1 to 25 of 40 SOC 2 Jobs in England

Information Security and Compliance Engineer

Hiring Organisation: Engineered Arts
Location: London Area, United Kingdom

RaaS) platforms. Reporting to the Head of Compliance, this role is responsible for implementing, operating, and maintaining security controls, supporting certification to ISO 27001, SOC 2, and other relevant security frameworks, and embedding security-by-design into engineering, IT, and product operations as the business scales globally. This … Maintain risk assessments, risk registers, Statements of Applicability, and control mappings. Collect, manage, and present evidence for ISO 27001 certification and surveillance audits. Support SOC 2 readiness, control operation, evidence gathering, and audit coordination. Security Controls and Engineering Integration Implement and maintain security controls across: Cloud infrastructure and ...

Security Engineer - AI

Hiring Organisation: Atom Bank
Location: Newcastle Upon Tyne, Tyne and Wear, England, United Kingdom
Employment Type: Full-Time
Salary: Salary negotiable

data loss. Develop automated workflows for vulnerability management, incident detection, and response. Align security measures with financial regulations such as PCI DSS, ISO 27001, SOC 2, and GDPR. Support Atom’s AI team with AI and Automation specific infrastructure security needs. Partner with DevOps and engineering teams … Docker environments. Advanced scripting and automation skills (Python, PowerShell, Bash, etc.) Demonstrated ability to navigate and implement compliance frameworks such as PCI DSS, GDPR, SOC 2, and ISO 27001. Familiarity with financial industry-specific security and privacy standards. Relevant Security certifications (e.g. CISSP, SSCP, CCSM, CISM, etc.) Relevant ...

Risk Analyst - Nottingham City

Hiring Organisation: Nottingham Building Society
Location: Nottingham, UK

Risk Analyst - Nottingham City Contract type: Permanent Hours: Full-time, 35 hours Location: Head Office, Nottingham (Hybrid working, minimum 2 days per week) Application process: Please apply via the application button which will direct you to our careers site. If you require any adjustments to assist you in applying … identify vulnerabilities, focusing on protecting customer data and financial systems. Regulatory Compliance: Ensure compliance with regulations and standards like GDPR, ISO 27001, CQuest, SOC 2, and FCA and PRA guidelines. Effectiveness Monitoring: Monitor and assess the effectiveness of security controls, policies, and procedures. Audit Support : Support audits ...

Inside IR35 DevOps Auditor Fully Remote

Hiring Organisation: Interact Consulting Limited
Location: South West London, London, United Kingdom
Employment Type: Contract, Work From Home

licence reviews, container/image policies, and supply-chain controls. Evaluate logging, monitoring, and observability practices. Map findings to compliance frameworks (e.g., ISO 27001, SOC 2, or NHS DSPT where applicable). Produce a comprehensive gap analysis, risk register (with severity and likelihood ratings), and prioritised remediation backlog. … promotion criteria). Deliverables (by end of audit) DevOps Audit Report (executive summary + detailed findings). Compliance mapping (ISO 27001 Annex A/SOC 2 trust principles) with gap list. Risk register including mitigations, effort, and impact estimates. Prioritised remediation backlog and proposed guardrails for Phase 2. ...

Principal Data Architect Python | Cloud | Distributed Systems | AI/ML Infrastructure

Hiring Organisation: Chemify Limited
Location: City of London, London, United Kingdom

Architect secure, compliant Data Sharing patterns for external research partners, translating legal/contractual constraints into technical controls. Drive the data architecture roadmap toward SOC 2 and ISO 27001 readiness, focusing on auditability and access control for training data. About You You are an experienced Architect (e.g., TOGAF … with: Data governance frameworks Data tenancy and segregation models Data consistency and replication patterns Secure data sharing between organizations Beneficial Skills Prior involvement in SOC 2, ISO 27001 compliance programmes, particularly from a data architecture perspective. Exposure to scientific, chemical, or manufacturing data environments. Familiarity with modern data ...

Security Engineer

Hiring Organisation: Chapter 2
Location: City of London, London, United Kingdom

container security. Identity & Access Management experience (e.g. Okta). Experience with JVM languages, Terraform/IaC, CDK, or React. Familiarity with GDPR, ISO 27001, SOC 2, EU AI Act/LLMs. Experience delivering audits or using GRC tools (e.g. Drata, Vanta) Interest in AI and/or knowledge ...

Data Protection Engineer Cyber Security

Hiring Organisation: Robert Half
Location: Surrey, England, United Kingdom
Employment Type: Full-Time
Salary: £70,000 - £90,000 per annum

with engineering teams to embed data protection into application architecture and CI/CD pipelines Support compliance initiatives including GDPR, HIPAA, PCI DSS, and SOC 2 Conduct data-focused risk assessments and threat modelling Monitor and respond to data-related security incidents and alerts Develop and maintain data ...

Third Party Risk Lead Cyber

Hiring Organisation: Hays Specialist Recruitment Limited
Location: London, South East, England, United Kingdom
Employment Type: Full-Time
Salary: £80,000 - £90,000 per annum

assurance programmes. Proven experience designing, executing, and improving structured vendor due diligence processes. Strong understanding of vendor-held assurance artefacts such as ISO 27001, SOC 2, CSA STAR/CAIQ, and security questionnaires. Ability to communicate complex vendor-related cyber risks clearly to both business and technical audiences. ...

