1 to 25 of 42 PCI DSS Jobs in the South East

AD), Windows Server environments, and authentication solutions. Plan for scalability, redundancy, and high availability to support future growth. IT Security & Compliance: Ensure compliance with security and regulatory standards, including PCI DSS, Cyber Essentials+, DORA, and ISO 27001. Implement and enforce security best practices across infrastructure automation and cloud environments. Maintain accurate compliance documentation, including PCI DSS scope records and security policies. Secure high-value and high-risk data, such as cardholder (PCI) and personally identifiable information (PII). Cloud & Automation (these tools and skills will be taught): Implement and manage Infrastructure as Code (IaC) for cloud and on-premises environments. Learn how to automate configuration management, infrastructure provisioning, and application deployment. Configure and maintain … essential. Desirable (but not required) experience: Some interest in learning and using automation tools such as Azure DevOps, Terraform, Node-Red, Packer. Proven ability to secure high-value data (PCI cardholder data, PII) and implement security best practices. Scripting and automation skills (PowerShell, Python, Bash, or similar). Ability to design, implement, and maintain CI/CD pipelines for More ❯

Implement data classification, sensitivity labels, retention controls, and DLP using Microsoft Purview/AIP. Enforce encryption-in-transit and at-rest across Azure and on-prem environments. Support GDPR, PCI DSS, and organisational data protection requirements. Azure Cloud Security Deliver cloud-native security configuration for Azure Landing Zones, subscriptions, and resource groups. Manage cloud security posture using Defender … to validate secure ExpressRoute, VPN, and firewall configurations — Network Engineering operates the underlying infrastructure. Ensure consistent security policy enforcement across Azure workloads. Compliance, Audit & Risk Management Support ISO 27001, PCI DSS, Cyber Essentials Plus, and NIST compliance activities. Prepare audit evidence, configuration exports, policy documentation, and control validation artefacts. Maintain risk registers, track remediation progress, and support risk … vulnerability management tools. Experience securing Windows Server, PKI/ADCS, domain controllers, and virtualisation environments. Practical understanding of Zero Trust security principles and secure-by-design. Strong understanding of PCI DSS, ISO 27001, Cyber Essentials Plus, and NIST controls. Ability to perform forensic investigation, log analysis, and threat triage. Desirable Skills Awareness of AWS security fundamentals (GuardDuty, Security More ❯

own the strategic and operational delivery of all information and cyber security activities. You'll develop and implement robust security policies, oversee incident response, and ensure compliance with GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus. You will be the single point of accountability for all security matters, reporting directly to the executive team and influencing critical … projects, platforms, data flows, and product development. Lead enterprise-wide information, cyber, and data security governance. Define and implement security frameworks, policies, and operating models. Ensure compliance with GDPR, PCI DSS, Cyber Essentials Plus, and ISO/IEC 27001:2022 aligned practices. Lead Data Protection Impact Assessments (DPIAs), data mapping, classification, and retention programs. Oversee incident response, vulnerability … Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure, AWS), on-premise networks, and hybrid architectures. Strong experience in Zero Trust security models. Experienced in More ❯

regulatory compliance oversight. The ideal candidate will establish and maintain security standards across the product portfolio, oversee secure system environments, and act as the primary contact for ISO 27001, PCI DSS, and GDPR compliance. Additionally, this role will support our commercial teams by contributing to tender responses and ensuring client security assurance. The Company: They are a technology … management and penetration testing programs. Maintain strong identity, access, and privilege management controls. Compliance & Assurance (30%) Manage and maintain ISO 27001 certification and audit processes. Ensure ongoing compliance with PCI DSS for payment-related systems. Oversee GDPR compliance across products, services, and internal operations. Complete HECVAT assessments and respond to security questionnaires for higher education tenders. Support sales … SaaS or cloud environments (ISV or B2B preferred). Proven track record managing ISO 27001 certification and compliance. Hands-on experience implementing GDPR in software products. Working knowledge of PCI DSS and securing payment systems. Deep understanding of cloud security across Azure and/or AWS. Skilled in application security and the secure development lifecycle (SDLC). Experienced More ❯

