21 of 21 Permanent SOC 2 Jobs in London

Security & Compliance Own the end-to-end cybersecurity posture across all systems Implement access controls, monitoring, and incident response frameworks Maintain compliance with GDPR, SOC 2 and other relevant standards Conduct regular security audits, penetration testing, and risk assessments Manage third-party vendors and security risk Govern secure … pharma Familiarity with GxP, HIPAA, or similar frameworks Exposure to data platforms, MLOps, or AI/ML infrastructure in R&D contexts Ownership of SOC 2 or similar certifications Benefits Committed to Care Healthcare, pension/401(k), and life assurance Celebrating Success Competitive salary, performance-related bonus ...

City of London - Hybrid Working Responsibilities: - Plan, lead, and deliver a diverse portfolio of IT Assurance and Consulting engagements, including IT External Audit Support, SOC 1 & SOC 2 Attestations, IT Internal Audit Reviews, Regulatory Compliance Assessments, and Operational Resilience evaluations, ensuring quality delivery within scope, time, and … actionable recommendations for management and governance stakeholders. Required Skills/Experience: - Strong understanding of ISA 315/330/402 - Experience delivering IT Assurance, SOC 1 & 2, and IT Internal Audit engagements. - Proficient in testing ITGCs, ITACs, and IPEs across varied system environments. - Sound knowledge of ERP systems ...

across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. ...

City of London - Hybrid Working Responsibilities: - Plan, lead, and deliver a diverse portfolio of IT Assurance and Consulting engagements, including IT External Audit Support, SOC 1 & SOC 2 Attestations, IT Internal Audit Reviews, Regulatory Compliance Assessments, and Operational Resilience evaluations, ensuring quality delivery within scope, time, and... ...

City of London - Hybrid Working Responsibilities: - Plan, lead, and deliver a diverse portfolio of IT Assurance and Consulting engagements, including IT External Audit Support, SOC 1 & SOC 2 Attestations, IT Internal Audit Reviews, Regulatory Compliance Assessments, and Operational Resilience evaluations, ensuring quality delivery within scope, time, and ...

Defender for Cloud, encryption using Azure Key Vault, network security with NSGs and Azure Firewall, Azure Policy for governance, and compliance frameworks (ISO 27001, SOC 2, GDPR). Experience conducting security assessments using Microsoft Secure Score, implementing security hardening, and responding to security incidents. Backup & Disaster Recovery - Experience ...

monitor systems, networks, and logs then investigate security breaches, incidents and other cybersecurity events. You will also oversee compliance for regulatory requirements, such as SOC2, HIPAA, ISO 27001, GDPR and ensure systems adhere to these standards. You'll be part of a fast-paced, inclusive team that values creativity, curiosity ...

monitor systems, networks, and logs then investigate security breaches, incidents and other cybersecurity events. You will also oversee compliance for regulatory requirements, such as SOC2, HIPAA, ISO 27001, GDPR and ensure systems adhere to these standards. You'll be part of a fast-paced, inclusive team that values creativity, curiosity ...

with IaC tools like Bicep and Terraform. Security & Compliance: Your knowledge of GDPR-aligned frameworks and governance standards complements their emphasis on ISO 27001, SOC 2, and Azure Security best practices. Leadership & Mentoring: You've led projects and mentored teams, which matches their expectation for technical leadership. Where ...

collaborate in a fast paced environment. Strong grasp of modern DevOps, cloud tooling and configuration management. Nice to have AWS certifications. Working knowledge of SOC 2, GDPR or related compliance requirements. Networking certifications such as CCNA or CCNP. Experience with Kafka, MQTT or other streaming technologies. Hands ...

fullstack context): React, TypeScript, Vite, Next.js Bonus familiarity: Graph databases and GraphML for relationship modelling .NET for legacy integration or specific tooling Cyber Security SOC2/CE+/Regulatory experience What Success Looks Like (First 12 Months) Core backend services and infrastructure are more scalable, reliable and observable Clear architectural ...

either Consulting/Industry within a technology risk environment Led IT Architecture using the TOGAF framework Led & executed independent IT attestation services - i.e. ISAE3402, SOC2, SWIFT CSP audits and PCI DSS audits Experience in review of Cloud Platforms - Azure, AWS and GCP. Familiar with Cloud Architecture, Management Groups, Privileged Access ...

ideal for someone ready to step up and shape a growing security function. The Role Build and mature security frameworks (ISO 27001, CE+, NIST, SOC 2) Lead gap analysis and audit readiness Own the security risk register and drive mitigation Develop policies, standards, and procedures Support ...

platforms. Background in Software Engineering, SRE or infrastructure engineering, with a strong developer tooling focus. Knowledge of compliance-driven SDLC requirements (e.g., ISO 27001, SOC2). Experience running developer surveys, DX metrics frameworks (e.g., DORA, SPACE), or feedback-driven adoption programs. Benefits Join a pioneering joint venture at the intersection ...

compliance programs, ControlCase serves businesses of all sizes worldwide. Our offerings include certifications and cybersecurity services across a wide array of frameworks, including PCI, SOC 2, CMMC, FedRAMP, GDPR, NIST, and more. Leveraging our Compliance Hub tool, OneAudit process, AI capabilities, and a global team of experts, ControlCase ...

senior or director-level leadership experience. Strong experience with cloud platforms, microservices, distributed systems, and data engineering. Solid security and compliance knowledge; experience with SOC2, ISO27001, CE+, or similar standards is a plus. Experience building early-stage or founding engineering teams. Comfortable balancing hands-on engineering with strategic leadership. Experience ...

threat mitigation and authentication protocols Manage endpoint security systems like CrowdStrike Falcon Align technical controls with standards such as ISO 27001, PCI-DSS and SOC2, contributing to audits and compliance efforts Investigate security incidents, supporting forensic analysis and incident reporting Monitor emerging security trends, recommend improvements, and implement innovative solutions … activities Knowledge of additional security frameworks like NIST, CIS, or industry-specific standards Familiarity with compliance and audit processes within ISO, PCI-DSS or SOC2 environments Preferred Education and Experience: Bachelor's degree in Cyber Security, Information Technology or a related field Several years of practical experience in security engineering ...

