1 to 25 of 102 PCI DSS Jobs in the UK excluding London

a Work from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure DevOps pipelines and Infrastructure as Code (IaC) using … Security: Manage Web Application Firewalls (WAF) and Intrusion Prevention Systems (IPS). Vulnerability & Penetration Testing: Review Penetration Testing, vulnerability assessments, and security scanning to proactively identify and remediate risks. PCI DSS Compliance: Conduct security audits, risk assessments, and ensure regulatory compliance. DNS Security: Implement and monitor DNS security solutions to prevent cyber threats. Incident Response: Formulating and documenting … Profile 29s privacy policy can be found at: profile-29 .com/privacy) Profile 29 recruitment keywords: DevSecOps DevOps Azure cloud security Microsoft Defender Microsoft Sentinel WAF IPS DNS pcidss pci dss pci-dss soar loughton Debden essex London More ❯

Job Specification Project Manager - PCI DSS Compliance Location: Stockport (Hybrid - 1 day/week onsite) Rate: Up to £600/day (Inside IR35) Contract Length: 3 months initially Start Date: ASAP Sector: Transport Overview We are seeking an experienced Project Manager to lead a critical PCI DSS compliance project within the transport sector. This role requires … the project, drive delivery, and coordinate across multiple teams and stakeholders to ensure successful and timely compliance. Key Responsibilities Lead and manage the end-to-end delivery of the PCI DSS compliance project. Act as the central point of contact for all PCI DSS-related activities. Coordinate with internal teams, external vendors, and Qualified Security Assessors … risk registers. Proactively identify and resolve project risks, issues, and blockers. Provide regular updates to senior stakeholders and ensure alignment with business objectives. Essential Skills & Experience Proven experience managing PCI DSS compliance projects. Strong understanding of QSA processes and AOC documentation. Excellent stakeholder engagement and communication skills. Ability to lead cross-functional teams and drive accountability. Strong organisational More ❯

Contract Role: PCI Card Payment Project Manager Location: Hybrid (remote and Manchester)We are seeking an experienced Project Manager with a strong background in PCI compliance and card payment projects to lead the delivery of a high-profile programme.Key Responsibilities: Drive end-to-end delivery of card payment projects, ensuring compliance with PCI DSS standards. Coordinate … project plans, budgets, risks, and reporting to senior leadership. Ensure secure, scalable, and compliant payment solutions are implemented. Essential Skills & Experience: Proven track record as a Project Manager in PCI DSS and card payments environments. Strong understanding of payment gateways, acquiring banks, and card schemes. Experience managing compliance and regulatory projects within financial services, retail, or e-commerce. More ❯

aligning engineering execution with business goals, ensuring scalability, security, reliability, and maintainability. Your contribution Key Responsibilities 1. Technical Leadership • Architect secure, high-availability systems with compliance in mind (e.g., PCI DSS, SOC 2, ISO 27001). • Ensure robust encryption, audit trails, and access control mechanisms. • Guide backend design for high-volume transactional systems (e.g., ledgers, payments, identity verification … and quality under business pressures. • Strong communication with both technical and non-technical stakeholders, especially in regulated contexts. • Conflict resolution and emotional intelligence. Domain • Experience with financial regulations (e.g., PCI-DSS, GDPR, PSD2). • Familiarity with fintech standards and third-party integrations (e.g. Decision Engines, ID&V, Swift, ISO 20022). Success Metrics • System Trustworthiness: Uptime, performance, technical More ❯

security controls catalogue, policies, and procedures aligned with NIST CSF Collaborate with business units to integrate security measures into operations Support compliance activities for frameworks such as Cyber Essentials, PCI DSS, and the Group Information Security Framework Facilitate reviews and updates to ensure controls remain effective against evolving threats Essential skills: Minimum 2 year's experience in information … controls catalogue in a financial services environment (highly desirable) Proven experience in delivering security projects within a federated organisation Desirable skills: Knowledge of NIST CSF, ISO 27001, Cyber Essentials, PCI DSS, DORA Understanding of risk methodologies and data analysis for reporting Strong documentation skills (control matrices, process flows, SOPs) Excellent communication skills for both technical and non-technical More ❯

Role Our client, a leading organisation in Berkshire, is seeking an experienced Information Security Specialist with in-depth knowledge of ISO 9001, ISO 14001, ISO 22301, ISO 27001, and PCI-DSS compliance. This role will be central to designing, implementing, and maintaining best-in-class security and compliance frameworks, ensuring that all information assets and operational processes are … safeguarded to the highest standards. Key Responsibilities Develop, implement, and maintain compliance with ISO , and PCI-DSS standards. Conduct risk assessments, security audits, and vulnerability testing across systems and processes. Lead incident response activities, ensuring rapid and effective mitigation. Collaborate with internal stakeholders and external auditors to achieve and maintain certifications. Deliver organisation-wide security and compliance awareness … and report on security performance, providing actionable recommendations. Essential Skills & Qualifications ISO 27001 Lead Implementer or Lead Auditor certification (or equivalent). Demonstrable experience managing compliance for ISO , and PCI-DSS. Strong understanding of governance, risk management, and regulatory compliance. Proficiency with security monitoring tools and incident management processes. Excellent analytical, communication, and leadership skills. Desirable Knowledge of GDPR More ❯

