Ireland, Bedfordshire, United Kingdom Hybrid / WFH Options
Kraken
engineering, security, IT and beyond-keeping our security posture audit-ready and globally compliant across all products and regions. Plan and lead ISO 27001:2022, SOC 2 Type II, PCIDSS v4, SOX assessments with external assessors and regulators globally. Develop and sustain expert-level knowledge on regulations impacting Security, IT, Engineering Prepare the program for emerging frameworks … service workflows. Skills you should HODL 7+ years in security engineering or technical external audit/advisory, including hands-on experience with industry frameworks (e.g. ISO 27001, SOC 2, PCIDSS, FedRAMP, NIST). Strong long-form and asynchronous writing skills for a fully remote, globally distributed team. Built and/or made substantial contributions to a common More ❯
Chelmsford, Essex, South East, United Kingdom Hybrid / WFH Options
Keystream Group Limited
and assets. You will be responsible for designing and implementing the evolution of security standards, policies, and procedures to ensure ECC meets regulatory, legislative, and operational requirements (e.g., PSN, PCI-DSS, ICO, disaster recovery). Maintain external networks and collaborate across Greater Essex and with national partners to share intelligence and best practices. Drive innovation and lead continuous … A track record of developing and implementing enterprise-wide cyber and information security strategies aligned with business goals. Extensive knowledge of relevant legal, regulatory, and technical frameworks, including PSN, PCI-DSS, GDPR, and disaster recovery. Experience in similarly complex environments, with an understanding of public sector culture and challenges. A passion for innovation, collaboration, and continuous improvement in More ❯
Security Good understanding of core security principles and tools Exposure to network security, vulnerability management, or risk assessments (preferred) Familiarity with security frameworks such as ISO 27001, NIST, or PCIDSS (preferred) Professional certifications like Security+, CEH, or CISSP are desirable Analytical mindset, attention to detail, and a proactive approach to learning What You'll Get Dedicated Mentorship More ❯
Employment Type: Permanent
Salary: £45000 - £55000/annum Excellent Training and Benefits
Bristol, Gloucestershire, United Kingdom Hybrid / WFH Options
Experis - ManpowerGroup
Security Good understanding of core security principles and tools Exposure to network security, vulnerability management, or risk assessments (preferred) Familiarity with security frameworks such as ISO 27001, NIST, or PCIDSS (preferred) Professional certifications like Security+, CEH, or CISSP are desirable Analytical mindset, attention to detail, and a proactive approach to learning What You'll Get Dedicated Mentorship More ❯
Exeter, Devon, South West, United Kingdom Hybrid / WFH Options
Bowerford Associates
Server and desktop operating systems configuration & troubleshooting and SCCM/MECM skills would be advantageous. Knowledge of information security standards such as ISO 17799/27002/27001/PCIDSS/SIEM/FERPA/HIPAA etc. Knowledge of and experience in virtual network technologies, specifically ESXi and VMware configuration and administration is preferred. Knowledge of and More ❯
Manchester, Lancashire, England, United Kingdom Hybrid / WFH Options
N Brown Group
escalating as required would be beneficial. Experience with SIEM Platforms (ideally Splunk), including working with logs and creating correlation searches and dashboards is a plus. Experience of working within PCIDSS, or other compliance frameworks. Software and Technology Coding languages (Python, Teraform) Build pipeline tools (Gitlab, Jenkins) IaaS (AWS, Azure, GCP) & SIEM (ideally Splunk) Endpoint Detection and Response More ❯
Ansible, CloudFormation). Experience in root cause analysis and implementing systemic improvements. Preferred: Significant experience with UX/UI writing or design Knowledge of regulatory standards and compliance (e.g., PCIDSS, HIPAA). Certifications in cloud platforms (e.g., AWS Certified Solutions Architect, Google Cloud Engineer). Strong communication skills and the ability to work collaboratively with cross functional More ❯
with caching technologies (Memcache, Active MQ, Redis, APC, etc.) Experience with MySQL (Clusters, Replication, and Tuning) and Elasticsearch (Kibana a plus). Knowledge of security practices, networking protocols, firewalls, PCI compliance etc. System architecture experience required with a demonstrated ability to read the code and understand the coding logic to assist in troubleshooting Experience managing/monitoring AWS cloud More ❯