Smart Communications security posture to customers and prospects. Working with the GRC team by implementing security tools and processes used to support ISO 27001, SOC2, PCI, and other certifications held by Smart Communications. What we are looking for: 5 years of hands-on experience in a similar role. Good understanding … Alert Logic, Qualys, M365 Security, and AWS Security Products. Understanding security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. To apply: Use the link or share your CV with ...

other OT/IT grid management platforms. Knowledge of GridOS ecosystem and integration with DERMS. Exposure to cybersecurity standards (NERC CIP, ISO 27001, SOC2). Cloud/hybrid deployment experience (Azure, AWS). Certifications such as ITIL, Security+, or utility-specific systems training. Scripting/automation skills (Python, Bash, PowerShell … other OT/IT grid management platforms. Knowledge of GridOS ecosystem and integration with DERMS. Exposure to cybersecurity standards (NERC CIP, ISO 27001, SOC2). Cloud/hybrid deployment experience (Azure, AWS). Certifications such as ITIL, Security+, or utility-specific systems training. Scripting/automation skills (Python, Bash, PowerShell ...

Financial Accountant – Growing SaaS Business (Private Equity Backed) Location: Central London (Hybrid – 2–3 days office)Salary: Circa £75k + benefits Job Type: Full-time, Permanent The role:An exciting opportunity has arisen for a Financial Accountant to join a high growth, PE-backed SaaS company headquartered in London … consumption tax reconciliations Support EU invoicing and VAT queries Work on R&D tax credits and transfer pricing Manage various finance admin tasks (e.g. SOC2 compliance, insurance, ONS surveys) Act as a point of contact for Private Equity stakeholder reporting About You: ACA/ACCA qualified, ideally qualified in practice ...

Thisisnotjustanotherseniortechnologyrole.Thisisyouropportunitytobepartoftheseniorleadershipteamandshapethetechnicalfutureofaprofitable,fast-growingspecialistsoftwarecompanyatapivotalmomentinitsjourney. WhyThisRoleisDifferent Since2013,TrinitatumhavebuiltareputationservingglobalenergytradingandfinancialservicesorganisationswiththeirTriangleTestAutomationplatform - reducingtestingeffortbyover70%andacceleratingreleasesfromweekstodays.Theirrecentstrategicpartnershipsareopeningglobalmarkets,andtheyneedatechnologyleaderwhocanscalewiththem. You'llworkdirectlywiththeirCEOChrisJonesandtheseniorleadershipteamthroughthreedistinctphases: Phase1:TheFixer(Months1-6) Rapidlyassess,identifygaps,andimplementcriticalfoundationsfromsecurityposturetooperationalresilience. Phase2:TheBuilder(Months6-18) Establishscalablestructuresandleadtheproductroadmap.Drivebestpracticedevelopmentstandards,buildsecuritycredentials(SOC2,ISO27001),andarchitectforscaleacrosstheirAzure/.NETstack. Phase3:TheScaler(18+months) TransitionintotheCTOrole.Leadtechnicalvision,scaleengineeringcapabilityinternationally,anddrivemarketdifferentiationthroughtechnicalexcellence. YourFirst12Months:TheMission-CriticalChallenges Workingshoulder-to-shoulderwithChris,you'lltacklefourkeyareas: ProductSecurity&Compliance AuditTriangle,implementend-to-endsecurityimprovements,andestablishpathwaystoSOC2complianceforourhighlyregulatedclients … ProductRoadmap&Strategy Createaconversationalroadmapthatbalancesnewfeatureswithtechnicaldebtwhilstguidingcustomerenhancementpriorities BestPracticeDevelopmentStandards Implementautomatedtestingframeworks,introduceBDDpractices,andbuildacultureofcontinuousimprovement OperationalResilience Eliminatesinglepointsoffailure,createredundancy,andestablishrobustbusinesscontinuitycapabilities WhatMakesYouExceptional Youbring: Deep.Netmasteryyou'vebuiltproductionsystemsatscale StrongAzurearchitectureexperiencewithcloud-nativedesignpatterns Demonstrablesecurityframeworkexperience(SOC2,ISO27001,ITIL) Hands-onautomatedtestingframeworksexpertise PracticalBDDfamiliarity Moreimportantly,youare: Astrategicpartnerwhocanbalancetechnicalexcellencewithcommercialreality Hands-onwhenneededcomfortablecoding,reviewingarchitecture,ordebuggingcriticalissues Ateambuilderreadytorecruit,mentor,anddeveloptechnicaltalent Customer-awareyouunderstandthatTriangleservesmission-criticaltradingsystemswherereliabilitymatters Growth-orientatedexcitedbythejourneyfromspecialistconsultancytoglobalsoftwareplatform BonusPointsFor: ETRM/CTRMplatformexperience,financialservicesorenergysectorbackground,experiencewithEndur/Findur/Allegrosystems,priorCTOexperienceingrowingsoftwarecompanies ...