24 of 24 Permanent SOC 2 Jobs in London

ongoing compliance programmes, and improve operational maturity across all sites. Key Responsibilities • Support certification and compliance efforts across ISO 27001, ISO 27017/27018, SOC 2 Type II, Cyber Essentials Plus, and ISO 22301. • Maintain the ISMS, risk register, and evidence required for internal and external audits. • Manage … years in information or physical security within a data-centre, cloud, MSP, or similar environment. • CISSP certification (mandatory). • Strong understanding of ISO 27001, SOC 2, NIST CSF, and Cyber Essentials Plus. • Experience working with audits, incident management, and vulnerability workflows. • Strong documentation, communication, and stakeholder management skills. ...

Security & Compliance Own the end-to-end cybersecurity posture across all systems Implement access controls, monitoring, and incident response frameworks Maintain compliance with GDPR, SOC 2 and other relevant standards Conduct regular security audits, penetration testing, and risk assessments Manage third-party vendors and security risk Govern secure … pharma Familiarity with GxP, HIPAA, or similar frameworks Exposure to data platforms, MLOps, or AI/ML infrastructure in R&D contexts Ownership of SOC 2 or similar certifications Benefits Committed to Care Healthcare, pension/401(k), and life assurance Celebrating Success Competitive salary, performance-related bonus ...

and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. … total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children ...

Alert Logic, Qualys, M365 Security, and AWS Security Products. Understanding security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. We value teamwork, collaboration & technical excellence – the company are heavily ...

across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. ...

communicate confidently with senior stakeholders, simplify technical topics, and drive collaboration across teams. Success in this role requires strong knowledge of security architectures, SOC operations, and attacker techniques, plus experience with platforms like Microsoft Sentinel, AWS security, and tools such as CrowdStrike and Tenable. Excellent communication, commercial awareness, and … security architectures (SIEM/SOAR, EDR/XDR, identity, cloud, vulnerability management). • Understanding of attacker techniques (MITRE ATT&CK), detection engineering, and SOC KPIs. • Experience with professional services (penetration testing, DFIR, threat hunting). • Proficiency in Microsoft (Sentinel, Defender, Entra), AWS security, and tools like CrowdStrike, Darktrace, SentinelOne ...

Defender for Cloud, encryption using Azure Key Vault, network security with NSGs and Azure Firewall, Azure Policy for governance, and compliance frameworks (ISO 27001, SOC 2, GDPR). Experience conducting security assessments using Microsoft Secure Score, implementing security hardening, and responding to security incidents. Backup & Disaster Recovery - Experience ...

collaborate in a fast paced environment. Strong grasp of modern DevOps, cloud tooling and configuration management. Nice to have AWS certifications. Working knowledge of SOC 2, GDPR or related compliance requirements. Networking certifications such as CCNA or CCNP. Experience with Kafka, MQTT or other streaming technologies. Hands ...

monitor systems, networks, and logs then investigate security breaches, incidents and other cybersecurity events. You will also oversee compliance for regulatory requirements, such as SOC2, HIPAA, ISO 27001, GDPR and ensure systems adhere to these standards. You'll be part of a fast-paced, inclusive team that values creativity, curiosity ...

balances speed with sustainability. Passion for writing maintainable, scalable code. Knowledge of security and compliance best practices (e.g. HIPAA/GDPR, NHS DTAC, SOC 2). Bonus: experience in healthcare, medtech, or regulated environments. Why join Eolas Medical This is not a normal role. You will help define ...

etc.) Experience with API Management, DevTest Labs, App Services, VM platforms Knowledge of security and compliance standards (ISO 27001, SOC 2 etc.) Experience introducing AI-driven automation into DevOps pipelines Security clearance -Due to the nature of client work, candidates must be eligible for SC clearance, including: -Continuous ...

Presales Consultant/SaaS Integrations/APIs/Security/Compliance/AWS/Azure/GCP/NLP/ML/ISO27001/SOC2/GDPR ...

platforms. Background in Software Engineering, SRE or infrastructure engineering, with a strong developer tooling focus. Knowledge of compliance-driven SDLC requirements (e.g., ISO 27001, SOC2). Experience running developer surveys, DX metrics frameworks (e.g., DORA, SPACE), or feedback-driven adoption programs. Benefits Join a pioneering joint venture at the intersection ...

alignment across global teams Standardisation & Compliance • Ensure global consistency in technology, tools, and processes • Maintain compliance with company policies, SOPs, and security standards (including SOC 2) • Continuously identify and implement process improvements Escalation & Support • Serve as the escalation point for Tier-3 support during live events • Oversee root ...

curious, and delivery-focused Comfortable working in a small, fast-moving team environment Nice to have Redis, Celery AWS or GCP Docker or Kubernetes SOC 2 familiarity Interest in Rust or Go Why consider this opportunity? Influence the technical foundations of a fintech platform about to scale Make ...

policies, and controls Act as the senior hands-on security authority across the organisation Ensure alignment with recognised security frameworks (ISO 27001, NIST, CIS, SOC2, etc.) Embed security by design across infrastructure, cloud, networks, and applications Lead incident response, vulnerability management, and threat mitigation Partner closely with engineering, infrastructure, and ...

and guidelines Maintain monthly security key performance indicators and present to the ISMS Management Team Ensure ongoing ISO 27001:2022, ISO 27701:2019 and SOC 2 compliance across UK and international offices Conduct internal audits, lead remediation efforts, and support third-party reviews Operate supplier due diligence and … assessments Investigate and escalate incidents, contributing to ongoing threat awareness Deliver awareness training and drive adoption of secure behaviours Required skills: Minimum experience of 2 years working full time in I.T Clear understanding of GDPR, CCPA and other data protection legislation Good written and verbal communications skills Self sufficient ...

with LLM fine-tuning or instruction tuning Background in edtech, assessment, apprenticeship systems, or LMS tooling Previous startup or founding-engineer experience Familiarity with SOC2/ISO data security practices Interest in AI ethics, education, or professional training Who you are You want to build something meaningful. You like small ...

senior or director-level leadership experience. Strong experience with cloud platforms, microservices, distributed systems, and data engineering. Solid security and compliance knowledge; experience with SOC2, ISO27001, CE+, or similar standards is a plus. Experience building early-stage or founding engineering teams. Comfortable balancing hands-on engineering with strategic leadership. Experience ...

