1 to 25 of 51 Permanent SOC 2 Jobs in London

and expansion opportunities within your book of business Become a product expert on Vanta and how our platform can be used to improve security posture through our compliance offerings (SOC 2, ISO 27001, GDPR, HIPAA, USDP and Custom Frameworks), Trust Reports, and Risk Management solution. Guide implementation, configuration, and optimization of Vanta Trust Management Platform Provide professional advice … by a vision to restore trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making security continuous-not just a More ❯

provide actionable feedback to internal teams to enhance documentation and control readiness. Perform security due diligence and ongoing monitoring of Web3/blockchain vendors, including assessing control maturity, reviewing SOC reports, and identifying residual risks. Facilitate external audit activities, coordinating walkthroughs, evidence collection, and response tracking. Identify and analyze gaps in current and new processes, developing and tracking remediation … Hardware Security Modules (HSMs), and Key Management Systems (KMS). Solid understanding of cloud and network security architecture and configurations. Demonstrated experience supporting external audits and assessments, such as SOC 1, SOC 2, ISO 27001, or PCI DSS. Hands-on experience with major cloud platforms (AWS, GCP, Azure) and infrastructure-as-code practices. Proficiency in preparing client More ❯

provide actionable feedback to internal teams to enhance documentation and control readiness. Perform security due diligence and ongoing monitoring of Web3/blockchain vendors, including assessing control maturity, reviewing SOC reports, and identifying residual risks. Facilitate external audit activities, coordinating walkthroughs, evidence collection, and response tracking. Identify and analyze gaps in current and new processes, developing and tracking remediation … Hardware Security Modules (HSMs), and Key Management Systems (KMS). Solid understanding of cloud and network security architecture and configurations. Demonstrated experience supporting external audits and assessments, such as SOC 1, SOC 2, ISO 27001, or PCI DSS. Hands-on experience with major cloud platforms (AWS, GCP, Azure) and infrastructure-as-code practices. Proficiency in preparing client More ❯

provide actionable feedback to internal teams to enhance documentation and control readiness. Perform security due diligence and ongoing monitoring of Web3/blockchain vendors, including assessing control maturity, reviewing SOC reports, and identifying residual risks. Facilitate external audit activities, coordinating walkthroughs, evidence collection, and response tracking. Identify and analyze gaps in current and new processes, developing and tracking remediation … Hardware Security Modules (HSMs), and Key Management Systems (KMS). Solid understanding of cloud and network security architecture and configurations. Demonstrated experience supporting external audits and assessments, such as SOC 1, SOC 2, ISO 27001, or PCI DSS. Hands-on experience with major cloud platforms (AWS, GCP, Azure) and infrastructure-as-code practices. Proficiency in preparing client More ❯

provide actionable feedback to internal teams to enhance documentation and control readiness. Perform security due diligence and ongoing monitoring of Web3/blockchain vendors, including assessing control maturity, reviewing SOC reports, and identifying residual risks. Facilitate external audit activities, coordinating walkthroughs, evidence collection, and response tracking. Identify and analyze gaps in current and new processes, developing and tracking remediation … Hardware Security Modules (HSMs), and Key Management Systems (KMS). Solid understanding of cloud and network security architecture and configurations. Demonstrated experience supporting external audits and assessments, such as SOC 1, SOC 2, ISO 27001, or PCI DSS. Hands-on experience with major cloud platforms (AWS, GCP, Azure) and infrastructure-as-code practices. Proficiency in preparing client More ❯

Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Implement automated compliance controls and … to your base salary, your total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children Low $10 (USD) copays for trips to More ❯

asset inventories and ensure patching and configuration baselines are followed. Security Governance & Compliance Contribute to maintaining security standards and aligning with frameworks such as ISO 27001, NIST, CIS, or SOC 2. Support audits, evidence collection, and compliance reporting (e.g., GDPR, PCI-DSS). Develop and maintain documentation for policies, procedures, architecture, and runbooks. Collaboration & Knowledge Sharing Work with IT More ❯

risks and deploy effective remediation measures. Monitor systems, networks, and logs then Investigate security breaches, incidents, and other cybersecurity events. Oversight of compliance for regulatory compliance requirements, such as SOC2, HIPAA, ISO 27001, GDPR etc, and ensure our systems adhere to these standards Conduct security awareness training sessions, enabling the business. Who you are Cloud security enthusiast - You're comfortable More ❯

secure, scalable cloud infrastructure for our digital health platform. Automate CI/CD pipelines and lead Infrastructure as Code (Terraform, CloudFormation). Implement DevSecOps best practices to meet HIPAA, SOC 2, and ISO 27001 requirements. Monitor system performance and availability using CloudWatch, Prometheus, Grafana, and related tooling. Collaborate with engineering, security, and product teams to drive end to More ❯

security requirements in digital health, life sciences, or FDA-regulated software environments Proven track record managing security and compliance under HIPAA, FDA, and NIST Knowledge of GDPR, ISO 27001, SOC 2 and international security standards Experience with cloud-native environments (e.g., AWS), data encryption, identity management, and secure software development practices Strong communicator who can translate security priorities More ❯

testing, code reviews, and vulnerability remediation Drive secure DevOps culture through training, playbooks, and developer champions Strengthen cloud & container security (AWS, Azure, GCP, Kubernetes, Docker) What you'll bring: 2-4 years' experience in AppSec/DevSecOps Hands-on with tools like Checkmarx, Veracode, SonarQube, OWASP ZAP Strong coding skills (Java, Python, JavaScript, Go, .NET) Familiar with CI/… CD (Jenkins, GitHub Actions, Azure DevOps) and IaC (Terraform) Knowledge of OWASP Top 10, API security, and compliance (ISO 27001, SOC 2) Eligibility for SC clearance is mandatory (UK nationals only) Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates More ❯

Security Management System (ISMS) based on frameworks such as ISO 27001, NIST, or SOC2. Professional certification in information security governance and management (e.g., CISSP, CISM, CISA) preferred. Minimum of 2 years’ experience in information security, including carrying out reviews and supporting improvements across technical and procedural controls. Strong skills in documentation, analysis, and reporting. Technical knowledge of cybersecurity concepts More ❯

Security Management System (ISMS) based on frameworks such as ISO 27001, NIST, or SOC2. Professional certification in information security governance and management (e.g., CISSP, CISM, CISA) preferred. Minimum of 2 years’ experience in information security, including carrying out reviews and supporting improvements across technical and procedural controls. Strong skills in documentation, analysis, and reporting. Technical knowledge of cybersecurity concepts More ❯

Security Management System (ISMS) based on frameworks such as ISO 27001, NIST, or SOC2. Professional certification in information security governance and management (e.g., CISSP, CISM, CISA) preferred. Minimum of 2 years’ experience in information security, including carrying out reviews and supporting improvements across technical and procedural controls. Strong skills in documentation, analysis, and reporting. Technical knowledge of cybersecurity concepts More ❯

Security Management System (ISMS) based on frameworks such as ISO 27001, NIST, or SOC2. Professional certification in information security governance and management (e.g., CISSP, CISM, CISA) preferred. Minimum of 2 years’ experience in information security, including carrying out reviews and supporting improvements across technical and procedural controls. Strong skills in documentation, analysis, and reporting. Technical knowledge of cybersecurity concepts More ❯

to Standardise information security policies, frameworks, and controls across all entities, while allowing flexibility for business specific regulations. Oversee Cyber security regulatory compliance initiatives ns (e.g. NIST, ISO 27001, SOC2 compliance). Lead the design and operation of shared security services between IAG Loyalty and IAG airlines (e.g., threat detection, incident response, intel management, data sharing) at the group level. More ❯

