1 to 25 of 104 PCI DSS Jobs in London

PCI DSS Project Manager required to lead and manage an online retailer's PCI DSS recertification process. The successful candidate will be responsible for overseeing the entire recertification project, including planning, execution, monitoring, and closure. The ideal candidate will have a strong technical understanding of PCI DSS requirements and extensive project management experience, with a proven track record of successfully managing complex, compliance-focused projects in highly regulated environments. Key Responsibilities: Project Leadership & Management: Lead and manage the PCI DSS recertification project, ensuring all activities are completed on time, within scope, and … in alignment with PCI DSS standards. Cross-functional Collaboration: Work closely with internal stakeholders, including IT, security, legal, compliance, and business units, to ensure alignment on goals, timelines, and resource allocation. Compliance Management: Oversee the analysis of current systems, processes, and controls to identify any gaps in PCI More ❯

Head of Payment Permanent role Job Location: London (Hybrid) Tech Stack: SWIFT, SEPA, BACS, PCI DSS, ACH, FedWire Languages: SQL, Python, R, REST Payment Systems: SWIFT, SEPA, BACS, ACH, FedWire Compliance & Security: PCI DSS, AML/KYC Data Tools: Excel, Tableau, Oracle Financial Services (OFSAA), SAP … FICO Data Privacy & Regulations: Data encryption, Compliance Management (PCI DSS certification) Must Have: Compliance with AML/KYC, PCI DSS, payment platforms (SWIFT, SEPA), risk management skills Nice to have: Tableau, Oracle Financial Services (OFSAA), SAP FICO, certification in anti-money laundering (CAMS More ❯

ANEXT Bank. Role Overview: As a GRC Lead , you will ensure alignment with European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk , outsourcing compliance , and identity governance … complementary regulations like DORA (Digital Operational Resilience Act) , ensuring alignment in areas such as incident reporting and data protection. Translate requirements from PSD2 SCA , PCI DSS , and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain … we are looking for: Experience: 4+ years in GRC roles ; financial services or banking experience is a strong plus . Understanding of GDPR , DORA , PCI DSS, and outsourcing/third-party risk requirements. Hands-on experience with ISO 27001 implementation and third-party risk tools . Proficiency in More ❯

ANEXT Bank. Role Overview: As a GRC Lead , you will ensure alignment with European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk , outsourcing compliance , and identity governance … complementary regulations like DORA (Digital Operational Resilience Act) , ensuring alignment in areas such as incident reporting and data protection. Translate requirements from PSD2 SCA , PCI DSS , and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain … we are looking for: Experience: 4+ years in GRC roles ; financial services or banking experience is a strong plus . Understanding of GDPR , DORA , PCI DSS, and outsourcing/third-party risk requirements. Hands-on experience with ISO 27001 implementation and third-party risk tools . Proficiency in More ❯

ANEXT Bank. Role Overview: As a GRC Lead , you will ensure alignment with European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk , outsourcing compliance , and identity governance … complementary regulations like DORA (Digital Operational Resilience Act) , ensuring alignment in areas such as incident reporting and data protection. Translate requirements from PSD2 SCA , PCI DSS , and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain … looking for: Experience: 5+ years in GRC roles ; financial services or banking experience is a strong plus . Regulatory Knowledge: Understanding of GDPR , DORA , PCI DSS, and outsourcing/third-party risk requirements. Technical Skills: Hands-on experience with ISO 27001 implementation and third-party risk tools . More ❯

environments. ControlCase offers certifications and a broad spectrum of cybersecurity services that meet the needs of companies required to certify or attest to CMMC, PCI DSS, HITRUST, SOC 2 Type II, ISO 27001, PCI PIN, PCI P2PE, PCI TSP, PA DSS, CSA STAR, CMMC More ❯

provide insights into threats facing the bank. Awareness of common Cyber Incidents and Security breaches (OWASP). Knowledge or experience in SOC2, ISO 27001, PCI DSS and GDPR. Previous experience working within an organisations Cyber Incident Response function. Hands on experience with Information Security tools. About you: Team … to prioritize tasks. Strong analytical and problem-solving skills. Proficiency in Microsoft Office. Interested? Please Apply! SOC ISO ISAO CISSP NIST CSF ISO27000 ISO27001 PCI DSS GDPR Cybersecurity Cyber Security Information Security Infosec Cybersec Risk Infrastructure ISMS More ❯

