1 to 25 of 26 Remote PCI DSS Jobs in the UK excluding London

an experienced Information Security Analyst to join our client who will play a key role in driving compliance, governance, and continual improvement across key security frameworks including ISO 27001, PCI DSS, and Cyber Essentials Plus. Key Responsibilities: * Lead on the operation and continual improvement of the Information Security Management System (ISMS) * Coordinate internal and external audit readiness for … ISO 27001, PCI DSS, and Cyber Essentials Plus * Draft and update information security policies, procedures, and technical standards * Work with procurement and commercial teams to support supplier assurance and risk assessment * Contribute to tender responses and bid processes, ensuring security and compliance requirements are met * Promote good security practices and raise awareness across departments * Act as an escalation … and standards relating to information and cyber security Key Skills & Experience: Essential: * Background in IT, Cyber Security, Information Systems, or a related discipline * Strong working knowledge of ISO 27001, PCI DSS, and Cyber Essentials Plus * Proven ability to support and prepare for audits, including evidence collation and audit readiness * Excellent attention to detail and ability to produce high More ❯

the organisation Stay current with GRC trends, standards, and best practices Assist in managing the Security GRC Framework Collaborate with stakeholders, auditors, and vendors Support compliance activities (CAF, SEMD, PCI DSS, ISO27001) Monitor and report on security compliance and incidents Conduct controls testing and coordinate audit findings Advise on compliance matters and manage policy exemptions Liaise with Data …/DEFEND, and other security frameworks Solid understanding of cyber security, including Cyber Essentials and social engineering Awareness of current IS technologies, threats, and vulnerabilities Familiarity with ISO 27001, PCI DSS, and ITIL frameworks Hands-on experience with risk management tools and processes Skilled at translating business needs into security solutions Experience developing and maintaining IS policies and More ❯

s Information Security Management System remains effective in protecting HL critical information assets within risk appetite. Lead assurance activities against Information Security Compliance frameworks, including but not limited to: PCI, NIST, SWIFT, GDPR Conducting analysis of cloud-based assets pertaining to information security incidents, audits, and testing while adhering to best practices. Lead engagement of Cloud Audits and remediation … CISSP, CRISC Hands on demonstratable experience and knowledge of: Carrying out security reviews against recognised security control frameworks such as CSA Cloud Control Matrix, ISO27017/27001, NIST CSF, PCI-DSS, SWIFT, AWS CAF Atlassian, IAAC Terraform, Merge Requests, GIT Ops, Git Hub, Workflow, Wiz, Security Hub, Macie, Audit Manager, Microsoft Compliance Portal/Purview, Microsoft Information Protection More ❯

Harden DevSecOps pipelines to ensure secure software delivery. Collaborate with engineering teams to integrate security by design into products. Compliance & Risk Management Ensure regulatory compliance with GDPR, SOC2, ISO, PCI-DSS, and crypto-specific frameworks. Lead risk assessments for third-party vendors and service providers. Work with legal and compliance teams on KYC/AML security for crypto More ❯

and proxy solutions.(e.g., F5, Palo Alto, Forcepoint, Cisco ASA) Security & Compliance Integration of security principles (Zero Trust, segmentation, NAC). Familiarity with frameworks such as ISO 27001, NIST, PCI-DSS, and data protection standards (GDPR). Cloud & Virtualisation Experience with AWS, Azure, or GCP networking services (Transit Gateway, VNet, VPC, ExpressRoute, Direct Connect). Understanding of hybrid More ❯

platforms (AWS, Azure, GCP). Implement DevSecOps practices, including secure CI/CD pipelines and infrastructure-as-code templates. Ensure compliance with frameworks such as NIST CSF, ISO 27001, PCI DSS, and CSA CCM. Essential Skills & Experience 15+ years in Information Security, 7-8+ years in Security Architecture. Cloud security architecture experience (AWS, Azure, GCP), multi-cloud More ❯

