1 to 25 of 41 Permanent SOC 2 Jobs in London

Security Architecture team, you will lead the design and operation of our US Healthcare security controls. You will own the roadmap for HIPAA compliance and SOC2 Type II certification , partnering with Engineering and Legal to build a secure, compliant platform for millions of users. Key Responsibilities Compliance Leadership: Lead annual … SOC 2 and HIPAA certifications, managing interfaces with external auditors and professional services. Policy & Risk: Define and maintain security policies; embed risk assessment activities within engineering processes and vendor management. Operational Excellence: Partner with control owners to automate evidence gathering and ensure controls reduce friction rather than creating ...

with Legal team members to ensure accurate representation of contractual terms, SLAs, and liability provisions Maintain up-to-date knowledge of relevant compliance frameworks (SOC 2, ISO 27001, GDPR, CCPA, etc.) Coordinate responses to security assessments and compliance questionnaires Support contract negotiations by providing proposal-related documentation and … certifications in proposal management (APMP) are a plus Preferred Qualifications Experience in cybersecurity or enterprise software companies Knowledge of common security frameworks and certifications (SOC 2, ISO 27001, FedRAMP, NIST) Understanding of SaaS business models and metrics Experience with legal contract terminology and standard commercial terms Familiarity with ...

with Legal team members to ensure accurate representation of contractual terms, SLAs, and liability provisions Maintain up-to-date knowledge of relevant compliance frameworks (SOC 2, ISO 27001, GDPR, CCPA, etc.) Coordinate responses to security assessments and compliance questionnaires Support contract negotiations by providing proposal-related documentation and … certifications in proposal management (APMP) are a plus Preferred Qualifications Experience in cybersecurity or enterprise software companies Knowledge of common security frameworks and certifications (SOC 2, ISO 27001, FedRAMP, NIST) Understanding of SaaS business models and metrics Experience with legal contract terminology and standard commercial terms Familiarity with ...

need to pursue their passion for creating innovation. SoftServe is a global digital services and consulting company founded in 1993, working on more than 2,000 projects with clients across the USA, Europe and LATAM regions. With over 30 years of experience in digital software development and consulting, SoftServe … premises, legacy, and multi-cloud systems, maintaining security consistency and compliance Knowledgeable in security standards and frameworks, such as ISO 27001, NIST CSF, SOC 2, CIS Benchmarks, GDPR, and NHS DSPT Familiar with AI security and data governance principles, including data minimisation, secure model access, and AI transparency ...

need to pursue their passion for creating innovation. SoftServe is a global digital services and consulting company founded in 1993, working on more than 2,000 projects with clients across the USA, Europe and LATAM regions. With over 30 years of experience in digital software development and consulting, SoftServe … premises, legacy, and multi-cloud systems, maintaining security consistency and compliance Knowledgeable in security standards and frameworks, such as ISO 27001, NIST CSF, SOC 2, CIS Benchmarks, GDPR, and NHS DSPT Familiar with AI security and data governance principles, including data minimisation, secure model access, and AI transparency ...

and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. … total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children ...

and protocols Identity and access management Familiarity with OT security and standards (IEC 62443, NIST CSF). Knowledge of regulatory frameworks (ISO 27001, GDPR, SOC 2). Excellent problem-solving and communication skills. Relevant certifications: CISSP, CISM, CCSP, SABSA, or equivalent. Experience in hyperscale or colocation data centre ...

needs. Stay up to date with emerging threats, Microsoft security innovations, and industry trends to drive continuous security enhancements. Provide training and mentorship to SOC teams on Microsoft cloud security best practices. Team Management Manage and mentor a team of Security Engineers. Act as an escalation point for complex … security architecture, processes, and incident response procedures. Beneficial Skills Excellent communication and stakeholder management skill Experience with working with global Cyber Defence/SOC teams Knowledge of MITRE ATT&CK framework and its application in threat detection and response. Understanding of compliance standards (ISO 27001, NIST CSF, GDPR, SOC ...

designing and implementing next-generation cloud security architectures, securing WTW cloud environments, and driving automation and intelligence within Cybe r Defence Security Platforms & SOC Engineering. This is a hybrid role at London office with a requirement to be in the office based on the business need. The Role: Agentic … needs. Stay up to date with emerging threats, Microsoft security innovations, and industry trends to drive continuous security enhancements. Provide training and mentorship to SOC teams on Microsoft cloud security best practices. Team Management Manage and mentor a team of Cyber Defence Security Engineers. The Requirements: Must-Have Skills ...

strategies, with experience managing security operations in complex, multi-location environments Strong expertise in security frameworks and standards such as NIST, ISO 27001, or SOC 2, with demonstrated experience in regulatory compliance and audit management Exceptional leadership and communication skills, with ability to present complex security concepts ...

across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. ...

