across third-party risks, data lifecycle controls and privacy-related risks. Security & Privacy Operations Track remediation ...