1 to 25 of 140 PCI DSS Jobs in England

Security Compliance Manager - Payments, PCI DSS, SOC2 - £100,000 A rapidly growing payments technology company that has established itself as a major player in the UK market, is seeking a Security Compliance Manager to drive their critical compliance initiatives and strengthen their security posture as they continue their expansion across multiple markets. This is a great opportunity for … an experienced Security Compliance Manager to take ownership of comprehensive compliance programs within a dynamic payments environment. You'll be the go-to expert for PCI certifications, leading compliance strategy, and building robust security control frameworks that enable business growth while maintaining customer trust. Working within the Product Security team, you'll collaborate closely with engineering and product development … to embed security compliance from the ground up. The Security Compliance Manager's responsibilities: Leading and managing all PCI compliance initiatives including PCI DSS, PCI PIN, PCI P2PE certifications, with responsibility for achieving new certifications such as PCI MPoC and PCI SSF. Serving as the primary liaison with Qualified Security Assessors (QSAs) and More ❯

a Work from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure DevOps pipelines and Infrastructure as Code (IaC) using … Security: Manage Web Application Firewalls (WAF) and Intrusion Prevention Systems (IPS). Vulnerability & Penetration Testing: Review Penetration Testing, vulnerability assessments, and security scanning to proactively identify and remediate risks. PCI DSS Compliance: Conduct security audits, risk assessments, and ensure regulatory compliance. DNS Security: Implement and monitor DNS security solutions to prevent cyber threats. Incident Response: Formulating and documenting … Profile 29s privacy policy can be found at: profile-29 .com/privacy) Profile 29 recruitment keywords: DevSecOps DevOps Azure cloud security Microsoft Defender Microsoft Sentinel WAF IPS DNS pcidss pci dss pci-dss soar loughton Debden essex London More ❯

Job Specification Project Manager - PCI DSS Compliance Location: Stockport (Hybrid - 1 day/week onsite) Rate: Up to £600/day (Inside IR35) Contract Length: 3 months initially Start Date: ASAP Sector: Transport Overview We are seeking an experienced Project Manager to lead a critical PCI DSS compliance project within the transport sector. This role requires … the project, drive delivery, and coordinate across multiple teams and stakeholders to ensure successful and timely compliance. Key Responsibilities Lead and manage the end-to-end delivery of the PCI DSS compliance project. Act as the central point of contact for all PCI DSS-related activities. Coordinate with internal teams, external vendors, and Qualified Security Assessors … risk registers. Proactively identify and resolve project risks, issues, and blockers. Provide regular updates to senior stakeholders and ensure alignment with business objectives. Essential Skills & Experience Proven experience managing PCI DSS compliance projects. Strong understanding of QSA processes and AOC documentation. Excellent stakeholder engagement and communication skills. Ability to lead cross-functional teams and drive accountability. Strong organisational More ❯

AD), Windows Server environments, and authentication solutions. Plan for scalability, redundancy, and high availability to support future growth. IT Security & Compliance: Ensure compliance with security and regulatory standards, including PCI DSS, Cyber Essentials+, DORA, and ISO 27001. Implement and enforce security best practices across infrastructure automation and cloud environments. Maintain accurate compliance documentation, including PCI DSS scope records and security policies. Secure high-value and high-risk data, such as cardholder (PCI) and personally identifiable information (PII). Cloud & DevOps Integration (these tools and skills will be taught): Implement and manage Infrastructure as Code (IaC) for cloud and on-premises environments. Configure and maintain authentication solutions (SSO, SAML, Entra Connect). Develop and manage … CIS, PCI DSS, Cyber Essentials, NIST, ISO 27001). In-depth understanding of network security and compliance in regulated environments. Proven ability to secure high-value data (PCI cardholder data, PII) and implement security best practices. Strong networking knowledge (LAN, WAN, DNS, DHCP, VPN, TCP/IP). Proficiency in firewall and load balancer technologies for secure More ❯

