1 to 25 of 39 Remote Permanent PCI DSS Jobs

security controls catalogue, policies, and procedures aligned with NIST CSF Collaborate with business units to integrate security measures into operations Support compliance activities for frameworks such as Cyber Essentials, PCI DSS, and the Group Information Security Framework Facilitate reviews and updates to ensure controls remain effective against evolving threats Essential skills: Minimum 2 year's experience in information … controls catalogue in a financial services environment (highly desirable) Proven experience in delivering security projects within a federated organisation Desirable skills: Knowledge of NIST CSF, ISO 27001, Cyber Essentials, PCI DSS, DORA Understanding of risk methodologies and data analysis for reporting Strong documentation skills (control matrices, process flows, SOPs) Excellent communication skills for both technical and non-technical More ❯

and assets. You will be responsible for designing and implementing the evolution of security standards, policies, and procedures to ensure ECC meets regulatory, legislative, and operational requirements (e.g., PSN, PCI-DSS, ICO, disaster recovery). Experience Needed: Strong strategic leadership experience across large scale organisations, with the ability to influence and communicate effectively at senior and political levels. … A track record of developing and implementing enterprise-wide cyber and information security strategies aligned with business goals. Extensive knowledge of relevant legal, regulatory, and technical frameworks, including PSN, PCI-DSS, GDPR, and disaster recovery. A passion for innovation, collaboration, and continuous improvement in cyber and information security. Why Join ECC? As Assistant Director Cyber Security, you'll More ❯

initiatives, including migration of legacy applications to cloud-native platforms and adoption of SaaS/PaaS solutions. Understanding of UK financial regulations, GDPR, and industry standards (ISO 27001, NIST, PCI DSS, etc). Experience running risk assessments, threat modelling, and security testing programmes. Ability to engage and influence senior stakeholders, balancing security with commercial and operational priorities. Strong More ❯

initiatives, including migration of legacy applications to cloud-native platforms and adoption of SaaS/PaaS solutions. Understanding of UK financial regulations, GDPR, and industry standards (ISO 27001, NIST, PCI DSS, etc). Experience running risk assessments, threat modelling, and security testing programmes. Ability to engage and influence senior stakeholders, balancing security with commercial and operational priorities. Strong More ❯

and blueprints. What You'll Bring Prior and proven experience gained as a Security Architect or in a Technical Cyber Consultant/Engineer role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications More ❯

Lead roles JSP440, JSP604/453 & JSP490 Working with system secure design MOD/GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience More ❯

risk management tools and techniques Experience of security governance and compliance, ideally gained in financial services organisations Demonstrable understanding of Information Security control standards and frameworks e.g. ISO27001, NIST, PCI DSS Awareness and understanding of the Information Security threat landscape Deep understanding of Information Security solutions and controls Experience of Cloud security solutions and standards is highly advantageous More ❯

Familiarity with security frameworks (NIST, ISO 27001, etc.) Proficient in security tools (SIEM, IDS/IPS, firewalls) Experience with vulnerability management and penetration testing Knowledge of compliance regulations (GDPR, PCI-DSS, etc.) Experience 3+ years in a cybersecurity analyst or related role. Proven experience in monitoring, detecting, and responding to security incidents. Strong understanding of network security, cloud More ❯

Lead roles JSP440, JSP604/453 & JSP490 Working with system secure design MOD/GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience More ❯

incident response, containment, and recovery activities. Oversee vulnerability management: assessing risks, tracking remediation, and validating fixes. Support forensic investigations and evidence handling when needed. Contribute to compliance activities including PCI DSS evidence gathering and audit readiness. Deliver security awareness training, phishing simulations, and staff engagement campaigns. Provide local insights to the Group Information Security team to strengthen overall … experience: Experience working in security operations, SOC, or incident response. Knowledge of SIEM tools, vulnerability management, and log analysis. Understanding of security frameworks such as ISO 27001, NIST, or PCI DSS. Strong communication skills to engage with IT teams, business stakeholders, and non-technical staff. Ability to work independently at Heron Foods while remaining aligned to Group Information Security. More ❯

incident response, containment, and recovery activities. Oversee vulnerability management: assessing risks, tracking remediation, and validating fixes. Support forensic investigations and evidence handling when needed. Contribute to compliance activities including PCI DSS evidence gathering and audit readiness. Deliver security awareness training, phishing simulations, and staff engagement campaigns. Provide local insights to the Group Information Security team to strengthen overall … experience: Experience working in security operations, SOC, or incident response. Knowledge of SIEM tools, vulnerability management, and log analysis. Understanding of security frameworks such as ISO 27001, NIST, or PCI DSS. Strong communication skills to engage with IT teams, business stakeholders, and non-technical staff. Ability to work independently at Heron Foods while remaining aligned to Group Information Security. More ❯

and integrations with modern platforms (Azure, Data Lake, Fabric). Manage BAU operations: patching, security updates, backups and incident resolution. Partner with teams and providers to ensure governance, GDPR, PCI-DSS compliance and operational excellence. Support new change deployments and contribute to the cloud and automation journey. What we're looking for Deep expertise in Microsoft SQL Server More ❯

