24 of 24 Permanent SOC 2 Jobs in London

Cybersecurity Engineer (ISO27001 & SOC 2 Lead) Location: London (3 days per week onsite) Must have Right to Work: Cannot provide sponsorship Overview A newly created role to take ownership of ISO27001 and SOC 2 certification, ongoing compliance, and the organisation's overall security posture. This position … transitioned or is transitioning into cybersecurity and wants to operate as the central technical security owner. Key Responsibilities Security Governance & Compliance (ISO27001 & SOC 2) Own and maintain ISO27001 and SOC 2 certification processes. Lead evidence collection, control implementation, compliance documentation, and readiness for external audits. Maintain ...

with a willingness to broaden your expertise.Understanding of hybrid and on-premise security concepts.Awareness of key frameworks such as ISO 27001, NIST, SOC 2, and CIS Controls.Cloud Security Technologies & PlatformsExperience with some of the following is helpful (not all required):Microsoft Defender for Cloud, AWS Security Hub, GuardDuty … KeywordsCloud Security, Cyber Security, Pre-Sales Consultant, Azure Security, AWS Security, GCP Security, CSPM, CIEM, IAM, Zero Trust, SIEM, XDR, Kubernetes Security, DevSecOps, ISO27001, SOC 2, Security Consultant. ...

Infrastructure as Code – Build and maintain Terraform across projects, networks, IAM, and services Enforce security and compliance – Implement controls aligned with healthcare requirements (HIPAA, SOC 2, ISO 27001); configure IAM, service accounts, workload identity, network security, and audit logging; support audits and remediation activities Manage internet-facing architecture …/identity-based access models Experience with containerised and serverless workloads (Cloud Run, GKE, Docker) Practical experience implementing security controls in cloud environments (SOC 2, ISO 27001, HIPAA, or similar) Experience operating web-facing, security-sensitive systems Comfortable working closely with ML, data, and product teams to translate ...

Zscaler, or equivalent; conditional access policy design and implementation DDoS mitigation, BGP security, and network resilience engineering for latency-sensitive financial infrastructure ISO 27001, SOC 2, DORA, or equivalent - hands-on implementation, not just audit participation Red team, adversarial simulation, or penetration testing programme design - experience on both … Zscaler, or equivalent; conditional access policy design and implementation DDoS mitigation, BGP security, and network resilience engineering for latency-sensitive financial infrastructure ISO 27001, SOC 2, DORA, or equivalent - hands-on implementation, not just audit participation Red team, adversarial simulation, or penetration testing programme design - experience on both ...

Prometheus, Grafana, ELK Stack, or Datadog. Experience with security best practices, monitoring, and incident response. Familiarity with DevSecOps and compliance frameworks (ISO 27001, SOC 2, GDPR). Exposure to big data processing, ML pipelines, or simulation workflows. Bonus: Existing interest in data science and simulation workflows ...

and cloud compliance best practices. Experience with scripting languages (e.g., Python, Bash, PowerShell). Understanding of security certifications or industry compliance (e.g., ISO 27001, SOC 2) is a plus. Experience with Kubernetes or OpenShift for container orchestration. Familiarity with CI/CD pipelines and automation tools (e.g., GitHub ...

and cloud compliance best practices. Experience with scripting languages (e.g., Python, Bash, PowerShell). Understanding of security certifications or industry compliance (e.g., ISO 27001, SOC 2) is a plus. Experience with Kubernetes or OpenShift for container orchestration. Familiarity with CI/CD pipelines and automation tools (e.g., GitHub ...

ability to influence senior stakeholders Desirable: Experience leading or maturing ISO 27001 programmes Exposure to operational resilience or outsourced service provider requirements Familiarity with SOC 2 and cyber assurance testing Personal Attributes Strategic and analytical mindset Confident working with senior leadership Able to make pragmatic, risk-based decisions ...

automation tasks. Strong understanding of API security, IAM policies, network security, and secrets management. Bonus Points For: Experience in regulated fintech or compliance frameworks (SOC2, ISO 27001, PCI DSS, DORA). Certifications such as Google Cloud Professional Security Engineer, CKS, or CISSP. Why You’ll Love Working Here Competitive salary ...

across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. ...

and optimisation modelling using PyCaret, Prophet, and Optuna to strengthen data‐driven decision‐making. Security, Compliance & Responsible AI Ensure alignment with enterprise security frameworks (SOC2, ISO27001, NIST). Oversee identity and access management via Azure AD, OAuth2, OpenID Connect, and enterprise IAM systems. Champion ethical AI practices, including bias detection ...

highly regulated technical environment. Frameworks: Expert-level knowledge of NIST CSF 2.0 , ISO 27001 , and NIST 800-53 . Familiarity with TPN (MPA) or SOC 2 is highly preferred. Technical Fluency: You do not need to be a coder, but you must understand core security concepts (e.g., SAML ...

frameworks. Ability to interpret high-level security concepts and translate them into usable, pragmatic controls. Knowledge of recognised frameworks (e.g., ISO 27001, NIST CSF, SOC 2) without needing to be tied to specific industry implementations. Comfortable engaging with senior stakeholders and presenting risk and security themes with clarity. ...

