22 of 22 Permanent SOC 2 Jobs in London

Location: London, UK (Hybrid: 2 days per week in the office) Company: Navro – Pioneering the Future of Payments Securing Trust: Cyber Security Lead This isn't just another Information Security role. No legacy systems. No corporate red tape. No coasting. This is about building something from the ground up. Fast. We're Navro, a rapidly scaling B2B payments startup … You'll run and be part of the projects that implement, build, and maintain security integrations across our tech stack, establish incident response playbooks, and lead day‐to‐day SOC operations that protect our platform and customers. You won't have layers of approval slowing you down. You will have the freedom to make real, impactful decisions from day … of a high‐performing SOC built on automation, quality data, and continuous learning. What You'll Be Doing: Own the design, implementation, and operation of our SIEM and SOC capability with Microsoft Sentinel, including data ingestion, workspace architecture, analytics, automation, and dashboards. Integrate high‐value telemetry sources (Entra, M365, Google Workspace, AWS, GCP, endpoints/EDR, network, SaaS More ❯

in information/cyber security, including 3+ years leading ISMS/risk/compliance programs and mentoring others. Can demonstrate ownership of an ISO 27001 program; practical exposure to SOC 2 and Cyber Essentials Plus. Comfortable overseeing SIEM/logging, EDR/XDR, vulnerability scanning, patch governance, IAM, and secure configuration. Cloud experience (AWS/Azure/GCP … annual BCP/DR/IR exercises (tabletops, restore/failover drills), track corrective actions, and prove RTO/RPO alignment. Audits & certifications: Orchestrate ISO 27001 certification/surveillance, SOC 2 readiness/evidence, and Cyber Essentials Plus; manage evidence calendars and auditor interactions. Policies & awareness: Own policy lifecycle; deliver bi-annual awareness; embed security into onboarding/… IR tests and access reviews. Incident support: Be available for on-call advisory during client incidents; coordinate investigation, containment, and lessons learned. Desirable Certifications ISACA: CISM, CRISC, CISA (ISC)2: CISSP (or CCSP for cloud) IAPP: CIPP/E, CIPM (for DPO duties) ISO 27001: Lead Implementer and/or Lead Auditor Salary & Benefits: Base salary: £65,000 pa More ❯

risk mitigation objectives Continuously evaluate operational exposures and recommend insurance solutions for comprehensive and cost-effective coverage across business units Information Security Audits Oversee and coordinate ISO 27001 and SOC 2 audit activities, ensuring evidence collection, control implementation, and compliance alignment across all business units Manage and maintain continuous compliance through Vanta, automating evidence gathering, monitoring control effectiveness … or regulated environment. Experience managing or supporting corporate insurance programmes, including renewals, risk assessment, and broker liaison. Hands-on experience with information security audits, such as ISO 27001 and SOC 2, and working with audit management tools like Vanta or similar. Exposure to incident response management, including cross-functional collaboration with IT, Engineering, and Cyber Security teams. Experience More ❯

offboarding process: device provisioning, account creation, and permission management. · Monitor and maintain IT security best practices (MFA, endpoint protection, device patching, etc.) aligned with compliance frameworks (Cyber Essentials, ISO27001, SOC 2). · Support and contribute to the firm's compliance initiatives, including audits and certification processes. · Assist in evaluating, implementing, and optimising new IT tools, services, and automations … remote access). Desirable · Exposure to legal, private equity, or financial services environments. · Experience supporting or administering AI-based applications or workflow tools. · Familiarity with security frameworks (ISO 27001, SOC 2) and compliance requirements. · Experience with scripting (PowerShell) or IT automation tools. · Knowledge of additional SaaS platforms (Slack, HubSpot, etc.). More ❯

