1 to 25 of 72 PCI DSS Jobs in London

WELCOME TO PCI PAL PCI Pal is a leading provider of SaaS solutions that empower companies to take payments securely, adhere to strict industry governance, and remove their business from the significant risks posed by non-compliance and data loss. We are integrated and resold by some of the world's leading business communications vendors, as well as … major payment service providers. We are currently looking for a GRC & Audit Lead to join our UK team. THE OPPORTUNITY: PCI Pal's Information Security team requires a dynamic and proactive individual to lead all Governance, Risk and Compliance (GRC), audit requirements for our team and the company. We are an agile and innovative team and are responsible for … that GRC and audit requirements are suitably managed, maintained and matured. YOU WILL BE RESPONSIBLE FOR: Managing, maintaining, and maturing the already established audit lifecycles for the following frameworks: PCI DSS v4.0, ISO 27001:2022, ISO 9001:2015, ISO 14001:2015, Cyber Essentials, Cyber Essentials Plus, SOC2 Type 1 – 3 & HIPAA Working in close collaboration with other team More ❯

own the strategic and operational delivery of all information and cyber security activities. You'll develop and implement robust security policies, oversee incident response, and ensure compliance with GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus. You will be the single point of accountability for all security matters, reporting directly to the executive team and influencing critical … projects, platforms, data flows, and product development. Lead enterprise-wide information, cyber, and data security governance. Define and implement security frameworks, policies, and operating models. Ensure compliance with GDPR, PCI DSS, Cyber Essentials Plus, and ISO/IEC 27001:2022 aligned practices. Lead Data Protection Impact Assessments (DPIAs), data mapping, classification, and retention programs. Oversee incident response, vulnerability … Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure, AWS), on-premise networks, and hybrid architectures. Strong experience in Zero Trust security models. Experienced in More ❯

80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO/IEC 27001/2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience activities. Monitor the effectiveness of security controls to ensure … analysis. A knowledge of the data protection act (UK GDPR) and how it applies to information and cyber security A knowledge of card payment system security as defined in PCI-DSS V4.0 Qualifications A security certification such as CISM, CISMP, CISSP or equivalent would be desirable. A relevant IT or security-based degree or equivalent practical experience. More ❯

80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO/IEC 27001/2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience activities. Monitor the effectiveness of security controls to ensure … analysis. A knowledge of the data protection act (UK GDPR) and how it applies to information and cyber security A knowledge of card payment system security as defined in PCI-DSS V4.0 Qualifications A security certification such as CISM, CISMP, CISSP or equivalent would be desirable. A relevant IT or security-based degree or equivalent practical experience. More ❯

lifecycle for various kinds of applications, ensuring data is protected and governed. Essential & Desirable KnowledgeProficiency in MS Office applications (Excel, Word, and PowerPoint) is essential.GDPR - ISO27001 - Cyber Essentials Plus - PCI DSS - OneTrust.Practical application ability with Microsoft Access, Project, Visio, SQL, Python and Tableau is desirable.Practical application ability with Data Governance and Data Quality Management tools is desirable.Essential & Desirable … problem-solving skills. Ability to work under pressure.Ability to pick up new concepts and skills.Good awareness and understanding of current regulatory compliance requirements: PRA, FCA, ISO27001 - GDPR - Cyber Essentials - PCI -DSS A good team player with a flexible approach and a proactive "can do" attitude.Develops in accordance with standards and agreed industry best practice Hays Specialist Recruitment Limited More ❯

lifecycle for various kinds of applications, ensuring data is protected and governed. Essential & Desirable KnowledgeProficiency in MS Office applications (Excel, Word, and PowerPoint) is essential.GDPR - ISO27001 - Cyber Essentials Plus - PCI DSS - OneTrust.Practical application ability with Microsoft Access, Project, Visio, SQL, Python and Tableau is desirable.Practical application ability with Data Governance and Data Quality Management tools is desirable. Essential … problem-solving skills. Ability to work under pressure.Ability to pick up new concepts and skills.Good awareness and understanding of current regulatory compliance requirements: PRA, FCA, ISO27001 - GDPR - Cyber Essentials - PCI -DSS A good team player with a flexible approach and a proactive "can do" attitude.Develops in accordance with standards and agreed industry best practice Hays Specialist Recruitment Limited More ❯

frameworks such as NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K • Designing solutions related to advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy, NHS, FFIEC etc. • Develop knowledge base, re-usable components for GRC advisory services. • Responsible for development and enhancements of GRC services, team and delivery … Technical Knowledge around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance), Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO More ❯

