19 of 19 Permanent SOC 2 Jobs in London

Infrastructure as Code – Build and maintain Terraform across projects, networks, IAM, and services Enforce security and compliance – Implement controls aligned with healthcare requirements (HIPAA, SOC 2, ISO 27001); configure IAM, service accounts, workload identity, network security, and audit logging; support audits and remediation activities Manage internet-facing architecture …/identity-based access models Experience with containerised and serverless workloads (Cloud Run, GKE, Docker) Practical experience implementing security controls in cloud environments (SOC 2, ISO 27001, HIPAA, or similar) Experience operating web-facing, security-sensitive systems Comfortable working closely with ML, data, and product teams to translate ...

Cybersecurity is fast growing ventured back startup that provides best-in-class cybersecurity and compliance. Our software and services simplify complex compliance frameworks including SOC2, ISO 27001, HIPAA, and others, empowering businesses to scale securely and confidently. We're backed by top tier investors like Y Combinator and have offices … contract fee) Performance-based commission Uncapped upside Top performers will earn meaningfully above OTE. About the Role We are hiring an Account Executive with 2-4 years of B2B SaaS closing experience. This is not an entry-level role. This is a full-cycle Account Executive position for someone ...

container security. Identity & Access Management experience (e.g. Okta). Experience with JVM languages, Terraform/IaC, CDK, or React. Familiarity with GDPR, ISO 27001, SOC 2, EU AI Act/LLMs. Experience delivering audits or using GRC tools (e.g. Drata, Vanta) Interest in AI and/or knowledge ...

Prometheus, Grafana, ELK, etc.). Strong communication skills and the ability to collaborate across engineering teams. Knowledge of compliance/security frameworks (PCI DSS, SOC2, ISO, GDPR). Experience with microservices and serverless environments. Familiarity with SQL/NoSQL databases. Proven ability to lead technical initiatives in complex environments. Location ...

assurance programmes. Proven experience designing, executing, and improving structured vendor due diligence processes. Strong understanding of vendor-held assurance artefacts such as ISO 27001, SOC 2, CSA STAR/CAIQ, and security questionnaires. Ability to communicate complex vendor-related cyber risks clearly to both business and technical audiences. ...

and optimisation modelling using PyCaret, Prophet, and Optuna to strengthen data‐driven decision‐making. Security, Compliance & Responsible AI Ensure alignment with enterprise security frameworks (SOC2, ISO27001, NIST). Oversee identity and access management via Azure AD, OAuth2, OpenID Connect, and enterprise IAM systems. Champion ethical AI practices, including bias detection ...

Experience with authentication methods such as OAuth 2.0, API keys, JWT IT background with experience supporting, integrating, or administering enterprise software systems Exposure to SOC 2, GDPR, or enterprise security requirements Experience with Infrastructure as Code (CDK, CloudFormation, or Terraform) Knowledge of CI/CD pipelines and deployment … backed by real clients, real revenue, and real partnerships What We Offer 25 days holiday + bank holidays Pension scheme with 10% employer contribution 2% interest rate reduction on home mortgages Professional development & life assistance programs Snacks sent to your door—you pick, we pay 50% off Apple products ...

Senior Security Risk Specialist – Contract Location - London (Hybrid – 2 days onsite in Bank) Term: 6 months Rate: £800 per day (Inside iR35) We’re looking for a Senior Security Risk Specialist to support a technology company’s Security Risk Management function. Reporting to the Head of Security Risk & Assurance … background in security risk management within tech or regulated environments Cloud security risk assessment experience (AWS experience a must) Familiarity with ISO 27001, NIST, SOC 2, PCI-DSS Comfortable engaging technical and non-technical stakeholders GRC tooling experience, consulting background, CISM/CRISC/CISSP This ...

large technology environment Deep expertise across multiple cyber security domains Strong understanding of frameworks such as ISO 27001, NIST, CAF, CIS, Cyber Essentials+, SOC 2 At least one major certification (CISSP, CISM, CISA, ISO Lead Auditor/Implementer) Exceptional stakeholder engagement skills and executive presence Strong analytical and ...