You'll have a sound understanding of cyber and information security, including frameworks like NIST and ISO IEC 27002:202. It will be great if you also know about PCI-DSS V4.0 as well. Clear Communication -You'll be able to discuss these with technical and non-technical stakeholders in a way which is accessible and understood. Threat More ❯

team at the Intellectual Property Office. Playing a key part in an established team, the individual is responsible for ensuring the continued compliance with key security standards, such as PCI, ISO27001, secure by design, GovAssure etc. It is essential that this role ensures that security architecture alongside compliance are understood and therefore the role will include championing security by … but are not limited to: Ensure security architecture aligns with wider Gov security policies and frameworks, legal frameworks, industry regulations and best practise (e.g ISO 27001, NCSC Standards, GDPR, PCI DSS, GovAssure, Secure by Design). Support the secure by design champion in building awareness and understanding of secure by design framework across DDaT. Manage the security architecture More ❯

to business and technology audits. The role will also help provide ongoing assurance that digital systems and data are safe and secure. Key Accountabilities & Responsibilities: Be an SME for PCI DSS and contribute to and ensure compliance governance to security standards. Contribute to business and technology audits. Engagement with 3rd party partners as a SME and to ensure … in projects. Skills, Experience and Knowledge: Proven experience of IT GRC and Information/Cyber security Proven experience of risk and control management Proven experience of standards including ISO27001, PCI, GDPR/DPA & NIST Communication of complex ideas clearly in a non-technical way Strong stakeholder and 3rd party management experience Strong communication and collaboration Confident at working with More ❯

Transformation: Ensure successful delivery of network upgrades, capacity enhancements, and new connectivity services while maintaining zero disruption to production services. Governance & Compliance: Implement operational processes aligned with ISO 27001, PCI DSS, and other relevant compliance frameworks. Cost & Budget Ownership: Optimise network OPEX and vendor spend through strategic negotiations, vendor consolidation, and improved service efficiency. Automation & Monitoring: Drive adoption More ❯

Lead and deliver client engagements across governance, risk and compliance (GRC), including audits, assessments and improvement plans aligned to frameworks such as ISO/IEC 27001, NCSC CAF, and PCI DSS. Lead independent assurance , review and test security policies, procedures and controls; identify gaps; and recommend pragmatic remediation strategies. Develop and present security strategies that enhance resilience and reduce … near term). Significant experience in cyber security consulting or assurance, ideally within the public sector. Deep knowledge of GRC frameworks and standards ( e.g. CAF, ISO/IEC 27001, PCI DSS). Strong client-facing skills , able to communicate complex issues clearly to technical and non-technical audiences. Proven track record of delivering high-quality outputs on time More ❯

for smarter ways to support our platforms. You ll work closely with DevOps to manage releases, improve helpdesk processes, and keep us aligned with security frameworks like ISO27001 and PCI-DSS. Role: Cloud Support Engineer, Cloud Engineer, Cloud Infrastructure Engineer, Cloud Operations Engineer, Cloud Systems Engineer, Platform Support Engineer Salary: £45k - £55k base + bonus Benefits: 5% pension More ❯

for smarter ways to support our platforms. You’ll work closely with DevOps to manage releases, improve helpdesk processes, and keep us aligned with security frameworks like ISO27001 and PCI-DSS. Role: Cloud Support Engineer, Cloud Engineer, Cloud Infrastructure Engineer, Cloud Operations Engineer, Cloud Systems Engineer, Platform Support Engineer Salary: £45k - £55k base + bonus Benefits: 5% pension More ❯

and the department, ensuring they are regularly reviewed, updated, and consistently applied to support high-quality, maintainable, and secure code. Ensure adherence to standards and regulation including to ISO27001, PCI DSS, and GDPR. Ensure quality and compliance across the development lifecycle, working closely with Test Analysts to validate solutions. Manage version control, documentation, and release processes, partnering closely More ❯

and the department, ensuring they are regularly reviewed, updated, and consistently applied to support high-quality, maintainable, and secure code. Ensure adherence to standards and regulation including to ISO27001, PCI DSS, and GDPR. Ensure quality and compliance across the development lifecycle, working closely with Test Analysts to validate solutions. Manage version control, documentation, and release processes, partnering closely More ❯

represent Security at senior leadership forums. Support the development, rollout and adoption of the Group Security Framework, Policies and Standards, ensuring alignment to external regulations (NIS Regulation 2018, SEC, PCI-DSS, etc.). Oversee compliance activities, promote a risk-aware culture, and manage non-compliance or exceptions. Provide security SME input into projects, supporting delivery teams and asset More ❯

represent Security at senior leadership forums. Support the development, rollout and adoption of the Group Security Framework, Policies and Standards, ensuring alignment to external regulations (NIS Regulation 2018, SEC, PCI-DSS, etc.). Oversee compliance activities, promote a risk-aware culture, and manage non-compliance or exceptions. Provide security SME input into projects, supporting delivery teams and asset More ❯

security. Collaborate with cross-functional teams (backend, product, UX/UI, QA) to deliver seamless payment experiences. Optimize mobile payment flows for security, speed, and reliability. Ensure compliance with PCI-DSS, security best practices, and other financial industry standards. Mentor and guide junior engineers, conduct code reviews, and drive best practices in mobile development. Troubleshoot and resolve complex More ❯

in testing methodologies, tools, and automation practices, staying updated with industry trends. Establish and maintain governance frameworks throughout the testing lifecycle, including reporting, risk management, and compliance with ISO27001, PCI DSS, and GDPR. As the Test Lead, you will have: Proven experience as a Test Manager in ERP or transformation programmes. Significant experience of coaching, mentoring and training More ❯