1 to 25 of 43 Remote PCI DSS Jobs in the UK

the most critical risks Act as a key security advisor to engineering teams, providing expert guidance on security best practices, vulnerability mitigation, and secure design patterns Translate regulatory requirements (PCI DSS, SOC 2, ISO 27001) into concrete technical controls and implementation plans in collaboration with the GRC team Lead incident response efforts, including investigation and remediation of security … vulnerabilities, and mitigation techniques What skills are desirable, but not essential: Hands-on experience helping a company achieve and maintain compliance with frameworks like SOC 2, ISO 27001, or PCI DSS Experience in automating security controls and compliance checks against standards and frameworks which include SOC 2, ISO 27001, PCI DSS/3DS Experience performing secure More ❯

an experienced Information Security Analyst to join our client who will play a key role in driving compliance, governance, and continual improvement across key security frameworks including ISO 27001, PCI DSS, and Cyber Essentials Plus. Key Responsibilities: * Lead on the operation and continual improvement of the Information Security Management System (ISMS) * Coordinate internal and external audit readiness for … ISO 27001, PCI DSS, and Cyber Essentials Plus * Draft and update information security policies, procedures, and technical standards * Work with procurement and commercial teams to support supplier assurance and risk assessment * Contribute to tender responses and bid processes, ensuring security and compliance requirements are met * Promote good security practices and raise awareness across departments * Act as an escalation … and standards relating to information and cyber security Key Skills & Experience: Essential: * Background in IT, Cyber Security, Information Systems, or a related discipline * Strong working knowledge of ISO 27001, PCI DSS, and Cyber Essentials Plus * Proven ability to support and prepare for audits, including evidence collation and audit readiness * Excellent attention to detail and ability to produce high More ❯

as a partner to the business and provide oversight, assurance and governance to ensure controls are effectively implemented. Security Frameworks : Understanding of security frameworks such as ISO:27001 and PCI-DSS. Strong Communication Skills : Ability to communicate effectively to colleagues at all levels, both verbally and in writing, and translate complex technical information to non-technical audiences while building … strong relationships with key stakeholders. What's involved: Implement and maintain established control frameworks such as ISO27001 and PCI-DSS and other relevant security frameworks, including the creation of policies, standards, and other documentation. Lead the governance, oversight, and assurance on technical security controls and technical design on both new and existing solutions in FCG's network and … frameworks, including experience and proficiency in cloud security. Experience and expertise in Azure environment security, vulnerability management, and associated processes. Detailed knowledge of Information Security frameworks and standards, particularly PCI-DSS, ISO27001, and other cyber frameworks. Experience of managing Information Security in an Agile Change Environment. Proven track record of undertaking control assurance reviews against best practice standards More ❯

the organisation Stay current with GRC trends, standards, and best practices Assist in managing the Security GRC Framework Collaborate with stakeholders, auditors, and vendors Support compliance activities (CAF, SEMD, PCI DSS, ISO27001) Monitor and report on security compliance and incidents Conduct controls testing and coordinate audit findings Advise on compliance matters and manage policy exemptions Liaise with Data …/DEFEND, and other security frameworks Solid understanding of cyber security, including Cyber Essentials and social engineering Awareness of current IS technologies, threats, and vulnerabilities Familiarity with ISO 27001, PCI DSS, and ITIL frameworks Hands-on experience with risk management tools and processes Skilled at translating business needs into security solutions Experience developing and maintaining IS policies and More ❯

measuring cost-effectiveness Respond promptly in-hours to technical incidents Embrace automation and be reluctant for manual implementation Implement security best practices ensuring platform compliance with ISO27001, SOC2 and PCI-DSS Share knowledge with colleagues by writing technical documentation and leading training sessions Requirements Ideally you will be an inquisitive Infrastructure Engineer, with an aptitude for finding clean … communication and problem-solving skills Desirably you will have: Understanding of database monitoring, analysis, disaster recovery and performance tuning Knowledge of security and compliance frameworks like ISO270001, SOC2 and PCI-DSS Understanding of networking and routing concepts (TCP/IP, VLANs, VPNs, BGP, etc) and preferably experience designing and establishing connectivity between AWS and on-premise locations The More ❯

