2,744 Security Awareness Training jobs in the United Kingdom

Information Security Compliance Specialist

Type: Permanent

WFH: Remote

Salary: £65,000 – £75,000 (DOE)

Location: UK (remote)

We’ve partnered with a global payments technology company who are seeking an Information Security Compliance Specialist to take full ownership of PCI DSS, PCI P2PE, and PCI PIN compliance. This is a hands-on role where you will lead audits end-to-end, drive remediation efforts, and oversee relationships with QSAs, vendors, and internal stakeholders.

This is a rare opportunity to step into a high-impact position within a remote-first organisation, where your work directly underpins the trust and resilience of large-scale payment platforms.

Responsibilities

• Lead PCI DSS, PCI P2PE, and PCI PIN audits and certifications end-to-end.
• Manage relationships with external QSAs and regulators.
• Oversee evidence collection, remediation, and audit readiness across teams.
• Deliver security compliance projects on time and to standard, reporting progress to leadership.
• Guide PCI requirements and act as a subject matter expert to internal teams.
• Support related governance and assurance programmes (ISO 27001, SOC 2, where applicable).

Skills & Experience

• 5+ years’ experience in information security, with a focus on PCI compliance.
• Proven track record of delivering PCI DSS, P2PE, and PIN certifications.
• Strong project management skills, including stakeholder coordination and remediation planning.
• Experience managing audits and external QSA relationships.
• Knowledge of payment security standards and cryptographic controls.
• Strong communicator with the ability to influence both technical and non-technical stakeholders.

Benefits & Perks

• Remote-first culture (minimal office visits required).
• Competitive salary package.
• Pension, private healthcare, and generous holiday allowance.
• Opportunity to work on complex, enterprise-level payment security projects in a high-trust environment.

The Security Compliance Engineer is a crucial member of our security team, responsible for ensuring our organisation's adherence to PCI standards and other relevant security regulations. This role involves implementing and maintaining secure payment environments, managing key encryption and decryption processes, and providing technical guidance for security compliance projects. The ideal candidate will have a strong understanding of PCI-DSS, PCI-PTS, PCI Software Security Framework, Secure Software Standard, Secure SLC Standard, and Amazon Web Services (AWS). They will also have excellent problem-solving skills, a hands-on approach to work, and the ability to communicate complex security concepts to a non-technical audience. Relevant certifications in information security and AWS are a plus.

We are a fast-growing SaaS company with offices in the UK, France, South Africa, Italy and the US. We believe that efficient public transport is key to delivering positive, sustainable change.

Kuba is in the transport sector, but we are a technology provider that enables Ticketing-as-a-Service (TaaS). We offer cutting-edge ticketing technology coupled with broad practical sector experience.

It's an exciting time to work at Kuba as we are accelerating into an incredible period of growth, and you'll have a chance to grow with us.

• Implement and maintain secure payment environments, including data encryption, secure networks, and secure transaction systems in compliance with PCI-DSS, PCI-PTS, PCI Software Security Framework, Secure Software Standard, Secure SLC Standard, and AWS best practices.
• Conduct regular audits to ensure secure handling of cardholder data and compliance with PCI, AWS, and other relevant security standards.
• Develop and implement security policies and procedures related to data protection, network security, and incident management to ensure compliance with PCI standards, AWS best practices, and other relevant regulations.
• Manage key encryption and decryption processes, ensuring secure key management.
• Provide technical guidance and support for all security compliance projects.
• Collaborate with various teams to ensure security standards are met across all projects.
• Stay updated on the latest security standards, systems, and authentication protocols, including AWS security services and features.
• Participate in the creation and or maintenance of the Information Security Management System.

Requirements

• Proven experience in a technical role managing security compliance, preferably with a focus on PCI standards and AWS. Experience in roles such as Security Analyst, Security Engineer, or similar is preferred.
• Strong knowledge of PCI-DSS, PCI-PTS, PCI Software Security Framework, Secure Software Standard, Secure SLC Standard, and AWS.
• Expertise in key management, encryption/decryption processes, and AWS security services and features.
• Familiarity with various network architectures, cloud services, system management practices, process improvement strategies, and AWS infrastructure.
• Strong problem-solving skills and a hands-on approach to tackling challenges.
• Excellent communication skills, with the ability to explain complex security concepts to non-technical team members.
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), or AWS Certified Security - Specialty are a plus.

Benefits

Salary and benefits commensurate with position

Information Security & Compliance Lead

Chesterfield

50,000 to 60,000+ Excellent Benefits

Your new company

Hays Technology are recruiting for an Information Security & Compliance Lead to join a large public sector organisation based in the Chesterfield area. You will be reporting to the Head of Digital, Data & Technology. This is a new role to establish and make your own.

Your new role

In your new role, you will be responsible for ensuring the security and protection of the organisation's information systems, networks, and data, whilst playing a critical role in developing and implementing information security strategies, policies, and procedures to safeguard the organisation's digital assets and mitigating potential risks.
You will oversee information security, compliance, and risk management practices based on industry-accepted information security and risk management frameworks, whilst establishing and maintaining an incident response plan, including incident detection, response, investigation, and resolution, to minimise the impact of security incidents.

