1 to 25 of 39 Permanent SOC 2 Jobs in London

chaos to strategic partnerships Compliance & Security Transform compliance from a checkbox exercise into a sales accelerator that wins enterprise deals Own and execute our SOC 2 certification end‐to‐end with efficient, automated evidence gathering Turn RFI and security questionnaire responses into a competitive advantage—fast, thorough, repeatable … people) Able to manage and procure upwards of 50+ vendors, owning a budget in the 7 digits Track record implementing and maintaining compliance frameworks (SOC 2, ISO 27001, GDPR) Experience with enterprise sales support in a B2B SaaS company—you’ve answered RFIs and security questionnaires Proven ability ...

compliance frameworks, Trust Reports, Risk Management, and additional Vanta solutions. Serve as a trusted GRC advisor, guiding customers through complex regulatory environments such as SOC 2, ISO 27001, ISO 42001, GDPR, HIPAA, and custom frameworks. Provide strategic guidance on scaling security programs, operationalizing continuous compliance, and maturing risk … least 3+ years managing large enterprise or strategic accounts. Strong GRC domain expertise, with hands‐on experience in security compliance frameworks such as SOC 2, ISO 27001, HIPAA, GDPR, ISO 42001, or similar. Proven experience engaging and influencing C-level executives in complex, global organisations. Demonstrated success driving ...

Lead structured pilots with signed mutual action plans, clear success criteria, and measurable exit criteria before they start. Navigate enterprise procurement end-to-end: SOC 2, DPAs, MSAs, redlines, and vendor security reviews. Feed tight feedback loops to product and engineering on objections, competitive context, and pilot learnings. … Comfortable selling to and holding conversations with deeply technical buyers (engineering, AI/ML, security teams). Experience navigating enterprise security and compliance procurement (SOC 2, DPAs, MSAs). Startup experience (Seed–Series B) — you thrive in ambiguity and can iterate fast. Tech stack at company : Voice ...

group-level data capability is live with a published catalog and cross-divisional SLAs. Regulatory & Cost Control: Engineering consistently hits all MiCA, DORA, and SOC 2 milestones while managing cloud and vendor spend against clear business-unit baselines. Key Responsibilities Engineering Delivery & Cadence: Run day-to-day global … group data pipelines and governance. Cybersecurity Execution & Compliance: Own the on-the-ground execution of The Company’s security and regulatory commitments (MiCA, DORA, SOC 2). Foster a "controls-by-design" engineering culture while respecting regulated divisional information walls. Talent, Budget & Scale: Manage the global engineering budget ...

and cross‐border transfer mechanisms (UK/EU/US/SG). Work closely with our vCISO to maintain ISO 27001 and SOC 2 compliance – owning the legal and policy layer, supporting audit cycles, and closing out action items. Draft and maintain privacy notices, DPAs, and internal … improve contracts, not just mark them up. Working knowledge of UK GDPR and practical experience managing compliance programmes or certification cycles (ISO 27001/SOC 2 exposure strongly preferred). Genuine AI literacy – you use Claude or equivalent tools in your workflow; drafting without them would feel like ...

their timelines. Become a product expert on Vanta and how our platform can be used to improve security posture through our compliance offerings (e.g., SOC 2, ISO 27001, GDPR, HIPAA, ISO 42001 and Custom Frameworks), Trust Reports, and Risk Management solution. Provide insightful technical answers and recommend … trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making ...

CIRO's deputy on compliance matters. What you'll do Own Beam's certification portfolio end‐to‐end including ISO 27001, SOC 2 Type II, HIPAA, NHS DSPT, Cyber Essentials, GDPR and more, from planning and evidence to audit liaison and renewals. Three further ISO standards land March … setting the standard across Trust & Safety. What you'll need Personal ownership of a multi‐framework certification portfolio in B2B SaaS - ISO 27001 or SOC 2 minimum, ideally with Cyber Essentials and a health or public‐sector framework (NHS DSPT, HIPAA). You've run audits, evidence, and ...

workflows, APIs, and orchestration with tangible reductions in manual effort and ticket volume. Experience supporting audits and compliance requirements related to access controls (SOX, SOC2, ISO27001, PCI, or similar), including evidence production and remediation. Excellent stakeholder management and communication skills, including leading major incidents and delivering executive‐level updates. High ...

Software Engineer, DevOps Engineer, or Platform Engineer before moving into a customer‐facing role Familiarity with regulated environments: air‐gapped deployments, network isolation, SOC 2, ISO 27001, GDPR, or DORA requirements Experience with disaster recovery design and multi‐region availability patterns Cloud cost optimization experience, including rightsizing, reserved ...

and resolve production issues. Security & compliance aware engineering Work closely with Security and GRC teams to ensure services meet security and compliance requirements (e.g. SOC 2, ISO 27001). Implement secure coding practices, strong authentication and authorization patterns, and data protection controls. Contribute to internal documentation and standards … Opportunity to travel (if applicable) Flexible vacation policy Private Healthcare Employee stock ownership (ESOP) Flexible working and autonomy Pay it forward days - we offer 2 annual pay it forward days where you can take time to volunteer for a charitable cause that is important to you. Wellness days ...

deployments, and observability-first culture. Drive metrics for deployment frequency, lead time, MTTR, change failure rate; implement platform reliability standards (target 99.95%+ uptime, SOC 2 Type II, GDPR/data sovereignty). Champion developer experience and AI-assisted development tools (e.g., Copilot, Claude Code, Cursor) and rapid ...

and incident response workflows Experience with scripting or automation using Python, PowerShell, or similar Knowledge of security frameworks such as NIST, ISO 27001, SOC 2, or CIS Strong problem-solving mindset with the ability to operate across multiple security domains Experience within regulated or financial environments is beneficial ...