AD), Windows Server environments, and authentication solutions. Plan for scalability, redundancy, and high availability to support future growth. IT Security & Compliance: Ensure compliance with security and regulatory standards, including PCI DSS, Cyber Essentials+, DORA, and ISO 27001. Implement and enforce security best practices across infrastructure automation and cloud environments. Maintain accurate compliance documentation, including PCI DSS scope records and security policies. Secure high-value and high-risk data, such as cardholder (PCI) and personally identifiable information (PII). Cloud & DevOps Integration (these tools and skills will be taught): Implement and manage Infrastructure as Code (IaC) for cloud and on-premises environments. Configure and maintain authentication solutions (SSO, SAML, Entra Connect). Develop and manage … CIS, PCI DSS, Cyber Essentials, NIST, ISO 27001). In-depth understanding of network security and compliance in regulated environments. Proven ability to secure high-value data (PCI cardholder data, PII) and implement security best practices. Strong networking knowledge (LAN, WAN, DNS, DHCP, VPN, TCP/IP). Proficiency in firewall and load balancer technologies for secure More ❯

required to join our client's UK cybersecurity team. This in house role is predominantly advising on security best practices, vulnerability management and security standard compliance (e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. So you should have good knowledge of security tooling and processes, compliance and security management (endpoint protection, cloud, SIEM etc). … Cyber Security within an cloud environment (AWS, Azure of GCP) Any experience with CrowdStrike/Endpoint Protection would be a bonus Good experience with security complience (e.g. NIST, ISO, PCI DSS etc) Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with … in a vibrant office with some of most forward-thinking technical people Key Responsibilities: Analysing and developing security requirements, as well as carrying out vulnerability management & compliance work in PCI DSS type projects Ensure consistency across IT Security risk management activities. Advise Engineers on information related to new vulnerabilities and threats and their remediation, to improve vulnerability management. More ❯

required to join our client's UK cybersecurity team. This in house role is predominantly advising on security best practices, vulnerability management and security standard compliance (e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. So you should have good knowledge of security tooling and processes, compliance and security management (endpoint protection, cloud, SIEM etc). … Cyber Security within an cloud environment (AWS, Azure of GCP) Any experience with CrowdStrike/Endpoint Protection would be a bonus Good experience with security complience (e.g. NIST, ISO, PCI DSS etc) Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with … in a vibrant office with some of most forward-thinking technical people Key Responsibilities: Analysing and developing security requirements, as well as carrying out vulnerability management & compliance work in PCI DSS type projects Ensure consistency across IT Security risk management activities. Advise Engineers on information related to new vulnerabilities and threats and their remediation, to improve vulnerability management. More ❯

procedures in alignment with business objectives, while considering operational needs. Direct the management and continuous improvement of the Information Security Management System (ISMS). Oversee and manage Ravelin's PCI DSS and PCI 3DS compliance program, ensuring requirements are fulfilled, maintained, and areas for enhancement are identified. Conduct routine risk assessments to determine and reduce information security … robust cyber incident response plan, including coordinating necessary responses to incidents and security investigations. Requirements Extensive practical experience implementing and maintaining an ISO 27001 compliant ISMS. Demonstrable experience with PCI DSS compliance, including preparing for and undergoing assessments. Familiarity with information security frameworks (e.g., NIST, CIS). Proficiency in risk management methodologies. Knowledge of common security technologies (e.g. More ❯

fostering a collaborative, inclusive culture rooted in technical excellence, accountability, and continuous improvement. Own the architecture, development, and operational health of mission-critical systems, including sensitive payment infrastructure and PCI DSS-compliant CDE components. Drive integration with a wide ecosystem of third-party providers , including EV charging networks, fuel stations, toll operators, parking aggregators, and acquirers, enabling seamless … performance, and scalability through robust observability, incident response processes, performance testing, and fault-tolerant architecture. Partner with Security, Compliance, and Infrastructure teams to meet regulatory and certification standards (e.g., PCI DSS, TISAX, ISO 27001), and embed security into development workflows. Collaborate cross-functionally with Product, Partner Operations, and Business Development to translate user and partner needs into scalable … a user-centric and data-driven mindset. Experience in designing and operating transactional systems, including session management and payment systems. Demonstrated success in delivering systems in regulated environments (e.g. PCI DSS, TISAX, ISO 27001), including compliance alignment and audit readiness. Advanced knowledge of cloud-native engineering (preferably AWS), microservice architecture, container orchestration, and scalable infrastructure. Fluent in agile More ❯