on-prem platforms, and ensuring systems are resilient and secure-by-design. Key Duties: Champion Secure by Design principles across teams and platforms. Align architecture with NCSC, GovAssure, ISO27001, PCI-DSS, and GDPR standards. Guide and support technical teams in making risk-aware, security-focused decisions. Shape roadmaps, frameworks, and compliance plans that support innovation. Provide expert advice … to the GovAssure process and other audit/compliance activities. Requirements: Proven experience in security architecture and leadership. Strong understanding of compliance frameworks and cybersecurity standards (NCSC, ISO27001, GDPR, PCI-DSS). Experience in cloud, hybrid, and on-premise environments. Excellent communication, mentoring, and problem-solving skills. Ability to influence technical decisions and guide teams across multiple platforms. More ❯

s Information Security Management System remains effective in protecting HL critical information assets within risk appetite. Lead assurance activities against Information Security Compliance frameworks, including but not limited to: PCI, NIST, SWIFT, GDPR Conducting analysis of cloud-based assets pertaining to information security incidents, audits, and testing while adhering to best practices. Lead engagement of Cloud Audits and remediation … CISSP, CRISC Hands on demonstratable experience and knowledge of: Carrying out security reviews against recognised security control frameworks such as CSA Cloud Control Matrix, ISO27017/27001, NIST CSF, PCI-DSS, SWIFT, AWS CAF Atlassian, IAAC Terraform, Merge Requests, GIT Ops, Git Hub, Workflow, Wiz, Security Hub, Macie, Audit Manager, Microsoft Compliance Portal/Purview, Microsoft Information Protection More ❯

and proxy solutions.(e.g., F5, Palo Alto, Forcepoint, Cisco ASA) Security & Compliance Integration of security principles (Zero Trust, segmentation, NAC). Familiarity with frameworks such as ISO 27001, NIST, PCI-DSS, and data protection standards (GDPR). Cloud & Virtualisation Experience with AWS, Azure, or GCP networking services (Transit Gateway, VNet, VPC, ExpressRoute, Direct Connect). Understanding of hybrid More ❯

e.g., network security, data protection, vulnerability management, access control). Leading disaster recovery planning, business continuity strategies, and incident response. Familiarity with compliance standards such as NIST, ISO 27001, PCI-DSS, and GDPR in the context of data centers, critical IT infrastructure, and application resilience for business survivability. Excellent communication, presentation, and client-facing skills with the ability More ❯

platforms (AWS, Azure, GCP). Implement DevSecOps practices, including secure CI/CD pipelines and infrastructure-as-code templates. Ensure compliance with frameworks such as NIST CSF, ISO 27001, PCI DSS, and CSA CCM. Essential Skills & Experience 15+ years in Information Security, 7-8+ years in Security Architecture. Cloud security architecture experience (AWS, Azure, GCP), multi-cloud More ❯

platforms (AWS, Azure, GCP). Implement DevSecOps practices, including secure CI/CD pipelines and infrastructure-as-code templates. Ensure compliance with frameworks such as NIST CSF, ISO 27001, PCI DSS, and CSA CCM. Essential Skills & Experience 15+ years in Information Security, 7-8+ years in Security Architecture. Cloud security architecture experience (AWS, Azure, GCP), multi-cloud More ❯

balancing, firewalls, proxies (F5, Palo Alto, Forcepoint, Cisco ASA). Strong knowledge of wireless networking design and optimisation. Security integration: Zero Trust, segmentation, NAC; familiarity with ISO 27001, NIST, PCI-DSS, GDPR. Cloud & Virtualisation: AWS, Azure, or GCP networking services; understanding of hybrid/multi-cloud; automation tools (Terraform, Ansible, Python). Monitoring & Management: Network management systems (SolarWinds More ❯

with the ability to analyse events and deliver effective remediation. Solid understanding of the cyber threat landscape, incident/breach management, and industry frameworks such as ISO27001, NIST CSF, PCI-DSS and the likes. Excellent analytical, communication, and stakeholder engagement skills, with the ability to influence decision-making across technical and non-technical teams. Committed to continuous learning More ❯

Design comprehensive security architectures across network, endpoint, identity, cloud, and data protection domains. Ensure alignment with industry frameworks such as NIST, ISO, and CIS, and compliance with regulatory standards (PCI-DSS, HIPAA, etc.). Produce proposals, Bills of Materials (BOMs), high-level designs, and Statements of Work (SOWs). Vendor & Partner Engagement Work with leading vendors (Palo Alto More ❯

to do? Design, build, and maintain security automation and tooling to enforce security controls and simplify compliance (e.g., automating evidence collection for frameworks like SOC 2, ISO 27001, or PCI DSS) Build, manage, and automate identity and access management controls to ensure secure access to our cloud platforms and applications Write and review Infrastructure-as-Code (Terraform) to … landscape The ability to identify potential threats, attack vectors, and vulnerabilities in systems and applications Experience in automating security controls for compliance frameworks like SOC 2, ISO 27001, or PCI DSS. Expertise in Kubernetes, securing clusters and meshes (Cilium is preferable), networking best practices and RBAC implementation (CKA, CKS qualifications are a plus) Container security knowledge including container image More ❯