of Cyber Security, you'll set strategy, lead a growing team, and drive transformation across security governance, operations, compliance, cloud, and risk. You'll implement frameworks aligned to GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus , while modernising hybrid environments across Azure, AWS, Nutanix, and on-prem . Key Responsibilities Define and deliver a 3-5 year … through training, phishing simulations, and awareness programmes Drive security into operational teams, vendors, partners, and third-party risk management Success Measures Strategy delivered within first 90 days Strong GDPR & PCI audit outcomes Reduction in vulnerabilities and phishing incidents Improved audit ratings and team engagement What We're Looking For Senior leadership experience in cyber/security CISSP, CISM, CISA … or equivalent Strong track record with ISO 27001, NIST, PCI DSS, Cyber Essentials Plus Hands-on background across Azure, AWS, hybrid infrastructure, and modern security tooling Strong communicator with excellent stakeholder influence What's on Offer Up to 20% bonus Healthcare, pension, holidays 2-stage process with quick turnaround A major role in a major business - apply now More ❯

lifecycle for various kinds of applications, ensuring data is protected and governed. Essential & Desirable KnowledgeProficiency in MS Office applications (Excel, Word, and PowerPoint) is essential.GDPR - ISO27001 - Cyber Essentials Plus - PCI DSS - OneTrust.Practical application ability with Microsoft Access, Project, Visio, SQL, Python and Tableau is desirable.Practical application ability with Data Governance and Data Quality Management tools is desirable.Essential & Desirable … problem-solving skills. Ability to work under pressure.Ability to pick up new concepts and skills.Good awareness and understanding of current regulatory compliance requirements: PRA, FCA, ISO27001 - GDPR - Cyber Essentials - PCI -DSS A good team player with a flexible approach and a proactive "can do" attitude.Develops in accordance with standards and agreed industry best practice Hays Specialist Recruitment Limited More ❯

and wireless technologies Experience working with cloud environments, for example AWS or Azure Strong reporting skills and the ability to communicate complex issues clearly Understanding of GDPR, ISO27001 and PCI DSS Hold active SC clearance To Be Considered Please either apply through this advert or email me directly via . For further information please call me on … in conjunction with this vacancy only. Key Skills Penetration Testing, CTM, CHECK, CREST, CyberScheme, BurpSuite, Metasploit, Nmap, ITHC, Cloud Security, AWS, Azure, Windows, Linux, Vulnerability Assessment, Security Consultancy, ISO27001, PCI DSS, NSD More ❯

are captured, prioritised, communicated and plans for remediation are put into place. Governance & Compliance: Ensure all release activities comply with internal controls, audit requirements, and regulatory standards (e.g., SOX, PCI-DSS, GDPR, PRA/FCA). Maintain comprehensive release documentation, including approvals, risk assessments, rollback plans, and post-implementation reviews. Serve as a key point of contact for … CD pipelines (e.g., Jenkins, Azure DevOps), and enterprise architecture platforms. Excellent leadership, communication, and stakeholder management skills. Understanding of regulatory and compliance standards relevant to banking (e.g., DORA, SOX, PCI-DSS, GDPR). Experience with scaled agile frameworks (e.g., SAFe). Knowledge of risk management, audit controls, and change governance in regulated environments in the banking sector. Experience More ❯

is well defined. Engage risk review and assurance activities across existing suppliers. Provide IT and business advice on aspects of security standards and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Engage with I&T system owners to provide training in relation to information security, cyber resilience, phishing, and facilitation of cyber scenario desktop simulations … consequences across both IT and manufacturing environments in manufacturing or similar industries. Experience working with information security standards and frameworks such as and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Proven analytical, problem-solving, planning, project delivery and supplier work packages management skills. Demonstrable experience of engaging across all levels of a company in More ❯

