51 to 75 of 367 PCI DSS Jobs

team. In this fully remote UK-based role, you will conduct IT security audits and assessments for clients across the United Kingdom and the European region, ensuring compliance with PCI DSS, ISO 27001/2, GDPR, NIS2, DORA, and other relevant frameworks. This position offers the opportunity to become a PCI QSA (training and certification sponsored by … or consulting experience. • Bachelor’s degree in information security or related field. • Deep knowledge of IT security controls, access management, logging, vulnerability assessment, and secure system configuration. • Experience with PCI DSS, ISO 27001/2, GDPR, NIS2, DORA, or similar compliance frameworks. • Strong understanding of cloud environments and network architectures. • Excellent English communication skills; fluency in German strongly More ❯

team. In this fully remote UK-based role, you will conduct IT security audits and assessments for clients across the United Kingdom and the European region, ensuring compliance with PCI DSS, ISO 27001/2, GDPR, NIS2, DORA, and other relevant frameworks. This position offers the opportunity to become a PCI QSA (training and certification sponsored by … or consulting experience. Bachelor s degree in information security or related field. Deep knowledge of IT security controls, access management, logging, vulnerability assessment, and secure system configuration. Experience with PCI DSS, ISO 27001/2, GDPR, NIS2, DORA, or similar compliance frameworks. Strong understanding of cloud environments and network architectures. Excellent English communication skills; fluency in German strongly More ❯

80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO/IEC 27001/2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience activities. Monitor the effectiveness of security controls to ensure … analysis. A knowledge of the data protection act (UK GDPR) and how it applies to information and cyber security A knowledge of card payment system security as defined in PCI-DSS V4.0 Qualifications A security certification such as CISM, CISMP, CISSP or equivalent would be desirable. A relevant IT or security-based degree or equivalent practical experience. More ❯

80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO/IEC 27001/2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience activities. Monitor the effectiveness of security controls to ensure … analysis. A knowledge of the data protection act (UK GDPR) and how it applies to information and cyber security A knowledge of card payment system security as defined in PCI-DSS V4.0 Qualifications A security certification such as CISM, CISMP, CISSP or equivalent would be desirable. A relevant IT or security-based degree or equivalent practical experience. More ❯

80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO/IEC 27001/2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience activities. Monitor the effectiveness of security controls to ensure … analysis. A knowledge of the data protection act (UK GDPR) and how it applies to information and cyber security A knowledge of card payment system security as defined in PCI-DSS V4.0 Qualifications A security certification such as CISM, CISMP, CISSP or equivalent would be desirable. A relevant IT or security-based degree or equivalent practical experience. More ❯

80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO/IEC 27001/2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience activities. Monitor the effectiveness of security controls to ensure … analysis. A knowledge of the data protection act (UK GDPR) and how it applies to information and cyber security A knowledge of card payment system security as defined in PCI-DSS V4.0 Qualifications A security certification such as CISM, CISMP, CISSP or equivalent would be desirable. A relevant IT or security-based degree or equivalent practical experience. More ❯

80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO/IEC 27001/2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience activities. Monitor the effectiveness of security controls to ensure … analysis. A knowledge of the data protection act (UK GDPR) and how it applies to information and cyber security A knowledge of card payment system security as defined in PCI-DSS V4.0 Qualifications A security certification such as CISM, CISMP, CISSP or equivalent would be desirable. A relevant IT or security-based degree or equivalent practical experience. More ❯

for our customers. Consult and Advise: Conduct assessments and reviews for ISO27001 (Information Security Management) and ISO22301 (Business Continuity Management). Provide expert advice on compliance standards such as PCI-DSS, Cyber Essentials, and more. Policy Development: Create, review, and update information security policies to align with business and regulatory requirements. Technical Expertise: Translate information security requirements into … We’re looking for someone with: CISM, CISSP, or equivalent certifications. ISO27001 and ISO22301 Lead Auditor/Implementor certifications. Knowledge of Cyber Essentials/Cyber Essentials Plus. Familiarity with PCI DSS and ISO31000 (preferred). Experience: Proven track record in delivering governance, risk, and compliance services. Expertise in information security management and business continuity frameworks. Experience working with More ❯

for our customers. Consult and Advise: Conduct assessments and reviews for ISO27001 (Information Security Management) and ISO22301 (Business Continuity Management). Provide expert advice on compliance standards such as PCI-DSS, Cyber Essentials, and more. Policy Development: Create, review, and update information security policies to align with business and regulatory requirements. Technical Expertise: Translate information security requirements into … We're looking for someone with: CISM, CISSP, or equivalent certifications. ISO27001 and ISO22301 Lead Auditor/Implementor certifications. Knowledge of Cyber Essentials/Cyber Essentials Plus. Familiarity with PCI DSS and ISO31000 (preferred). Experience: Proven track record in delivering governance, risk, and compliance services. Expertise in information security management and business continuity frameworks. Experience working with More ❯