Alert Logic, Qualys, M365 Security, and AWS Security Products. Understanding security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. We value teamwork, collaboration & technical excellence – the company are heavily ...

Alert Logic, Qualys, M365 Security, and AWS Security Products. Understanding security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. We value teamwork, collaboration & technical excellence – the company are heavily ...

performance, or security Partner with finance, procurement, and security teams to manage infrastructure costs, embed DevSecOps practices, and ensure compliance with frameworks such as SOC2 and ISO 27001 The Team Our Platform Engineering team is responsible for building and maintaining the foundational systems and services that power Moody’s technology ...

Defender for Cloud, encryption using Azure Key Vault, network security with NSGs and Azure Firewall, Azure Policy for governance, and compliance frameworks (ISO 27001, SOC 2, GDPR). Experience conducting security assessments using Microsoft Secure Score, implementing security hardening, and responding to security incidents. Backup & Disaster Recovery - Experience ...

Terraform, CloudFormation). Security-first mindset with knowledge of best practices in identity governance, access controls, encryption, MFA, risk-based authentication, and compliance (GDPR, SOC 2, PCI). Excellent written and verbal communication skills, with the ability to clearly explain complex identity concepts to both technical and ...

and Datadog experience desirable). Ensure compliance and security through Microsoft Defender for Cloud, Azure Policy, Key Vault, and accepted frameworks (ISO 27001, SOC 2, GDPR). Conduct backup and disaster recovery operations using Azure Backup, Site Recovery, and geo-redundant storage for business continuity. Collaborate effectively across ...

monitor systems, networks, and logs then investigate security breaches, incidents and other cybersecurity events. You will also oversee compliance for regulatory requirements, such as SOC2, HIPAA, ISO 27001, GDPR and ensure systems adhere to these standards. You'll be part of a fast-paced, inclusive team that values creativity, curiosity ...

client workflows, leveraging Tungsten Automation's cutting-edge technologies Security & Compliance Enterprise Security: Maintain a strong grasp of enterprise security practices (IAM, data encryption, SOC2, GDPR, HIPAA) when integrating AI into regulated industries What You Bring Educational Foundation Bachelor's degree in Computer Science, Information Systems, or a related technical ...

methodologies. Experience in industries relevant to Fusion such as telecoms, retail, utilities etc. Knowledge of specific industry regulations or compliance standards (e.g., ISO 27007, SOC 2, HIPAA, PCI DSS) relevant to MSP operations. Experience with APls, web services, and integration tools to connect ServiceNow with other enterprise systems. ...

and implement infrastructure tooling that promotes reliability, velocity, and aut onomy.Overseeing the management of our security processes, including audits and compliance efforts such as SOC 2.You’ll sit within our engineering leadership group and report to th e CTO. What you'll n eed?...5+ years in infrastructure, DevOps ...

team in adapting to new auditing standards and digital transformation initiatives. Audit and Attestations: Own the planning and execution of attestation programs (e.g. SOC 2, ISAE 3000). Maintain a library control narrative, process flows, and risk/control matrices. Prepare and deliver responses to findings. … required. Crucial: Proven track record in audit, attestation, or risk assurance in a Big 4, consulting or financial services environment. Solid understanding of DORA, SOC, ISAE3402/3000 and IT Risk control frameworks. Experience in assessing technology, data, or market infrastructure environments. Excellent documentation skills (process maps, RCMs, audit ...

balances speed with sustainability. Passion for writing maintainable, scalable code. Knowledge of security and compliance best practices (e.g. HIPAA/GDPR, NHS DTAC, SOC 2). Bonus: experience in healthcare, medtech, or regulated environments. Why join Eolas Medical This is not a normal role. You will help define ...

reviews, and cross-functional projects with engineering and SRE teams.Security & Compliance: Contribute to secure system design and operational practices that support industry-standard compliance (SOC 2, ISO 27001, etc). What Yo u Bring2–4 years of experience in DevOps, SRE, or platform engineering roles.Strong Linux systems administration … over 5 days to t he next year!Flexible working - we want to provide a hybrid model approach to working and provide you with 2 days a week work ing from home20 days a year of global working - we provide the ability to work from anywhere in the world ...

enhance the firm’s Information Security function and overall security posture. Lead responses to client security questionnaires and audit follow-ups. Oversee ISO27001 and SOC 2 Type II audits. Select and implement tools to proactively detect and respond to threats. Drive continuous improvement of security practices across ...