1 to 25 of 218 PCI DSS Jobs in the UK

PCI DSS Project Manager required to lead and manage an online retailer's PCI DSS recertification process. The successful candidate will be responsible for overseeing the entire recertification project, including planning, execution, monitoring, and closure. The ideal candidate will have a strong technical understanding of PCI DSS requirements and extensive project management experience, with a proven track record of successfully managing complex, compliance-focused projects in highly regulated environments. Key Responsibilities: Project Leadership & Management: Lead and manage the PCI DSS recertification project, ensuring all activities are completed on time, within scope, and … in alignment with PCI DSS standards. Cross-functional Collaboration: Work closely with internal stakeholders, including IT, security, legal, compliance, and business units, to ensure alignment on goals, timelines, and resource allocation. Compliance Management: Oversee the analysis of current systems, processes, and controls to identify any gaps in PCI More ❯

travel to client sites. You’ll be part of a team delivering security consultancy in a client-facing role, with a particular focus on: PCI DSS consultancy and assessments Security reviews against standards or guidelines such as the NCSC 10 Steps to Cyber Security and NIST CSF ISO … Creating or supporting third-party risk management and audit programmes Essential skills and experience: Be a current QSA who has completed multiple on-site PCI DSS assessments, and be able to demonstrate a mature understanding of complex PCI DSS environments, and an ability to consult as … structured and methodical manner, with support to manage your own time with a focus on quality work Your primary role will be to deliver PCI DSS consultancy and assessment activities to our clients as part of an established and experienced team of consultants. It’s not all PCI More ❯

role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure DevOps pipelines and … WAF) and Intrusion Prevention Systems (IPS). Vulnerability & Penetration Testing: Review Penetration Testing, vulnerability assessments, and security scanning to proactively identify and remediate risks. PCI DSS Compliance: Conduct security audits, risk assessments, and ensure regulatory compliance. DNS Security: Implement and monitor DNS security solutions to prevent cyber threats. … be found at: profile-29 .com/privacy) Profile 29 recruitment keywords: DevSecOps DevOps Azure cloud security Microsoft Defender Microsoft Sentinel WAF IPS DNS pcidss pci dss pci-dss soar loughton Debden essex London freelance contract More ❯

Senior Client Executive to deepen our client relationships and accelerate the expansion of our market-leading product. About the Role We are seeking a PCI Compliance and Assurance Specialist to lead and manage our PCI DSS certification process, ensuring compliance with regulatory requirements and maintaining security controls … throughout the year. This role will be responsible for collecting evidence, assessing controls, and preparing for audits while also providing consultation on PCI requirements to Engineering, SecOps, and Architecture teams. Additionally, the role will support ISO 27001, SOC 2 Type 2, and other certification audits, assist with security assurance … beneficial in this role. Report The role will report into the Head of Information Security, Risk and Compliance Responsibilities Lead and manage the annual PCI DSS certification process, including preparation, evidence collection, and assessments. Act as the primary point of contact for all PCI-related matters, working More ❯

Cyber Security Consultant - AWS - PCI DSS - Manchester Cyber Security Consultant with a PCI DSS & AWS cloud background required to join our global client's new UK cybersecurity team. This role is predominantly end-client facing, advising on security best practices, vulnerability management and security standard compliance … e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. You will be reporting to the UK Head of Security and consulting global clients across the American and EMEA regions. Skills & Experience Required: 2+ years of experience working in Cyber Security within an AWS cloud environment Any … experience with CrowdStrike would be a bonus Good experience with PCI DSS Vulnerability management & Compliance Lead on Audits Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with stakeholders and clients, as More ❯

Cloud Security Consultant - AWS - PCI DSS - Manchester A cloud security consultant with a PCI DSS & AWS cloud background is required to join our global client's new UK cybersecurity team. This role is predominantly end-client facing, advising on security best practices, vulnerability management and security … standard compliance (e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. You will be reporting to the UK Head of Security and consulting global clients across the American and EMEA regions. Skills & Experience Required: 2+ years of experience working in Cyber Security within an AWS cloud … environment Any experience with CrowdStrike would be a bonus Good experience with PCI DSS Vulnerability management & Compliance Lead on Audits Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with stakeholders and More ❯

tasks, allowing you to harness your passion for technology and data while developing valuable skills in areas such as data management, analysis, compliance (including PCI DSS, BACS, and GDPR), cyber security, digital marketing, and software support. With extensive on-the-job training and opportunities for recognised industry qualifications … 30K plua excellent non-salaried benefits. Key responsibilities • Maintain accurate documentation, including policies, training manuals, and procedure guides. • Manage centralised cyber awareness, GDPR, and PCI DSS training. • Stay PCI DSS & BACS audit ready year-round. • Provide support to end users on various software applications through the … tasks simultaneously. • Good problem-solving/analytical skills and the ability to explain the complex in simple terms. • Familiarity with compliance standards such as PCI DSS, BACS, and GDPR (training provided). • Strong communication skills to provide detailed information in easy-to-understand formats. • A high proficiency in More ❯

