1 to 25 of 38 Permanent SOC 2 Jobs in London

distinct phases: Phase 1: The Fixer (Months 1-6) Rapidly assess, identify gaps, and implement critical foundations—from security posture to operational resilience. Phase 2: The Builder (Months 6-18) Establish scalable structures and lead the product roadmap. Drive best practice development standards, build security credentials (SOC 2 … shoulder with Chris, you'll tackle four key areas: Product Security & Compliance – Audit Triangle, implement end-to-end security improvements, and establish pathways to SOC 2 compliance for our highly regulated clients Product Roadmap & Strategy – Create a conversational roadmap that balances new features with technical debt whilst guiding ...

distinct phases: Phase 1: The Fixer (Months 1-6) Rapidly assess, identify gaps, and implement critical foundations—from security posture to operational resilience. Phase 2: The Builder (Months 6-18) Establish scalable structures and lead the product roadmap. Drive best practice development standards, build security credentials (SOC 2 … shoulder with Chris, you'll tackle four key areas: Product Security & Compliance – Audit Triangle, implement end-to-end security improvements, and establish pathways to SOC 2 compliance for our highly regulated clients Product Roadmap & Strategy – Create a conversational roadmap that balances new features with technical debt whilst guiding ...

join our team. This role is key in ensuring Orbus Software maintains continuous compliance with major security frameworks, specifically ISO27001, IRAP, FedRAMP, and SOC 2 Type II. You will be the subject matter expert and primary point of contact for all compliance-related activities, both internally and with … this position. What You'll Do Act as the primary owner for Orbus Software's information security compliance program across ISO27001, IRAP, FedRAMP, and SOC 2 Type II, ensuring we stay continuously audit-ready Maintain and improve our compliance posture by defining controls, monitoring effectiveness, and driving ...

with Legal team members to ensure accurate representation of contractual terms, SLAs, and liability provisions Maintain up-to-date knowledge of relevant compliance frameworks (SOC 2, ISO 27001, GDPR, CCPA, etc.) Coordinate responses to security assessments and compliance questionnaires Support contract negotiations by providing proposal-related documentation and … certifications in proposal management (APMP) are a plus Preferred Qualifications Experience in cybersecurity or enterprise software companies Knowledge of common security frameworks and certifications (SOC 2, ISO 27001, FedRAMP, NIST) Understanding of SaaS business models and metrics Experience with legal contract terminology and standard commercial terms Familiarity with ...

with Legal team members to ensure accurate representation of contractual terms, SLAs, and liability provisions Maintain up-to-date knowledge of relevant compliance frameworks (SOC 2, ISO 27001, GDPR, CCPA, etc.) Coordinate responses to security assessments and compliance questionnaires Support contract negotiations by providing proposal-related documentation and … certifications in proposal management (APMP) are a plus Preferred Qualifications Experience in cybersecurity or enterprise software companies Knowledge of common security frameworks and certifications (SOC 2, ISO 27001, FedRAMP, NIST) Understanding of SaaS business models and metrics Experience with legal contract terminology and standard commercial terms Familiarity with ...

diverse range of global organisations. As an Information Security Manager, youll: Lead and support client engagements across frameworks such as ISO 27001, SOC 2, GDPR, PCI DSS, and more Deliver readiness assessments, internal audits, and advisory projects Facilitate client workshops, sharing your expert knowledge and guidance with senior … refining internal processes, and shaping best practices To be successful in this role, you will bring: Proven hands-on experience implementing ISO 27001 and SOC 2 frameworks to certification A strong background in GRC consulting for external clients Excellent communication skills and a collaborative approach to engaging with ...

and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. … total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children ...

Alert Logic, Qualys, M365 Security, and AWS Security Products. Understanding security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. We value teamwork, collaboration & technical excellence – the company are heavily ...

