Milton Keynes, Buckinghamshire, South East, United Kingdom Hybrid / WFH Options
In Technology Group Limited
vulnerability scanners, firewalls, antivirus, and endpoint protection platforms. Familiarity with cloud security (AWS, Azure, or GCP) and hybrid environments. Good understanding of regulatory frameworks and standards (ISO 27001, NIST, PCIDSS). Professional certifications such as CISSP, CISM, CEH, or CompTIA Security+ are highly desirable. Excellent analytical, problem-solving, and communication skills. Desirable: Experience in the finance or More ❯
risks. To develop and embed best-practice security processes and knowledge into technical teams aligned to Zero Trust principles and in line with industry standards and frameworks (e.g. NIST, PCIDSS). To identify opportunities for automation and optimization and drive maximum value from existing technologies and services to strengthen Clarks' overall security posture. DIMENSIONS Financial : No direct … and architecture teams to plan and deliver remediation activities Supporting the development of relevant security roadmaps and activity plans aligned to Zero Trust principles and common industry frameworks (NIST, PCIDSS etc) Assisting in the review and development of operational processes and procedures required to maintain cyber security for I T services, including managing endpoint compliance, system hardening … of privacy and data protection laws and regulations and how they apply to technology environments (e.g. GDPR, PIPL etc) Knowledge of other regulatory or compliance frameworks such as ISO, PCIDSS, NIST etc Likely to hold at least one common security certification (CEH, CCSP, CISSP, OSCP) alongside other relevant IT certifications (ITIL, AMP, Prince2 etc) preferred Additional technologies More ❯
Colorado Springs, Colorado, United States Hybrid / WFH Options
OSAAVA Services
SASE, NAC, and next-gen firewalls to support secure access and business continuity. • Governance & Compliance Alignment: Ensure designs align with enterprise security policies, compliance requirements (e.g., NIST, ISO 27001, PCI-DSS), and architecture governance standards. Key Skills & Experience • 8+ years of experience in network security, cybersecurity architecture, or network engineering-including 3+ years in a design or architecture More ❯
Huntsville, Alabama, United States Hybrid / WFH Options
OSAAVA Services
SASE, NAC, and next-gen firewalls to support secure access and business continuity. • Governance & Compliance Alignment: Ensure designs align with enterprise security policies, compliance requirements (e.g., NIST, ISO 27001, PCI-DSS), and architecture governance standards. Key Skills & Experience • 8+ years of experience in network security, cybersecurity architecture, or network engineering-including 3+ years in a design or architecture More ❯
procedures in alignment with business objectives, while considering operational needs. Direct the management and continuous improvement of the Information Security Management System (ISMS). Oversee and manage Ravelin's PCIDSS and PCI 3DS compliance program, ensuring requirements are fulfilled, maintained, and areas for enhancement are identified. Conduct routine risk assessments to determine and reduce information security … robust cyber incident response plan, including coordinating necessary responses to incidents and security investigations. Requirements Extensive practical experience implementing and maintaining an ISO 27001 compliant ISMS. Demonstrable experience with PCIDSS compliance, including preparing for and undergoing assessments. Familiarity with information security frameworks (e.g., NIST, CIS). Proficiency in risk management methodologies. Knowledge of common security technologies (e.g. More ❯
UK & EU : GDPR (General Data Protection Regulation) ISO 27001 (Information Security Management Systems) Cyber Essentials Plus (UK government-backed security framework) DORA (Digital Operational Resilience Act) - EU financial sector PCI-DSS (if handling paymentdata) Experience in: Managing vendor risk assessments for third-party compliance. Handling incident response & reporting (e.g., Data Breach Notifications under GDPR). Key Skills … Strong reporting and communication skills-ability to brief executives and regulators. Ability to design, implement, and enforce security policies . Key Responsibilities: Ensure compliance with GDPR, Cyber Essentials Plus, PCI-DSS, and other applicable standards. Align ISMS activities with ISO 27001 framework. Develop and implement security policies, controls, and procedures. Conduct security risk assessments & compliance audits. Manage incident More ❯