Develop cloud infrastructure architecture, standards, and best practices. Optimize cloud costs and performance for complex workloads including GPU-based instances. Implement cloud security measures aligned with compliance frameworks (CIS, SOC 2, HIPAA). Collaborate with data scientists and development teams to deploy production-ready solutions. Provide technical guidance and evaluate new cloud services. Necessary skills of the AWS More ❯

ServiceNow Agentforce into large-scale solutions. • Stakeholder Management: Exceptional executive presence, with experience advising public-sector and Fortune-level clients. • Governance & Compliance: Deep understanding of GDPR/UK GDPR, SOC2, ISO27001, and ethical-AI frameworks. Preferred Qualifications • Certifications: Azure Solutions Architect Expert, CISSP, or equivalent. • Experience with AI policy bodies, standards organizations, or government advisory panels. • Familiarity with cross-border More ❯

ServiceNow Agentforce into large-scale solutions. • Stakeholder Management: Exceptional executive presence, with experience advising public-sector and Fortune-level clients. • Governance & Compliance: Deep understanding of GDPR/UK GDPR, SOC2, ISO27001, and ethical-AI frameworks. Preferred Qualifications • Certifications: Azure Solutions Architect Expert, CISSP, or equivalent. • Experience with AI policy bodies, standards organizations, or government advisory panels. • Familiarity with cross-border More ❯

ServiceNow Agentforce into large-scale solutions. • Stakeholder Management: Exceptional executive presence, with experience advising public-sector and Fortune-level clients. • Governance & Compliance: Deep understanding of GDPR/UK GDPR, SOC2, ISO27001, and ethical-AI frameworks. Preferred Qualifications • Certifications: Azure Solutions Architect Expert, CISSP, or equivalent. • Experience with AI policy bodies, standards organizations, or government advisory panels. • Familiarity with cross-border More ❯

ServiceNow Agentforce into large-scale solutions. • Stakeholder Management: Exceptional executive presence, with experience advising public-sector and Fortune-level clients. • Governance & Compliance: Deep understanding of GDPR/UK GDPR, SOC2, ISO27001, and ethical-AI frameworks. Preferred Qualifications • Certifications: Azure Solutions Architect Expert, CISSP, or equivalent. • Experience with AI policy bodies, standards organizations, or government advisory panels. • Familiarity with cross-border More ❯

Company description: Founded and headquartered in Switzerland, Avaloq is continuously expanding its global footprint with around 2,500 colleagues in 12 countries, and more than 170 clients in 35 countries. We are an industry-leading provider of wealth management technology and services for financial institutions around the world, including private banks and wealth managers, investment managers, as well as … and risk assessment solutions It would be a real bonus if you have: Master's degree in Computer Science, Information Security, or a related field Experience or understanding of SOC 2 and DORA regulation What we offer: We realize that managing work life balance is a challenge we all face in our daily lives and in order to More ❯

of trust and accountability. Shape how the team works together, setting the cadence, communication flow, and rituals that make execution smooth and transparent. Governance, Compliance & Risk Maintain Trudenty's SOC 2 and ISO 27001 frameworks, keeping our compliance and security posture strong as we scale. Manage the compliance calendar, coordinate audits, and ensure cross-functional accountability for controls More ❯

GDPR, HIPAA, and OWASP, as well as leading risk assessments and managing the risk register. Key skills and responsibilities, Comprehensive knowledge of ISO 27001, NIST CSF, GDPR, HIPAA, SOC 2, and OWASP frameworks. Senior Security Analyst/Senior Security Engineer background Proven experience collaborating with software development teams and implementing technical controls. Skilled in articulating technical risks in More ❯

GDPR, HIPAA, and OWASP, as well as leading risk assessments and managing the risk register. Key skills and responsibilities, Comprehensive knowledge of ISO 27001, NIST CSF, GDPR, HIPAA, SOC 2, and OWASP frameworks. Senior Security Analyst/Senior Security Engineer background Proven experience collaborating with software development teams and implementing technical controls. Skilled in articulating technical risks in More ❯