1 to 25 of 35 Permanent SOC 2 Jobs in London

chaos to strategic partnerships Compliance & Security Transform compliance from a checkbox exercise into a sales accelerator that wins enterprise deals Own and execute our SOC 2 certification end‐to‐end with efficient, automated evidence gathering Turn RFI and security questionnaire responses into a competitive advantage—fast, thorough, repeatable … people) Able to manage and procure upwards of 50+ vendors, owning a budget in the 7 digits Track record implementing and maintaining compliance frameworks (SOC 2, ISO 27001, GDPR) Experience with enterprise sales support in a B2B SaaS company—you’ve answered RFIs and security questionnaires Proven ability ...

already HIPAA and ISO27001 certified, we’re heading into a PCI DSS audit shortly, and later this year we’ll have GDPR and SOC 2 Type II coming up. The role is based in our dog friendly office in London: The Bower, 207 122, Old Street, London EC1V … What you’ll own/h3 h3 Audits and certifications/h3 ul li Run the PCI DSS audit to completion, then GDPR and SOC 2 Type II this year/li li Serve as the main point of contact for external auditors scoping, evidence, walkthroughs, findings/ ...

external platform access Managing relationships with third-party security providers and ensuring recommendations are delivered effectively Supporting compliance initiatives across standards including ISO 27001, SOC 2 and NIST Acting as an escalation point for significant security incidents when required Driving security awareness and embedding best practice across … operational teams Hands-on scripting or automation experience using Python, Bash or similar tools Experience supporting audits, certifications and compliance frameworks including ISO 27001, SOC 2 and NIST Knowledge of security methodologies such as MITRE ATT&CK Excellent communication and stakeholder management skills Experience operating within high-growth ...

privacy law, and cross‐border transfer mechanisms (UK/EU/US/SG) Work closely with our vCISO to maintain ISO 27001 and SOC 2 compliance – owning the legal and policy layer, supporting audit cycles, and closing out action items Draft and maintain privacy notices, DPAs, and … improve contracts, not just mark them up Working knowledge of UK GDPR and practical experience managing compliance programmes or certification cycles (ISO 27001/SOC 2 exposure strongly preferred) Genuine AI literacy – you use Claude or equivalent tools in your workflow; drafting without them would feel like leaving ...

improve processes, thrive without rigid playbooks. Comfortable operating in scale-up environments where customer needs inform product direction. Security & Compliance Acumen: Understand security requirements, SOC 2/ISO 27001, data residency, audit logging, encryption. Trusted conduit between Sales and Technology - able to articulate product capabilities on security RFPs … task management, audit trails, reporting), how they integrate with risk management systems, and typical architecture patterns in Financial Services and Payments. Security Concepts: Understand SOC 2/ISO 27001, data residency and sovereignty, encryption at-rest/in-transit, audit logging, and role-based access control. Troubleshooting Mindset ...

security architecture standards and design patterns for products across cloud-based services, on-premises infrastructure, and customer-deployed solutions. Lead GRC initiatives in place (SOC2 and expanding), ISO27001 (Implementing), and new emerging GRC requirements. Partner with senior leadership and Information Security leadership to align product security initiatives with business objectives ...

This is a hybrid position. Expectation of days in the office will be confirmed by your Hiring Manager. Qualifications Experience of Security Operations Center (SOC) work experience with a Bachelor's degree. Experience in Cybersecurity or computer network defense role. Experience in operating and utilizing Security Information and Event … and related security best practices. Knowledge of OWASP (Open Web Application Security Project) Top Ten Risk Factors. Understanding orExperience working in an ISO27001/2, PC-DSS or SOC 2 environment. Technical proficiency in at least one programming language, and the ability to successfully complete a coding ...

Code: Bridging the gap between technical execution and regulatory requirements. You will build the automated systems that provide real-time evidence for frameworks like SOC 2, ISO 27001 & PCI ensuring we stay compliant without manual overhead. The Team You will be a key member of our growing Security … building the systems that check them for you. Security as Code: Design and maintain custom security tooling in Go to automate evidence collection for SOC2/ISO 27001 and remediation of security alerts. Infrastructure & IAM: Write and peer-review Terraform to manage identity and core infrastructure across AWS and ...

and Docker environments Data Loss Prevention (DLP) and SaaS security governance. Advanced detection engineering or SOAR playbook development. Experience supporting ISO 27001 or SOC 2 audits. Relevant certifications (e.g. CISSP, CISM, GIAC). Workplace & Benefits At Deliveroo we know that people are the heart of the business and ...

depth strategies.**Knowledge of Standards:*** Strong knowledge of relevant security standards and frameworks such as NIST, ISO 27001, CSA CCM, MITRE ATT&CK, SOC2 and OWASP.**Communication Skills:*** Ability to articulate technical risks and architectural decisions to both technical and non-technical audiences.**Certifications:*** Architectural qualifications (e.g., SABSA, TOGAF ...