measuring cost-effectiveness Respond promptly in-hours to technical incidents Embrace automation and be reluctant for manual implementation Implement security best practices ensuring platform compliance with ISO27001, SOC2 and PCI-DSS Share knowledge with colleagues by writing technical documentation and leading training sessions Requirements Ideally you will be an inquisitive Infrastructure Engineer, with an aptitude for finding clean … communication and problem-solving skills Desirably you will have: Understanding of database monitoring, analysis, disaster recovery and performance tuning Knowledge of security and compliance frameworks like ISO270001, SOC2 and PCI-DSS Understanding of networking and routing concepts (TCP/IP, VLANs, VPNs, BGP, etc) and preferably experience designing and establishing connectivity between AWS and on-premise locations The More ❯

release calendar. Lead major, minor, and emergency releases across business units. Oversee release readiness, rollback planning, and post-release reviews. Ensure compliance with regulatory and audit requirements (e.g., SOX, PCI-DSS, GDPR). Act as the central point of coordination for senior stakeholders and technology teams. Contribute to governance forums including Release Boards and CABs. Drive process improvements … CI/CD platforms (e.g., Jenkins, Azure DevOps, GitLab). Strong stakeholder management and communication skills, with experience engaging senior leadership. Knowledge of regulatory and compliance standards (DORA, SOX, PCI-DSS, GDPR). Experience working in Agile or SAFe environments. Understanding of banking systems, digital platforms, or transaction processing. Desirable Qualifications & Tools: Experience with Terraform, Ansible, Dynatrace, Splunk More ❯

operational security management and regulatory compliance oversight. The successful candidate will define security standards across our product portfolio, manage security environments, and serve as our central point for ISO27001, PCI/DSS, and GDPR compliance while supporting commercial teams with tender responses and client security assurance. Core Responsibilities: Strategic (30%) Define technical security architecture and standards across multi … monitoring, alerting, and detection capabilities Manage vulnerability assessment and penetration testing programs Maintain identity and access management controls Compliance & Assurance (30%) Maintain ISO27001 certification and manage audit cycles Ensure PCI/DSS compliance for payment processing systems Manage GDPR compliance across all products and operations Complete HECVAT and security questionnaires for higher education tenders Support sales and customer … information security experience in SaaS/cloud software environment (ISV or B2B software preferred) Proven track record managing ISO27001 certification and compliance Practical GDPR implementation experience in software products PCI/DSS compliance experience with payment processing systems Strong understanding of cloud security (Azure and/or AWS) Application security and secure development lifecycle knowledge Security incident management More ❯

operational security management and regulatory compliance oversight. The successful candidate will define security standards across our product portfolio, manage security environments, and serve as our central point for ISO27001, PCI/DSS, and GDPR compliance while supporting commercial teams with tender responses and client security assurance. Core Responsibilities: Strategic (30%) Define technical security architecture and standards across multi … monitoring, alerting, and detection capabilities Manage vulnerability assessment and penetration testing programs Maintain identity and access management controls Compliance & Assurance (30%) Maintain ISO27001 certification and manage audit cycles Ensure PCI/DSS compliance for payment processing systems Manage GDPR compliance across all products and operations Complete HECVAT and security questionnaires for higher education tenders Support sales and customer … information security experience in SaaS/cloud software environment (ISV or B2B software preferred) Proven track record managing ISO27001 certification and compliance Practical GDPR implementation experience in software products PCI/DSS compliance experience with payment processing systems Strong understanding of cloud security (Azure and/or AWS) Application security and secure development lifecycle knowledge Security incident management More ❯

alerts, logs, and reports for suspicious activity and potential threats. 3. Compliance & Audit: Ensure the organization's adherence to relevant information security regulations, laws, and industry standards (e.g. HIPAA, PCI DSS, NIST, CIS, ISO 27001, Cyber Essentials+). Coordinate and participate in internal and external security audits, provide evidence, and ensure timely remediation of audit findings. Develop and More ❯