existing governance framework. Assisting cross-functional teams and business units in integrating security measures into business operations. Supporting compliance activities with the Group Information Security Framework, Cyber Essentials, and PCI DSS attestation. Facilitating regular reviews and updates of control and risk management processes to remain effective and responsive to emerging threats and changes in the organizational landscape. Essential … of security transformation and delivery of security projects, particularly within a federated organisation. Desirable Skills Knowledge of Information Security and compliance frameworks, including NIST CSF, ISO 27001, Cyber Essentials, PCI DSS, and DORA, and the ability to design controls that align with these standards. Good awareness of risk methodologies and ability to analyse data for report generation. Skills More ❯

role An exciting opportunity has arisen to join our InfoSec team as a Security GRC Analyst, to assist in the delivery of security compliance assurance to frameworks such as PCI-DSS and NIST Cyber Security Framework. You will be managing security governance processes including Third Party Security Risk Management, and delivering controls assurance. What you'll be doing … Assisting in meeting compliance requirements within HL, such as PCI-DSS and in line with frameworks such as SWIFT CSCF, CSA CCM and NIST CSF. Assist with the technical security aspects of third-party security risk by conducting security due diligence and risk assessments for vendors, suppliers, partners, and contractors. Develop and mature processes and procedures for third … business areas to meet compliance requirements. Demonstrable experience of working with compliance and risk management in a NIST CSF (Preferable) or ISO27001 aligned environment, along with an understanding of PCI-DSS. Experience in managing supply chain risk, including due diligence, risk escalation and treatment. Good writing capabilities, analytical skills, including demonstrated experience identifying and communicating opportunities for improvement. Experience More ❯

forensic data from platforms like CrowdStrike and RoboShadow Conduct root cause analysis and manage remediation Compliance, Risk & Certification Support: Guide clients through Cyber Essentials/CE+, ISO 27001, and PCI DSS frameworks Perform regular risk assessments, policy audits, and technical documentation Ensure evidence gathering, hardening practices, and governance alignments are audit-ready Monitoring, Reporting & Visibility: Produce internal and … working knowledge of: CrowdStrike Falcon - policy config, triage, alerting RoboShadow or similar - vulnerability workflows Microsoft Defender, Conditional Access, MFA, Secure Score Familiarity with frameworks: Cyber Essentials Plus, ISO 27001, PCI DSS Incident response experience with real-world investigations Understanding of identity security, patch management, and user awareness training Excellent written and verbal communication - able to simplify complex concepts More ❯

ISMS) capable of demonstrating compliance against internal security requirements and external commitments including certification and regulatory requirements. Provide subject matter expertise in the application of established standards including NIST, PCI-DSS, GDPR, COBIT, ISO 27001 and Cyber Essential compliance to any new or existing programme of work. Prepare and support internal and/or external compliance audit activities. … we continue to deliver for our customers. LI-KS1 Possess one of the Risk or security certifications (CISSP, CRISC, CISM). Have good knowledge and practical experience of NIST, PCI-DSS, GDPR, COBIT, ISO 27001, or Cyber Essentials. Previous experience in a similar role, with the ability to work in a dynamic and changing environment. Excellent team player More ❯

troubleshoot across Windows, Active Directory, and complex cloud setups Experience with SQL Server, SMTP, IIS, and CI/CD pipelines Knowledge of cloud security standards such as ISO27001 and PCI-DSS Experience using ticketing systems (e.g. Jira) and improving support workflows Excellent communication skills, able to explain technical concepts to non-technical stakeholders Passion for automation and an … Systems Engineer/Azure/AWS/Terraform/Ansible/Windows/Active Directory/SQL Server/CI/CD/VPN/Firewalls/ISO27001/PCI-DSS More ❯

Framework. Ensuring compliance with applicable legislation, regulatory requirements, and business obligations, as well as adherence to the most current frameworks and standards (e.g., Licence 4, ISO 27001, WLA:SCS, PCI-DSS, and DPA 2018). Coordinating and participating in internal and external security and privacy audits. This includes ensuring necessary evidence is available and that audit findings or … principles, including relevant concepts, standards, frameworks, and technologies Good knowledge of UK Data Protection legislation and its underlying principles Experience in managing security governance and compliance obligations (e.g., DPA, PCI-DSS, ISO 27001) The ability to work independently with minimal supervision, as well as effectively contribute to larger, more complex project teams Strong communication skills, with the ability More ❯