What you'll need to succeed

• Demonstrable experience of implementing and maintaining information security frameworks e.g. ISO27001 within a medium/large sized public sector organisation
• Solid stakeholder management and mentoring skills
• Information Security,Cyber Security, Assurance and vulnerability management would be ideal
• Comprehensive knowledge of Information Security Management Systems with the ability to scope, design, and implement such systems
• Strong ICT infrastructure, application, and cloud technical skills would be advantageous
• Evidenced knowledge and understanding of ISO(phone number removed), ITIL, and Prince 2 management practices
• Ability to lead the workforce, increasing their skills and knowledge in relation to information security

What you'll get in return

This exciting position is paying between 50,000 and 60,000 and offers an excellent work life balance including: generous annual leave, hybrid working, a public sector employer contribution pension scheme, flexibility, training, and development opportunities.

What you need to do now

If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.

Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)

• Develop, implement, and maintain information security policies, standards, and procedures.
• Oversee compliance with relevant regulatory requirements (e.g., GDPR, PCI DSS).
• Conduct information security risk assessments and develop mitigation strategies.
• Manage vulnerability management programs and security testing initiatives.
• Develop and deliver security awareness training programs for employees.
• Perform internal and external security audits and assessments.
• Manage third-party risk assessment processes.
• Ensure the effectiveness of security controls through continuous monitoring.
• Act as a point of contact for security-related inquiries and incidents.
• Collaborate with IT and business units to integrate security into operational processes.

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 5+ years of experience in information security, with a focus on governance, risk, and compliance (GRC).
• In-depth knowledge of information security frameworks (ISO 27001, NIST, CIS Controls).
• Experience with conducting risk assessments and audits.
• Strong understanding of data privacy regulations.
• Excellent communication, leadership, and interpersonal skills.
• Proficiency in security GRC tools is a plus.
• Relevant security certifications (e.g., CISSP, CISM, CRISC) are highly desirable.
• Ability to manage projects and work effectively in a hybrid environment.

• Develop, implement, and maintain comprehensive aviation security policies and procedures in line with CAA, DfT, and other regulatory requirements.
• Conduct regular security audits and inspections of airport operations, personnel, and facilities to ensure compliance.
• Investigate security breaches, incidents, and suspicious activities, preparing detailed reports and recommending corrective actions.
• Oversee and manage the training programs for all aviation security staff, ensuring they are up-to-date with current regulations and best practices.
• Liaise with regulatory bodies, law enforcement agencies, and other stakeholders to ensure seamless security operations.
• Manage the screening processes for passengers, baggage, and cargo, ensuring efficiency and adherence to security standards.
• Develop and implement risk assessment strategies to identify potential security threats and vulnerabilities.
• Maintain accurate records of all security-related activities, training, and incidents.
• Stay abreast of the latest developments in aviation security technology and legislation.
• Manage the security clearance process for employees and contractors.
• Act as a key point of contact for all aviation security matters.
• Ensure the effective implementation of passenger and baggage reconciliation processes.

• Significant experience in aviation security management, preferably within an airport or airline environment.
• In-depth knowledge of national and international aviation security regulations and legislation (e.g., CAA, DfT, ICAO).
• Proven experience in conducting security audits, risk assessments, and investigations.
• Strong leadership and team management skills.
• Excellent analytical, problem-solving, and decision-making abilities.
• Exceptional communication and interpersonal skills, with the ability to liaise effectively with various stakeholders.
• Proficiency in using security management systems and relevant software.
• Ability to work under pressure and respond effectively to security incidents.
• Relevant professional certifications in aviation security are highly desirable.
• A strong commitment to maintaining the highest standards of security and safety.

• Develop, implement, and maintain the company's aviation security program, ensuring compliance with all relevant legislation (e.g., DfT, ICAO, IATA).
• Conduct regular risk assessments and audits of security procedures and infrastructure.
• Oversee the training and development of security personnel, ensuring they are equipped with the necessary skills and knowledge.
• Investigate security incidents, breaches, and near misses, preparing detailed reports and implementing corrective actions.
• Liaise with regulatory authorities, law enforcement agencies, and other stakeholders on all matters of aviation security.
• Manage and monitor security contracts and service providers.
• Develop and deliver security awareness training programs for all staff.
• Ensure the effective management of security equipment and technology.
• Stay informed about emerging security threats and best practices within the aviation industry.
• Contribute to the continuous improvement of the company's security posture.
• Manage the security budget and ensure cost-effective resource allocation.
• Develop and implement emergency response plans related to security threats.
• Prepare regular reports for senior management on security performance and compliance.
• Ensure the security vetting of all personnel working in security-sensitive areas.
• Champion a culture of security consciousness throughout the organisation.

• Proven experience in aviation security management, preferably with a background in a senior role.
• In-depth knowledge of national and international aviation security regulations and standards.
• Experience in conducting security audits, risk assessments, and incident investigations.
• Strong leadership and management skills, with the ability to lead and motivate a team.
• Excellent communication, negotiation, and interpersonal skills.
• Proficiency in developing and delivering training programs.
• Ability to work effectively under pressure and make sound decisions in critical situations.
• Relevant security qualifications (e.g., Certified Protection Professional - CPP, ASIS International) are highly desirable.
• A degree in a relevant field such as Criminology, Security Management, or Aviation Management is advantageous.
• Valid passport and willingness to undertake travel as required.
• Must be able to obtain and maintain necessary security clearances.
• A proactive approach to identifying and mitigating security risks.