City of London, London, United Kingdom Hybrid / WFH Options
McCabe & Barton
80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO/IEC 27001/2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience activities. Monitor the effectiveness of security controls to ensure … analysis. A knowledge of the data protection act (UK GDPR) and how it applies to information and cyber security A knowledge of cardpayment system security as defined in PCI-DSS V4.0 Qualifications A security certification such as CISM, CISMP, CISSP or equivalent would be desirable. A relevant IT or security-based degree or equivalent practical experience. More ❯
80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO/IEC 27001/2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience activities. Monitor the effectiveness of security controls to ensure … analysis. A knowledge of the data protection act (UK GDPR) and how it applies to information and cyber security A knowledge of cardpayment system security as defined in PCI-DSS V4.0 Qualifications A security certification such as CISM, CISMP, CISSP or equivalent would be desirable. A relevant IT or security-based degree or equivalent practical experience. More ❯
london, south east england, united kingdom Hybrid / WFH Options
McCabe & Barton
80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO/IEC 27001/2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience activities. Monitor the effectiveness of security controls to ensure … analysis. A knowledge of the data protection act (UK GDPR) and how it applies to information and cyber security A knowledge of cardpayment system security as defined in PCI-DSS V4.0 Qualifications A security certification such as CISM, CISMP, CISSP or equivalent would be desirable. A relevant IT or security-based degree or equivalent practical experience. More ❯
london (city of london), south east england, united kingdom Hybrid / WFH Options
McCabe & Barton
80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO/IEC 27001/2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience activities. Monitor the effectiveness of security controls to ensure … analysis. A knowledge of the data protection act (UK GDPR) and how it applies to information and cyber security A knowledge of cardpayment system security as defined in PCI-DSS V4.0 Qualifications A security certification such as CISM, CISMP, CISSP or equivalent would be desirable. A relevant IT or security-based degree or equivalent practical experience. More ❯
slough, south east england, united kingdom Hybrid / WFH Options
McCabe & Barton
80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO/IEC 27001/2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience activities. Monitor the effectiveness of security controls to ensure … analysis. A knowledge of the data protection act (UK GDPR) and how it applies to information and cyber security A knowledge of cardpayment system security as defined in PCI-DSS V4.0 Qualifications A security certification such as CISM, CISMP, CISSP or equivalent would be desirable. A relevant IT or security-based degree or equivalent practical experience. More ❯
Manchester Area, United Kingdom Hybrid / WFH Options
Candour Solutions
for our customers. Consult and Advise: Conduct assessments and reviews for ISO27001 (Information Security Management) and ISO22301 (Business Continuity Management). Provide expert advice on compliance standards such as PCI-DSS, Cyber Essentials, and more. Policy Development: Create, review, and update information security policies to align with business and regulatory requirements. Technical Expertise: Translate information security requirements into … We’re looking for someone with: CISM, CISSP, or equivalent certifications. ISO27001 and ISO22301 Lead Auditor/Implementor certifications. Knowledge of Cyber Essentials/Cyber Essentials Plus. Familiarity with PCIDSS and ISO31000 (preferred). Experience: Proven track record in delivering governance, risk, and compliance services. Expertise in information security management and business continuity frameworks. Experience working with More ❯
Manchester, Lancashire, United Kingdom Hybrid / WFH Options
Candour Solutions
for our customers. Consult and Advise: Conduct assessments and reviews for ISO27001 (Information Security Management) and ISO22301 (Business Continuity Management). Provide expert advice on compliance standards such as PCI-DSS, Cyber Essentials, and more. Policy Development: Create, review, and update information security policies to align with business and regulatory requirements. Technical Expertise: Translate information security requirements into … We're looking for someone with: CISM, CISSP, or equivalent certifications. ISO27001 and ISO22301 Lead Auditor/Implementor certifications. Knowledge of Cyber Essentials/Cyber Essentials Plus. Familiarity with PCIDSS and ISO31000 (preferred). Experience: Proven track record in delivering governance, risk, and compliance services. Expertise in information security management and business continuity frameworks. Experience working with More ❯
Description: Proficiency in key management systems and tools (e.g., HSMs, KMS, PKI) Strong understanding of cryptographic algorithms and protocols Experience with security standards and frameworks (e.g., NIST, ISO 27001, PCIDSS) Familiarity with cloud-based key management services (e.g., AWS KMS, Azure Key Vault) Proficiency in Linux and Windows operating systems Strong experience with automation using Perl, python … Skills: Proficiency in key management systems and tools (e.g., HSMs, KMS, PKI) Strong understanding of cryptographic algorithms and protocols Experience with security standards and frameworks (e.g., NIST, ISO 27001, PCIDSS) Familiarity with cloud-based key management services (e.g., AWS KMS, Azure Key Vault) Proficiency in Linux and Windows operating systems Strong experience with automation using Perl, python More ❯