GDPR, ISO 27001, and Cyber Essentials, and a willingness to navigate evolving guidance such as Network and Information Systems Regulations 2018 (NIC) or Payment Card Industry Data Security Standards (PCI DSS) Strong communication and documentation skills, with the ability to collaborate effectively with cross-functional teams, including Engineering, Product, and Legal. A self-starter mindset, who is proactive … and growth. Desirable Qualifications and/or knowledge (any of the following): Certifications or practical experience as/in CISMP, CompTIA Security+, ISO 27001 Lead Implementer, CISM, CISSP, or PCI DSS QSA. Awareness of key regulations, including UK GDPR, Data Protection Act 2018, and the NIS Regulations An understanding of security risk management, governance, and policy implementation Awareness More ❯

Lead response to major incidents, and provide guidance to executive leadership Define KPIs, SLAs and manage the security operations budget Stay current on global cyber threats, compliance requirements (including PCI-DSS), and evolving tech trends Key Responsibilities of the Senior Security Operations Manager: Extensive experience in cyber security leadership roles (10–15 years total, with 5+ in senior … CASB, DLP, endpoint protection, cloud security, firewalls, etc. Prior hands-on experience in security engineering or architecture is highly desirable Exceptional knowledge of global compliance frameworks (NIST, ISO 27001, PCI-DSS, GDPR) Excellent stakeholder management and leadership skills Relevant certifications (CISSP, CISM, CISA or similar) Incredible Benefits: £10,000 per month income tax free! Relocation support package, including More ❯

forensic data from platforms like CrowdStrike and RoboShadow Conduct root cause analysis and manage remediation Compliance, Risk & Certification Support: Guide clients through Cyber Essentials/CE+, ISO 27001, and PCI DSS frameworks Perform regular risk assessments, policy audits, and technical documentation Ensure evidence gathering, hardening practices, and governance alignments are audit-ready Monitoring, Reporting & Visibility: Produce internal and … working knowledge of: CrowdStrike Falcon - policy config, triage, alerting RoboShadow or similar - vulnerability workflows Microsoft Defender, Conditional Access, MFA, Secure Score Familiarity with frameworks: Cyber Essentials Plus, ISO 27001, PCI DSS Incident response experience with real-world investigations Understanding of identity security, patch management, and user awareness training Excellent written and verbal communication - able to simplify complex concepts More ❯

forensic data from platforms like CrowdStrike and RoboShadow Conduct root cause analysis and manage remediation Compliance, Risk & Certification Support: Guide clients through Cyber Essentials/CE+, ISO 27001, and PCI DSS frameworks Perform regular risk assessments, policy audits, and technical documentation Ensure evidence gathering, hardening practices, and governance alignments are audit-ready Monitoring, Reporting & Visibility: Produce internal and … working knowledge of: CrowdStrike Falcon - policy config, triage, alerting RoboShadow or similar - vulnerability workflows Microsoft Defender, Conditional Access, MFA, Secure Score Familiarity with frameworks: Cyber Essentials Plus, ISO 27001, PCI DSS Incident response experience with real-world investigations Understanding of identity security, patch management, and user awareness training Excellent written and verbal communication - able to simplify complex concepts More ❯

cost optimization strategies for vendor services. Track vendor spend and ensure alignment with financial goals. Risk & Compliance Management Ensure vendors comply with regulatory, security, and data protection requirements (e.g., PCI DSS, GDPR, ISO 27001). Conduct regular vendor risk assessments and monitor any security or compliance concerns. Partner with Security and Compliance teams to ensure third-party risk … experience in contract negotiation, cost optimization, and risk assessment. Ability to lead Quarterly Business Reviews (QBRs) and drive service improvements. Understanding of regulatory requirements relevant to vendor management (e.g., PCI DSS, GDPR, ISO 27001). Excellent stakeholder management, communication, and negotiation skills. Strong analytical mindset with experience using data to assess vendor performance and impact. ?Education & Experience: Bachelors More ❯