Security Architect - NIST, ISO27001, PCI-DSS, Cloud Security Architect - NIST, ISO27001, PCI-DSS, CloudUp to £640 per day (Outside IR35)London/Primarily Remote6 months My client is an International Consultancy who require a Security Architect to lead security design, engineering, testing and implementation for a … security, and application security Previous experience of designing and implementing security solutions with a strong understanding of security frameworks including CIS, NIST, ISO27001 and PCI DSS Excellent communication skills with the ability to communicate technical terms to non-technical audiences Nice to have: Immediate availability Working knowledge of More ❯

Engagements: Work with clients of all merchant levels and service providers across various industries. Career Growth: Enhance your expertise with exposure to frameworks like PCI DSS, ISO27001, SWIFT CSF, and CIS18. Collaborative Culture: Join a team that values innovation, client success, and your professional development. Key Responsibilities: Conducting … comprehensive security assessments, including PCI DSS, ISO27001/27002, SWIFT Security, and Cloud compliance. Preparing executive and technical reports detailing findings, security gaps, and actionable recommendations. Leading PCI DSS Gap Assessments, Risk Assessments, and Reports on Compliance (ROCs) across various industries. Creating roadmaps for compliance, with … or exceeded. Supporting business development efforts by providing technical expertise during client discussions. Were looking for an experienced and proactive QSA Consultant with: Essential: PCI QSA certification, supported by one or more of the following: CISSP, CISA, CISM, or ISO27001 Lead Auditor + Lead Implementer certifications. Experience: Minimum More ❯

CISO Opportunity - Global Payments Leader (UK Based) 📣 MUST BE PCI DSS EXPERIENCED My client, a rapidly scaling worldwide payments company, is seeking a dynamic and experienced Chief Information Security Officer (CISO) to lead their security strategy from their UK base. This is a fantastic opportunity to make a … significant impact within a growing global organisation. Key Responsibilities: Compliance & Standards Leadership: Champion and enforce PCI DSS adherence, alongside other crucial security standards like ISO 27001, across our global operations. External Stakeholder Management: Serve as the company's expert representative in discussions and audits with regulatory bodies and … European markets. Requirements: Extensive track record in cybersecurity leadership roles within the financial technology, payments processing, or banking domains. Deep and demonstrable understanding of PCI DSS and PCI PIN frameworks, ISO 27001, and familiarity with relevant regional regulatory landscapes. Hands-on experience managing HSMs, implementing PIN encryption More ❯

The Information Security Director develops, shapes, and maintains Sycurio's information security capability, driving the attainment and maintenance of the ISO27001, PCI-DSS, and SOC2 compliance. They are the subject matter expert on all things regarding security and compliance, owning the information risk management processes. They are the … parties and providing assurance of policies, procedures, and systems. Develop, maintain, and expand the information security management system ('ISMS') to optimise compliance for ISO27001, PCI-DSS, and SOC2. Identify gaps in the information security capability, both technical and operational, and propose remediation and mitigation plans and solutions. Responsible … CISSP, CISM, CISA, or equivalent. Experience: 10+ years of information security experience. Financial/Fintech services/payments desirable. Deep knowledge of security frameworks (PCI, ISO 27001, NIST) and regulations (GDPR, CCPA). Experience with PCI DSS compliance and implementation. Proven success in managing external auditors to More ❯

Qualified Security Assessor (QSA) - Growing Cybersecurity Team (Fully remote) If you know your PCI DSS from your ISO27001 and can spot a security gap from a mile away, this role is for you! We're on the lookout for a Qualified Security Assessor (QSA) to join a fast … growing team that helps businesses across all sectors stay secure and compliant. As a QSA, you will guide clients through their PCI compliance journey, conducting security assessments and providing expert advice on frameworks such as PCI DSS, ISO 27001, SWIFT CSF, and CIS18. You will work closely … with organisations at various stages of compliance, helping them identify risks, implement solutions, and achieve certification. What you'll be doing: Performing PCI DSS audits, risk assessments, and compliance reviews. Preparing clear and engaging reports Communicating with clients to explain compliance in a way that doesn't bore More ❯