Alert Logic, Qualys, M365 Security, and AWS Security Products. Understanding security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. We value teamwork, collaboration & technical excellence – the company are heavily ...

designing and implementing next-generation cloud security architectures, securing WTW cloud environments, and driving automation and intelligence within Cybe r Defence Security Platforms & SOC Engineering. This is a hybrid role at London office with a requirement to be in the office based on the business need. The Role: Agentic … needs. Stay up to date with emerging threats, Microsoft security innovations, and industry trends to drive continuous security enhancements. Provide training and mentorship to SOC teams on Microsoft cloud security best practices. Team Management Manage and mentor a team of Cyber Defence Security Engineers. The Requirements: Must-Have Skills ...

security best practices in DevOps and operational workflows, including secrets management, vulnerability scans, and automated patching. Ensure compliance with relevant regulations and standards (e.g., SOC2, ISO 27001). Collaboration & Communication: Work cross-functionally with product, engineering, and operations teams to ensure alignment on goals and priorities. Provide regular updates ...

Experience securing cloud environments such as AWS, GCP, and/or Azure. Knowledge of security and IT frameworks such as NIST CSF, ISO 27001, SOC2, PCI-DSS. Experience using ASANA or any project management tools including creating integrations for reporting purposes. Experience in information security and IT practices around services ...

across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. ...

Defender for Cloud, encryption using Azure Key Vault, network security with NSGs and Azure Firewall, Azure Policy for governance, and compliance frameworks (ISO 27001, SOC 2, GDPR). Experience conducting security assessments using Microsoft Secure Score, implementing security hardening, and responding to security incidents. Backup & Disaster Recovery - Experience ...

monitor systems, networks, and logs then investigate security breaches, incidents and other cybersecurity events. You will also oversee compliance for regulatory requirements, such as SOC2, HIPAA, ISO 27001, GDPR and ensure systems adhere to these standards. You'll be part of a fast-paced, inclusive team that values creativity, curiosity ...

methodologies. Experience in industries relevant to Fusion such as telecoms, retail, utilities etc. Knowledge of specific industry regulations or compliance standards (e.g., ISO 27007, SOC 2, HIPAA, PCI DSS) relevant to MSP operations. Experience with APls, web services, and integration tools to connect ServiceNow with other enterprise systems. ...

multi-tenant SaaS platform; aligning to our product roadmaps. Identify and mitigate technical risks, ensuring SaaS solutions are secure. Compliance needs include keeping out SOC2 and ISO 27001 accreditations. Design and understand integration with customer networks and software products. Develop and maintain detailed high-quality design documentation. Working with ...

balances speed with sustainability. Passion for writing maintainable, scalable code. Knowledge of security and compliance best practices (e.g. HIPAA/GDPR, NHS DTAC, SOC 2). Bonus: experience in healthcare, medtech, or regulated environments. Why join Eolas Medical This is not a normal role. You will help define ...

Presales Consultant/SaaS Integrations/APIs/Security/Compliance/AWS/Azure/GCP/NLP/ML/ISO27001/SOC2/GDPR ...

and implement infrastructure tooling that promotes reliability, velocity, and aut onomy.Overseeing the management of our security processes, including audits and compliance efforts such as SOC 2.You'll sit within our engineering leadership group and report to th e CTO. What you'll n eed?...5+ years in infrastructure, DevOps ...

Cloud, Defender for Endpoint and EASM Vulnerability remediation and Secure Score improvement Purview (DLP, sensitivity labels, insider risk) Compliance uplift for ISO 27001, SOC 2, GDPR and NIS2 Configuration hardening, patching and policy deployment Entra ID, Conditional Access, PIM and cloud identity controls PowerShell and Microsoft Graph ...

enhance the firm’s Information Security function and overall security posture. Lead responses to client security questionnaires and audit follow-ups. Oversee ISO27001 and SOC 2 Type II audits. Select and implement tools to proactively detect and respond to threats. Drive continuous improvement of security practices across ...

robust data governance across the full lifecycle, including data lineage, access control, and retention. Partner with Security and Compliance teams to ensure adherence to SOC 2, ISO/IEC 27001, DORA, and other relevant frameworks. Ensure consistent metadata, documentation, and versioning across the data stack. Champion a data ...

Experience scaling multi-tenant SaaS applications. Experience with cloud platforms. (AWS, Google Cloud or Azure). Knowledge of containerisation (Docker or Kubernetes) Familiarity with SOC 2 readiness and security best practices. Experience with observability and monitoring. Background in fintech, lending or other regulated-data environments. Experience or interest … heard and welcome. This is also a chance to be part of bringing a game changing product to life This role is hybrid, 2-3 days in their offices at London Bridge Salary ranges from £80,000 - £125,000 with attractive EMI share options ...

trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making ...