frameworks such as NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K • Designing solutions related to advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy, NHS, FFIEC etc. • Develop knowledge base, re-usable components for GRC advisory services. • Responsible for development and enhancements of GRC services, team and delivery … Technical Knowledge around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance), Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO More ❯

practice is a part of our overall Technology Consulting Division. The Cyber Security practice includes coverage of focused domains such as Technical Security Assessments, Assessment against cyber security frameworks, PCI DSS assessments, Cloud Security Reviews, Cyber Security Audits, Cyber Security Strategy and Advisory work. Cyber Security is a high-growth area for Protiviti globally. You will be part … other clients. Do Your Talents Include the Following? In-depth knowledge and understanding of industry cyber security frameworks such as ISO 27001, NIST CSF, NIS 2 and/or PCI DSS. Hands-on experience in implementing or assessing against these frameworks is a must-have requirement. Demonstrated ability to lead, manage and develop teams and deliver cybersecurity engagements to … experience, preferably in consulting and/or professional services. Demonstrable track record of continual growth across various roles. Relevant industry certifications such as CISSP, CISM, CISA, ISO 27001 LA, PCI DSS QSA are strongly preferred Offices - The Shard, London - Hybrid/Remote Working £100k-126k, Annual performance bonus & benefits Robert Half Ltd acts as an employment business for More ❯

their main base of operations here, in the UK, as an experienced GRC IT Security Analyst ? Do you have experience in the GRC IT Security space with audits, ISO27001, PCI DSS, SOC2, NIST & current compliance regulations? (Some, or all is fine!) If so & you are looking to expand your IT Security career, meet new team members, embrace new … you’ll already know what the role will entail, but see below for things we’ll need to see in order to be considered: - Knowledge and experience of ISO27001, PCI DSS, SOC2, NIST and CIS benchmarking - Knowledge and experience achieving and maintaining compliance with relevant legislation, such as DPA, GDPR - Knowledge of cloud environments (AWS, Azure) & Windows, &/ More ❯

their main base of operations here, in the UK, as an experienced GRC IT Security Analyst Do you have experience in the GRC IT Security space with audits, ISO27001, PCI DSS, SOC2, NIST & current compliance regulations? (Some, or all is fine!) If so & you are looking to expand your IT Security career, meet new team members, embrace new … you’ll already know what the role will entail, but see below for things we’ll need to see in order to be considered: - Knowledge and experience of ISO27001, PCI DSS, SOC2, NIST and CIS benchmarking - Knowledge and experience achieving and maintaining compliance with relevant legislation, such as DPA, GDPR - Knowledge of cloud environments (AWS, Azure) & Windows, &/ More ❯

with their main base of operations here, in the UK, as an experienced GRC Security Analyst ? Do you have experience in the GRC Security space with audits, auditors, ISO27001, PCI DSS, SOC2, NIST & current compliance regulations? (Some, or all is fine!) If so & you are looking to expand your IT Security career, meet new team members, embrace new … you’ll already know what the role will entail, but see below for things we’ll need to see in order to be considered: - Knowledge and experience of ISO27001, PCI DSS, SOC2, NIST and CIS benchmarking - Knowledge and experience achieving and maintaining compliance with relevant legislation, such as DPA, GDPR - Knowledge of cloud environments (AWS, Azure) & Windows, &/ More ❯

with their main base of operations here, in the UK, as an experienced GRC Security Analyst Do you have experience in the GRC Security space with audits, auditors, ISO27001, PCI DSS, SOC2, NIST & current compliance regulations? (Some, or all is fine!) If so & you are looking to expand your IT Security career, meet new team members, embrace new … you’ll already know what the role will entail, but see below for things we’ll need to see in order to be considered: - Knowledge and experience of ISO27001, PCI DSS, SOC2, NIST and CIS benchmarking - Knowledge and experience achieving and maintaining compliance with relevant legislation, such as DPA, GDPR - Knowledge of cloud environments (AWS, Azure) & Windows, &/ More ❯

suppliers to ensure timely delivery Produce and maintain documentation including roadmaps, risk logs, and reports Ensure all work aligns with frameworks such as Cyber Essential+, ISO 27001, GDPR, and PCI DSS Report progress and risks to senior stakeholders Champion a culture of continuous improvement and security awareness Skills/Must Haves: 5+ years’ experience managing IT or security … stakeholder management and communication skills Experience delivering projects in Agile or hybrid environments Familiarity with Jira, Confluence, or MS Project Understanding of compliance frameworks such as ISO 27001, GDPR, PCI DSS Nice to have: experience with hospitality systems (POS, PMS, or guest management) Contract Details: Duration: 6 months Determination: Inside IR35 Location: London (Hybrid/Remote More ❯