provide insights into threats facing the bank. Awareness of common Cyber Incidents and Security breaches (OWASP). Knowledge or experience in SOC2, ISO 27001, PCI DSS and GDPR. Previous experience working within an organisations Cyber Incident Response function. Hands on experience with Information Security tools. About you: Team … to prioritize tasks. Strong analytical and problem-solving skills. Proficiency in Microsoft Office. Interested? Please Apply! SOC ISO ISAO CISSP NIST CSF ISO27000 ISO27001 PCI DSS GDPR Cybersecurity Cyber Security Information Security Infosec Cybersec Risk Infrastructure ISMS More ❯

Protection Regulation) ISO 27001 (Information Security Management Systems) Cyber Essentials Plus (UK government-backed security framework) DORA (Digital Operational Resilience Act) - EU financial sector PCI-DSS (if handling payment data) Experience in: Managing vendor risk assessments for third-party compliance. Handling incident response & reporting (e.g., Data Breach Notifications … ability to brief executives and regulators. Ability to design, implement, and enforce security policies . Key Responsibilities: Ensure compliance with GDPR, Cyber Essentials Plus, PCI-DSS, and other applicable standards. Align ISMS activities with ISO 27001 framework. Develop and implement security policies, controls, and procedures. Conduct security risk More ❯

security standards and monitor compliance. Manage security reviews during vendor onboarding and contract renewals. Governance, Risk, and Compliance Ensure compliance with relevant regulations (e.g., PCI DSS, GDPR, SOC 2, ISO 27001) and internal policies. Maintain up-to-date knowledge of emerging threats, regulatory changes, and best practices. Establish … response. Relevant certifications such as CISSP, CISM are highly desirable. Strong knowledge of security frameworks (e.g., NIST, CIS, ISO 27001) and compliance standards (e.g., PCI-DSS, PSD2, GDPR). Hands-on experience with security technologies (e.g., SIEM, endpoint protection, cloud security tools). Exceptional leadership and communication skills More ❯

security monitoring, logging, and alerting to ensure visibility into security events. Support compliance initiatives and audits to ensure adherence to industry standards (e.g., GDPR, PCI-DSS, HIPAA). Collaborate with teams to integrate security throughout the application lifecycle and provide security training. Required Skills & Experience : Strong experience with … CloudTrail, Config, WAF). Proficiency in CloudFormation, Terraform, and scripting languages like Python or Bash. Knowledge of compliance standards (SOC 2, ISO 27001, GDPR, PCI-DSS) and experience ensuring compliance in AWS environments. Experience with security incident response, monitoring, and post-incident remediation. Ability to assess and mitigate More ❯

security risks. Define and enforce security policies for IAM, encryption, network segmentation, and threat detection. Ensure AWS environments comply with industry regulations (e.g., GDPR, PCI-DSS, HIPAA) and integrate necessary controls. Work with DevOps and development teams to integrate security throughout the SDLC and DevOps pipelines. Use IaC … of AWS security best practices for IAM, encryption, and data protection. Familiarity with cloud security frameworks and regulatory standards (SOC 2, ISO 27001, GDPR, PCI-DSS). Experience with Terraform, CloudFormation, or AWS CDK for automating security and infrastructure provisioning. Hands-on experience with AWS security services (GuardDuty More ❯

Be Doing: Develop and implement information security policies, standards, and guidance in collaboration with stakeholders. Ensure compliance with industry standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC 2. Coordinate responses to internal and external audits and liaise with key stakeholders. Develop and deliver security policy … tech company or regulated industry. Experience in developing and implementing information security policies, standards and procedures. Familiarity with security standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC2. Strong skills in security metrics and reporting. Ability to engage collaboratively with technical and non-technical stakeholders. Excellent More ❯