Bonus: • Experience in crypto, DeFi, or digital asset infrastructure. • Familiarity with smart contracts, hybrid on-chain/off-chain architectures, and regulatory frameworks (MiCA, SOC 2, ISO 27001). What They Offer: • A senior leadership role with direct impact on the company’s growth and technology direction. ...

threat prevention on Palo Alto and cloud native Firewalls Apply DNS security best practices using Infoblox Ensure compliance with standards such as ISO 27001, SOC2, and GDPR Collaboration and Leadership Partner with cloud, security, network, and DevOps teams to deliver integrated solutions Serve as subject matter expert for cloud networking … total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children ...

Smart Communications security posture to customers and prospects. Working with the GRC team by implementing security tools and processes used to support ISO 27001, SOC2, PCI, and other certifications held by Smart Communications. What we are looking for: 5 years of hands-on experience in a similar role. Good understanding … Alert Logic, Qualys, M365 Security, and AWS Security Products. Understanding security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. To apply: Use the link or share your CV with ...

Financial Accountant – Growing SaaS Business (Private Equity Backed) Location: Central London (Hybrid – 2–3 days office)Salary: Circa £75k + benefits Job Type: Full-time, Permanent The role:An exciting opportunity has arisen for a Financial Accountant to join a high growth, PE-backed SaaS company headquartered in London … consumption tax reconciliations Support EU invoicing and VAT queries Work on R&D tax credits and transfer pricing Manage various finance admin tasks (e.g. SOC2 compliance, insurance, ONS surveys) Act as a point of contact for Private Equity stakeholder reporting About You: ACA/ACCA qualified, ideally qualified in practice ...

Thisisnotjustanotherseniortechnologyrole.Thisisyouropportunitytobepartoftheseniorleadershipteamandshapethetechnicalfutureofaprofitable,fast-growingspecialistsoftwarecompanyatapivotalmomentinitsjourney. WhyThisRoleisDifferent Since2013,TrinitatumhavebuiltareputationservingglobalenergytradingandfinancialservicesorganisationswiththeirTriangleTestAutomationplatform - reducingtestingeffortbyover70%andacceleratingreleasesfromweekstodays.Theirrecentstrategicpartnershipsareopeningglobalmarkets,andtheyneedatechnologyleaderwhocanscalewiththem. You'llworkdirectlywiththeirCEOChrisJonesandtheseniorleadershipteamthroughthreedistinctphases: Phase1:TheFixer(Months1-6) Rapidlyassess,identifygaps,andimplementcriticalfoundationsfromsecurityposturetooperationalresilience. Phase2:TheBuilder(Months6-18) Establishscalablestructuresandleadtheproductroadmap.Drivebestpracticedevelopmentstandards,buildsecuritycredentials(SOC2,ISO27001),andarchitectforscaleacrosstheirAzure/.NETstack. Phase3:TheScaler(18+months) TransitionintotheCTOrole.Leadtechnicalvision,scaleengineeringcapabilityinternationally,anddrivemarketdifferentiationthroughtechnicalexcellence. YourFirst12Months:TheMission-CriticalChallenges Workingshoulder-to-shoulderwithChris,you'lltacklefourkeyareas: ProductSecurity&Compliance AuditTriangle,implementend-to-endsecurityimprovements,andestablishpathwaystoSOC2complianceforourhighlyregulatedclients … ProductRoadmap&Strategy Createaconversationalroadmapthatbalancesnewfeatureswithtechnicaldebtwhilstguidingcustomerenhancementpriorities BestPracticeDevelopmentStandards Implementautomatedtestingframeworks,introduceBDDpractices,andbuildacultureofcontinuousimprovement OperationalResilience Eliminatesinglepointsoffailure,createredundancy,andestablishrobustbusinesscontinuitycapabilities WhatMakesYouExceptional Youbring: Deep.Netmasteryyou'vebuiltproductionsystemsatscale StrongAzurearchitectureexperiencewithcloud-nativedesignpatterns Demonstrablesecurityframeworkexperience(SOC2,ISO27001,ITIL) Hands-onautomatedtestingframeworksexpertise PracticalBDDfamiliarity Moreimportantly,youare: Astrategicpartnerwhocanbalancetechnicalexcellencewithcommercialreality Hands-onwhenneededcomfortablecoding,reviewingarchitecture,ordebuggingcriticalissues Ateambuilderreadytorecruit,mentor,anddeveloptechnicaltalent Customer-awareyouunderstandthatTriangleservesmission-criticaltradingsystemswherereliabilitymatters Growth-orientatedexcitedbythejourneyfromspecialistconsultancytoglobalsoftwareplatform BonusPointsFor: ETRM/CTRMplatformexperience,financialservicesorenergysectorbackground,experiencewithEndur/Findur/Allegrosystems,priorCTOexperienceingrowingsoftwarecompanies ...