22 of 22 Permanent SOC 2 Jobs in London

ongoing compliance programmes, and improve operational maturity across all sites. Key Responsibilities • Support certification and compliance efforts across ISO 27001, ISO 27017/27018, SOC 2 Type II, Cyber Essentials Plus, and ISO 22301. • Maintain the ISMS, risk register, and evidence required for internal and external audits. • Manage … years in information or physical security within a data-centre, cloud, MSP, or similar environment. • CISSP certification (mandatory). • Strong understanding of ISO 27001, SOC 2, NIST CSF, and Cyber Essentials Plus. • Experience working with audits, incident management, and vulnerability workflows. • Strong documentation, communication, and stakeholder management skills. ...

ongoing compliance programmes, and improve operational maturity across all sites. Key Responsibilities • Support certification and compliance efforts across ISO 27001, ISO 27017/27018, SOC 2 Type II, Cyber Essentials Plus, and ISO 22301. • Maintain the ISMS, risk register, and evidence required for internal and external audits. • Manage … years in information or physical security within a data-centre, cloud, MSP, or similar environment. • CISSP certification (mandatory). • Strong understanding of ISO 27001, SOC 2, NIST CSF, and Cyber Essentials Plus. • Experience working with audits, incident management, and vulnerability workflows. • Strong documentation, communication, and stakeholder management skills. ...

Security Architecture team, you will lead the design and operation of our US Healthcare security controls. You will own the roadmap for HIPAA compliance and SOC2 Type II certification, partnering with Engineering and Legal to build a secure, compliant platform for millions of users. Key Responsibilities Compliance Leadership: Lead annual … SOC 2 and HIPAA certifications, managing interfaces with external auditors and professional services. Policy & Risk: Define and maintain security policies; embed risk assessment activities within engineering processes and vendor management. Operational Excellence: Partner with control owners to automate evidence gathering and ensure controls reduce friction rather than creating ...

Security Architecture team, you will lead the design and operation of our US Healthcare security controls. You will own the roadmap for HIPAA compliance and SOC2 Type II certification, partnering with Engineering and Legal to build a secure, compliant platform for millions of users. Key Responsibilities Compliance Leadership: Lead annual … SOC 2 and HIPAA certifications, managing interfaces with external auditors and professional services. Policy & Risk: Define and maintain security policies; embed risk assessment activities within engineering processes and vendor management. Operational Excellence: Partner with control owners to automate evidence gathering and ensure controls reduce friction rather than creating ...

and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. … total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children ...

designing and implementing next-generation cloud security architectures, securing WTW cloud environments, and driving automation and intelligence within Cybe r Defence Security Platforms & SOC Engineering. This is a hybrid role at London office with a requirement to be in the office based on the business need. The Role: Agentic … needs. Stay up to date with emerging threats, Microsoft security innovations, and industry trends to drive continuous security enhancements. Provide training and mentorship to SOC teams on Microsoft cloud security best practices. Team Management Manage and mentor a team of Cyber Defence Security Engineers. The Requirements: Must-Have Skills ...

across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. ...

Alert Logic, Qualys, M365 Security, and AWS Security Products. Understanding security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. We value teamwork, collaboration & technical excellence – the company are heavily ...

Alert Logic, Qualys, M365 Security, and AWS Security Products. Understanding security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. We value teamwork, collaboration & technical excellence – the company are heavily ...

pragmatic delivery (Nice To Have) Experience in BFSI, fintech, or other regulated industries, with familiarity in compliance, security, and regulatory requirements (e.g., PCI-DSS, SOC 2, GDPR). Why Join Us Work directly with top engineering leadership (CTO, VP of Engineering) to shape the future of our technology ...

and improve processes. Comfortable in a fast-paced, scaling environment. Nice-to-Have Experience in SaaS, hospitality, or payments is advantageous. Knowledge of GDPR, SOC 2, PCI DSS, or similar frameworks. Experience with security tooling, audit platforms, and policy management systems. What We Offer Competitive salary ...