Lead roles JSP440, JSP604/453 & JSP490 Working with system secure design MOD/GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience More ❯

occasional travel and out-of-hours support. Desirable: Exposure to MxDR/SOC environments and advanced security protocols (SIEM, IDS/IPS, firewalls). Knowledge of GDPR, Cyber Essentials+, PCI-DSS, and other compliance standards. Strong grasp of data protection legislation (e.g., GDPR, Data Protection Act). Why Join Us? Global Impact: Your leadership will help protect the More ❯

scripting languages (Python, Go, YAML, JSON etc.) A background in financial services or similar regulated industries. Familiarity with compliance frameworks, and security requirements (e.g., ISO 27001, SOC 2, SOX, PCI DSS, FedRAMP, FFIEC, NYDFS, and SEC compliance requirements) A track record in consulting , solutions architecture , or technical coaching . Interest in technical sales and supporting go-to-market More ❯

scripting languages (Python, Go, YAML, JSON etc.) A background in financial services or similar regulated industries. Familiarity with compliance frameworks, and security requirements (e.g., ISO 27001, SOC 2, SOX, PCI DSS, FedRAMP, FFIEC, NYDFS, and SEC compliance requirements) A track record in consulting , solutions architecture , or technical coaching . Interest in technical sales and supporting go-to-market More ❯

scripting languages (Python, Go, YAML, JSON etc.) A background in financial services or similar regulated industries. Familiarity with compliance frameworks, and security requirements (e.g., ISO 27001, SOC 2, SOX, PCI DSS, FedRAMP, FFIEC, NYDFS, and SEC compliance requirements) A track record in consulting , solutions architecture , or technical coaching . Interest in technical sales and supporting go-to-market More ❯

scripting languages (Python, Go, YAML, JSON etc.) A background in financial services or similar regulated industries. Familiarity with compliance frameworks, and security requirements (e.g., ISO 27001, SOC 2, SOX, PCI DSS, FedRAMP, FFIEC, NYDFS, and SEC compliance requirements) A track record in consulting , solutions architecture , or technical coaching . Interest in technical sales and supporting go-to-market More ❯

scripting languages (Python, Go, YAML, JSON etc.) A background in financial services or similar regulated industries. Familiarity with compliance frameworks, and security requirements (e.g., ISO 27001, SOC 2, SOX, PCI DSS, FedRAMP, FFIEC, NYDFS, and SEC compliance requirements) A track record in consulting, solutions architecture, or technical coaching. Interest in technical sales and supporting go-to-market strategies. More ❯

SRE practices and deployment automation, and share your knowledge with the team. Maintaining Compliance: Contribute to ensuring our platform adheres to relevant industry standards such as ISO27001, SOC2, and PCI-DSS. Collaborating and Learning: Work closely with cross-functional teams, share your expertise, and contribute to our vibrant learning culture. Aiming for Greatness: Strive for excellence in everything you … Postgres. Familiarity with observability and monitoring systems, and a solid understanding of database monitoring, analysis, disaster recovery, and performance tuning. Familiarity with compliance standards such as ISO27001, SOC2, and PCI-DSS is a plus. Our Interview process Interviewing is a two way process and we want you to have the time and opportunity to get to know us More ❯

trends, KPIs, and SLA compliance. Review and update Vulnerability Management related documentation to align with internal and external compliance requirements, industry best practices and emerging threats (e.g. ISO 27001, PCI DSS/3DS, SOC 2 and NIST) Help define scanning schedules, thresholds, and automation opportunities. Collaborate with DevSecOps/Product Teams to embed security scanning into CI/ More ❯

ability to automate routine tasks and deployment processes for efficiency and consistency. Security: Expertise in cloud security best practices, identity and access management (IAM), encryption, and compliance frameworks (eg, PCI DSS, NIST). Networking: Strong knowledge of cloud networking concepts, including virtual networks, subnets, security groups, load balancers, and VPN configurations. DevOps Principles: An understanding of DevOps practices More ❯