25 of 25 Permanent SOC 2 Jobs in London

role with strategic scope. You'll split your time between infrastructure security engineering (Terraform, AWS security services, CI/CD hardening), compliance programme execution (SOC 2, GDPR, ISO 27001), and partnering with engineering teams to build security into their workflows from the start. Our environment: AWS infrastructure … pipelines. You'll establish security controls for our AI workflows, including Bedrock integrations, prompt validation, and model access governance. You'll lead our SOC 2 Type II compliance programme, establish security policies for GDPR and ISO 27001, and implement automated compliance monitoring. Day-to-day, you'll write ...

scale globally. What you'll do Apply expert knowledge of security frameworks and controls such as NIST, ISO22301, ISO27001, ISO27017/18, ISAE3000/SOC2, and GDPR to support security governance. Support the development, maintenance, and continual improvement of the ISMS and BCMS. Assist in drafting and maintaining Information Security … years' experience in Information Security, ideally within a fast-paced technology or financial services industry. Strong working knowledge of frameworks such as ISO27001, ISO22301, SOC 1, SOC 2, NIST, and GDPR. Proven experience developing, implementing, and improving information security policies, standards, and controls aligned to recognised frameworks. ...

ongoing compliance programmes, and improve operational maturity across all sites. Key Responsibilities • Support certification and compliance efforts across ISO 27001, ISO 27017/27018, SOC 2 Type II, Cyber Essentials Plus, and ISO 22301. • Maintain the ISMS, risk register, and evidence required for internal and external audits. • Manage … years in information or physical security within a data-centre, cloud, MSP, or similar environment. • CISSP certification (mandatory). • Strong understanding of ISO 27001, SOC 2, NIST CSF, and Cyber Essentials Plus. • Experience working with audits, incident management, and vulnerability workflows. • Strong documentation, communication, and stakeholder management skills. ...

and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. … total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children ...

designing and implementing next-generation cloud security architectures, securing WTW cloud environments, and driving automation and intelligence within Cybe r Defence Security Platforms & SOC Engineering. This is a hybrid role at London office with a requirement to be in the office based on the business need. The Role: Agentic … needs. Stay up to date with emerging threats, Microsoft security innovations, and industry trends to drive continuous security enhancements. Provide training and mentorship to SOC teams on Microsoft cloud security best practices. Team Management Manage and mentor a team of Cyber Defence Security Engineers. The Requirements: Must-Have Skills ...

strategies, with experience managing security operations in complex, multi-location environments Strong expertise in security frameworks and standards such as NIST, ISO 27001, or SOC 2, with demonstrated experience in regulatory compliance and audit management Exceptional leadership and communication skills, with ability to present complex security concepts ...

across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. ...

Alert Logic, Qualys, M365 Security, and AWS Security Products. Understanding security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. We value teamwork, collaboration & technical excellence – the company are heavily ...

Alert Logic, Qualys, M365 Security, and AWS Security Products. Understanding security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. We value teamwork, collaboration & technical excellence – the company are heavily ...

detection and continuous reliability improvement. Security & Compliance: Implement and maintain security best practices across the platform — including secrets management, access control, and compliance (e.g., SOC2, ISO 27001). Collaboration: Partner with product, application, and data teams to align platform services with business goals and ensure consistent, efficient development practices. Mentorship ...

detection and continuous reliability improvement. Security & Compliance: Implement and maintain security best practices across the platform — including secrets management, access control, and compliance (e.g., SOC2, ISO 27001). Collaboration: Partner with product, application, and data teams to align platform services with business goals and ensure consistent, efficient development practices. Mentorship ...

Defender for Cloud, encryption using Azure Key Vault, network security with NSGs and Azure Firewall, Azure Policy for governance, and compliance frameworks (ISO 27001, SOC 2, GDPR). Experience conducting security assessments using Microsoft Secure Score, implementing security hardening, and responding to security incidents. Backup & Disaster Recovery - Experience ...

methodologies. Experience in industries relevant to Fusion such as telecoms, retail, utilities etc. Knowledge of specific industry regulations or compliance standards (e.g., ISO 27007, SOC 2, HIPAA, PCI DSS) relevant to MSP operations. Experience with APls, web services, and integration tools to connect ServiceNow with other enterprise systems. ...