Coordinator or Delivery Team Security Lead roles JSP440, JSP604/453 & JSP490 MOD/GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience More ❯

to demonstrate equivalent knowledge. Desirable Familiarity with the Microsoft security suite: Defender, InTune, Purview, EntraID, and Azure. Further certifications such as CISSP, CISM, or CRISC are advantageous Familiarity with PCI-DSS standards. Experience influencing cyber security investments and initiatives by providing expert advice to stakeholders and management. Educated to degree level or equivalent. More ❯

to demonstrate equivalent knowledge. Desirable Familiarity with the Microsoft security suite: Defender, InTune, Purview, EntraID, and Azure. Further certifications such as CISSP, CISM, or CRISC are advantageous Familiarity with PCI-DSS standards. Experience influencing cyber security investments and initiatives by providing expert advice to stakeholders and management. Educated to degree level or equivalent. More ❯

VPNs, and WAFs. Develop and manage firewall policies, network access controls, IAM solutions, MFA, RBAC, and privilege management . Ensure alignment of security measures with compliance standards (GDPR, HIPAA, PCI DSS). Conduct regular security audits and assessments to identify and remediate risks. Apply industry frameworks such as NIST Cybersecurity Framework, ISO 27001, CIS Controls . Oversee and More ❯

Lead roles JSP440, JSP604/453 & JSP490 Working with system secure design MOD/GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience More ❯

in detailed reports, providing clear recommendations for remediation using client in-house developed reporting tool. Good understanding of common security standards and regulatory compliance such as GDPR, ISO27001 and PCI DSS An ability to work effectively and positively within a team and willing to collaborate and readily share knowledge and skills MUST: Relevant degree/postgraduate degree CHECK More ❯

such as TOGAF or SABSA Strong understanding and knowledge of Information Security risk management tools and techniques Demonstrable knowledge of cyber security frameworks, including but not limited to: ISO27001, PCI-DSS, CIS Benchmarks, {Cloud Platform} Well Architected Frameworks. Demonstrable experience of designing and implementing enterprise security technology controls and platforms, following industry best practices. Experience of security governance More ❯

email. Understanding of encryption algorithms, hash functions, and key management practices. Experience in designing secure architectures in hybrid or cloud environments. Knowledge of compliance and regulatory standards such as PCI DSS, HIPAA, SOX, GDPR, NIST 800-53. Preferred Qualifications: Certifications: CISSP, CISM, CEH, GIAC, Microsoft Certified: Identity and Access, or other IDAM equivalent Technologies. Experience with Zero More ❯

data pipelines for ingestion, transformation, and storage using Azure Data Factory and Databricks. Governance & Security Implement data governance, security, and compliance practices aligned with financial services regulations (e.g., GDPR, PCI DSS). Performance & Scalability Ensure data solutions are optimized for performance and scalability across large datasets. Collaboration Work closely with data engineers, analysts, and business stakeholders to deliver More ❯

finish. Bonus points if you bring: Experience with AppSec and DevSecOps. Hands-on knowledge of Azure, AWS, and/or Google Cloud. Familiarity with standards like ISO2700X, ISO31000, NIST800, PCI-DSS. Certifications such as CISSP, CCSP, CRISC, CISM, or SABSA. Why QBE? At My Best? At QBE, we want our people to feel rewarded and inspired to perform at More ❯

Responsibilities Strategy and Compliance: Develop and implement a scalable information security strategy aligning with the company's business objectives. Ensure compliance with relevant laws, regulations, and industry standards, including PCI DSS, GDPR, and local Nigerian data protection laws (e.g., NDPR). Ensure security architecture can adapt to and support the company's growth trajectory. Educate staff in the More ❯