Service Manager - ITIL/ITSM - hybrid - £80K Hybrid - 2 days a week in office - Kings Cross Are you a proactive IT Service Manager who wants to lead technology service operations and ensure consistent, reliable performance across systems and platforms? In this role, you'll take ownership of incident management … desk triage and out-of-hours support coverage. Partner with key stakeholders across Product, Engineering, and Compliance to support audit readiness (ISO 27001/SOC 2). What you'll need: 5+ years' experience in IT service management, ITSM, ITIL, including awareness of Devops/Strong understanding ...

relevant standards and the relevant GM UK policies/processes (including ISO/IEC 27001, ISO 9001, ISO 20000-1 and potentially SOC1 and 2) with the design, delivery of the project and longer-term operation Managing users and managers engagement within the project Assisting with process documentation relation ...

systems scale with Circadia’s growth. Security & Compliance Ensure all ML pipelines and infrastructure meet healthcare security and privacy requirements, including HIPAA and SOC 2. Apply best practices for handling Protected Health Information (PHI) in training data, model artifacts, and inference outputs. Maintain audit trails for model decisions, data ...

and orchestration technologies like Docker and Kubernetes is essential. Exposure to IoT or edge environments, high-scale data systems, or compliance frameworks such as SOC 2 is beneficial but not required. This opportunity offers the chance to take ownership of meaningful systems, work on technically challenging problems, and ...

able to communicate problems and solutions with ease. What You'll Be Doing As a Backend Support Engineer, you will be the primary Level 2 technical responder during UK operating hours, ensuring our platform runs smoothly for our global partners and clients. Your responsibilities will include: Owning Level 2+ ...

Senior Security Analyst/Security Engineer to strengthen a Microsoft-centric security posture across detection, response, tooling, and infrastructure hardening. Not a one-lane SOC role. Not governance-heavy. This role blends incident response with security engineering and hardening and ideal for someone with 4–5 years’ experience … analytics, baselines and security automation Run vulnerability scanning using tools like Tenable, Pentera, Varonis, Secure Score Support compliance work (ISO 27001, Cyber Essentials, NIST, SOC2) Contribute to threat hunting, threat intelligence application and proactive monitoring Support operational resilience: scenario testing, DR exercises, post-incident reviews Assist with security tooling assessments ...

secure hiring platform used by employers to review candidates. Your profile stays anonymous until you match. Click Apply to continue. It takes 2 minutes. Senior Security Engineer London Hybrid High growth AI Technology Company £85,000 to £115,000 plus bonus and equity We are working with a fast … teams. Key Responsibilities Design and implement security strategies, policies and controls Lead vulnerability assessments, penetration testing and remediation Oversee regulatory and compliance frameworks including SOC2, ISO 27001 and GDPR Monitor systems and respond to incidents and security events Strengthen AWS and GCP cloud security environments Support customer and sales teams ...

risk assessments, evaluating client environments from both a technical and business perspective. Review IT governance, systems, and controls against recognized standards (ITIL, COBIT, NIST, SOC2, ISO). Design and implement solutions to enhance performance, improve resilience, and increase value for clients. Experience required Significant consulting or industry experience focused … stakeholders. Experience guiding teams, planning engagements, and managing project delivery. Working knowledge and practical use of industry standards such as COBIT, ISO27001, NIST CSF, SOC2, and ITIL. A collaborative mindset and passion for driving results. Technology Risk & Resilience, Senior Consultant - London, Hybrid - £50k-£58k + bonus Robert Half Ltd acts ...

Developing CI/CD pipelines and automation across the stack Implementing observability, monitoring, and telemetry (cloud + edge) Supporting security and compliance standards (e.g. SOC2, HIPAA) Improving developer workflows and engineering productivity What We Are Looking For 5+ years working with AWS infrastructure (Terraform, Pulumi, or similar) Strong experience with … experience with observability tools (Grafana, Prometheus) Nice to Have Experience with IoT/edge infrastructure (device provisioning, OTA updates) Hybrid or multi-cloud environments SOC2 compliance exposure High-scale data processing systems Why Join? Competitive salary + equity High-impact role with real ownership Work alongside experienced founders and ...

implementation of the Operational Resilience Framework (ORF) outlining Business Continuity (BCM) and Disaster Recovery (DR) program requirements based on industry standards (ISO 22301, NIST, SOC2) and applicable regulatory requirements. Lead the update of relevant policy updates to reflect program development and application of requirements to the business based on criticality. … bring experience across technical and non-technical continuity practices You are fluent in external compliance and audit frameworks (ISO 22301, NIST 800-34, SOC2, GDPR) and skilled in preparing evidence for assessments ...

form with your information, CV, video link and answer to the question "Why are you applying for this role?” Optional: Record a short (max 2 min) video introducing yourself and telling us why you should do sales at ProcurePro. You can use a free tool such as Loom What … beliefs, and life experiences to join our team. We complete police/background checks or the equivalent once you join as part of our SOC2 compliance requirements. We cannot sponsor visas. You must be based in the country of the advertised role and have the right to work independently. Otherwise ...