platforms (AWS, Azure, GCP). Implement DevSecOps practices, including secure CI/CD pipelines and infrastructure-as-code templates. Ensure compliance with frameworks such as NIST CSF, ISO 27001, PCI DSS, and CSA CCM. Essential Skills & Experience 15+ years in Information Security, 7-8+ years in Security Architecture. Cloud security architecture experience (AWS, Azure, GCP), multi-cloud More ❯

balancing, firewalls, proxies (F5, Palo Alto, Forcepoint, Cisco ASA). Strong knowledge of wireless networking design and optimisation. Security integration: Zero Trust, segmentation, NAC; familiarity with ISO 27001, NIST, PCI-DSS, GDPR. Cloud & Virtualisation: AWS, Azure, or GCP networking services; understanding of hybrid/multi-cloud; automation tools (Terraform, Ansible, Python). Monitoring & Management: Network management systems (SolarWinds More ❯

Lead roles JSP440, JSP604/453 & JSP490 Working with system secure design MOD/GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience More ❯

occasional travel and out-of-hours support. Desirable: Exposure to MxDR/SOC environments and advanced security protocols (SIEM, IDS/IPS, firewalls). Knowledge of GDPR, Cyber Essentials+, PCI-DSS, and other compliance standards. Strong grasp of data protection legislation (e.g., GDPR, Data Protection Act). Why Join Us? Global Impact: Your leadership will help protect the More ❯

Qualifications Mandatory: Proven experience in security architecture and enterprise IT environments. Strong understanding of cloud security (Azure, AWS), application security, and infrastructure protection. Familiarity with regulatory frameworks (e.g., GDPR, PCI-DSS, SOX). Excellent communication and stakeholder engagement skills. Nice To Have Certifications such as CISSP, CISM, or AWS Certified Solutions Architect. Experience with Agile methodologies and architecture More ❯

scripting languages (Python, Go, YAML, JSON etc.) A background in financial services or similar regulated industries. Familiarity with compliance frameworks, and security requirements (e.g., ISO 27001, SOC 2, SOX, PCI DSS, FedRAMP, FFIEC, NYDFS, and SEC compliance requirements) A track record in consulting, solutions architecture, or technical coaching. Interest in technical sales and supporting go-to-market strategies. More ❯

ability to automate routine tasks and deployment processes for efficiency and consistency. Security: Expertise in cloud security best practices, identity and access management (IAM), encryption, and compliance frameworks (eg, PCI DSS, NIST). Networking: Strong knowledge of cloud networking concepts, including virtual networks, subnets, security groups, load balancers, and VPN configurations. DevOps Principles: An understanding of DevOps practices More ❯

ability to automate routine tasks and deployment processes for efficiency and consistency. Security: Expertise in cloud security best practices, identity and access management (IAM), encryption, and compliance frameworks (e.g., PCI DSS, NIST). Networking: Strong knowledge of cloud networking concepts, including virtual networks, subnets, security groups, load balancers, and VPN configurations. DevOps Principles: An understanding of DevOps practices More ❯

simultaneously. Key Responsibilities Certification Leadership: Deliver and maintaincertifications such as ISO/IEC 27001, SOC 2 Type II, Cyber Essentials Plus, and CREST accreditation. Manage sector-specific frameworks, like PCI DSS for payment card data and NCSC CIR/CHECK for secure operations. Proactively identify compliance gaps and ensure certifications are renewed on schedule. Assurance for SOC Operations More ❯

to senior leadership on risk posture. Skills & Experience Required Previous experience in an information security or IT risk management role. Strong understanding of frameworks such as ISO 27001, NIST, PCI-DSS, or Cyber Essentials . Excellent communication and stakeholder engagement skills. Ability to manage multiple priorities in a dynamic environment. Benefits Include A people-focused culture with genuine More ❯

team at the Intellectual Property Office. Playing a key part in an established team, the individual is responsible for ensuring the continued compliance with key security standards, such as PCI, ISO27001, secure by design, GovAssure etc. It is essential that this role ensures that security architecture alongside compliance are understood and therefore the role will include championing security by … but are not limited to: Ensure security architecture aligns with wider Gov security policies and frameworks, legal frameworks, industry regulations and best practise (e.g ISO 27001, NCSC Standards, GDPR, PCI DSS, GovAssure, Secure by Design). Support the secure by design champion in building awareness and understanding of secure by design framework across DDaT. Manage the security architecture More ❯