ANEXT Bank. Role Overview: As a GRC Lead , you will ensure alignment with European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk , outsourcing compliance , and identity governance … complementary regulations like DORA (Digital Operational Resilience Act) , ensuring alignment in areas such as incident reporting and data protection. Translate requirements from PSD2 SCA , PCI DSS , and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain … we are looking for: Experience: 4+ years in GRC roles ; financial services or banking experience is a strong plus . Understanding of GDPR , DORA , PCI DSS, and outsourcing/third-party risk requirements. Hands-on experience with ISO 27001 implementation and third-party risk tools . Proficiency in More ❯

ANEXT Bank. Role Overview: As a GRC Lead , you will ensure alignment with European regulations (e.g., GDPR, DORA, PSD2 SCA, CSSF) and global standards (PCI DSS, SWIFT CSP). This role requires technical knowledge, strategic thinking, and expertise in managing third-party risk , outsourcing compliance , and identity governance … complementary regulations like DORA (Digital Operational Resilience Act) , ensuring alignment in areas such as incident reporting and data protection. Translate requirements from PSD2 SCA , PCI DSS , and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain … looking for: Experience: 5+ years in GRC roles ; financial services or banking experience is a strong plus . Regulatory Knowledge: Understanding of GDPR , DORA , PCI DSS, and outsourcing/third-party risk requirements. Technical Skills: Hands-on experience with ISO 27001 implementation and third-party risk tools . More ❯

The Information Security Director develops, shapes and maintains Sycurio's information security capability, driving the attainment and maintenance of the ISO27001; PCI-DSS and SOC2 compliance. They are the subject matter of all things regarding security and compliance, owning the information risk management processes. They are the thought … assurance of policies, procedures, and systems Develop, maintain, and expand the information security management system ('ISMS') in line with an optimise compliance for ISO27001, PCI-DSSS and SOC2 compliance. Identify gaps in the information security capability, both technical and operational, and propose remediation and mitigation plans and solutions. Responsible … CISSP, CISM, CISA, or equivalent Experience : 10+ years of information security experience. Financial/Fintech services/payments desirable Deep knowledge of security frameworks (PCI, ISO 27001, NIST) and regulations (GDPR, CCPA) Experience with PCI DSS compliance and implementation Proven success in managing external auditors to achieve More ❯

to the C-suite, ensuring security priorities align with business objectives. Lead annual audit programmes from external entities validating the organisations credentials. Experience in PCI DSS V4 +, SWIFT CSCF & ISO 27001:x is preferred. Oversee the investigation, analysis, and documentation of security incidents and breaches, ensuring swift … modern application security methodologies. Experience with forensic analysis, malware analysis, and threat hunting. Strong familiarity with financial, e-commerce, and payment security regulations, including PCI DSS and ISO 27001. Experience working within highly regulated industries, ensuring compliance with GDPR, NIST, and SOC 2. In-depth understanding of cyber More ❯

Protection Regulation) ISO 27001 (Information Security Management Systems) Cyber Essentials Plus (UK government-backed security framework) DORA (Digital Operational Resilience Act) - EU financial sector PCI-DSS (if handling payment data) Experience in: Managing vendor risk assessments for third-party compliance. Handling incident response & reporting (e.g., Data Breach Notifications … ability to brief executives and regulators. Ability to design, implement, and enforce security policies . Key Responsibilities: Ensure compliance with GDPR, Cyber Essentials Plus, PCI-DSS, and other applicable standards. Align ISMS activities with ISO 27001 framework. Develop and implement security policies, controls, and procedures. Conduct security risk More ❯

security standards and monitor compliance. Manage security reviews during vendor onboarding and contract renewals. Governance, Risk, and Compliance Ensure compliance with relevant regulations (e.g., PCI DSS, GDPR, SOC 2, ISO 27001) and internal policies. Maintain up-to-date knowledge of emerging threats, regulatory changes, and best practices. Establish … response. Relevant certifications such as CISSP, CISM are highly desirable. Strong knowledge of security frameworks (e.g., NIST, CIS, ISO 27001) and compliance standards (e.g., PCI-DSS, PSD2, GDPR). Hands-on experience with security technologies (e.g., SIEM, endpoint protection, cloud security tools). Exceptional leadership and communication skills More ❯

