1 to 25 of 31 Permanent SOC 2 Jobs in London

chaos to strategic partnerships Compliance & Security Transform compliance from a checkbox exercise into a sales accelerator that wins enterprise deals Own and execute our SOC 2 certification end‐to‐end with efficient, automated evidence gathering Turn RFI and security questionnaire responses into a competitive advantage—fast, thorough, repeatable … people) Able to manage and procure upwards of 50+ vendors, owning a budget in the 7 digits Track record implementing and maintaining compliance frameworks (SOC 2, ISO 27001, GDPR) Experience with enterprise sales support in a B2B SaaS company—you’ve answered RFIs and security questionnaires Proven ability ...

will own the evolution of our security posture. Youll be the driving force behind our SIEM/SOAR capabilities and the guardian of our SOC 2 Type II and ISO 27001 standards. Key Responsibilities: Security Operations: Lead monitoring, detection, and incident response for internal and client-facing systems. … real-world threats (malware, phishing, cloud misconfigurations) and ensure rapid remediation. Vulnerability Management: Conduct regular assessments, penetration testing, and risk analysis. Compliance & GRC: Maintain SOC 2 Type II accreditation and lead ISO 27001 readiness. Administer compliance platforms like Drata. DevSecOps: Collaborate with Engineering and IT to integrate security ...

already HIPAA and ISO27001 certified, we’re heading into a PCI DSS audit shortly, and later this year we’ll have GDPR and SOC 2 Type II coming up. The role is based in our dog‐friendly office in London: The Bower, 207‐122, Old Street, London EC1V … 9NR. What you’ll own Audits and certifications Run the PCI DSS audit to completion, then GDPR and SOC 2 Type II this year Serve as the main point of contact for external auditors—scoping, evidence, walkthroughs, findings Maintain HIPAA and ISO 27001 compliance between recertifications Compliance operations ...

scaling Own and improve CI/CD pipelines across backend, frontend, and data services Implement observability frameworks (logging, metrics, tracing, alerting) Prepare infrastructure for SOC 2/ISO 27001 audits Drive high availability and reliability across systems Monitor and optimise cloud costs without sacrificing performance … Strong understanding of: Networking (VPCs, DNS, load balancers, VPNs) Security best practices and secrets management Observability and monitoring systems Experience supporting or preparing for SOC 2, ISO 27001, or similar compliance frameworks Background in high-growth, startup, or scaling environments is highly beneficial ⚡ What to Expect This ...

external platform access Managing relationships with third-party security providers and ensuring recommendations are delivered effectively Supporting compliance initiatives across standards including ISO 27001, SOC 2 and NIST Acting as an escalation point for significant security incidents when required Driving security awareness and embedding best practice across … operational teams Hands-on scripting or automation experience using Python, Bash or similar tools Experience supporting audits, certifications and compliance frameworks including ISO 27001, SOC 2 and NIST Knowledge of security methodologies such as MITRE ATT&CK Excellent communication and stakeholder management skills Experience operating within high-growth ...

external platform access Managing relationships with third-party security providers and ensuring recommendations are delivered effectively Supporting compliance initiatives across standards including ISO 27001, SOC 2 and NIST Acting as an escalation point for significant security incidents when required Driving security awareness and embedding best practice across … operational teams Hands-on scripting or automation experience using Python, Bash or similar tools Experience supporting audits, certifications and compliance frameworks including ISO 27001, SOC 2 and NIST Knowledge of security methodologies such as MITRE ATT&CK Excellent communication and stakeholder management skills Experience operating within high-growth ...

configurations across cloud infrastructure Acting as first responder to security events - building and maintaining an incident response playbook Supporting the company's journey toward SOC 2 Type II compliance - liaising with auditors and maintaining evidence Educating the broader team on security hygiene, phishing risks and best practices. What … Looking For: 2-4 years in an IT security, security operations or IT support role with a strong security focus Practical experience with endpoint management and MDM tools (Jamf, Kandji, Mosyle or equivalent) Working knowledge of cloud platform security (AWS, GCP or similar) Understanding of identity and access management ...

vulnerabilities from audits, penetration tests, and assessments Ensure timely closure of findings with clear, audit-ready evidence Deliver and maintain technical controls aligned with SOC 2 and ISO 27001 Support customer, supplier, and contractual security assurance activities Own and enhance the security awareness programme, including phishing simulations Manage … Defender, M365) Experience implementing Zero Trust, identity, and endpoint security controls Track record of remediating audit and penetration test findings Solid understanding of SOC 2, ISO 27001, and security control frameworks A proactive, delivery-focused mindset with confidence to challenge and influence stakeholders The successful Cyber Security Engineer ...

and oral communication skills, and ability to assimilate easily into teams Strong technical skills and a working knowledge of SOX IT General Controls, COSO, SOC 1, and SOC 2 Awareness of ISO 27001, GDPR, and other relevant standards Effective analytical and critical thinking abilities Entrepreneurial nature, self ...

