1 to 25 of 35 Permanent SOC 2 Jobs in London

role with strategic scope. You'll split your time between infrastructure security engineering (Terraform, AWS security services, CI/CD hardening), compliance programme execution (SOC 2, GDPR, ISO 27001), and partnering with engineering teams to build security into their workflows from the start. Our environment: AWS infrastructure … pipelines. You'll establish security controls for our AI workflows, including Bedrock integrations, prompt validation, and model access governance. You'll lead our SOC 2 Type II compliance programme, establish security policies for GDPR and ISO 27001, and implement automated compliance monitoring. Day-to-day, you'll write ...

scale globally. What you'll do Apply expert knowledge of security frameworks and controls such as NIST, ISO22301, ISO27001, ISO27017/18, ISAE3000/SOC2, and GDPR to support security governance. Support the development, maintenance, and continual improvement of the ISMS and BCMS. Assist in drafting and maintaining Information Security … years' experience in Information Security, ideally within a fast-paced technology or financial services industry. Strong working knowledge of frameworks such as ISO27001, ISO22301, SOC 1, SOC 2, NIST, and GDPR. Proven experience developing, implementing, and improving information security policies, standards, and controls aligned to recognised frameworks. ...

provide visibility into spend, and optimise usage across cloud platforms. Cloud Security & Compliance: Ensure compliance with relevant compliance and regulatory frameworks (e.g., ISO 27001, SOC 2, HIPAA, HDS, GDPR as applicable) and implement best-in-class cloud security controls. Software Delivery Pipelines: Design, implement, and maintain CI/… ability to influence across engineering, security, and finance. Nice-to-Have Experience with regulated industries (e.g., healthcare, fintech). Familiarity with multiple compliance frameworks (SOC 2, HIPAA, PCI-DSS). Strong networking and systems engineering background. Hands-on coding or scripting experience (Python, Go, or similar). ...

designing and implementing cutting-edge security and compliance programs. As a fast-growing startup, we specialize in a wide range of frameworks—including SOC 2, ISO 27001, GDPR, CMMC, NIST 800-171, NIST 800-53, and FedRAMP—empowering companies to meet regulatory requirements and enhance their cybersecurity posture … compliance expert who loves solving problems and working with customers. You might be a great fit if you: Have hands-on experience with SOC 2, ISO 27001, GDPR: We’re looking for sellers that understand these frameworks to act as a trusted advisor to prospects. This ...

like Prometheus, Grafana, etc. 5+ years experience of maintaining infrastructure-as-code on Google Cloud Platform, Amazon Web Services and Azure. Experience working in SOC 2 Type 1 and Type 2 certified companies. Nice-to-Have Proficiency in scripting and programming languages such as BASH, Golang, Python ...

and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. … total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children ...

and protocols Identity and access management Familiarity with OT security and standards (IEC 62443, NIST CSF). Knowledge of regulatory frameworks (ISO 27001, GDPR, SOC 2). Excellent problem-solving and communication skills. Relevant certifications: CISSP, CISM, CCSP, SABSA, or equivalent. Experience in hyperscale or colocation data centre ...

designing and implementing next-generation cloud security architectures, securing WTW cloud environments, and driving automation and intelligence within Cybe r Defence Security Platforms & SOC Engineering. This is a hybrid role at London office with a requirement to be in the office based on the business need. The Role: Agentic … needs. Stay up to date with emerging threats, Microsoft security innovations, and industry trends to drive continuous security enhancements. Provide training and mentorship to SOC teams on Microsoft cloud security best practices. Team Management Manage and mentor a team of Cyber Defence Security Engineers. The Requirements: Must-Have Skills ...

across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. ...

Alert Logic, Qualys, M365 Security, and AWS Security Products. Understanding security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. We value teamwork, collaboration & technical excellence – the company are heavily ...

Alert Logic, Qualys, M365 Security, and AWS Security Products. Understanding security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. We value teamwork, collaboration & technical excellence – the company are heavily ...

detection and continuous reliability improvement. Security & Compliance: Implement and maintain security best practices across the platform — including secrets management, access control, and compliance (e.g., SOC2, ISO 27001). Collaboration: Partner with product, application, and data teams to align platform services with business goals and ensure consistent, efficient development practices. Mentorship ...

detection and continuous reliability improvement. Security & Compliance: Implement and maintain security best practices across the platform — including secrets management, access control, and compliance (e.g., SOC2, ISO 27001). Collaboration: Partner with product, application, and data teams to align platform services with business goals and ensure consistent, efficient development practices. Mentorship ...