Description: Proficiency in key management systems and tools (e.g., HSMs, KMS, PKI) Strong understanding of cryptographic algorithms and protocols Experience with security standards and frameworks (e.g., NIST, ISO 27001, PCI DSS) Familiarity with cloud-based key management services (e.g., AWS KMS, Azure Key Vault) Proficiency in Linux and Windows operating systems Strong experience with automation using Perl, python … Skills: Proficiency in key management systems and tools (e.g., HSMs, KMS, PKI) Strong understanding of cryptographic algorithms and protocols Experience with security standards and frameworks (e.g., NIST, ISO 27001, PCI DSS) Familiarity with cloud-based key management services (e.g., AWS KMS, Azure Key Vault) Proficiency in Linux and Windows operating systems Strong experience with automation using Perl, python More ❯

. Security, Compliance & Governance Partner with Information Security teams to enhance network security posture , addressing vulnerabilities and implementing intrusion detection/prevention systems. Ensure ongoing compliance with ISO 27001, PCI-DSS , and other relevant regulatory standards. Drive a proactive approach to incident response, monitoring, and continuous threat detection . Oversee audit readiness and maintain comprehensive network documentation and … configuration (Cisco ASA, Palo Alto, Fortinet, etc.) , and telephony (SIP/VoIP) systems. Familiarity with cloud and hybrid networking (Azure, AWS, GCP) environments preferred. Strong understanding of ISO 27001, PCI-DSS , and ITIL-aligned service delivery processes. Leadership & Soft Skills Strategic thinker with the ability to balance technical depth and business acumen . Exceptional stakeholder management and communication More ❯

. Security, Compliance & Governance Partner with Information Security teams to enhance network security posture , addressing vulnerabilities and implementing intrusion detection/prevention systems. Ensure ongoing compliance with ISO 27001, PCI-DSS , and other relevant regulatory standards. Drive a proactive approach to incident response, monitoring, and continuous threat detection . Oversee audit readiness and maintain comprehensive network documentation and … configuration (Cisco ASA, Palo Alto, Fortinet, etc.) , and telephony (SIP/VoIP) systems. Familiarity with cloud and hybrid networking (Azure, AWS, GCP) environments preferred. Strong understanding of ISO 27001, PCI-DSS , and ITIL-aligned service delivery processes. Leadership & Soft Skills Strategic thinker with the ability to balance technical depth and business acumen . Exceptional stakeholder management and communication More ❯

. Security, Compliance & Governance Partner with Information Security teams to enhance network security posture , addressing vulnerabilities and implementing intrusion detection/prevention systems. Ensure ongoing compliance with ISO 27001, PCI-DSS , and other relevant regulatory standards. Drive a proactive approach to incident response, monitoring, and continuous threat detection . Oversee audit readiness and maintain comprehensive network documentation and … configuration (Cisco ASA, Palo Alto, Fortinet, etc.) , and telephony (SIP/VoIP) systems. Familiarity with cloud and hybrid networking (Azure, AWS, GCP) environments preferred. Strong understanding of ISO 27001, PCI-DSS , and ITIL-aligned service delivery processes. Leadership & Soft Skills Strategic thinker with the ability to balance technical depth and business acumen . Exceptional stakeholder management and communication More ❯

. Security, Compliance & Governance Partner with Information Security teams to enhance network security posture , addressing vulnerabilities and implementing intrusion detection/prevention systems. Ensure ongoing compliance with ISO 27001, PCI-DSS , and other relevant regulatory standards. Drive a proactive approach to incident response, monitoring, and continuous threat detection . Oversee audit readiness and maintain comprehensive network documentation and … configuration (Cisco ASA, Palo Alto, Fortinet, etc.) , and telephony (SIP/VoIP) systems. Familiarity with cloud and hybrid networking (Azure, AWS, GCP) environments preferred. Strong understanding of ISO 27001, PCI-DSS , and ITIL-aligned service delivery processes. Leadership & Soft Skills Strategic thinker with the ability to balance technical depth and business acumen . Exceptional stakeholder management and communication More ❯

