76 to 100 of 5,167 GDPR Jobs in the UK

quantum cryptography (PQC) readiness by evaluating and preparing for emerging threats to encryption security. Ensure compliance with NIST 800-57, PCI DSS, FIPS 140-2 / 3, ISO 27001, GDPR, FFIEC, and IoT security (NIST 800-183, ETSI EN 303 645). What We Value These skills will help you succeed in this role Developing governance frameworks for encryption and … industries. Certifications such as CISSP, CISM, AWS Security Specialty, HashiCorp Certified Vault Associate or CCSK. Familiarity with NIST 800-57, PCI DSS, FIPS 140-2 / 3, ISO 27001, GDPR, FFIEC, and IoT security (NIST 800-183, ETSI EN 303 645). Additional requirements Travel up to 10% may be required Are you the right candidate? Yes! We truly believe More ❯

practices Ability to communicate effectively with senior management and stakeholders on security issues and risks Expertise in ensuring compliance with relevant cybersecurity regulations and frameworks, such as FCA, NIST, GDPR Experience in one or a combination of the following: systems, applications, or architecture planning Experience driving security awareness programs Strong verbal, written, and interpersonal communication skills Ability to influence across More ❯

security. Identify and manage risks to information assets and IT systems. Lead enterprise risk assessments and mitigation planning. Compliance & Regulatory: Ensure adherence to global data protection regulations (GDPR, PCI-DSS, etc.), working closely with legal and data protection teams. Leadership & Stakeholder Engagement: Act as the subject matter expert on cybersecurity at the board and executive level. … Demonstrable experience building and scaling a GRC function in a complex environment. Deep knowledge of information security standards (ISO 27001, NIST, CIS), risk frameworks (COSO, FAIR), and regulatory obligations (GDPR, PCI-DSS, SOX). Proven track record of managing enterprise-level security programs, including incident response and business continuity. Excellent stakeholder management skills, with experience reporting at board level. Strong More ❯

system. Promote security culture: working closely with IT to educate and enable teams across Attest. Support with compliance: partner with our Legal team to ensure adherence to ISO 27001, GDPR, and other standards. Manage risk proactively: identify and mitigate vulnerabilities across cloud environments and applications. Embed secure development: working with Engineering to integrate DevSecOps best practices. Enhance threat detection and More ❯

a variety of challenging projects, with multiple security tools. Have a proven track record of successes. Understanding of security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of application security principals, best practices, OWASP / related standards. Knowledge of security frameworks & controls, hardening standards & security best practices. An understanding of network More ❯

a variety of challenging projects, with multiple security tools. Have a proven track record of successes. Knowledge of security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of application security principles, best practices, OWASP / related standards. Some knowledge / experience in scoping / undertaking internal pen testing and creation of More ❯

Possess an understanding of Risk Management, Disaster Recovery, Business Continuity, IT Security Architecture, and IT Regulatory Compliance. Experience with Cybersecurity frameworks and regulations such as HIPAA, Data Privacy, GDPR, etc. Experience with architectural and design patterns such as PubSub, EventDriven, SOA, Observer, Dependency Injection, Repository, Decorator, MVC, etc. Proven expertise in working in acollaborative, fast-paced environment where the More ❯

a variety of challenging projects, with multiple security tools. Have a proven track record of successes. Understanding of security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of application security principals, best practices, OWASP / related standards. Knowledge of security frameworks & controls, hardening standards & security best practices. An understanding of network More ❯

working in Agile / Scrum environments, focusing on iterative development and continuous improvement. Security best practices: Knowledge of secure coding practices and compliance with data protection regulations (GDPR, ISO 27001, CE+). Problem-solving and analytical skills: Ability to troubleshoot complex software issues, identify root causes, and implement effective solutions. Communication and teamwork: Strong verbal and written communication More ❯

protection. Knowledge of cloud (IaaS, PaaS and SaaS) offerings would be an advantage. Previous experience and knowledge implementing security standards frameworks (NIST - CSF, ISO 27001, CSA CCM, PCI-DSS, GDPR) Experience in enterprise architecture frameworks such as; TOGAF Eligible to work in the UK. Compensation and benefits On top of a competitive salary, great teams and exciting career opportunities, we More ❯

protection, DLP, SIEM). Hands-on expertise with troubleshooting hardware, software, and SaaS issues. Security Knowledge: Familiarity with security frameworks and standards such as SOC 2, ISO 27001, GDPR, or NIST. Experience with incident response and risk management. Knowledge of Zero Trust architectures and security-first IT practices. Soft Skills: Excellent problem-solving and communication skills. Ability to collaborate More ❯

Ensure high availability, disaster recovery, and data integrity across platforms. Perform database modeling, normalization, and capacity planning. Establish data security policies, access controls, and compliance processes (e.g., GDPR, HIPAA). Mentor junior database developers and provide technical leadership on database solutions. Work with stakeholders to understand data needs and translate them into technical solutions. Required Skills & Qualifications More ❯

Management: Identify and manage risks to information assets and IT systems. Lead enterprise risk assessments and mitigation planning. Compliance & Regulatory: Ensure adherence to global data protection regulations (GDPR, PCI-DSS, etc.), working closely with legal and data protection teams. Leadership & Stakeholder Engagement: Act as the subject matter expert on cybersecurity at the board and executive level. … Demonstrable experience building and scaling a GRC function in a complex environment. Deep knowledge of information security standards (ISO 27001, NIST, CIS), risk frameworks (COSO, FAIR), and regulatory obligations (GDPR, PCI-DSS, SOX). Proven track record of managing enterprise-level security programs, including incident response and business continuity. Excellent stakeholder management skills, with experience reporting at board level. Strong More ❯

