1 to 25 of 30 Permanent SOC 2 Jobs in London

chaos to strategic partnerships Compliance & Security Transform compliance from a checkbox exercise into a sales accelerator that wins enterprise deals Own and execute our SOC 2 certification end‐to‐end with efficient, automated evidence gathering Turn RFI and security questionnaire responses into a competitive advantage—fast, thorough, repeatable … people) Able to manage and procure upwards of 50+ vendors, owning a budget in the 7 digits Track record implementing and maintaining compliance frameworks (SOC 2, ISO 27001, GDPR) Experience with enterprise sales support in a B2B SaaS company—you’ve answered RFIs and security questionnaires Proven ability ...

will own the evolution of our security posture. Youll be the driving force behind our SIEM/SOAR capabilities and the guardian of our SOC 2 Type II and ISO 27001 standards. Key Responsibilities: Security Operations: Lead monitoring, detection, and incident response for internal and client-facing systems. … real-world threats (malware, phishing, cloud misconfigurations) and ensure rapid remediation. Vulnerability Management: Conduct regular assessments, penetration testing, and risk analysis. Compliance & GRC: Maintain SOC 2 Type II accreditation and lead ISO 27001 readiness. Administer compliance platforms like Drata. DevSecOps: Collaborate with Engineering and IT to integrate security ...

security posture, reliability culture, and operational excellence. Key Responsibilities Architect, implement, and scale cloud infrastructure to support rapid growth Prepare systems and processes for SOC 2/ISO 27001 audit readiness Build and maintain CI/CD pipelines across backend, frontend, and data services Develop and manage logging … Platform Engineering Strong track record owning infrastructure end‐to‐end Experience in high‐growth or high‐load environments Familiarity with compliance frameworks (SOC 2, ISO 27001, GDPR) History of driving reliability, security, and cost efficiency Someone who thrives in fast-moving, evolving environments and enjoys solving hard problems ...

Doing Design, build, and maintain scalable cloud infrastructure to support rapid product growth Own DevOps, observability, and reliability across the platform Prepare systems for SOC 2/ISO 27001 audit readiness Build and manage CI/CD pipelines across backend, frontend, and data services Implement logging, metrics, tracing … platform, infrastructure, or DevOps engineering Startup or high-growth environment experience strongly preferred Proven ownership of infrastructure end-to-end Experience with compliance frameworks (SOC 2, ISO 27001, GDPR) Track record of balancing scale, reliability, and cost efficiency What You Can Expect A challenging, fast-moving environment where ...

Infrastructure as Code – Build and maintain Terraform across projects, networks, IAM, and services Enforce security and compliance – Implement controls aligned with healthcare requirements (HIPAA, SOC 2, ISO 27001); configure IAM, service accounts, workload identity, network security, and audit logging; support audits and remediation activities Manage internet-facing architecture …/identity-based access models Experience with containerised and serverless workloads (Cloud Run, GKE, Docker) Practical experience implementing security controls in cloud environments (SOC 2, ISO 27001, HIPAA, or similar) Experience operating web-facing, security-sensitive systems Comfortable working closely with ML, data, and product teams to translate ...

Relevant certifications such as CISSP, CISM, OSCP, or AWS Security are highly valued. Desirable: Experience working with standards such as PCI-DSS, ISO 27001 , SOC 2, HIPAA, IRAP, GDPR, or NIST. If you’re a strategic, pragmatic security leader looking to make a real impact in a global ...

Concourse, CircleCI) Familiarity with maintaining HIDS systems (Wazuh preferred). NICE TO HAVE Knowledge of security standards and governance frameworks (e.g., CIS Benchmarks, NIST, SOC2, ISO 27001, PCI DSS) and how to operationalize them. Hands-on experience with building and maintaining a SIEM comprised of open-source and hosted components ...

regulatory expectations, supports operational resilience, and enables secure business growth.Champion & Ensure delivery against compliance requirements like the Apex Gold standard, NIST, DORA, SOC1 and SOC 2, ISO27001 and all relevant group controls.Liaising with key stakeholders, partners and group entities, internal and external.**Key Responsibilities****Technology Control Framework & Strategy ...

cloud security and compliance Own platform‐level security decisions and risk mitigation Ensure secure‐by‐design infrastructure and access controls Support compliance initiatives (SOC 2, ISO:27001) Leadership & Team Development Lead and mentor the DevOps team including DevOps engineers, IT Support and an Information Security Officer Provide technical ...

secure-by-design practices, ensuring data protection, and conducting regular threat modelling and reviews. Standards Compliance : Ensure engineering practices and systems comply with ISO27001, SOC2, and other relevant standards. Budget & Reporting : Participate in budget planning and reviews relating to engineering requirements. Stakeholder Reporting : Report regularly to senior management on team … security into the SDLC. Testing & quality : strong background in automated testing (unit, integration, regression) and building for reliability. Essential Experience (Other) Scale-up journey : 2-3 years of experience in a senior role with a SaaS company @ $5-20m ARR, ideally as part of a scaling journey. Data ...