security monitoring, logging, and alerting to ensure visibility into security events. Support compliance initiatives and audits to ensure adherence to industry standards (e.g., GDPR, PCI-DSS, HIPAA). Collaborate with teams to integrate security throughout the application lifecycle and provide security training. Required Skills & Experience : Strong experience with … CloudTrail, Config, WAF). Proficiency in CloudFormation, Terraform, and scripting languages like Python or Bash. Knowledge of compliance standards (SOC 2, ISO 27001, GDPR, PCI-DSS) and experience ensuring compliance in AWS environments. Experience with security incident response, monitoring, and post-incident remediation. Ability to assess and mitigate More ❯

network configurations. Identify security risks and design mitigation strategies; assist with risk assessments to prioritize improvements. Ensure AWS environments meet regulatory standards (e.g., GDPR, PCI-DSS, HIPAA) and advise on compliance implementation. Recommend and set up proactive monitoring, logging, and alerting with AWS-native tools (GuardDuty, CloudWatch), and … on securing cloud environments. Experience with IAM, encryption, network security, and secure application deployment. Familiar with regulatory frameworks (e.g., SOC 2, ISO 27001, GDPR, PCI-DSS) and ensuring compliance in AWS environments. Ability to identify security risks and recommend mitigations. Experience designing incident response strategies and setting up More ❯

DevOps teams to integrate security testing tools (e.g., OWASP ZAP, Snyk) into CI/CD pipelines (Jenkins, GitLab). Ensure compliance with regulations (GDPR, PCI-DSS, HIPAA) through logging, auditing, and monitoring. Assist in security incidents, conduct root cause analysis, and implement preventative security measures. Set up monitoring … tools (GuardDuty, Inspector) and third-party vulnerability management tools. Proficiency in scripting (Python, Bash, PowerShell) to automate security tasks. Understanding of industry compliance (GDPR, PCI-DSS, HIPAA) and its implementation in AWS. Strong analytical skills to identify and address vulnerabilities quickly. Excellent communication skills to work effectively with More ❯

security risks. Define and enforce security policies for IAM, encryption, network segmentation, and threat detection. Ensure AWS environments comply with industry regulations (e.g., GDPR, PCI-DSS, HIPAA) and integrate necessary controls. Work with DevOps and development teams to integrate security throughout the SDLC and DevOps pipelines. Use IaC … of AWS security best practices for IAM, encryption, and data protection. Familiarity with cloud security frameworks and regulatory standards (SOC 2, ISO 27001, GDPR, PCI-DSS). Experience with Terraform, CloudFormation, or AWS CDK for automating security and infrastructure provisioning. Hands-on experience with AWS security services (GuardDuty More ❯

strategies. GRC Management: Develop and maintain IT risk frameworks, perform regular risk assessments, and ensure compliance with relevant regulations (e.g. GDPR, Data Protection Act, PCI-DSS). Own the creation, review, and implementation of InfoSec policies, procedures, and guidelines. Data Governance: Collaborate with the wider Risk & Compliance team … or Information Security role, with a focus on policy and procedural development. Strong understanding of regulatory and industry standards (e.g. GDPR, Data Protection Act, PCI-DSS, Cyber Essentials, NIST). Track record of implementing and maturing information security frameworks within an organisation. Experience executing internal/external audits More ❯

Be Doing: Develop and implement information security policies, standards, and guidance in collaboration with stakeholders. Ensure compliance with industry standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC 2. Coordinate responses to internal and external audits and liaise with key stakeholders. Develop and deliver security policy … tech company or regulated industry. Experience in developing and implementing information security policies, standards, and procedures. Familiarity with security standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC2. Strong skills in security metrics and reporting. Ability to engage collaboratively with technical and non-technical stakeholders. Excellent More ❯

Own our security tooling (e.g. Snyk) and processes to ensure vulnerabilities are identified, prioritised, and remediated. Collaborate with the compliance team to prepare for PCI DSS, ISO 27001, and other upcoming certifications. Build on existing robust security practices by implementing new policies, best practices, and security frameworks as … both). Have experience with Terraform or another IaC tool. Solid understanding of DevSecOps practices, including vulnerability scanning, threat modelling, or compliance frameworks (GDPR, PCI DSS, ISO 27001). Thrive in a fast-moving, sometimes ambiguous environment where you can have a big impact. Comfortable mentoring other engineers More ❯