team with designing, innovating, deploying, and maintaining security measures to safeguard our information assets. We operate in a highly regulated global SaaS organization that has multiple certifications such as PCI-DSS, ISO/IEC 27001, SOC2 and other standards we adhere to. In addition, we have a large, federated customer base that we strive to embed improvements for. … team with designing, innovating, deploying, and maintaining security measures to safeguard our information assets. We operate in a highly regulated global SaaS organization that has multiple certifications such as PCI-DSS, ISO/IEC 27001, SOC2 and other standards we adhere to. In addition, we have a large, federated customer base that we strive to embed improvements for. … on a variety of challenging projects, with multiple security tools. Have a proven track record of successes. Understanding of security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of application security principals, best practices, OWASP/related standards. Knowledge of security frameworks & controls, hardening standards & security best practices. An understanding More ❯
Loughton, Essex, South East, United Kingdom Hybrid / WFH Options
Profile 29
a Work from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCIDSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure DevOps pipelines and Infrastructure as Code (IaC) using … Security: Manage Web Application Firewalls (WAF) and Intrusion Prevention Systems (IPS). Vulnerability & Penetration Testing: Review Penetration Testing, vulnerability assessments, and security scanning to proactively identify and remediate risks. PCIDSS Compliance: Conduct security audits, risk assessments, and ensure regulatory compliance. DNS Security: Implement and monitor DNS security solutions to prevent cyber threats. Incident Response: Formulating and documenting … Profile 29s privacy policy can be found at: profile-29 .com/privacy) Profile 29 recruitment keywords: DevSecOps DevOps Azure cloud security Microsoft Defender Microsoft Sentinel WAF IPS DNS pcidsspcidsspci-dss soar loughton Debden essex London More ❯
West Bend, Wisconsin, United States Hybrid / WFH Options
Delta Defense
/or related technologies. Experience securing applications built on cloud platforms (DigitalOcean, AWS, or GCP). Deep understanding of key industry frameworks and controls including NIST CSF, CIS CSC, PCI-DSS, Cyber Defense Matrix, ISO 27001, and MITRE ATT&CK. Familiarity with a broad range of security tools and technologies including EDR, SIEM, SWG, CASB, DLP, & IDS/ More ❯
Cardiff, Wales, United Kingdom Hybrid / WFH Options
Creditsafe
CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials. • Proven experience in managing security operations teams in a similar industry. • Familiarity with SOC2, PCI-DSS, ISO22301 and ISO27001 standards. Desirable Qualifications: • Bachelor’s or masters degree in CyberSecurity, Computer Science, Information Technology, or a related field • Cloud security qualifications such as ISC2 More ❯
of Linux, Windows, Apple & Android OS. Knowledge of network perimeter security, including firewalls, WAF, anti-virus, and O365 compliance & security centre. Familiarity with NIST (CSF Framework 2.0), ISO 27001, PCI-DSS, and GDPR. Experience operating and managing SIEM solutions, vulnerability management tools, and secure configuration tooling. Ability to use PowerShell and Python scripting for security automation. Experience working More ❯
Windows, Apple & Android OS . Knowledge of network perimeter security, including firewalls, WAF, anti-virus, and O365 compliance & security centre . Familiarity with NIST (CSF Framework 2.0), ISO 27001, PCI-DSS, and GDPR . Experience operating and managing SIEM solutions , vulnerability management tools, and secure configuration tooling. Ability to use PowerShell and Python scripting for security automation. Experience More ❯
testing (AWS, Azure, or Google Cloud). Certifications such as ISTQB, CISSP, CISM, or CyberArk Defender are a plus. Knowledge of security compliance standards (e.g., ISO 27001, GDPR, NIST, PCI-DSS). Kind Regards -- Priyanka Sharma Senior Delivery Consultant Office: 02033759240 Email: psharma@vallumassociates.com More ❯
Whiteley, Hampshire, United Kingdom Hybrid / WFH Options
Stratospherec Ltd
CIS, PCIDSS, Cyber Essentials, NIST, ISO 27001). In-depth understanding of network security and compliance in regulated environments. Proven ability to secure high-value data (PCI cardholder data, PII) and implement security best practices. Strong networking knowledge (LAN, WAN, DNS, DHCP, VPN, TCP/IP). Proficiency in firewall and load balancer technologies for secure … solutions (Veeam or similar). Experience with monitoring tools (SolarWinds SentryOne, Zabbix, etc.). Excellent problem-solving, communication, and documentation skills. Some familiarity with financial services regulations and compliance (PCIDSS, GDPR, DORA) would be useful but not essential. Desirable/bonus (but not essential) skills and experience: Some interest in learning and using automation tools such as More ❯