Defender for Cloud, encryption using Azure Key Vault, network security with NSGs and Azure Firewall, Azure Policy for governance, and compliance frameworks (ISO 27001, SOC 2, GDPR). Experience conducting security assessments using Microsoft Secure Score, implementing security hardening, and responding to security incidents. Backup & Disaster Recovery - Experience ...

methodologies. Experience in industries relevant to Fusion such as telecoms, retail, utilities etc. Knowledge of specific industry regulations or compliance standards (e.g., ISO 27007, SOC 2, HIPAA, PCI DSS) relevant to MSP operations. Experience with APls, web services, and integration tools to connect ServiceNow with other enterprise systems. ...

ability to engage and motivate learners of all levels Familiarity with various cybersecurity frameworks and compliance standards, in particular ISO27001, PCI DSS and SOC2 Previous experience in training, teaching, or presenting, with the ability to explain complex concepts in an easy-to-understand manner Proficiency in writing, editing, and delivering ...

enhance the firm’s Information Security function and overall security posture. Lead responses to client security questionnaires and audit follow-ups. Oversee ISO27001 and SOC 2 Type II audits. Select and implement tools to proactively detect and respond to threats. Drive continuous improvement of security practices across ...

Proven ability to balance security risk with pragmatic business outcomes in fast‐moving organisations. Nice to have: Exposure to regulatory frameworks (e.g. PCI DSS, SOC 2) or regulated industries (FinTech, payments, financial services). Relevant security or IAM certifications (e.g. CISSP, CISM, vendor‐specific IAM certs). ...

robust data governance across the full lifecycle, including data lineage, access control, and retention. Partner with Security and Compliance teams to ensure adherence to SOC 2, ISO/IEC 27001, DORA, and other relevant frameworks. Ensure consistent metadata, documentation, and versioning across the data stack. Champion a data ...

Cognito, S3, OpenSearch) Node.js/TypeScript & Python DynamoDB & PostgreSQL Serverless & microservices architecture Terraform, Docker, CI/CD Security/Compliance (HIPAA, GDPR, NHS DTAC, SOC2) What You’ll Do Build highly scalable backend services and APIs Work on LLM-powered features (RAG pipelines, embedding workflows) Develop agentic document extraction systems ...

Vendor Governance Forum. Audit Support: Assist the team in achieving and maintaining compliance with key regulatory and industry frameworks, including GDPR, ISO 27001, SOC2, and PCI DSS, by gathering evidence and documenting controls. Policy & Standards: Help translate high-level security policies into practical, actionable security standards and control requirements … conducting vendor security assessments and performing technical due diligence on third parties Good working knowledge of common security frameworks and regulations (e.g., ISO 27001, SOC2, PCI DSS), with experience supporting audit processes A strong understanding of common web application vulnerabilities and effective mitigation strategies Awareness or practical experience with ...

Experience scaling multi-tenant SaaS applications. Experience with cloud platforms. (AWS, Google Cloud or Azure). Knowledge of containerisation (Docker or Kubernetes) Familiarity with SOC 2 readiness and security best practices. Experience with observability and monitoring. Background in fintech, lending or other regulated-data environments. Experience or interest … heard and welcome. This is also a chance to be part of bringing a game changing product to life This role is hybrid, 2-3 days in their offices at London Bridge Salary ranges from £80,000 - £125,000 with attractive EMI share options ...

experience working in fintech, payments, or financial services. Proven track record managing PSD2, AML and GDPR etc Experience with ISO 27001 and/or SOC 2 Excellent communication skills ...

trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making ...

and implementing enterprise data architectures, including data modeling, storage, integration, and analytics. Strong knowledge of data governance frameworks, data privacy, and compliance (e.g., GDPR, SOC 2). Hands-on experience with modern data platforms (both cloud and on-premises), data lakes, and data warehousing solutions. Excellent communication and ...