. Security, Compliance & Governance Partner with Information Security teams to enhance network security posture , addressing vulnerabilities and implementing intrusion detection/prevention systems. Ensure ongoing compliance with ISO 27001, PCI-DSS , and other relevant regulatory standards. Drive a proactive approach to incident response, monitoring, and continuous threat detection . Oversee audit readiness and maintain comprehensive network documentation and … configuration (Cisco ASA, Palo Alto, Fortinet, etc.) , and telephony (SIP/VoIP) systems. Familiarity with cloud and hybrid networking (Azure, AWS, GCP) environments preferred. Strong understanding of ISO 27001, PCI-DSS , and ITIL-aligned service delivery processes. Leadership & Soft Skills Strategic thinker with the ability to balance technical depth and business acumen . Exceptional stakeholder management and communication More ❯

make a real impact What you’ll be doing: Leading vulnerability assessments and coordinating regular penetration testing across systems and products Owning risk remediation actions, from security audits to PCI scans and compliance reporting Working across cloud (AWS), infrastructure, and software environments to ensure security best practices are embedded throughout Supporting the secure design of products and infrastructure, providing … tools Writing clear, actionable reports for both technical and executive audiences, including regular updates on the security landscape Aligning with frameworks such as ISO 27001, Cyber Essentials+, GDPR, and PCI-DSS Collaborating with compliance, IT, and engineering to deliver secure, scalable solutions What you’ll bring to the table: Proven experience in a security-focused role (ideally … grasp of access controls, identity management, and cloud security (especially AWS) Familiarity with secure software development practices and working alongside dev teams Understanding of key frameworks like ISO 27001, PCI-DSS, and GDPR Bonus points for scripting/automation experience (PowerShell, Python, etc.) or exposure to tools like Keeper, Keycloak, or IAM A proactive mindset and excellent communication More ❯

of disaster recovery and business continuity plans. Produce reports and metrics for senior IT and governance stakeholders Stay updated with the latest threats, trends, and compliance requirements (e.g., GDPR, PCI DSS, Cyber Essentials) Person Specification Essential: Demonstrable experience in a related role Excellent problem-solving, analytical, and communication skills An appetite for keeping up to date with the … UK Desirable: Industry certifications (e.g., CompTIA Security+, SSCP) Experience in the charity or non-profit sector Familiarity with Microsoft Azure cloud platforms and identity management Experience with compliance frameworks (PCI DSS, Cyber Essentials) Experience with auditing and compliance Experience of BCP/DR More ❯

AWS services (Lambda, EventBridge, Kinesis, Glue, Athena). Security, Compliance & Governance Implement IAM, KMS encryption, VPC networking, and PrivateLink for secure connectivity. Ensure compliance with GDPR/UK GDPR, PCI-DSS, ISO 27001, and sector-specific standards (e.g., NHS DSP Toolkit, HIPAA). Define data retention policies, PIA/DPIA frameworks, and lawful intercept/emergency call handling. … enterprise-scale Amazon Connect implementations with complex integrations. Expertise in AWS services: IAM, VPC, Lambda, API Gateway, EventBridge, Kinesis, CloudWatch, DynamoDB. Strong knowledge of security and compliance frameworks (GDPR, PCI-DSS, ISO 27001, NHS DSP Toolkit). Hands-on experience with IaC (CloudFormation/Terraform/CDK) and serverless development (Node.js/Python). Preferred Qualifications AWS Solutions More ❯

AWS services (Lambda, EventBridge, Kinesis, Glue, Athena). Security, Compliance & Governance Implement IAM, KMS encryption, VPC networking, and PrivateLink for secure connectivity. Ensure compliance with GDPR/UK GDPR, PCI-DSS, ISO 27001, and sector-specific standards (e.g., NHS DSP Toolkit, HIPAA). Define data retention policies, PIA/DPIA frameworks, and lawful intercept/emergency call handling. … enterprise-scale Amazon Connect implementations with complex integrations. Expertise in AWS services: IAM, VPC, Lambda, API Gateway, EventBridge, Kinesis, CloudWatch, DynamoDB. Strong knowledge of security and compliance frameworks (GDPR, PCI-DSS, ISO 27001, NHS DSP Toolkit). Hands-on experience with IaC (CloudFormation/Terraform/CDK) and serverless development (Node.js/Python). Preferred Qualifications AWS Solutions More ❯