balances speed with sustainability. Passion for writing maintainable, scalable code. Knowledge of security and compliance best practices (e.g. HIPAA/GDPR, NHS DTAC, SOC 2). Bonus: experience in healthcare, medtech, or regulated environments. Why join Eolas Medical This is not a normal role. You will help define ...

ability to engage and motivate learners of all levels Familiarity with various cybersecurity frameworks and compliance standards, in particular ISO27001, PCI DSS and SOC2 Previous experience in training, teaching, or presenting, with the ability to explain complex concepts in an easy-to-understand manner Proficiency in writing, editing, and delivering ...

enhance the firm’s Information Security function and overall security posture. Lead responses to client security questionnaires and audit follow-ups. Oversee ISO27001 and SOC 2 Type II audits. Select and implement tools to proactively detect and respond to threats. Drive continuous improvement of security practices across ...

Experience scaling multi-tenant SaaS applications. Experience with cloud platforms. (AWS, Google Cloud or Azure). Knowledge of containerisation (Docker or Kubernetes) Familiarity with SOC 2 readiness and security best practices. Experience with observability and monitoring. Background in fintech, lending or other regulated-data environments. Experience or interest … heard and welcome. This is also a chance to be part of bringing a game changing product to life This role is hybrid, 2-3 days in their offices at London Bridge Salary ranges from £80,000 - £125,000 with attractive EMI share options ...

trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making ...

managing production systems with high availability and performance requirements. Excellent communication and stakeholder management skills. Comfortable working in regulated or compliance-heavy environments (e.g., SOC2, PCI, GDPR). WHO WE ARE: Do Your Best Work The opportunity to build in a fast-paced start-up environment with experienced industry leaders ...

with LLM fine-tuning or instruction tuning Background in edtech, assessment, apprenticeship systems, or LMS tooling Previous startup or founding-engineer experience Familiarity with SOC2/ISO data security practices Interest in AI ethics, education, or professional training Who you are You want to build something meaningful. You like small ...

threat prevention on Palo Alto and cloud native Firewalls Apply DNS security best practices using Infoblox Ensure compliance with standards such as ISO 27001, SOC2, and GDPR Collaboration and Leadership Partner with cloud, security, network, and DevOps teams to deliver integrated solutions Serve as subject matter expert for cloud networking … total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children ...

experienced GRC Information Security Analyst ? Do you have experience in the GRC Security space with audits, auditors, ISO27001, PCI DSS, SOC2, NIST & current compliance regulations? If so & you are looking to expand your information Security career, meet new team members, embrace new challenges & join a world-class team … entail, but see below for things we’ll need to see in order to be considered: - Knowledge and experience of ISO 27001, PCI DSS, SOC2, NIST and CIS benchmarking is essential. - Knowledge and experience achieving and maintaining compliance with relevant legislation, such as DPA, GDPR - Knowledge of cloud environments ...

experienced GRC Information Security Analyst Do you have experience in the GRC Security space with audits, auditors, ISO27001, PCI DSS, SOC2, NIST & current compliance regulations? If so & you are looking to expand your information Security career, meet new team members, embrace new challenges & join a world-class team … entail, but see below for things we’ll need to see in order to be considered: - Knowledge and experience of ISO 27001, PCI DSS, SOC2, NIST and CIS benchmarking is essential. - Knowledge and experience achieving and maintaining compliance with relevant legislation, such as DPA, GDPR - Knowledge of cloud environments ...

Who We Are 🩵 We’re the people behind global loyalty currency, Avios, and home to two ambitious, growing businesses across Loyalty and Holidays. Each business has its own goals, strategy and team, but collectively we ...

Financial Accountant – Growing SaaS Business (Private Equity Backed) Location: Central London (Hybrid – 2–3 days office) Salary: Circa £75k + benefits Job Type: Full-time, Permanent The role: An exciting opportunity has arisen for a Financial Accountant to join a high growth, PE-backed SaaS company headquartered in London … consumption tax reconciliations Support EU invoicing and VAT queries Work on R&D tax credits and transfer pricing Manage various finance admin tasks (e.g. SOC2 compliance, insurance, ONS surveys) Act as a point of contact for Private Equity stakeholder reporting About You: ACA or ACCA qualified, preferably with a practice ...