Richard Williams

Information Security & Compliance Lead - PCI  – 18 Month FTC Are you a self-starter with deep PCI knowledge looking for your next challenge? We’re seeking a hands-on PCI & Compliance Lead to join our Information Security Assurance team on an 18-month fixed-term contract. This is a pivotal role, responsible for overseeing PCI DSS compliance across the organisation and preparing the business for upcoming QSA assessments.In this role, you will act as the primary point of contact for all PCI DSS activities, ensuring that standards and controls are implemented, maintained, and embedded across internal teams and third-party service providers. You’ll run assessments, manage remediation actions, and maintain key compliance documentation including policies, procedures, network diagrams, and data flows. You’ll also coordinate with external QSAs, support security testing, and provide training and awareness to internal teams to strengthen our PCI compliance culture.You’ll work closely with technical teams, internal stakeholders, and third-party providers, ensuring that the Cardholder Data Environment (CDE) is secure and compliant. While this is a lead role, it does not include direct line management; however, you will be responsible for guiding projects, influencing stakeholders, and ensuring timely delivery of compliance initiatives. Strong organisational skills, autonomy, and the ability to manage multiple priorities are essential to success in this position.The ideal candidate will have substantial hands-on experience implementing PCI DSS, including involvement in audit or remediation activities. Knowledge of wider information security frameworks such as ISO27001 or NIST is advantageous. You will be confident in communicating with stakeholders at all levels, able to prioritise effectively, and motivated to deliver results in a fast-paced environment.This is a fantastic opportunity to take ownership of PCI compliance projects, work with a collaborative team, and make a tangible impact on the organisation’s information security posture. Standard hours are 8:45–5:15, Monday to Friday, with flexible office attendance in Carlisle - office attendance 2 days a month.

Business Resilience Manager - £60,000We are seeking an experienced Business Resilience Manager to take ownership of our operational resilience agenda and help shape the future of resilience across the organisation. This role sits within a growing Risk function and offers the opportunity to make a visible firm-wide impact.Reporting into the Head of Risk, you will work closely with senior leaders—including Operations, IT, Regulation, and third-party partners—to embed a strong, forward-looking resilience culture and ensure the organisation meets evolving regulatory expectations.Key ResponsibilitiesLead the development, enhancement, and embedding of the organisation’s business resilience framework.Identify, assess, and mitigate resilience-related risks across the business.Influence and support first-line teams in strengthening operational resilience practices.Maintain and evolve business continuity and third-party resilience processes.Plan, manage, and report on annual and ad-hoc scenario testing.Conduct root-cause analysis for resilience incidents, breaches, and control failures.Produce key deliverables including the annual Operational Resilience Report.Engage confidently with senior stakeholders and contribute to governance forums.Experience & KnowledgeSignificant experience in a resilience, operational resilience, or risk oversight role, preferably within financial services.Strong understanding of FCA Operational Resilience requirements and how resilience integrates into wider risk frameworks.Experience working with senior stakeholders and attending governance or risk committees.Background in wealth/investment management is advantageous but not essential; legal, insurance, or wider finance sector experience also considered.Skills & BehavioursStrong drive, ownership, and the ability to influence at senior levels.Strategic, analytical, and solutions-focused mindset.Excellent communication and stakeholder-engagement skills.Calm, pragmatic, and effective under pressure with high emotional intelligence.Collaborative working style and a commitment to continuous improvement.Adaptable and comfortable working in a fast-moving environment