AWS services (Lambda, EventBridge, Kinesis, Glue, Athena). Security, Compliance & Governance Implement IAM, KMS encryption, VPC networking, and PrivateLink for secure connectivity. Ensure compliance with GDPR/UK GDPR, PCI-DSS, ISO 27001, and sector-specific standards (e.g., NHS DSP Toolkit, HIPAA). Define data retention policies, PIA/DPIA frameworks, and lawful intercept/emergency call handling. … enterprise-scale Amazon Connect implementations with complex integrations. Expertise in AWS services: IAM, VPC, Lambda, API Gateway, EventBridge, Kinesis, CloudWatch, DynamoDB. Strong knowledge of security and compliance frameworks (GDPR, PCI-DSS, ISO 27001, NHS DSP Toolkit). Hands-on experience with IaC (CloudFormation/Terraform/CDK) and serverless development (Node.js/Python). Preferred Qualifications AWS Solutions More ❯

AWS services (Lambda, EventBridge, Kinesis, Glue, Athena). Security, Compliance & Governance Implement IAM, KMS encryption, VPC networking, and PrivateLink for secure connectivity. Ensure compliance with GDPR/UK GDPR, PCI-DSS, ISO 27001, and sector-specific standards (e.g., NHS DSP Toolkit, HIPAA). Define data retention policies, PIA/DPIA frameworks, and lawful intercept/emergency call handling. … enterprise-scale Amazon Connect implementations with complex integrations. Expertise in AWS services: IAM, VPC, Lambda, API Gateway, EventBridge, Kinesis, CloudWatch, DynamoDB. Strong knowledge of security and compliance frameworks (GDPR, PCI-DSS, ISO 27001, NHS DSP Toolkit). Hands-on experience with IaC (CloudFormation/Terraform/CDK) and serverless development (Node.js/Python). Preferred Qualifications AWS Solutions More ❯

AWS services (Lambda, EventBridge, Kinesis, Glue, Athena). Security, Compliance & Governance Implement IAM, KMS encryption, VPC networking, and PrivateLink for secure connectivity. Ensure compliance with GDPR/UK GDPR, PCI-DSS, ISO 27001, and sector-specific standards (e.g., NHS DSP Toolkit, HIPAA). Define data retention policies, PIA/DPIA frameworks, and lawful intercept/emergency call handling. … enterprise-scale Amazon Connect implementations with complex integrations. Expertise in AWS services: IAM, VPC, Lambda, API Gateway, EventBridge, Kinesis, CloudWatch, DynamoDB. Strong knowledge of security and compliance frameworks (GDPR, PCI-DSS, ISO 27001, NHS DSP Toolkit). Hands-on experience with IaC (CloudFormation/Terraform/CDK) and serverless development (Node.js/Python). Preferred Qualifications AWS Solutions More ❯

and maintaining key certifications such as ISO/IEC 27001 , SOC 2 Type II , Cyber Essentials Plus , and CREST SOC accreditation , as well as supporting sector-specific frameworks including PCI DSS and NCSC CIR/CHECK . The ideal candidate will have a strong background in cybersecurity assurance , experience engaging with external auditors and customers , and a proactive … ongoing maintenance of SOC-related certifications including SOC 2 Type II , SOC 3 , ISO/IEC 27001 , Cyber Essentials Plus , and CREST . Manage sector-specific compliance such as PCI DSS and NCSC CIR/CHECK . Ensure timely renewals and proactively address compliance gaps. Security Assurance for SOC Operations Integrate certification and assurance requirements into SOC governance More ❯

and maintaining key certifications such as ISO/IEC 27001 , SOC 2 Type II , Cyber Essentials Plus , and CREST SOC accreditation , as well as supporting sector-specific frameworks including PCI DSS and NCSC CIR/CHECK . The ideal candidate will have a strong background in cybersecurity assurance , experience engaging with external auditors and customers , and a proactive … ongoing maintenance of SOC-related certifications including SOC 2 Type II , SOC 3 , ISO/IEC 27001 , Cyber Essentials Plus , and CREST . Manage sector-specific compliance such as PCI DSS and NCSC CIR/CHECK . Ensure timely renewals and proactively address compliance gaps. Security Assurance for SOC Operations Integrate certification and assurance requirements into SOC governance More ❯

Key responsibilities include: Liaising directly with the current Enterprise Architect to understand and document: The council's ICT Strategy and technical architecture. Existing security architecture, including compliance with PSN, PCI-DSS, LGA Cyber Security, and penetration testing protocols. Key platforms and technologies in use, including Microsoft Azure, M365, Active Directory, Intune, endpoint management, and any bespoke systems. Governance … Architect in a complex public sector or local government environment. Strong knowledge of ICT strategy development, enterprise and technical architecture frameworks. Expertise in security architecture and compliance, including PSN, PCI-DSS, LGA Cyber Security, and penetration testing requirements. Hands-on experience with Microsoft technologies including Azure, M365, Active Directory, Intune, and endpoint management. Ability to document existing architecture More ❯