teams. Key Responsibilities Design and implement security strategies, policies and controls Lead vulnerability assessments, penetration testing and remediation Oversee regulatory and compliance frameworks including SOC2, ISO 27001 and GDPR Monitor systems and respond to incidents and security events Strengthen AWS and GCP cloud security environments Support customer and sales teams ...

preferred). ● Experience working with data-heavy workflows, market data, or formats such as Parquet. ● Background in fintech or regulated environments with awareness of SOC2, encryption standards, and secure data handling. This team will prioritise candidates who demonstrate stable tenure and consistent impact in previous roles. They are building ...

ideal for someone ready to step up and shape a growing security function. The Role Build and mature security frameworks (ISO 27001, CE+, NIST, SOC 2) Lead gap analysis and audit readiness Own the security risk register and drive mitigation Develop policies, standards, and procedures Support ...

platforms. Background in Software Engineering, SRE or infrastructure engineering, with a strong developer tooling focus. Knowledge of compliance-driven SDLC requirements (e.g., ISO 27001, SOC2). Experience running developer surveys, DX metrics frameworks (e.g., DORA, SPACE), or feedback-driven adoption programs. Benefits Join a pioneering joint venture at the intersection ...

technologies. Stay informed about emerging threats and trends, integrating this knowledge into the security testing processes Support the firms certification activities, such as ISO27001, SOC2, and Cyber Essentials Plus, by assisting with audits, documentation, and continuous improvement efforts. Engage with security industry groups and collaborate with external industry partners ...

Comfortable discussing infrastructure and security trade-offs Able to ask sharp technical questions and spot delivery risks Experience in regulated or security-focused environments (SOC2, ISO 27001, DORA) is helpful but not essential. What success looks like (first 3–6 months) Important projects are delivered on time Teams are aligned ...

+ project delivery. Nice to Have Fintech/payments or similarly regulated environment experience. Familiarity with compliance frameworks/audit controls ( SOC 2/ISO 27001/PCI ). ...

secure hiring platform used by employers to review candidates. Your profile stays anonymous until you match. Click Apply to continue. It takes 2 minutes. Senior Security Engineer London Hybrid High growth AI Technology Company £85,000 to £115,000 plus bonus and equity We are working with a fast … teams. Key Responsibilities Design and implement security strategies, policies and controls Lead vulnerability assessments, penetration testing and remediation Oversee regulatory and compliance frameworks including SOC2, ISO 27001 and GDPR Monitor systems and respond to incidents and security events Strengthen AWS and GCP cloud security environments Support customer and sales teams ...

risk assessments, evaluating client environments from both a technical and business perspective. Review IT governance, systems, and controls against recognized standards (ITIL, COBIT, NIST, SOC2, ISO). Design and implement solutions to enhance performance, improve resilience, and increase value for clients. Experience required Significant consulting or industry experience focused … stakeholders. Experience guiding teams, planning engagements, and managing project delivery. Working knowledge and practical use of industry standards such as COBIT, ISO27001, NIST CSF, SOC2, and ITIL. A collaborative mindset and passion for driving results. Technology Risk & Resilience, Senior Consultant - London, Hybrid - £50k-£58k + bonus Robert Half Ltd acts ...

Security, Risk Analysis, Cyber Security, Information Security, International Cyber Security, 3rd Party Security Compliance, Risk Management, Risk Reporting, Audit & Compliance, Cloud Infrastructure, ISO2700x, NIST, SOC2, PCI, GDPR, Risk Assessments Type: Contract, Inside IR35 Duration: 12 Months Pay Rate: £400 - £495 per day Location: London, On-Site Working (1 day remote … and hands-on experience with vulnerability detection tools (e.g. Qualys, CrowdStrike, Tenable, Prisma) Strong knowledge of IS compliance frameworks and standards (ISO2700x, NIST, GDPR, SOC2, PCI) Practical understanding of cyber security technology best practice Experience supporting EMEA or Global technology projects from an InfoSec risk perspective Blue-chip/Big4 ...