Own our security tooling (e.g. Snyk) and processes to ensure vulnerabilities are identified, prioritised, and remediated. Collaborate with the compliance team to prepare for PCI DSS, ISO 27001, and other upcoming certifications. Build on existing robust security practices by implementing new policies, best practices, and security frameworks as … both). Have experience with Terraform or another IaC tool. Solid understanding of DevSecOps practices, including vulnerability scanning, threat modelling, or compliance frameworks (GDPR, PCI DSS, ISO 27001). Thrive in a fast-moving, sometimes ambiguous environment where you can have a big impact. Comfortable mentoring other engineers More ❯

within your technical domains, for example, monitoring NIST, CIS, UK NCSC, Stay up to date with regulatory mandates impacting our customers, e.g. OFCOM, TSA, PCI-DSS, Achieve and maintain technology certifications and competencies when required. Qualifications and Experience Experience working in the technology Industry - preferably with Tier … s business problems, that can then potentially be solved with a technology-based solution. Technical expertise: Strong knowledge of Cybersecurity and associated standards, including PCI-DSS, TSA, Secure-by-Design. Knowledge of technology and operational landscape for SOC, Observability, Zero-Trust, Knowledge of at least one out of More ❯

and ensure smooth delivery to production. Own monitoring, alerting, and observability, using tools like OpenTelemetry and Dynatrace. Security & Compliance: Ensure systems are compliant with PCI DSS, PSD2, and SCA. Champion secure coding practices and data protection across services. Collaboration & Mentoring: Work closely with product owners, engineering leads, and … including fraud, tokenisation, and settlement flows. Experience with cloud infrastructure (Azure preferred), CI/CD, and Kubernetes. Working knowledge of regulatory and compliance standards (PCI DSS, SCA, PSD2). Strong communication skills and the ability to explain complex technical concepts to a range of audiences. Experience working in More ❯

standards, and procedures Work with IT and development teams to implement secure system designs and configurations Support compliance initiatives (e.g., ISO 27001, NIST, GDPR, PCI-DSS) by assisting with audits and documentation Conduct security awareness training and phishing simulations for employees Keep up-to-date with the latest More ❯

standards, and procedures Work with IT and development teams to implement secure system designs and configurations Support compliance initiatives (e.g., ISO 27001, NIST, GDPR, PCI-DSS) by assisting with audits and documentation Conduct security awareness training and phishing simulations for employees Keep up-to-date with the latest More ❯

Prevention, Incident Response, and Security Information and Event Management (SIEM), Identify and Access Management (IAM) controls. - Implementation experience with compliance frameworks such as NIST, PCI-DSS, ISO/IEC 27001, ISO/IEC 27017, FISC, etc. Amazon is committed to a diverse and inclusive workplace. Amazon is an More ❯

Operating System security and system hardening concepts such as CIS Benchmarks. Experience in working with information security frameworks and regulatory requirements including ISO27001, NIST, PCI DSS, GDPR, Cyber Essentials. Experience of general IT Audit processes and conducting risk assessments. You will be a proactive self-starter with strong More ❯

and effective. ️ Is This You? CISSP, CISA, or CISM certification is strongly recommended, but not required. ISO 27001/27701/42001, SOC-2, PCI DSS, and GDPR knowledge, experience, and qualifications are highly desirable. At least 5 years of relevant industry experience in information security, with a More ❯

security engineering and operations. In-depth knowledge of networking protocols, operating systems, and cloud technologies. Strong understanding of security principles, practices, and frameworks (e.g., PCI, NIST, ISO 27001). Experience with security tools such as SIEM, IDS/IPS, endpoint protection, and penetration testing tools. Experience with public cloud More ❯

security restructure programmes, projects of both a GRC and technical nature alongside frameworks such as ISO27001/2:2005/13, DORA, NIS 2, PCI-DSS, GDPR-DPO, NIST CSF SP800-53, PSD-2, FCA/PRA, and MS Azure. Ownership of Strategic, Operational, and Tactical IT Security More ❯

Ability to travel to meet business needs Preferred competencies: Relevant cyber security or other qualifications, certifications such as CSX-P, CDPSE, SSCP, CAP, OWASP, PCI DSS Security Cleared with potential to gain enhanced clearances Experience implementing privacy solutions based on the requirements of the EU GDPR and UK More ❯

concepts including cryptography, authentication and authorization, access control, secure architectures, threat modeling, vulnerabilities and software security. Strong knowledge of regulatory requirements (e.g. GDPR, ISO27001, PCI-DSS) and experience in regulatory reporting. 3-5 years of experience in GRC, risk management, or compliance. A bachelor's degree in computer More ❯