Providing advice on international Privacy laws Working within Enterprise Risk Management/Operational Risk Management frameworks Providing advice to IT and Information Security teams Working with Compliance Understanding of PCI-DSS and Card Scheme Rules Use of OneTrust privacy tooling Qualifications: Degree in Law or similar Post Graduate certification in one or more of data protection/privacy More ❯
cost optimization strategies for vendor services. Track vendor spend and ensure alignment with financial goals. Risk & Compliance Management Ensure vendors comply with regulatory, security, and data protection requirements (e.g., PCIDSS, GDPR, ISO 27001). Conduct regular vendor risk assessments and monitor any security or compliance concerns. Partner with Security and Compliance teams to ensure third-party risk … experience in contract negotiation, cost optimization, and risk assessment. Ability to lead Quarterly Business Reviews (QBRs) and drive service improvements. Understanding of regulatory requirements relevant to vendor management (e.g., PCIDSS, GDPR, ISO 27001). Excellent stakeholder management, communication, and negotiation skills. Strong analytical mindset with experience using data to assess vendor performance and impact. ?Education & Experience: Bachelors More ❯
Newport, Gwent, Wales, United Kingdom Hybrid / WFH Options
Reed Technology
SME, providing guidance on IT governance, compliance, and risk mitigation strategies. Required Skills & Qualifications * Proven experience in IT risk management, security governance, and compliance. * Strong knowledge of ISO27001, GDPR, PCI-DSS, and cybersecurity frameworks. * Experience in IT audit coordination and risk assessment methodologies. * Excellent communication and stakeholder management skills. * Desirable - Certifications such as CRISC, CISA, CISM, or CISSP More ❯
Rogerstone, Gwent, United Kingdom Hybrid / WFH Options
Reed Technology
SME, providing guidance on IT governance, compliance, and risk mitigation strategies. Required Skills & Qualifications Proven experience in IT risk management, security governance, and compliance. Strong knowledge of ISO27001, GDPR, PCI-DSS, and cybersecurity frameworks. Experience in IT audit coordination and risk assessment methodologies. Excellent communication and stakeholder management skills. Desirable - Certifications such as CRISC, CISA, CISM, or CISSP More ❯
check our Tech Blog and Open-Source Contribution Fluent (written and spoken) in French and English. Nice-to-have: Previous experience working within a certified environment (SOC2, ISO 27001, PCIDSS, HIPAA ) Genuine interest in Web3, blockchain, cryptocurrency and smart contracts - check our Tech Blog and Open-Source Contribution About Kiln: Kiln is the leading enterprise-grade rewards More ❯
Participate and conduct onsite assessments of Third Parties against Visa's security framework and industrysecurity standards. Support risk/security assessments for special projects involving Third Parties. Support PCI-related activities relevant to third parties to ensure compliance with PCI requirements. Exhibit pragmatism in formulating process remediation and implementation strategies, defining work tracks, and submitting assessment findings … in cybersecurity, IT audit, or IT risk management. Experience in cybersecurity, IT audit, risk management, compliance, or related fields. Knowledge of cybersecurity frameworks and standards such as NIST, ISO, PCI, etc. Strong written and verbal communication skills, and ability to communicate effectively with technical and non-technical audiences. Ability to work independently and collaboratively in a fast-paced environment. More ❯
City of London, London, United Kingdom Hybrid / WFH Options
Bonhill Partners
/IT security projects in a regulated environment. Strong understanding of cybersecurity domains: IAM, threat intel, incident response, vendor risk, etc. Familiarity with frameworks such as NIST, ISO 27001, PCI-DSS, and FFIEC. Solid grasp of the full project delivery lifecycle (PDLC). Strong stakeholder management, documentation, and analytical skills. More ❯
/IT security projects in a regulated environment. Strong understanding of cybersecurity domains: IAM, threat intel, incident response, vendor risk, etc. Familiarity with frameworks such as NIST, ISO 27001, PCI-DSS, and FFIEC. Solid grasp of the full project delivery lifecycle (PDLC). Strong stakeholder management, documentation, and analytical skills. More ❯
BS32, Bradley Stoke, South Gloucestershire, Almondsbury, Gloucestershire, United Kingdom Hybrid / WFH Options
Emponics
on your own initiative as a self-starter Desirable Skills • Understanding of how to build resilient multi-site architectures • Experience and knowledge of cloud security and relevant ISO and PCI compliance requirements • Knowledge of Azure and other cloud providers • Experience of Windows and Linux operating systems • Experience of using Terraform to build, change and version infrastructure. • Experience of container More ❯
