14 of 14 Permanent SOC 2 Jobs in London

RaaS) platforms. Reporting to the Head of Compliance, this role is responsible for implementing, operating, and maintaining security controls, supporting certification to ISO 27001, SOC 2, and other relevant security frameworks, and embedding security-by-design into engineering, IT, and product operations as the business scales globally. This … Maintain risk assessments, risk registers, Statements of Applicability, and control mappings. Collect, manage, and present evidence for ISO 27001 certification and surveillance audits. Support SOC 2 readiness, control operation, evidence gathering, and audit coordination. Security Controls and Engineering Integration Implement and maintain security controls across: Cloud infrastructure and ...

Infrastructure as Code – Build and maintain Terraform across projects, networks, IAM, and services Enforce security and compliance – Implement controls aligned with healthcare requirements (HIPAA, SOC 2, ISO 27001); configure IAM, service accounts, workload identity, network security, and audit logging; support audits and remediation activities Manage internet-facing architecture …/identity-based access models Experience with containerised and serverless workloads (Cloud Run, GKE, Docker) Practical experience implementing security controls in cloud environments (SOC 2, ISO 27001, HIPAA, or similar) Experience operating web-facing, security-sensitive systems Comfortable working closely with ML, data, and product teams to translate ...

Cybersecurity is fast growing ventured back startup that provides best-in-class cybersecurity and compliance. Our software and services simplify complex compliance frameworks including SOC2, ISO 27001, HIPAA, and others, empowering businesses to scale securely and confidently. We're backed by top tier investors like Y Combinator and have offices … contract fee) Performance-based commission Uncapped upside Top performers will earn meaningfully above OTE. About the Role We are hiring an Account Executive with 2-4 years of B2B SaaS closing experience. This is not an entry-level role. This is a full-cycle Account Executive position for someone ...

container security. Identity & Access Management experience (e.g. Okta). Experience with JVM languages, Terraform/IaC, CDK, or React. Familiarity with GDPR, ISO 27001, SOC 2, EU AI Act/LLMs. Experience delivering audits or using GRC tools (e.g. Drata, Vanta) Interest in AI and/or knowledge ...

Prometheus, Grafana, ELK, etc.). Strong communication skills and the ability to collaborate across engineering teams. Knowledge of compliance/security frameworks (PCI DSS, SOC2, ISO, GDPR). Experience with microservices and serverless environments. Familiarity with SQL/NoSQL databases. Proven ability to lead technical initiatives in complex environments. Location ...

assurance programmes. Proven experience designing, executing, and improving structured vendor due diligence processes. Strong understanding of vendor-held assurance artefacts such as ISO 27001, SOC 2, CSA STAR/CAIQ, and security questionnaires. Ability to communicate complex vendor-related cyber risks clearly to both business and technical audiences. ...

Experience with authentication methods such as OAuth 2.0, API keys, JWT IT background with experience supporting, integrating, or administering enterprise software systems Exposure to SOC 2, GDPR, or enterprise security requirements Experience with Infrastructure as Code (CDK, CloudFormation, or Terraform) Knowledge of CI/CD pipelines and deployment … backed by real clients, real revenue, and real partnerships What We Offer 25 days holiday + bank holidays Pension scheme with 10% employer contribution 2% interest rate reduction on home mortgages Professional development & life assistance programs Snacks sent to your door—you pick, we pay 50% off Apple products ...

similar) • Experience improving developer workflows, not just running tools • AWS (IAM, networking, compute, storage) Nice-to-Have • Experience with compliance-aware environments ((GDPR, SOC2, PCI DSS) · AWS, Kubernetes, or security certifications How You Think & Work • You care about developer experience and delivery speed • You question manual steps and automate them ...

technologies. Stay informed about emerging threats and trends, integrating this knowledge into the security testing processes Support the firms certification activities, such as ISO27001, SOC2, and Cyber Essentials Plus, by assisting with audits, documentation, and continuous improvement efforts. Engage with security industry groups and collaborate with external industry partners ...

Comfortable discussing infrastructure and security trade-offs Able to ask sharp technical questions and spot delivery risks Experience in regulated or security-focused environments (SOC2, ISO 27001, DORA) is helpful but not essential. What success looks like (first 3–6 months) Important projects are delivered on time Teams are aligned ...

+ project delivery. Nice to Have Fintech/payments or similarly regulated environment experience. Familiarity with compliance frameworks/audit controls ( SOC 2/ISO 27001/PCI ). ...

secure hiring platform used by employers to review candidates. Your profile stays anonymous until you match. Click Apply to continue. It takes 2 minutes. Senior Security Engineer London Hybrid High growth AI Technology Company £85,000 to £115,000 plus bonus and equity We are working with a fast … teams. Key Responsibilities Design and implement security strategies, policies and controls Lead vulnerability assessments, penetration testing and remediation Oversee regulatory and compliance frameworks including SOC2, ISO 27001 and GDPR Monitor systems and respond to incidents and security events Strengthen AWS and GCP cloud security environments Support customer and sales teams ...

other OT/IT grid management platforms. Knowledge of GridOS ecosystem and integration with DERMS. Exposure to cybersecurity standards (NERC CIP, ISO 27001, SOC2). Cloud/hybrid deployment experience (Azure, AWS). Certifications such as ITIL, Security+, or utility-specific systems training. Scripting/automation skills (Python, Bash, PowerShell … other OT/IT grid management platforms. Knowledge of GridOS ecosystem and integration with DERMS. Exposure to cybersecurity standards (NERC CIP, ISO 27001, SOC2). Cloud/hybrid deployment experience (Azure, AWS). Certifications such as ITIL, Security+, or utility-specific systems training. Scripting/automation skills (Python, Bash, PowerShell ...

risk assessments, evaluating client environments from both a technical and business perspective. Review IT governance, systems, and controls against recognized standards (ITIL, COBIT, NIST, SOC2, ISO). Design and implement solutions to enhance performance, improve resilience, and increase value for clients. Experience required Significant consulting or industry experience focused … stakeholders. Experience guiding teams, planning engagements, and managing project delivery. Working knowledge and practical use of industry standards such as COBIT, ISO27001, NIST CSF, SOC2, and ITIL. A collaborative mindset and passion for driving results. Technology Risk & Resilience, Senior Consultant - London, Hybrid - £50k-£58k + bonus Robert Half Ltd acts ...