. Security, Compliance & Governance Partner with Information Security teams to enhance network security posture , addressing vulnerabilities and implementing intrusion detection/prevention systems. Ensure ongoing compliance with ISO 27001, PCI-DSS , and other relevant regulatory standards. Drive a proactive approach to incident response, monitoring, and continuous threat detection . Oversee audit readiness and maintain comprehensive network documentation and … configuration (Cisco ASA, Palo Alto, Fortinet, etc.) , and telephony (SIP/VoIP) systems. Familiarity with cloud and hybrid networking (Azure, AWS, GCP) environments preferred. Strong understanding of ISO 27001, PCI-DSS , and ITIL-aligned service delivery processes. Leadership & Soft Skills Strategic thinker with the ability to balance technical depth and business acumen . Exceptional stakeholder management and communication More ❯
. Security, Compliance & Governance Partner with Information Security teams to enhance network security posture , addressing vulnerabilities and implementing intrusion detection/prevention systems. Ensure ongoing compliance with ISO 27001, PCI-DSS , and other relevant regulatory standards. Drive a proactive approach to incident response, monitoring, and continuous threat detection . Oversee audit readiness and maintain comprehensive network documentation and … configuration (Cisco ASA, Palo Alto, Fortinet, etc.) , and telephony (SIP/VoIP) systems. Familiarity with cloud and hybrid networking (Azure, AWS, GCP) environments preferred. Strong understanding of ISO 27001, PCI-DSS , and ITIL-aligned service delivery processes. Leadership & Soft Skills Strategic thinker with the ability to balance technical depth and business acumen . Exceptional stakeholder management and communication More ❯
. Security, Compliance & Governance Partner with Information Security teams to enhance network security posture , addressing vulnerabilities and implementing intrusion detection/prevention systems. Ensure ongoing compliance with ISO 27001, PCI-DSS , and other relevant regulatory standards. Drive a proactive approach to incident response, monitoring, and continuous threat detection . Oversee audit readiness and maintain comprehensive network documentation and … configuration (Cisco ASA, Palo Alto, Fortinet, etc.) , and telephony (SIP/VoIP) systems. Familiarity with cloud and hybrid networking (Azure, AWS, GCP) environments preferred. Strong understanding of ISO 27001, PCI-DSS , and ITIL-aligned service delivery processes. Leadership & Soft Skills Strategic thinker with the ability to balance technical depth and business acumen . Exceptional stakeholder management and communication More ❯
. Security, Compliance & Governance Partner with Information Security teams to enhance network security posture , addressing vulnerabilities and implementing intrusion detection/prevention systems. Ensure ongoing compliance with ISO 27001, PCI-DSS , and other relevant regulatory standards. Drive a proactive approach to incident response, monitoring, and continuous threat detection . Oversee audit readiness and maintain comprehensive network documentation and … configuration (Cisco ASA, Palo Alto, Fortinet, etc.) , and telephony (SIP/VoIP) systems. Familiarity with cloud and hybrid networking (Azure, AWS, GCP) environments preferred. Strong understanding of ISO 27001, PCI-DSS , and ITIL-aligned service delivery processes. Leadership & Soft Skills Strategic thinker with the ability to balance technical depth and business acumen . Exceptional stakeholder management and communication More ❯
london (city of london), south east england, united kingdom
AirSearch
. Security, Compliance & Governance Partner with Information Security teams to enhance network security posture , addressing vulnerabilities and implementing intrusion detection/prevention systems. Ensure ongoing compliance with ISO 27001, PCI-DSS , and other relevant regulatory standards. Drive a proactive approach to incident response, monitoring, and continuous threat detection . Oversee audit readiness and maintain comprehensive network documentation and … configuration (Cisco ASA, Palo Alto, Fortinet, etc.) , and telephony (SIP/VoIP) systems. Familiarity with cloud and hybrid networking (Azure, AWS, GCP) environments preferred. Strong understanding of ISO 27001, PCI-DSS , and ITIL-aligned service delivery processes. Leadership & Soft Skills Strategic thinker with the ability to balance technical depth and business acumen . Exceptional stakeholder management and communication More ❯
Poole, Dorset, England, United Kingdom Hybrid / WFH Options
Mexa Solutions LTD
make a real impact What you’ll be doing: Leading vulnerability assessments and coordinating regular penetration testing across systems and products Owning risk remediation actions, from security audits to PCI scans and compliance reporting Working across cloud (AWS), infrastructure, and software environments to ensure security best practices are embedded throughout Supporting the secure design of products and infrastructure, providing … tools Writing clear, actionable reports for both technical and executive audiences, including regular updates on the security landscape Aligning with frameworks such as ISO 27001, Cyber Essentials+, GDPR, and PCI-DSS Collaborating with compliance, IT, and engineering to deliver secure, scalable solutions What you’ll bring to the table: Proven experience in a security-focused role (ideally … grasp of access controls, identity management, and cloud security (especially AWS) Familiarity with secure software development practices and working alongside dev teams Understanding of key frameworks like ISO 27001, PCI-DSS, and GDPR Bonus points for scripting/automation experience (PowerShell, Python, etc.) or exposure to tools like Keeper, Keycloak, or IAM A proactive mindset and excellent communication More ❯