audit readiness for internal and external assessments Monitor developments in global cybersecurity regulations and frameworks (NIST CSF, UK NCSC guidance, EU NIS2, GDPR) Oversee sector-specific assurance requirements, including PCI DSS and NCSC CIR/CHECK, where applicable Provide expert advice to leadership on regulatory changes impacting SOC assurance strategy Drive continuous improvement in assurance processes and evidence More ❯

Understanding of IAM, WAF, and KMS. Experience implementing best practices for securing data, ensuring compliance with industry standards and regulations. Bonus points for experience with a compliance framework (ISO27001, PCI-DSS). Infrastructure-as-Code: Mastery of Terraform, CloudFormation, CDK or equivalent tools. Scripting & Automation: Skills in a scripting language like Python, Ansible, Bash, Groovy, Powershell, or similar. More ❯

Project Delivery Pro - Proven track record in deliveringcomplex projects and owning workstreams within larger programmes. Cyber Security Advocate - Strong understanding of securityprinciples with a "security first" approach to infrastructuredesign. PCI compliance experience - ensuring systems meet security andcompliance standards. Docker and Containers - familiarity with containers like Dockerto enhance flexibility and scalability. Our PERKS really are ‘The Works’ 25% Colleague Discount More ❯

Windows Server administration. Possess a strong understanding of networking fundamentals, including IPaddressing, DNS, DHCP, and basic troubleshooting of network issues. Ensure compliance with security requirements such as GDPR and PCI DSS. Install, configure, and support modern productivity tools such as, but not limitedto Microsoft Office 365, Teams, SharePoint etc. Good understanding and adhere to strict compliance of IT security More ❯

Lead and deliver client engagements across governance, risk and compliance (GRC), including audits, assessments and improvement plans aligned to frameworks such as ISO/IEC 27001, NCSC CAF, and PCI DSS. Lead independent assurance, review and test security policies, procedures and controls; identify gaps; and recommend pragmatic remediation strategies. Develop and present security strategies that enhance resilience and reduce … near term). Significant experience in cyber security consulting or assurance, ideally within the public sector. Deep knowledge of GRC frameworks and standards (e.g. CAF, ISO/IEC 27001, PCI DSS).Strong client-facing skills, able to communicate complex issues clearly to technical and non-technical audiences. Proven track record of delivering high-quality outputs on time and More ❯

to improve software delivery. Ensure quality and compliance across the development lifecycle, working closely with Test Analysts to validate solutions. Ensure adherence to standards and regulation including to ISO27001, PCI DSS, and GDPR. Partner with support teams to resolve development issues impacting live services, occasionally supporting Out of Hours (OOH) operations. Mentor and upskill colleagues, including IT, Change More ❯

expertise across multiple platforms. The role will provide ongoing technical assurance to digital systems and data to ensure that these are safe and secure. Special projects support will include PCI compliance, Cyber Essentials and other technical support where required. Provide line manager duties within the Information Security Team. Key Accountabilities & Responsibilities: Be an SME for PCI DSS … standards. Knowledge of current technologies in the field and the ability to learn new ones. Incident management experience including investigations and response. Cloud security experience would be highly beneficial PCI and Cyber Essentials expertise would be advantageous Why us? Markerstudy Insurance Services Limited (MISL) is one of the largest Managing General Agents in the UK. With a strong presence More ❯

Strong knowledge of physical security, encryption technologies, and fraud prevention. A natural problem solver with a strong ability to prioritise and implement effective solutions to emerging challenges. Knowledge of PCI standards and EMV Specifications is highly desirable. Ability to effectively communicate with technical and non-technical stakeholders. Benefits: Permanent contract Hybrid work model Salary between £60.000 to £80.000/ More ❯