cloud security and compliance Own platform‐level security decisions and risk mitigation Ensure secure‐by‐design infrastructure and access controls Support compliance initiatives (SOC 2, ISO:27001) Leadership & Team Development Lead and mentor the DevOps team including DevOps engineers, IT Support and an Information Security Officer Provide technical ...

recruiting for a Security Analyst with Ivanti Neurons experience to join one of our Insurance clients on a 6-month contract. Inside IR35 Hybrid- 2 days a week onsite in Reigate Responsibilities: Support the day-to-day vulnerability and patch management operations using Ivanti Neurons, including discovery, risk assessment ...

platforms (Power BI, Looker) Enable predictive modelling and optimisation using modern ML toolkits Security, Compliance & Responsible AI Ensure alignment with enterprise security standards (SOC2, ISO27001, NIST) Champion explainability, bias mitigation, and ethical AI practices Leadership & Talent Build and lead high-performing global teams across AI, data, and automation Foster ...

platforms Enable predictive modelling and optimisation to support strategic decision-making Security, Compliance & Responsible AI Ensure alignment with enterprise security and risk frameworks (SOC2, ISO27001, NIST) Champion ethical AI, explainability, and bias mitigation across all AI initiatives Work closely with risk, legal, and compliance teams in a highly governed environment ...

e.g., pen tests, scanning). Experience delivering security awareness and incident exercising programmes. Working knowledge of assurance frameworks and resilience expectations (e.g., ISO 27001, SOC 2, NIST CSF). Candidates should be strongly motivated by BII’s development mission and ideally demonstrate some commitment to development or social ...

equivalent; conditional access policy design and implementation o DDoS mitigation, BGP security, and network resilience engineering for latency-sensitive financial infrastructure o ISO 27001, SOC 2, DORA, or equivalent - hands-on implementation, not just audit participation o Red team, adversarial simulation, or penetration testing programme design - experience ...

leading the development of enterprise-wide MIRP and DR testing programs. Familiarity with compliance frameworks such as ISO 22301, NIST SP 800-34, or SOC 2 Type II in the context of operational resilience. Prior experience supporting regulated industries (e.g., finance, healthcare, government) with stringent uptime, data protection ...

Infrastructure as Code (Terraform or CloudFormation) Proven experience leading cloud migration strategies and implementations Strong understanding of cloud security and compliance frameworks (e.g. CIS, SOC2) Experience with DevOps tooling (e.g. Git, Jenkins, Docker, Kubernetes) Ability to work in fast-paced, client-facing environments Desirable: Multi-cloud experience (AWS, Azure ...

models into production systems. Design, optimise, and scale PostgreSQL databases (schema design, indexing, performance tuning). Build secure systems aligned with regulatory standards including SOC 2, GDPR, and FCA expectations. Contribute to event-driven and distributed system architecture using async processing patterns. Improve system reliability, observability, and performance ...

this one's for you. What You'll Own Design, build, and evolve our cloud infrastructure to keep pace with rapid product growth Lead SOC 2/ISO 27001 audit preparation, turning compliance into a competitive advantage Build and maintain robust CI/CD pipelines across backend, frontend ...

/RPO concepts, with experience validating recovery procedures You're collaborative with great communication skills It would be great to ISO 27001 or SOC2 accreditation What's in it for you: Salary to £90k Remote or hybrid working plus flexible, family friendly working hours Stock ownership plan Private Healthcare Pension ...

client workflows, leveraging Tungsten Automation's cutting-edge technologies Security & Compliance Enterprise Security : Maintain a strong grasp of enterprise security practices (IAM, data encryption, SOC2, GDPR, HIPAA) when integrating AI into regulated industries What You Bring Educational Foundation Bachelor's degree in Computer Science, Information Systems, or a related technical ...

systems in production Familiarity with prompt management, tool calling, evaluation, and AI safety patterns Healthcare or regulated-industry experience, including familiarity with HIPAA or SOC-2 compliance Experience with claims data, EHR-derived datasets, or real-world evidence Strong written and verbal communication skills with technical and non-technical ...

Strong executive communication and stakeholder management skills Experience leading and scaling teams within a consulting environment Knowledge of security frameworks (e.g. GDPR, NIST, ISO27001, SOC2) You will gain exposure with: Enterprise-scale Microsoft Security transformation programmes Strategic collaboration across global Microsoft-focused teams Design and delivery of managed security services ...

/ITSM processes Desirable Experience with Okta Workflows or Privileged Access Exposure to AWS SSO/Identity Center Knowledge of compliance frameworks: ISO 27001 SOC 2 GDPR Experience with endpoint management tools (Intune, Jamf) Why Join? Opportunity to own and shape IAM strategy within a global organisation Work ...

This is a permanent hire for an Operational Resilience Manager, based in West London with a hybrid model of 2 days a week onsite (non-negotiable). Essentials Operational resilience experience, including BIA, critical process mapping, incident management, and third-party risk, with a solid understanding of core resilience … clearly across different levels of the organisation Nice to have Client management experience Cloud environments (AWS) Knowledge Hands-on experience with ISO 27001 and SOC 2 Team management experience as there are 2 direct reports part of this role ...