and frameworks (e.g., NIST 800-53, ISO 27001/27002). Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws. Experience with sector-specific frameworks (e.g., HIPAA, PCI). Technical Skills Proficiency with security tools (SailPoint, Rapid7, Wiz.io , MS Defender, SIEM, vulnerability management, penetration testing). Knowledge of cloud technologies (AWS, Azure). Experience using generative AI … Data collection, validation, analysis, and interpretation. Experience Researching and applying latest technologies. Experience with Agile methodology. Big 4 accounting experience. Hold a professional certification such as CISA, CISM, CISSP, PCI QSA, ISO 27001 Lead Auditor, or equivalent. Additional Information This is a permanent hybrid role in Costa Rica. No relocation available. Culture at Experian Our uniqueness is that we More ❯
Central London, London, England, United Kingdom Hybrid / WFH Options
Bupa UK
Claire, and OpenSCAP). Extensive experience with Red Teaming, Purple Teaming and Attack Automation. Familiarity with industry regulations and compliance standards related to cybersecurity, such as NIST CSF, SOC2, PCIDSS, and ISO 27001. A relevant professional qualification in Cyber and Information Security (e.g., OCSP, CISM, CISSP, CEH) Experience of vulnerability management and security testing in cloud environments More ❯
as part of a team Ability to travel to meet business needs Preferred competencies: Relevant cyber security or other qualifications, certifications such as CSX-P, CDPSE, SSCP, CAP, OWASP, PCIDSSSecurity Cleared with potential to gain enhanced clearances Experience implementing privacy solutions based on the requirements of the EU GDPR and UK Data Protection Act 2018 Good More ❯
business resiliency and compliance frameworks including but not limited to, FFIEC (Federal Financial Institutions Examination Council), Sarbanes-Oxley (SOX), Gramm-Leach-Bliley Act (GLBA), Service Organization Controls (SOC) 2, PCI-DSS, and ITIL V3/4 processes. Evaluate risk and controls by executing targeted testing of processes. Develop and publish policy, standards and procedures for implementation based on More ❯
Farnborough, Hampshire, South East, United Kingdom
Gama Group Limited
Knowledge of security and data privacy controls within Microsoft Azure Cloud stack with hands on experience configuring and monitoring within Azure Knowledge of UK Government security standards Knowledge of PCI-DSS and achieving suitable standards within software In addition to a Competitive Salary, we will offer you: Competitive Group Pension Scheme Comprehensive Life Assurance * Comprehensive Income Protection * Comprehensive More ❯
Bexhill-On-Sea, East Sussex, South East, United Kingdom Hybrid / WFH Options
Hastings Direct
with Infrastructure-as-Code (e.g., Bicep, ARM templates, Terraform). Hands-on experience with SIEM tools, ideally Azure Sentinel. Understanding of regulatory and compliance frameworks (e.g., CIS Benchmarks, HIPAA, PCI-DSS). Excellent problem-solving skills, communication, and the ability to explain technical concepts to non-technical stakeholders. Desirable: Relevant certifications such as AZ-500, SC-100, or More ❯
digital signatures to protect data integrity and confidentiality. Security Policies and Compliance : Developing and enforcing security policies, standards, and procedures, and ensuring compliance with regulations like GDPR, HIPAA, and PCI-DSS. Incident Response : Planning and executing incident response strategies, including detection, containment, eradication, and recovery. Risk Management : Identifying, assessing, and mitigating security risks through risk analysis and management frameworks. More ❯
GDPR, ISO 27001, and Cyber Essentials, and a willingness to navigate evolving guidance such as Network and Information Systems Regulations 2018 (NIC) or PaymentCardIndustryDataSecurity Standards (PCIDSS) Strong communication and documentation skills, with the ability to collaborate effectively with cross-functional teams, including Engineering, Product, and Legal. A self-starter mindset, who is proactive … and growth. Desirable Qualifications and/or knowledge (any of the following): Certifications or practical experience as/in CISMP, CompTIA Security+, ISO 27001 Lead Implementer, CISM, CISSP, or PCIDSS QSA. Awareness of key regulations, including UK GDPR, Data Protection Act 2018, and the NIS Regulations An understanding of security risk management, governance, and policy implementation Awareness More ❯
other cloud providers. SKILLS: Working knowledge of cloud security architecture, specifically within Azure (or other Cloud platforms). Familiarity with security frameworks and compliance standards such as NIST, GDPR, PCI-DSS, DESC ISR. Strong problem-solving skills, with the ability to think creatively to solve complex security challenges. BENEFITS: Competitive Salary: Base salary commensurate with experience, plus performance More ❯
strategies , ensuring security and performance Work with Terraform, Deployment Manager, and CloudFormation for IaC-based deployments Security and Compliance: Implement cloud security measures and ensure compliance with ISO 27001, PCIDSS, GDPR, and other industry standards Define cloud architecture standards and best practices for a secure cloud environment Performance Optimisation: Monitor and optimise cloud resources for performance, scalability More ❯