that protect Fortune 500 Companies & Critical Infrastructure Providers, helping them Outrun Real-World Threats in Real-Time. Role Overview: We're looking to speak with ambitious Information Security/SOC Engineers to Build & Continuously Evolve Internal Cyber Security Capability. You will secure the Internal Environment, Ensure Compliance with Leading Security Frameworks & Support Secure IT Operations across the Global Team. … Workflows, Enhance Monitoring & Support Incident Response Experience with Security Frameworks, Promoting Best-Practice & Operating Autonomously to Own End-to-End Security Nice to Have: Experience Supporting Incident Response or SOC, (CISSP, CISM, AWS/Azure Security, ISO 27001), familiarity with DevSecOps & CI/CD Security Models, Exposure to Regulated Industries (Finance, Healthcare, etc) Responsibilities of Information Security Engineer role … Identity, Access & Endpoint Security, Administering Azure AD (RBAC, MFA, SSO), Managing Intune Device Compliance, Enforcing Least-Privilege Access & Overseeing Endpoint Hardening & Patching Support Compliance & Governance Programmes, Maintaining ISO 27001 & SOC 2 Readiness, Contributing to Audits & Evidence Collection, alongside Managing Security Policies, Standards & Documentation Automate & Enable Secure Operations, Building Scripts & Internal Tooling, Streamlining Security Workflows & Delivering Awareness & Training to More ❯

Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Operationalize policy enforcement through automated More ❯

Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. * Compliance, Governance & Risk Management: * Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. * Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. * Operationalize policy enforcement through automated More ❯

Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Implement automated compliance controls and … to your base salary, your total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children Low $10 (USD) copays for trips to More ❯

with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. In addition, you will have More ❯

Azure Security Center/Microsoft Defender for Cloud, encryption using Azure Key Vault, network security with NSGs and Azure Firewall, Azure Policy for governance, and compliance frameworks (ISO 27001, SOC 2, GDPR). Experience conducting security assessments using Microsoft Secure Score, implementing security hardening, and responding to security incidents. Backup & Disaster Recovery - Experience implementing and managing Backup for More ❯

experience with Agile/Scrum methodologies. Experience in industries relevant to Fusion such as telecoms, retail, utilities etc. Knowledge of specific industry regulations or compliance standards (e.g., ISO 27007, SOC 2, HIPAA, PCI DSS) relevant to MSP operations. Experience with APls, web services, and integration tools to connect ServiceNow with other enterprise systems. Skills: Technical: o Strong implementation More ❯

GDPR, HIPAA, and OWASP, as well as leading risk assessments and managing the risk register. Key skills and responsibilities, Comprehensive knowledge of ISO 27001, NIST CSF, GDPR, HIPAA, SOC 2, and OWASP frameworks. Senior Security Analyst/Senior Security Engineer background Proven experience collaborating with software development teams and implementing technical controls. Skilled in articulating technical risks in More ❯

Experience with Redis and Celery. Experience scaling multi-tenant SaaS applications. Experience with cloud platforms. (AWS, Google Cloud or Azure). Knowledge of containerisation (Docker or Kubernetes) Familiarity with SOC 2 readiness and security best practices. Experience with observability and monitoring. Background in fintech, lending or other regulated-data environments. Experience or interest in Rust or Go for … leadership team where your opinions are heard and welcome. This is also a chance to be part of bringing a game changing product to life This role is hybrid, 2-3 days in their offices at London Bridge Salary ranges from £80,000 - £125,000 with attractive EMI share options More ❯

by a vision to restore trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making security continuous—not just a More ❯

by a vision to restore trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making security continuous—not just a More ❯

policies, web application firewall rules, threat prevention on Palo Alto and cloud native Firewalls Apply DNS security best practices using Infoblox Ensure compliance with standards such as ISO 27001, SOC2, and GDPR Collaboration and Leadership Partner with cloud, security, network, and DevOps teams to deliver integrated solutions Serve as subject matter expert for cloud networking, SD-WAN, DNS/DHCP … to your base salary, your total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children Low $10 (USD) copays for trips to More ❯

environments whilst measuring cost-effectiveness Respond promptly in-hours to technical incidents Embrace automation and be reluctant for manual implementation Implement security best practices ensuring platform compliance with ISO27001, SOC2 and PCI-DSS Share knowledge with colleagues by writing technical documentation and leading training sessions Requirements Ideally you will be an inquisitive Infrastructure Engineer, with an aptitude for finding clean … gateways Excellent communication and problem-solving skills Desirably you will have: Understanding of database monitoring, analysis, disaster recovery and performance tuning Knowledge of security and compliance frameworks like ISO270001, SOC2 and PCI-DSS Understanding of networking and routing concepts (TCP/IP, VLANs, VPNs, BGP, etc) and preferably experience designing and establishing connectivity between AWS and on-premise locations The More ❯

