15 of 15 SOC 2 Jobs in Berkshire

distinct phases: Phase 1: The Fixer (Months 1-6) Rapidly assess, identify gaps, and implement critical foundations—from security posture to operational resilience. Phase 2: The Builder (Months 6-18) Establish scalable structures and lead the product roadmap. Drive best practice development standards, build security credentials (SOC 2 … shoulder with Chris, you'll tackle four key areas: Product Security & Compliance – Audit Triangle, implement end-to-end security improvements, and establish pathways to SOC 2 compliance for our highly regulated clients Product Roadmap & Strategy – Create a conversational roadmap that balances new features with technical debt whilst guiding ...

partners, and auditors. Requirements Security Governance & Compliance Lead the company's efforts to achieve and maintain ISO 27001 (and other frameworks as needed, e.g., SOC 2, EU AI Act readiness). Establish, document, and evolve security and compliance policies, ensuring they meet company needs and regulatory requirements. Drive … propose mitigation strategies. Qualifications Proven experience in a security engineering, compliance, or security leadership role. Strong understanding of security standards and frameworks (ISO 27001, SOC 2, CIS, NIST, GDPR, EU AI Act). Hands-on technical skills in areas such as penetration testing, application security, or infrastructure hardening. ...

partners, and auditors. Requirements Security Governance & Compliance Lead the company's efforts to achieve and maintain ISO 27001 (and other frameworks as needed, e.g., SOC 2, EU AI Act readiness). Establish, document, and evolve security and compliance policies, ensuring they meet company needs and regulatory requirements. Drive … propose mitigation strategies. Qualifications Proven experience in a security engineering, compliance, or security leadership role. Strong understanding of security standards and frameworks (ISO 27001, SOC 2, CIS, NIST, GDPR, EU AI Act). Hands-on technical skills in areas such as penetration testing, application security, or infrastructure hardening. ...

vulnerability scanning or penetration testing tools. Introductory experience with scripting (Python or Bash). Awareness of cybersecurity frameworks or compliance standards (ISO 27001, NIST, SOC 2). Familiarity with common cyber threats and attack methodologies. What You'll Gain Hands-on exposure to real-world cybersecurity operations and ...

balances speed with sustainability. Passion for writing maintainable, scalable code. Knowledge of security and compliance best practices (e.g. HIPAA/GDPR, NHS DTAC, SOC 2). Bonus: experience in healthcare, medtech, or regulated environments. ...

workshops and deliver board-level briefings to both technical and non-technical stakeholders. Support clients with audit readiness and regulatory alignment (e.g., GDPR, NIS2, SOC 2). Mentor junior consultants and contribute to developing repeatable, high-impact security offerings. Collaborate across internal teams to enhance solution offerings, proposals ...

workshops and deliver board-level briefings to both technical and non-technical stakeholders. Support clients with audit readiness and regulatory alignment (e.g., GDPR, NIS2, SOC 2). Mentor junior consultants and contribute to developing repeatable, high-impact security offerings. Collaborate across internal teams to enhance solution offerings, proposals ...

policies, and controls Act as the senior hands-on security authority across the organisation Ensure alignment with recognised security frameworks (ISO 27001, NIST, CIS, SOC2, etc.) Embed security by design across infrastructure, cloud, networks, and applications Lead incident response, vulnerability management, and threat mitigation Partner closely with engineering, infrastructure, and ...

with LLM fine-tuning or instruction tuning Background in edtech, assessment, apprenticeship systems, or LMS tooling Previous startup or founding-engineer experience Familiarity with SOC2/ISO data security practices Interest in AI ethics, education, or professional training Who you are You want to build something meaningful. You like small ...

and interfaces for semantic and vector-based data operations (e.g. Pinecone, PostgreSQL). Implement monitoring, logging, and compliance measures aligned with ISO 27001/SOC2 standards. Continuously evaluate new tools and frameworks in the data and AI ecosystem. What You Bring 4–7 years' experience in Data Engineering, ideally ...

/CD pipelines. Oversee development of unit test frameworks with embedded security checks. Ø Compliance & Reporting Align product security practices with compliance frameworks (ISO27001, SOC2, NIS2, EU AI Act, etc.). Collaborate with Compliance and IT Security teams to maintain certifications and audit readiness. Provide leadership with clear reporting … applications. Ø Certifications such as OSCP or CISSP, CISM. Ø Experience in SaaS environments and cloud-native security. Ø Familiarity with compliance frameworks (ISO27001, SOC2, NIS2, EU AI Act). Ø Ability to balance strategic vision with hands-on technical leadership. The selected candidate may be subject to the provision ...

/CD pipelines. Oversee development of unit test frameworks with embedded security checks. Ø Compliance & Reporting Align product security practices with compliance frameworks (ISO27001, SOC2, NIS2, EU AI Act, etc.). Collaborate with Compliance and IT Security teams to maintain certifications and audit readiness. Provide leadership with clear reporting … applications. Ø Certifications such as OSCP or CISSP, CISM. Ø Experience in SaaS environments and cloud-native security. Ø Familiarity with compliance frameworks (ISO27001, SOC2, NIS2, EU AI Act). Ø Ability to balance strategic vision with hands-on technical leadership. The selected candidate may be subject to the provision ...

strategy, compliance, and incident response. Coordinate third-party penetration tests, audits, and manage remediation plans. Ensure compliance with relevant frameworks and regulations (ISO 27001, SOC2, GDPR). Communicate security posture, risks, and progress to leadership and stakeholders. Cross-Functional Collaboration Work closely with engineering, QA, DevOps, and security teams … pipelines Secure SDLC and vulnerability management Experience coordinating penetration tests and working with CISOs/security leadership. Familiarity with compliance frameworks (ISO 27001, SOC2, GDPR). Preferred Skills Excellent communication and stakeholder management skills. Ability to translate technical concepts for non-technical audiences. Strong organizational skills to manage multiple streams ...

role will ensure our organization maintains alignment with evolving regulations (e.g., NIS2, EU Data Act, EU AI Act...) and standards (ISO27001, ISO42000, ISO22301, SOC1, SOC2). The Compliance Officer will leverage ServiceNow GRC to map policy statements, define control objectives, track compliance status, and manage non-conformities. This position … Lead Auditor/Implementer, or CRISC. Experience in multinational compliance environments. Familiarity with cloud compliance frameworks (e.g., CSA STAR, ISO/IEC 27017 & 27018, SOC2 for SaaS provider). The selected candidate may be subject to the provision of an up-to-date (not older than 3 months) criminal record ...

Smart Communications security posture to customers and prospects. Working with the GRC team by implementing security tools and processes used to support ISO 27001, SOC2, PCI, and other certifications held by Smart Communications. What we are looking for: 5 years of hands-on experience in a similar role. Good understanding … Alert Logic, Qualys, M365 Security, and AWS Security Products. Understanding security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. To apply: Use the link or share your CV with ...