Lead in the development/adoption and enforcement of Information Security policies, procedures and standards. Conduct and complete an annual review of required PCI, SOC2 regulations and reports. Ensure compliance through adequate training programs and periodic security audits. These audits should be both internal and external in nature. Execute and … information security Experience working in a global, distributed environment is a plus Strong understanding of security frameworks and standards (e.g., ISO 27001, NIST, SOC 2) Understanding of other technology sub-areas, i.e., server administration, server security, testing and implementation processes and procedures Strong skill in problem solving ...

Senior Security & Compliance Architect London/Hybrid (1–2 days onsite per week) Salary: Up to £140,000 + Package We are seeking a Senior Security & Compliance Architect to lead the design, governance, and assurance of secure cloud and SaaS platforms across large-scale enterprise transformation programmes. This … platforms Design and implement data protection controls including classification, DLP, encryption, retention, and access policies Interpret and implement compliance requirements including GDPR, ISO 27001, SOC 2, and client security obligations Lead SaaS/vendor security assurance, including risk assessments, architecture reviews, and due diligence Support incident response, resilience ...

llDo Lead in the development/adoption and enforcement of Information Security policies,proceduresand standards. Conduct and complete an annual review of required PCI, SOC2 regulations and reports. Ensure compliance through adequate training programs and periodic security audits. These audits should be both internal and external in nature. Execute and … information security Experience working in a global, distributed environment is a plus Strong understanding of security frameworks and standards (e.g., ISO 27001, NIST, SOC 2) Understanding of other technology sub-areas, i.e., server administration, server security, testing and implementation processes and procedures Strong skill in problem solving toidentify ...

platforms Design and implement data protection controls including classification, DLP, encryption, retention, and access policies Interpret and implement compliance requirements including GDPR, ISO 27001, SOC 2, and client security obligations Lead SaaS/vendor security assurance, including risk assessments, architecture reviews, and due diligence Support incident response, resilience ...

microservices, etc.) and evaluate new technologies that can drive business value.Risk & Compliance : Oversee technical risk management, data privacy, security standards, and regulatory compliance (SOC2, GDPR, HIPAA, etc. as applicable).Budget & Operations : Manage the engineering budget, vendor relationships, and infrastructure costs. Optimize resource allocation across projects and initiatives.Cross-functional Collaboration ...

microservices, etc.) and evaluate new technologies that can drive business value. Risk & Compliance: Oversee technical risk management, data privacy, security standards, and regulatory compliance (SOC2, GDPR, HIPAA, etc. as applicable). Budget & Operations: Manage the engineering budget, vendor relationships, and infrastructure costs. Optimize resource allocation across projects and initiatives. Cross ...

Senior Security & Compliance Architect London/Hybrid (1–2 days onsite per week) Salary: Up to £140,000 + Package Experience as an end-to-end Security Solution Architect within large-scale enterprise transformation programmes is essential. Security clearance or eligibility for clearance is essential Key Responsibilities Define and … platforms Design and implement data protection controls including classification, DLP, encryption, retention, and access policies Interpret and implement compliance requirements including GDPR, ISO 27001, SOC 2, and client security obligations Lead SaaS/vendor security assurance, including risk assessments, architecture reviews, and due diligence Support incident response, resilience ...

least privilege, and security hardening principles. Desirable Experience with Microsoft Sentinel, Splunk, Tenable, Qualys, or Defender TVM. Knowledge of NIST, ISO 27001, CIS, or SOC 2 frameworks. Familiarity with Azure Automation, Logic Apps, PKI, and certificate management. About You - You are a proactive and detail-oriented security professional ...

trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making ...

Information Security Engineer London (Barbican) | Hybrid Working (2 days per week onsite) £80,000 - £90,000 + 8% Bonus + Excellent Pension & Benefits * Must be eligible for UK Security Clearance * Are you an Information Security Engineer looking to work on technology that genuinely makes a difference? This … security initiatives Desirable Experience Security certifications such as Security+, CISSP, SSCP, CISA, CCSK or similar Exposure to compliance frameworks including GDPR, PCI-DSS, SOC 2, HIPAA, FedRAMP or similar Experience within large-scale enterprise or highly regulated environments What's On Offer? Salary ...

Information Security Engineer London (Barbican) | Hybrid Working (2 days per week onsite) £80,000 to £90,000 + 8% Bonus + Excellent Pension & Benefits * Must be eligible for UK Security Clearance * Are you an Information Security Engineer looking to work on technology that genuinely makes a difference? This … security initiatives Desirable Experience Security certifications such as Security+, CISSP, SSCP, CISA, CCSK or similar Exposure to compliance frameworks including GDPR, PCI-DSS, SOC 2, HIPAA, FedRAMP or similar Experience within large-scale enterprise or highly regulated environments What's On Offer? Salary ...

following would be a distinct advantage: Experience with Microsoft Sentinel, Splunk, Tenable, Qualys, or Defender TVM. Knowledge of NIST, ISO 27001, CIS, or SOC 2 frameworks. Familiarity with Azure Automation, Logic Apps, PKI, and certificate management. Daily Responsibilities Lead the investigation and remediation of complex security incidents. Enhance ...

Proven ability to identify and reduce real‐world security risk. Experience supporting audits, compliance, and security assurance activities across frameworks such as ISO 27001, SOC 2, and NIST, with familiarity with threat‐led methodologies like MITRE ATT&CK and an awareness of emerging areas such as AI security. ...