recruiting for a Security Analyst with Ivanti Neurons experience to join one of our Insurance clients on a 6-month contract. Inside IR35 Hybrid- 2 days a week onsite in Reigate Responsibilities: Support the day-to-day vulnerability and patch management operations using Ivanti Neurons, including discovery, risk assessment ...

microservices, etc.) and evaluate new technologies that can drive business value.Risk & Compliance : Oversee technical risk management, data privacy, security standards, and regulatory compliance (SOC2, GDPR, HIPAA, etc. as applicable).Budget & Operations : Manage the engineering budget, vendor relationships, and infrastructure costs. Optimize resource allocation across projects and initiatives.Cross-functional Collaboration ...

platforms (Power BI, Looker) Enable predictive modelling and optimisation using modern ML toolkits Security, Compliance & Responsible AI Ensure alignment with enterprise security standards (SOC2, ISO27001, NIST) Champion explainability, bias mitigation, and ethical AI practices Leadership & Talent Build and lead high-performing global teams across AI, data, and automation Foster ...

services, banking, or payments. Experience in InfoSec and Cyber Security. Experience setting up policies and processes in InfoSec area. Familiarity with PCI-DSS, ISO27001, SOC 2/3 or other global standards. Familiarity with regulatory requirements (DORA, PCI-DSS, PSD2, GDPR). Understanding of agile development processes and ...

security controls. Experience supporting risk assessments, audits, compliance reviews, or control testing activities. Knowledge of security and compliance frameworks such as ISO 27001, NIST, SOC2, or GDPR. Ability to analyse technical risks and communicate findings clearly to technical and non-technical stakeholders. Desirable: Experience within financial services, FinTech, or other ...

e.g., pen tests, scanning). Experience delivering security awareness and incident exercising programmes. Working knowledge of assurance frameworks and resilience expectations (e.g., ISO 27001, SOC 2, NIST CSF). Candidates should be strongly motivated by BII’s development mission and ideally demonstrate some commitment to development or social ...

London CityRole SummaryTheSecurity Awareness Lead is responsible for developing, delivering, andContinuously improving global security awareness and behaviour change programme across a multinational organisation of 2,000+ users. This roleEnsures employees, contractors, and partners understand their securityResponsibilities, make secure decisions, and actively contribute to a strongSecurity culture.The ideal candidate … regions and business units. Develop KPIs and metrics to track behavioural change, susceptibility, and programme effectiveness. Use data insights from Phishing, security incidents, and SOC analytics to drive targeted Interventions. 4. Stakeholder Engagement Collaborate closely with HR, Communications, IT, Data Protection, Legal, and Regional Business Leads. Influence senior stakeholders ...

wait for DevOps — you are DevOps. Security-first thinking.Encryption in transit and at rest (TLS 1.2+, AES-256). Data minimisation. GDPR, HIPAA, SOC 2 are not afterthoughts — they're built in from the start. Autonomous and fast.You don't need to be told what to do. ...

Proven ability to identify and reduce real‐world security risk. Experience supporting audits, compliance, and security assurance activities across frameworks such as ISO 27001, SOC 2, and NIST, with familiarity with threat‐led methodologies like MITRE ATT&CK and an awareness of emerging areas such as AI security. ...

trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making ...

client workflows, leveraging Tungsten Automation's cutting-edge technologies Security & Compliance Enterprise Security : Maintain a strong grasp of enterprise security practices (IAM, data encryption, SOC2, GDPR, HIPAA) when integrating AI into regulated industries What You Bring Educational Foundation Bachelor's degree in Computer Science, Information Systems, or a related technical ...

cloud security posture management. Experience running or contributing to a Security Champions program. Experience with threat modelling (e.g. STRIDE). Familiarity with SOC 2 and ISO 27001. Relevant certifications are considered a plus (e.g. CISSP, IaaS specific certifications). Benefits UK Competitive compensation package Private medical insurance Private ...

Strong executive communication and stakeholder management skills Experience leading and scaling teams within a consulting environment Knowledge of security frameworks (e.g. GDPR, NIST, ISO27001, SOC2) You will gain exposure with: Enterprise-scale Microsoft Security transformation programmes Strategic collaboration across global Microsoft-focused teams Design and delivery of managed security services ...

compliance with. This includes ISO standards such as 13485 and 27001, NHS standards such as DSPT, CyberEssentials+, and DCB0129, and other needs such as SOC2 for our US customers. Regulatory system ownership Design, operate, and continuously improve Dyad’s compliance framework across: Software lifecycle compliance Clinical safety integration Information security … e.g. DCB0129/DCB0160) Experience integrating regulatory requirements into product development workflows. Information security & data protection Experience implementing or maintaining ISO 27001. Familiarity with SOC 2, HIPAA, GDPR, and NHS standards such as DTAC and DSPT. Experience leading DPIAs and privacy risk assessments. Practical understanding of privacy ...

/ITSM processes Desirable Experience with Okta Workflows or Privileged Access Exposure to AWS SSO/Identity Center Knowledge of compliance frameworks: ISO 27001 SOC 2 GDPR Experience with endpoint management tools (Intune, Jamf) Why Join? Opportunity to own and shape IAM strategy within a global organisation Work ...