Employment Type: Permanent
Salary: £65000 - £75000/annum health, pension, life , hybrid home
background, including experiences with major cloud platforms. Demonstrated experience developing and implementing security policies, standards, and procedures. Solid understanding of risk management frameworks, and industry-specific compliance requirements (e.g., PCI, SOC 2, GDPR). Experience with external audits and leading certification processes. Opinions on what good security standards and processes look like as we define ours at Duffel. Big … environment. You believe in your own methods but keep an open mind, taking suggestions and feedback onboard as well. Bonus points if you have: Experience guiding an organisation through PCI-DSS certification. Experience in travel, flights, hotels, or cars. What you can expect from us: We're dedicated to your personal growth. Our environment is comfortable both physically More ❯
higher maturity. What You'll Be Doing: Develop and implement information security policies, standards, and guidance in collaboration with stakeholders. Ensure compliance with industry standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC 2. Coordinate responses to internal and external audits and liaise with key stakeholders. Develop and deliver security policy awareness and training programs. Assess … security, ideally in a public tech company or regulated industry. Experience in developing and implementing information security policies, standards and procedures. Familiarity with security standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC2. Strong skills in security metrics and reporting. Ability to engage collaboratively with technical and non-technical stakeholders. Excellent written and verbal communication skills. More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Henderson Scott
measures Key experience we're looking for: Deep experience working in Security Operations, including working with MDR providers and SOC environments Strong knowledge of relevant frameworks and standards including: PCI-DSS GDPR NIST CSF CIS Critical Security Controls Cyber Essentials Plus Hands-on experience across Cloud Security, Identity and Access Management, Zero Trust, Security Service Edge (SSE), and More ❯
Azure Cloud Platform. Extensive experience working with Microsoft 365. Good experience with Firewalls, Networks, Switches, Routers & Domain Controllers. Well-versed with Security Protocols such as NIST in conjunction with PCI-DSS and GDPR. If this sounds like an interesting opportunity to you, feel free to apply for this position or drop me your CV at mohammad.sobee@harveynash.com More ❯
acquiring, and digital payment platforms. Platform Scalability & Security: Ensure the continuous evolution, stability, scalability, and robust security of the core payment infrastructure, adhering to the highest industry standards (e.g., PCIDSS, ISO 27001). Engineering Excellence: Lead, mentor, and expand a high-performing engineering and development team, promoting best practices in software development, architecture, and agile methodologies. Compliance … a collaborative and high-performance culture. Strategic Vision: Ability to translate complex business challenges into clear technological strategies and actionable roadmaps. Security & Compliance: Profound understanding of paymentsecurity standards (PCIDSS) and financial regulations (e.g., PSD2, GDPR). Education: Bachelor's or Master's degree in Computer Science, Engineering, or a related field Languages: Russian language skills high More ❯
actions to resolve non-conformities and audit findings. Promote a culture of continuous improvement and best practice in quality and information security. Support compliance with Data Protection regulations and PCIDSS requirements. Assess third-party vendors for compliance with organisational security and quality expectations. Assist in responding to customer security audits, questionnaires, and tender documentation. Provide support for More ❯
like Terraform or CloudFormation. Additional valued skills include: Understanding of the finance industry to align solutions with business goals, with a focus on cost optimization. Knowledge of GDPR, HIPAA, PCIDSS, and certifications like AWS Solutions Architect or TOGAF. Ability to see the big picture, understanding component interactions, and performing trade-off analysis for performance, scalability, cost, and More ❯
of information assurance frameworks (e.g., ISO 27001, NIST SP 800-53, COBIT) ️ Experience with security assessments, audits, and vulnerability management ️ Knowledge of regulatory standards such as GDPR, HIPAA, and PCI-DSS ️ Certifications such as CISSP, CISM, or ISO 27001 Lead Implementer are highly desirable More ❯