Management: Identify and manage risks to information assets and IT systems. Lead enterprise risk assessments and mitigation planning. Compliance & Regulatory: Ensure adherence to global data protection regulations (GDPR, PCI-DSS, etc.), working closely with legal and data protection teams. Leadership & Stakeholder Engagement: Act as the subject matter expert on cybersecurity at the board and executive level. … Demonstrable experience building and scaling a GRC function in a complex environment. Deep knowledge of information security standards (ISO 27001, NIST, CIS), risk frameworks (COSO, FAIR), and regulatory obligations (GDPR, PCI-DSS, SOX). Proven track record of managing enterprise-level security programs, including incident response and business continuity. Excellent stakeholder management skills, with experience reporting at board level. Strong More ❯

Management: Identify and manage risks to information assets and IT systems. Lead enterprise risk assessments and mitigation planning. Compliance & Regulatory: Ensure adherence to global data protection regulations (GDPR, PCI-DSS, etc.), working closely with legal and data protection teams. Leadership & Stakeholder Engagement: Act as the subject matter expert on cybersecurity at the board and executive level. … Demonstrable experience building and scaling a GRC function in a complex environment. Deep knowledge of information security standards (ISO 27001, NIST, CIS), risk frameworks (COSO, FAIR), and regulatory obligations (GDPR, PCI-DSS, SOX). Proven track record of managing enterprise-level security programs, including incident response and business continuity. Excellent stakeholder management skills, with experience reporting at board level. Strong More ❯

Response: Lead cloud security incident investigations, implement remediation strategies, and develop proactive measures to mitigate future risks. Compliance: Ensure cloud environments comply with regulatory standards and organizational policies (e.g., GDPR, ISO 27001, NIST, or SOC 2). Automation & CI / CD: Integrate security tools into CI / CD pipelines to enable automated vulnerability scanning, compliance checks, and secure deployments. Monitoring More ❯

functional teams to design, implement, and maintain security controls and configurations across various systems and platforms. Oversight of compliance for regulatory compliance requirements, such as SOC2, HIPAA, ISO 27001, GDPR etc., and ensure our systems adhere to these standards. Stay updated with the latest industry trends, emerging threats, and security technologies to proactively identify and address potential risks. Conduct security More ❯

functional teams to design, implement, and maintain security controls and configurations across various systems and platforms. Oversight of compliance for regulatory compliance requirements, such as SOC2, HIPAA, ISO 27001, GDPR etc., and ensure our systems adhere to these standards. Stay updated with the latest industry trends, emerging threats, and security technologies to proactively identify and address potential risks. Conduct security More ❯

and customer feedback. Infrastructure And Security Ensure robust system architecture and IT infrastructure that supports business operations. Oversee cybersecurity measures to protect company and customer data, complying to GDPR requirements. Ensure interworking between on prem, private cloud and public cloud infrastructure to support platforms and products Optimize private and public cloud infrastructure, usage and cost, DevOps pipelines, and technical More ❯

configurations to reduce false positives, improve detection accuracy, and adapt to evolving threat landscapes. Advisory & Compliance: Advise clients on aligning SIEM deployments with security frameworks and compliance requirements, including GDPR, HIPAA, and PCI DSS. Provide guidance on data strategies for security monitoring, such as data persistence and streaming for long-term analysis and real-time detection. Assist clients More ❯

vendors to ensure successful implementation of solutions. - Provide architectural guidance and support to project teams throughout the development lifecycle. - Ensure solutions adhere to relevant legal and regulatory requirements (e.g., GDPR, data privacy). - Contribute to the development of architectural patterns and best practices within the IT department. Stakeholder Management & Communication: - Effectively communicate architectural concepts and solutions to both technical More ❯

e.g., AWS Security, Microsoft SC-200). Experience with security tools and platforms (e.g., SIEM, DLP, vulnerability scanners). Familiarity with regulatory and compliance frameworks (e.g., ISO 27001, NIST, GDPR). Our benefits Boots Retirement Savings Plan Discretionary annual bonus Generous employee discounts Enhanced maternity / paternity / adoption leave pay and gift card for anyone expecting or adopting a More ❯

to work effectively in fast-paced, multi-client environments, maintaining professionalism, flexibility, and a delivery mindset. Desired skills Familiarity with UK regulatory frameworks (NIS / NIS2, Ofgem CAF, ECAF, GDPR / DPA18, ISO 27001, or Cyber Essentials Plus). Understanding secure architecture principles, including zero trust, defence-in-depth, and secure-by-design approaches. Exposure to DevSecOps practices, security tooling More ❯

skills to effectively convey security concepts to technical and non-technical stakeholders Customer interfacing skills / experience desirable Knowledge and understanding of relevant legal and regulatory requirements, such as GDPR, Sarbanes-Oxley Act (SOX), TISAX, Payment Card Industry / Data Security Standard Knowledge of common information security management frameworks, such as ISO / IEC 27001, ITIL, and COBIT Proficiency More ❯

employment status. If you are utilising a work visa this must allow you to work in the UK unrestricted for at least the next 5 years. In accordance with GDPR by applying you give Profile 29 consent to use your data for recruitment purposes only (details of Profile 29s privacy policy can be found at: profile-29 .com / More ❯