platforms - Knowledge of OWASP Top 10 and common vulnerability classes - Experience securing cloud environments (AWS, GCP, or Azure security services) - Familiarity with compliance frameworks (SOC 2, ISO 27001, GDPR) - Ability to communicate security risk clearly to both technical and non-technical stakeholders Equal Opportunity Employer: Joveo ...

platforms - Knowledge of OWASP Top 10 and common vulnerability classes - Experience securing cloud environments (AWS, GCP, or Azure security services) - Familiarity with compliance frameworks (SOC 2, ISO 27001, GDPR) - Ability to communicate security risk clearly to both technical and non-technical stakeholders Equal Opportunity Employer: Joveo ...

equivalent; conditional access policy design and implementation o DDoS mitigation, BGP security, and network resilience engineering for latency-sensitive financial infrastructure o ISO 27001, SOC 2, DORA, or equivalent - hands-on implementation, not just audit participation o Red team, adversarial simulation, or penetration testing programme design - experience ...

equivalent; conditional access policy design and implementation o DDoS mitigation, BGP security, and network resilience engineering for latency-sensitive financial infrastructure o ISO 27001, SOC 2, DORA, or equivalent - hands-on implementation, not just audit participation o Red team, adversarial simulation, or penetration testing programme design - experience ...

having been in the room when something went wrong Knowledge of common security frameworks and standards (e.g. NCSC Cyber Essentials, ISO 27001, NIST, SOC 2) Highly Desirable ISO 27001 Lead Implementer or Lead Auditor certification, or hands‐on experience leading an ISO 27001 certification programme Experience ...

rapid product growth. Own DevOps and platform engineering practices, enabling teams to deploy quickly and safely. Prepare and maintain audit-ready infrastructure aligned with SOC 2 and ISO 27001 expectations. Build and evolve CI/CD pipelines across backend, frontend, and data services. Implement observability across logging, metrics ...

London CityRole SummaryTheSecurity Awareness Lead is responsible for developing, delivering, andContinuously improving global security awareness and behaviour change programme across a multinational organisation of 2,000+ users. This roleEnsures employees, contractors, and partners understand their securityResponsibilities, make secure decisions, and actively contribute to a strongSecurity culture.The ideal candidate … regions and business units. Develop KPIs and metrics to track behavioural change, susceptibility, and programme effectiveness. Use data insights from Phishing, security incidents, and SOC analytics to drive targeted Interventions. 4. Stakeholder Engagement Collaborate closely with HR, Communications, IT, Data Protection, Legal, and Regional Business Leads. Influence senior stakeholders ...

Previous VP Engineering experience. Experience in a scale-up or high-growth environment. Knowledge of AI/ML integration in product development. Familiarity with SOC 2, ISO 27001, and GDPR compliance. Background in SaaS, fintech, or enterprise software. Experience customising Trading Systems (e.g., Calypso). Advanced degree ...

this one's for you. What You'll Own Design, build, and evolve our cloud infrastructure to keep pace with rapid product growth Lead SOC 2/ISO 27001 audit preparation, turning compliance into a competitive advantage Build and maintain robust CI/CD pipelines across backend, frontend ...

Infrastructure as Code (Terraform or CloudFormation) Proven experience leading cloud migration strategies and implementations Strong understanding of cloud security and compliance frameworks (e.g. CIS, SOC2) Experience with DevOps tooling (e.g. Git, Jenkins, Docker, Kubernetes) Ability to work in fast-paced, client-facing environments Desirable: Multi-cloud experience (AWS, Azure ...

team, within tight timescales, to budget and a high level of quality. * Experience preparing, supporting, or auditing certification audits (e.g., ISO 27001, SOC 2, Cyber Essentials) Cyber Security Auditor In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon DGH Recruitment ...

Experience implementing MFA, SSO, IGA and PAM solutions. Delivery across global organisations. Knowledge of security frameworks and standards (ISO 27001, NIST CSF, CIS, GDPR, SOC 2, IEC62443). Strong governance, risk and stakeholder management capability. Core Skills Programme leadership with strong commercial and budget oversight. Ability to influence ...

/ITSM processes Desirable Experience with Okta Workflows or Privileged Access Exposure to AWS SSO/Identity Center Knowledge of compliance frameworks: ISO 27001 SOC 2 GDPR Experience with endpoint management tools (Intune, Jamf) Why Join? Opportunity to own and shape IAM strategy within a global organisation Work ...

/ITSM processes Desirable Experience with Okta Workflows or Privileged Access Exposure to AWS SSO/Identity Center Knowledge of compliance frameworks: ISO 27001 SOC 2 GDPR Experience with endpoint management tools (Intune, Jamf) Why Join? Opportunity to own and shape IAM strategy within a global organisation Work ...

systems scale with Circadia’s growth. Security & Compliance Ensure all ML pipelines and infrastructure meet healthcare security and privacy requirements, including HIPAA and SOC 2. Apply best practices for handling Protected Health Information (PHI) in training data, model artifacts, and inference outputs. Maintain audit trails for model decisions, data ...