Cheshire, England, United Kingdom Hybrid / WFH Options
Morgan Law
of disaster recovery and business continuity plans. Produce reports and metrics for senior IT and governance stakeholders Stay updated with the latest threats, trends, and compliance requirements (e.g., GDPR, PCIDSS, Cyber Essentials) Person Specification Essential: Demonstrable experience in a related role Excellent problem-solving, analytical, and communication skills An appetite for keeping up to date with the … UK Desirable: Industry certifications (e.g., CompTIA Security+, SSCP) Experience in the charity or non-profit sector Familiarity with Microsoft Azure cloud platforms and identity management Experience with compliance frameworks (PCIDSS, Cyber Essentials) Experience with auditing and compliance Experience of BCP/DR More ❯
and maintaining key certifications such as ISO/IEC 27001 , SOC 2 Type II , Cyber Essentials Plus , and CREST SOC accreditation , as well as supporting sector-specific frameworks including PCIDSS and NCSC CIR/CHECK . The ideal candidate will have a strong background in cybersecurity assurance , experience engaging with external auditors and customers , and a proactive … ongoing maintenance of SOC-related certifications including SOC 2 Type II , SOC 3 , ISO/IEC 27001 , Cyber Essentials Plus , and CREST . Manage sector-specific compliance such as PCIDSS and NCSC CIR/CHECK . Ensure timely renewals and proactively address compliance gaps. Security Assurance for SOC Operations Integrate certification and assurance requirements into SOC governance More ❯
Portsmouth, England, United Kingdom Hybrid / WFH Options
Franklin Fitch
and maintaining key certifications such as ISO/IEC 27001 , SOC 2 Type II , Cyber Essentials Plus , and CREST SOC accreditation , as well as supporting sector-specific frameworks including PCIDSS and NCSC CIR/CHECK . The ideal candidate will have a strong background in cybersecurity assurance , experience engaging with external auditors and customers , and a proactive … ongoing maintenance of SOC-related certifications including SOC 2 Type II , SOC 3 , ISO/IEC 27001 , Cyber Essentials Plus , and CREST . Manage sector-specific compliance such as PCIDSS and NCSC CIR/CHECK . Ensure timely renewals and proactively address compliance gaps. Security Assurance for SOC Operations Integrate certification and assurance requirements into SOC governance More ❯
Hereford, Herefordshire, United Kingdom Hybrid / WFH Options
an experienced Information Security Analyst to join our client who will play a key role in driving compliance, governance, and continual improvement across key security frameworks including ISO 27001, PCIDSS, and Cyber Essentials Plus. Lead on the operation and continual improvement of the Information Security Management System (ISMS) Coordinate internal and external audit readiness for ISO … PCIDSS, and Cyber Essentials Plus Draft and update information security policies, procedures, and technical standards Work with procurement and commercial teams to support supplier assurance and risk assessment Contribute to tender responses and bid processes, ensuring security and compliance requirements are met Promote good security practices and raise awareness across departments Stay up to date with changes More ❯
such as Lambda, EventBridge, Kinesis, Glue, Athena, and CloudWatch. Security & Compliance Implement IAM policies, KMS encryption, VPC networking, and PrivateLink to secure data and connectivity. Ensure adherence to GDPR, PCI-DSS, ISO 27001, and industry-specific standards. Develop data retention policies, privacy impact frameworks, and procedures for emergency call handling. DevOps & Automation Establish CI/CD pipelines for … Connect solutions at enterprise scale with complex integrations. Proficient with AWS services: IAM, VPC, Lambda, API Gateway, EventBridge, Kinesis, CloudWatch, DynamoDB. Strong understanding of security and compliance frameworks (GDPR, PCI-DSS, ISO 27001). Hands-on experience with Infrastructure as Code (CloudFormation, Terraform, CDK) and serverless development (Node.js/Python). Preferred Qualifications AWS Solutions Architect - Professional or More ❯
such as Lambda, EventBridge, Kinesis, Glue, Athena, and CloudWatch. Security & Compliance Implement IAM policies, KMS encryption, VPC networking, and PrivateLink to secure data and connectivity. Ensure adherence to GDPR, PCI-DSS, ISO 27001, and industry-specific standards. Develop data retention policies, privacy impact frameworks, and procedures for emergency call handling. DevOps & Automation Establish CI/CD pipelines for … Connect solutions at enterprise scale with complex integrations. Proficient with AWS services: IAM, VPC, Lambda, API Gateway, EventBridge, Kinesis, CloudWatch, DynamoDB. Strong understanding of security and compliance frameworks (GDPR, PCI-DSS, ISO 27001). Hands-on experience with Infrastructure as Code (CloudFormation, Terraform, CDK) and serverless development (Node.js/Python). Preferred Qualifications AWS Solutions Architect - Professional or More ❯