Defender for Cloud, encryption using Azure Key Vault, network security with NSGs and Azure Firewall, Azure Policy for governance, and compliance frameworks (ISO 27001, SOC 2, GDPR). Experience conducting security assessments using Microsoft Secure Score, implementing security hardening, and responding to security incidents. Backup & Disaster Recovery - Experience ...

methodologies. Experience in industries relevant to Fusion such as telecoms, retail, utilities etc. Knowledge of specific industry regulations or compliance standards (e.g., ISO 27007, SOC 2, HIPAA, PCI DSS) relevant to MSP operations. Experience with APls, web services, and integration tools to connect ServiceNow with other enterprise systems. ...

enhance the firm’s Information Security function and overall security posture. Lead responses to client security questionnaires and audit follow-ups. Oversee ISO27001 and SOC 2 Type II audits. Select and implement tools to proactively detect and respond to threats. Drive continuous improvement of security practices across ...

integration frameworks. Proficiency with CI/CD, containerization (Docker, Kubernetes), automation tooling, and cloud-native patterns. Knowledge of identity management, encryption, and regulatory standards (SOC 2, GDPR, ISO 27001). Ability to produce clear architectural artifacts (HLDs, LLDs, sequence diagrams, integration patterns) to guide development teams. Role Expectations ...

integration frameworks. Proficiency with CI/CD, containerization (Docker, Kubernetes), automation tooling, and cloud-native patterns. Knowledge of identity management, encryption, and regulatory standards (SOC 2, GDPR, ISO 27001). Ability to produce clear architectural artifacts (HLDs, LLDs, sequence diagrams, integration patterns) to guide development teams. Role Expectations ...

Vendor Governance Forum. Audit Support: Assist the team in achieving and maintaining compliance with key regulatory and industry frameworks, including GDPR, ISO 27001, SOC2, and PCI DSS, by gathering evidence and documenting controls. Policy & Standards: Help translate high-level security policies into practical, actionable security standards and control requirements … conducting vendor security assessments and performing technical due diligence on third parties Good working knowledge of common security frameworks and regulations (e.g., ISO 27001, SOC2, PCI DSS), with experience supporting audit processes A strong understanding of common web application vulnerabilities and effective mitigation strategies Awareness or practical experience with ...

Experience scaling multi-tenant SaaS applications. Experience with cloud platforms. (AWS, Google Cloud or Azure). Knowledge of containerisation (Docker or Kubernetes) Familiarity with SOC 2 readiness and security best practices. Experience with observability and monitoring. Background in fintech, lending or other regulated-data environments. Experience or interest … heard and welcome. This is also a chance to be part of bringing a game changing product to life This role is hybrid, 2-3 days in their offices at London Bridge Salary ranges from £80,000 - £125,000 with attractive EMI share options ...

threat prevention on Palo Alto and cloud native Firewalls Apply DNS security best practices using Infoblox Ensure compliance with standards such as ISO 27001, SOC2, and GDPR Collaboration and Leadership Partner with cloud, security, network, and DevOps teams to deliver integrated solutions Serve as subject matter expert for cloud networking … total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children ...

experienced GRC Information Security Analyst ? Do you have experience in the GRC Security space with audits, auditors, ISO27001, PCI DSS, SOC2, NIST & current compliance regulations? If so & you are looking to expand your information Security career, meet new team members, embrace new challenges & join a world-class team … entail, but see below for things we’ll need to see in order to be considered: - Knowledge and experience of ISO 27001, PCI DSS, SOC2, NIST and CIS benchmarking is essential. - Knowledge and experience achieving and maintaining compliance with relevant legislation, such as DPA, GDPR - Knowledge of cloud environments ...

experienced GRC Information Security Analyst Do you have experience in the GRC Security space with audits, auditors, ISO27001, PCI DSS, SOC2, NIST & current compliance regulations? If so & you are looking to expand your information Security career, meet new team members, embrace new challenges & join a world-class team … entail, but see below for things we’ll need to see in order to be considered: - Knowledge and experience of ISO 27001, PCI DSS, SOC2, NIST and CIS benchmarking is essential. - Knowledge and experience achieving and maintaining compliance with relevant legislation, such as DPA, GDPR - Knowledge of cloud environments ...

Financial Accountant – Growing SaaS Business (Private Equity Backed) Location: Central London (Hybrid – 2–3 days office) Salary: Circa £75k + benefits Job Type: Full-time, Permanent The role: An exciting opportunity has arisen for a Financial Accountant to join a high growth, PE-backed SaaS company headquartered in London … consumption tax reconciliations Support EU invoicing and VAT queries Work on R&D tax credits and transfer pricing Manage various finance admin tasks (e.g. SOC2 compliance, insurance, ONS surveys) Act as a point of contact for Private Equity stakeholder reporting About You: ACA or ACCA qualified, preferably with a practice ...