be doing: • Leading and supporting all aspects of security governance activities – from policy and exception management to risk and vendor assessments • Managing compliance and audit activities (ISO 27001, NIST, PCI DSS, NYDFS, etc.) and working closely with tech, legal, and audit teams • Overseeing major projects to ensure security is baked in from inception to implementation • Coaching and developing … strategy, delivery, and stakeholder engagement What you’ll bring: • Strong background in GRC (Governance, Risk, and Compliance) within cybersecurity • Practical experience with frameworks such as ISO 27001, NIST, and PCI DSS • Proven ability to design, implement, and maintain security policies and procedures • Confident in managing audits, vendor assessments, and compliance remediation • Leadership skills that balance mentorship, accountability, and More ❯

alerts, logs, and reports for suspicious activity and potential threats. 3. Compliance & Audit: Ensure the organization's adherence to relevant information security regulations, laws, and industry standards (e.g. HIPAA, PCI DSS, NIST, CIS, ISO 27001, Cyber Essentials+). Coordinate and participate in internal and external security audits, provide evidence, and ensure timely remediation of audit findings. Develop and More ❯

security monitoring tools. Excellent written and verbal communication skills. Preferred Certifications such as CISSP, GIAC (GCIH, GCIA, GCTI). Experience with malware analysis, APT detection, and regulatory frameworks (GDPR, PCI DSS). Familiarity with Infrastructure as Code tools and cloud platforms. Soft Skills Strong problem-solving and analytical mindset. Ability to work under pressure in fast-paced environments. More ❯

security monitoring tools. Excellent written and verbal communication skills. Preferred Certifications such as CISSP, GIAC (GCIH, GCIA, GCTI). Experience with malware analysis, APT detection, and regulatory frameworks (GDPR, PCI DSS). Familiarity with Infrastructure as Code tools and cloud platforms. Soft Skills Strong problem-solving and analytical mindset. Ability to work under pressure in fast-paced environments. More ❯

security monitoring tools. Excellent written and verbal communication skills. Preferred Certifications such as CISSP, GIAC (GCIH, GCIA, GCTI). Experience with malware analysis, APT detection, and regulatory frameworks (GDPR, PCI DSS). Familiarity with Infrastructure as Code tools and cloud platforms. Soft Skills Strong problem-solving and analytical mindset. Ability to work under pressure in fast-paced environments. More ❯

Governance & Compliance Contribute to maintaining security standards and aligning with frameworks such as ISO 27001, NIST, CIS, or SOC 2. Support audits, evidence collection, and compliance reporting (e.g., GDPR, PCI-DSS). Develop and maintain documentation for policies, procedures, architecture, and runbooks. Collaboration & Knowledge Sharing Work with IT operations, cloud, and development teams to embed security in system More ❯

Governance & Compliance Contribute to maintaining security standards and aligning with frameworks such as ISO 27001, NIST, CIS, or SOC 2. Support audits, evidence collection, and compliance reporting (e.g., GDPR, PCI-DSS). Develop and maintain documentation for policies, procedures, architecture, and runbooks. Collaboration & Knowledge Sharing Work with IT operations, cloud, and development teams to embed security in system More ❯

Governance & Compliance Contribute to maintaining security standards and aligning with frameworks such as ISO 27001, NIST, CIS, or SOC 2. Support audits, evidence collection, and compliance reporting (e.g., GDPR, PCI-DSS). Develop and maintain documentation for policies, procedures, architecture, and runbooks. Collaboration & Knowledge Sharing Work with IT operations, cloud, and development teams to embed security in system More ❯

or AWS Certified Solutions Architect Checkpoint Certified Security Expert (CCSE) or similar certification Experience with scripting (Python, PowerShell, or Bash) Familiarity with compliance frameworks (ISO 27001, GDPR, SOC 2, PCI-DSS) At Cognizant you will experience an exciting mix of innovation by design, creativity, collaboration, and efficiency within a framework of stimulating objectives and a passion for delivering More ❯

Design comprehensive security architectures across network, endpoint, identity, cloud, and data protection domains. Ensure alignment with industry frameworks such as NIST, ISO, and CIS, and compliance with regulatory standards (PCI-DSS, HIPAA, etc.). Produce proposals, Bills of Materials (BOMs), high-level designs, and Statements of Work (SOWs). Vendor & Partner Engagement Work with leading vendors (Palo Alto More ❯

IAM, encryption, API security, and application security. Experience performing threat modelling, security risk assessments, and control design validation. In-depth knowledge of industry standards and frameworks (ISO27001, NIST CSF, PCI DSS, CIS Controls). Minimum of 5 years’ experience in information security roles, ideally within financial services or large-scale digital environments. Professional certifications such as CISSP, SABSA More ❯