ISMS) capable of demonstrating compliance against internal security requirements and external commitments including certification and regulatory requirements. Provide subject matter expertise in the application of established standards including NIST, PCI-DSS, GDPR, COBIT, ISO 27001 and Cyber Essential compliance to any new or existing programme of work. Prepare and support internal and/or external compliance audit activities. … we continue to deliver for our customers. LI-KS1 Possess one of the Risk or security certifications (CISSP, CRISC, CISM). Have good knowledge and practical experience of NIST, PCI-DSS, GDPR, COBIT, ISO 27001, or Cyber Essentials. Previous experience in a similar role, with the ability to work in a dynamic and changing environment. Excellent team player More ❯

Framework. Ensuring compliance with applicable legislation, regulatory requirements, and business obligations, as well as adherence to the most current frameworks and standards (e.g., Licence 4, ISO 27001, WLA:SCS, PCI-DSS, and DPA 2018). Coordinating and participating in internal and external security and privacy audits. This includes ensuring necessary evidence is available and that audit findings or … principles, including relevant concepts, standards, frameworks, and technologies Good knowledge of UK Data Protection legislation and its underlying principles Experience in managing security governance and compliance obligations (e.g., DPA, PCI-DSS, ISO 27001) The ability to work independently with minimal supervision, as well as effectively contribute to larger, more complex project teams Strong communication skills, with the ability More ❯

culture of security awareness across engineering and business teams. Compliance and Standards : Ensure product security practices align with relevant security frameworks and standards (e.g., OWASP, NIST, ISO 27001, GDPR, PCI DSS). Support regulatory compliance efforts and maintain evidence to meet audit requirements. Collaboration and Communication : Function as the primary interface between security, development, and infrastructure teams, ensuring … reviews, and penetration testing. Proven ability to secure cloud-native architectures, containerization technologies, and Infrastructure as Code (IaC) environments. Familiarity with industry standards and frameworks such as OWASP, BSIMM, PCI DSS, ISO 27001, and GDPR. Security Integration experience: Demonstrated ability to seamlessly integrate secure development practices into SDLC/SSDLC workflows. Skilled in implementing technical security controls and More ❯

TCP-level integrations). Implement secure coding practices aligned with industry standards. Contribute to architecture discussions ensuring systems remain stateless where possible. Develop solutions that maintain systems out of PCI DSS scope , with an understanding of compliance requirements. Support projects involving credit card processing systems , focusing on cardholder present transaction scenarios . Work with POS systems , Engage with … development on Microsoft IIS . Practical knowledge of network programming and common web service architectures (XML, JSON). Understanding of secure software development standards and practices . Awareness of PCI DSS principles , with the focus on maintaining systems outside PCI scope. General understanding of the credit card industry , including transaction types and workflows. Desirable (Nice to Have More ❯

as part of our team. About the role As a DevOps Engineer, you will be responsible for designing, implementing, and managing AWS-based highload infrastructure while ensuring compliance with PCI DSS security standards. You will play a crucial role in automating deployments, optimizing system performance, and maintaining reliability in a high-scale environment. The role requires expertise in … redundancy. Develop and optimize CI/CD pipelines to streamline deployments and support zero-downtime releases. Monitor system performance, troubleshoot issues, and implement security best practices in compliance with PCI DSS. We're looking for you if you have 5+ years of DevOps experience, with a focus on AWS, CI/CD, and highload environments. Experience deploying and maintaining … Docker, Kubernetes, and Infrastructure as Code (IaC). Proven track record of achieving high availability for mission-critical services. Solid knowledge of monitoring, security best practices, and compliance with PCI DSS standards. Bonus Points Experience with DORA compliance for financial service providers. What's in it for You Reveal great tech solutions Join the team of experts who More ❯