base of operations here, in the UK, as an experienced GRC Information Security Analyst ? Do you have experience in the GRC Security space with audits, auditors, ISO27001, PCI DSS, SOC2, NIST & current compliance regulations? If so & you are looking to expand your information Security career, meet new team members, embrace new challenges & join a world-class team – we’d like … know what the role will entail, but see below for things we’ll need to see in order to be considered: - Knowledge and experience of ISO 27001, PCI DSS, SOC2, NIST and CIS benchmarking is essential. - Knowledge and experience achieving and maintaining compliance with relevant legislation, such as DPA, GDPR - Knowledge of cloud environments (AWS, Azure) & Windows, &/or Linux More ❯

base of operations here, in the UK, as an experienced GRC Information Security Analyst Do you have experience in the GRC Security space with audits, auditors, ISO27001, PCI DSS, SOC2, NIST & current compliance regulations? If so & you are looking to expand your information Security career, meet new team members, embrace new challenges & join a world-class team – we’d like … know what the role will entail, but see below for things we’ll need to see in order to be considered: - Knowledge and experience of ISO 27001, PCI DSS, SOC2, NIST and CIS benchmarking is essential. - Knowledge and experience achieving and maintaining compliance with relevant legislation, such as DPA, GDPR - Knowledge of cloud environments (AWS, Azure) & Windows, &/or Linux More ❯

and contribute to cutting-edge technology solutions while supporting their IT operations.About you * Degree in Computer Science, Engineering, or a related technical field from a top university (First or 2:1).* Strong knowledge of Windows and macOS environments.* Familiarity with Microsoft 365 or Google Workspace.* Basic understanding of networking (TCP/IP, DNS, DHCP, VPN).* Excellent communication … Knowledge of Active Directory, Azure AD, or Intune.* Basic scripting skills (PowerShell, Bash, Python).* Experience with ticketing systems (Jira, Zendesk, Freshservice).* Awareness of security best practices (ISO27001, SOC2).What Can you expect to be doing? * Act as the first point of contact for IT support queries via email, chat, or ticketing system.* Diagnose and resolve hardware, software, and … list for this position. Keywords Windows, macOS, Office 365, Google Workspace, Active Directory, Azure AD, Intune, TCP/IP, DNS, DHCP, VPN, PowerShell, Bash, Python, Jira, Zendesk, Freshservice, ISO27001, SOC2, IT Support, Helpdesk, Troubleshooting, Hardware, Software, Networking, Ticketing Systems. More ❯

contribute to cutting-edge technology solutions while supporting their IT operations. About you * Degree in Computer Science, Engineering, or a related technical field from a top university (First or 2:1). * Strong knowledge of Windows and macOS environments. * Familiarity with Microsoft 365 or Google Workspace. * Basic understanding of networking (TCP/IP, DNS, DHCP, VPN). * Excellent communication … Knowledge of Active Directory, Azure AD, or Intune. * Basic scripting skills (PowerShell, Bash, Python). * Experience with ticketing systems (Jira, Zendesk, Freshservice). * Awareness of security best practices (ISO27001, SOC2). What Can you expect to be doing? * Act as the first point of contact for IT support queries via email, chat, or ticketing system. * Diagnose and resolve hardware, software … list for this position. Keywords Windows, macOS, Office 365, Google Workspace, Active Directory, Azure AD, Intune, TCP/IP, DNS, DHCP, VPN, PowerShell, Bash, Python, Jira, Zendesk, Freshservice, ISO27001, SOC2, IT Support, Helpdesk, Troubleshooting, Hardware, Software, Networking, Ticketing Systems. More ❯

Financial Accountant – Growing SaaS Business (Private Equity Backed) Location: Central London (Hybrid – 2–3 days office) Salary: Circa £75k + benefits Job Type: Full-time, Permanent The role: An exciting opportunity has arisen for a Financial Accountant to join a high growth, PE-backed SaaS company headquartered in London, with a global presence and an innovative, product driven culture. … Income Tax filings Lead quarterly consumption tax reconciliations Support EU invoicing and VAT queries Work on R&D tax credits and transfer pricing Manage various finance admin tasks (e.g. SOC2 compliance, insurance, ONS surveys) Act as a point of contact for Private Equity stakeholder reporting About You: ACA or ACCA qualified, preferably with a practice background and at least two More ❯