Framework. Ensuring compliance with applicable legislation, regulatory requirements, and business obligations, as well as adherence to the most current frameworks and standards (e.g., Licence 4, ISO 27001, WLA:SCS, PCI-DSS, and DPA 2018). Coordinating and participating in internal and external security and privacy audits. This includes ensuring necessary evidence is available and that audit findings or … principles, including relevant concepts, standards, frameworks, and technologies Good knowledge of UK Data Protection legislation and its underlying principles Experience in managing security governance and compliance obligations (e.g., DPA, PCI-DSS, ISO 27001) The ability to work independently with minimal supervision, as well as effectively contribute to larger, more complex project teams Strong communication skills, with the ability More ❯

Framework. Ensuring compliance with applicable legislation, regulatory requirements, and business obligations, as well as adherence to the most current frameworks and standards (e.g., Licence 4, ISO 27001, WLA:SCS, PCI-DSS, and DPA 2018). Coordinating and participating in internal and external security and privacy audits. This includes ensuring necessary evidence is available and that audit findings or … principles, including relevant concepts, standards, frameworks, and technologies Good knowledge of UK Data Protection legislation and its underlying principles Experience in managing security governance and compliance obligations (e.g., DPA, PCI-DSS, ISO 27001) The ability to work independently with minimal supervision, as well as effectively contribute to larger, more complex project teams Strong communication skills, with the ability More ❯

TCP-level integrations). Implement secure coding practices aligned with industry standards. Contribute to architecture discussions ensuring systems remain stateless where possible. Develop solutions that maintain systems out of PCI DSS scope , with an understanding of compliance requirements. Support projects involving credit card processing systems , focusing on cardholder present transaction scenarios . Work with POS systems , Engage with … development on Microsoft IIS . Practical knowledge of network programming and common web service architectures (XML, JSON). Understanding of secure software development standards and practices . Awareness of PCI DSS principles , with the focus on maintaining systems outside PCI scope. General understanding of the credit card industry , including transaction types and workflows. Desirable (Nice to Have More ❯

makes an impact.Your role will involve: Expanding and maintaining a serverless payment processing platform built with TypeScript, Node.js, and AWS services like Lambda, API Gateway, and DynamoDB. Ensuring continued PCI DSS compliance across the full development lifecycle, including patching, error tracing, and applying secure coding practices. Designing secure, well-documented service interfaces and abstractions over external APIs used … technologies. Working knowledge of Infrastructure-as-Code tools. Strong background in RESTful API development, secure authentication mechanisms, and API integration best practices. Experience working in regulated environments such as PCI DSS, or within other compliance-heavy systems. Familiarity with frontend frameworks like React is a bonus. If you're a backend engineer who thrives in cloud-native environments More ❯

Windows, Apple & Android OS . Knowledge of network perimeter security, including firewalls, WAF, anti-virus, and O365 compliance & security centre . Familiarity with NIST (CSF Framework 2.0), ISO 27001, PCI-DSS, and GDPR . Experience operating and managing SIEM solutions , vulnerability management tools, and secure configuration tooling. Ability to use PowerShell and Python scripting for security automation. Experience More ❯

5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP, CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with More ❯

5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP, CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with More ❯

5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP, CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with More ❯

on cloud security experience (AWS, Azure, or GCP multi-cloud preferred). In-depth understanding of financial services compliance requirements and frameworks (e.g., NIST CSF, ISO 27001, CSA CCM, PCI DSS). Expert-level knowledge of IAM, network security, encryption, API and application security, container security, and SIEM strategies. Proven leadership in DevSecOps practices and securing modern development More ❯

5+ years' experience in information security engineering & operations. In-depth knowledge of networking protocols, operating systems, and cloud technologies (AWS, Azure, GCP). Strong understanding of frameworks such as PCI, NIST, and ISO 27001. Hands-on experience with SIEM, IDS/IPS, endpoint protection, and penetration testing tools. Certified Security Auditor (or equivalent) and UK Security Clearance eligibility. Preferred More ❯

for occasional travel and out-of-hours support. Exposure to MxDR/SOC environments and advanced security protocols (SIEM, IDS/IPS, firewalls). Knowledge of GDPR, Cyber Essentials+, PCI-DSS, and other compliance standards. Strong grasp of data protection legislation (e.g., GDPR, Data Protection Act). Global Impact: Your leadership will help protect the digital infrastructure that More ❯

scripting languages (Python, Go, YAML, JSON etc.) A background in financial services or similar regulated industries. Familiarity with compliance frameworks, and security requirements (e.g., ISO 27001, SOC 2, SOX, PCI DSS, FedRAMP, FFIEC, NYDFS, and SEC compliance requirements) A track record in consulting , solutions architecture , or technical coaching . Interest in technical sales and supporting go-to-market More ❯

scripting languages (Python, Go, YAML, JSON etc.) A background in financial services or similar regulated industries. Familiarity with compliance frameworks, and security requirements (e.g., ISO 27001, SOC 2, SOX, PCI DSS, FedRAMP, FFIEC, NYDFS, and SEC compliance requirements) A track record in consulting , solutions architecture , or technical coaching . Interest in technical sales and supporting go-to-market More ❯