Assist with incident response playbook development and execution, analysing alerts and threat intelligence for effective remediation Contribute to client compliance guidance across Cyber Essentials/CE+, ISO 27001, and PCI DSS frameworks Provide technical support for pre-sales activities and deliver cybersecurity awareness training to clients Support internal knowledge sharing and helpdesk team training while creating essential documentation … strong development motivation Technical familiarity with security tools including CrowdStrike Falcon, Microsoft Defender, Conditional Access, and MFA Understanding of compliance frameworks such as Cyber Essentials Plus, ISO 27001, and PCI DSS Interest in incident response and real-world security investigations Foundational knowledge of identity security, patch management, and user awareness training Strong written and verbal communication skills with More ❯

etc.), payment processors, and third-party APIs for issuing and acquiring services. Work with Compliance teams to ensure adherence to card scheme regulations, FCA requirements, and technical standards (e.g., PCI-DSS, 3D Secure). Optimize card scheme invoice processing, settlement, and reconciliation systems to ensure cost efficiency and operational accuracy. Build and maintain technical relationships with card schemes … scheme infrastructure (Visa, Mastercard, etc.). Proven experience designing and implementing payment systems, including API integrations, settlement processes, and reconciliation workflows. Strong knowledge of technical regulatory requirements, such as PCI-DSS, KYC, AML, and 3D Secure, in the financial services industry. Proficiency in working with engineering teams to define system architecture, technical requirements, and integration protocols. Familiarity with More ❯

etc.), payment processors, and third-party APIs for issuing and acquiring services. Work with Compliance teams to ensure adherence to card scheme regulations, FCA requirements, and technical standards (e.g., PCI-DSS, 3D Secure). Optimize card scheme invoice processing, settlement, and reconciliation systems to ensure cost efficiency and operational accuracy. Build and maintain technical relationships with card schemes … scheme infrastructure (Visa, Mastercard, etc.). Proven experience designing and implementing payment systems, including API integrations, settlement processes, and reconciliation workflows. Strong knowledge of technical regulatory requirements, such as PCI-DSS, KYC, AML, and 3D Secure, in the financial services industry. Proficiency in working with engineering teams to define system architecture, technical requirements, and integration protocols. Familiarity with More ❯

1. Governance, Risk & Compliance (GRC) Management Develop, implement, and maintain GRC policies, frameworks, and procedures aligned with industry standards and regulatory requirements (ISO 27001, NIST, SOC 2, GDPR, HIPAA, PCI DSS). Conduct workshops to gather requirements for risk assessments and security reviews, ensuring risk mitigation strategies are in place. Maintain a risk register and track risk management … with leadership to align GRC practices with business objectives. 2. Compliance & Assurance Ensure the organization meets regulatory requirements and industry best practices. Manage compliance audits (ISO 27001, SOC 2, PCI DSS, GDPR, HIPAA) and coordinate with internal/external auditors. Conduct compliance monitoring and provide periodic reports on adherence to policies. Develop and implement assurance programs to validate More ❯

understanding of RESTful design and secure authentication. Demonstrated knowledge of API security and OWASP Top 10 vulnerabilities. Experience with Docker, Linux, Git, and container-based environments. Working familiarity with PCI DSS, payment systems, or other regulated environments. Requirements We are looking for candidates with the following: Strong hands-on experience with TypeScript and Node.js. Frontend familiarity is helpful … Responsibilities Key responsibilities in this role will include: Maintaining and expanding our serverless card payment infrastructure built with TypeScript, Node.js, and AWS (Lambda, API Gateway, DynamoDB). Ensuring continued PCI DSS compliance. Working with others to fix bugs and implement minimal new APIs that interface with our clients. More ❯

the services' end-users in the Retail Bank, Business Bank and SBS. Centrally manage our cost of acquiring and acquiring relationships Act as the business owner for merchant acquiring PCI-DSS requirements Manage related payout/refund/indemnity services Open Banking solutions Alongside technology, run and develop our open banking Payment Initiation Services and our internal AIS … solutions to market Support with customer price setting (where relevant) and manage service costs Requirements Essential experience Must have run scale card acquiring relationships on the merchant side, covering PCI-DSS Must have experience in PIS and AIS capabilities, across multiple use cases Must have knowledge of and experience in Direct Debit Origination services Strong payments vocation - must More ❯