Senior Software Engineer

Hiring Organisation: Cyber Guardian Consulting Group, LLC
Location: London Area, United Kingdom

Experience with authentication methods such as OAuth 2.0, API keys, JWT IT background with experience supporting, integrating, or administering enterprise software systems Exposure to SOC 2, GDPR, or enterprise security requirements Experience with Infrastructure as Code (CDK, CloudFormation, or Terraform) Knowledge of CI/CD pipelines and deployment … backed by real clients, real revenue, and real partnerships What We Offer 25 days holiday + bank holidays Pension scheme with 10% employer contribution 2% interest rate reduction on home mortgages Professional development & life assistance programs Snacks sent to your door—you pick, we pay 50% off Apple products ...

Database Security Consultant

Hiring Organisation: Stackstudio Digital Ltd
Location: East London, London, United Kingdom
Employment Type: Contract, Work From Home
Contract Rate: From £500 to £600 per day

Role - Database Security Consultant Location -3 days from Canary Wharf office and 2 days from home Contract - Inside IR35 Job Description Key Responsibilities: Security Onboarding & Product Integration: Collaborate closely with Product Team to integrate and onboard product to security controls. Work with CSO to agree compliance and onboarding requirements … experience in security engineering, security architecture, or security compliance roles. Strong understanding of security principles, frameworks (e.g., NIST, ISO 27001), and compliance requirements (e.g., SOC 2, GDPR, HIPAA). Experience with various security controls, including access management (IAM), data encryption, network security, vulnerability management, and SIEM. Database Engineering ...

Database Security Engineer

Hiring Organisation: Hirexa Solutions UK
Location: Canary Wharf, London, England, United Kingdom
Employment Type: Contractor
Contract Rate: Salary negotiable

experience in security engineering, security architecture, or security compliance roles. Strong understanding of security principles, frameworks (e.g., NIST, ISO 27001), and compliance requirements (e.g., SOC 2, GDPR, HIPAA). Experience with various security controls, including access management (IAM), data encryption, network security, vulnerability management, and SIEM. Database Engineering ...

IT Project Manager - Cyber, GRC, CMDB, Platform implementation

Hiring Organisation: Hays Specialist Recruitment Limited
Location: London, South East, England, United Kingdom
Employment Type: Contractor
Contract Rate: £600 - £650 per day

places · Strong knowledge of Service acceptance criterias and key artefacts · Ability to ensure projects align with relevant frameworks including ISO 27001, NIST CSF, DORA, SOC 2, CIS Controls and regulatory requirements as applicable · Coordinate platform integration with existing infrastructure, applications, and cloud environments whilst ensuring security engineering and ...

Senior Security Risk Specialist

Hiring Organisation: Tenth Revolution Group
Location: London, South East, England, United Kingdom
Employment Type: Contractor
Contract Rate: £600 - £650 per day

both technical and non-technical stakeholders across the business Familiarity with standards such as PCI-DSS, NIST SP800-53, NIST CSF, ISO 27001, and SOC 2 Practical experience using Large Language Models (LLMs) inday-to-day security risk management activities, including: Accelerating risk analysis and documentation Supporting control ...

Senior Platform Engineer

Hiring Organisation: Fruition Group
Location: Leeds, West Yorkshire, Yorkshire, United Kingdom
Employment Type: Permanent, Work From Home
Salary: £70,000

security Infrastructure-as-code mindset and strong automation skills Comfortable working cross-functionally and owning shared platforms Nice to Have Experience with compliance frameworks (SOC 2, ISO 27001, etc.) Familiarity with SRE principles and reliability engineering Security certifications or deep interest in cloud security About ...

Information Security Engineer

Hiring Organisation: Verisk
Location: Poundbury, Dorchester, Dorset, England, United Kingdom
Employment Type: Full-Time
Salary: Competitive salary

and assist with customers’ RFIs and RFPs; Obtain at least CII certification to appreciate how the insurance industry works. Qualifications Essential: A minimum of 2 years in an infrastructure, SysOps or Security role; Active Directory management; AWS ecosystem, especially AppStream 2.0. NTFS permission & Group Policy configuration & management; Microsoft … Information Security specialism. Desirable: IaaS and PaaS environments; SQL; VMWare Cloud Director; SharePoint Windows IIS security & management. Security & GDPR compliance (ISO27001/ISO27032/SOC 2). ...

Cyber Security Engineer

Hiring Organisation: Nigel Wright Group
Location: Wallsend, Tyne and Wear, England, United Kingdom
Employment Type: Full-Time
Salary: £45,000 - £47,500 per annum

hybrid infrastructure. Support secure configuration, IAM, cloud environments, patch management, and application security testing. Ensure compliance with standards such as Cyber Essentials, ISO 27001, SOC 2, and GDPR. Play a key role during high-pressure incidents, managing both technical resolution and stakeholder communication. Participate ...

Senior Security Engineer

Hiring Organisation: VIA MATCH LIMITED
Location: London, South East, England, United Kingdom
Employment Type: Full-Time
Salary: £85,000 - £115,000 per annum

teams. Key Responsibilities Design and implement security strategies, policies and controls Lead vulnerability assessments, penetration testing and remediation Oversee regulatory and compliance frameworks including SOC2, ISO 27001 and GDPR Monitor systems and respond to incidents and security events Strengthen AWS and GCP cloud security environments Support customer and sales teams ...

Customer Support Engineer – DERMS

Hiring Organisation: DCV Technologies
Location: B1, Birmingham, West Midlands (County), United Kingdom
Employment Type: Contract
Contract Rate: £600 - £700/day

DERMS or other OT/IT grid management platforms Knowledge of GridOS ecosystem and DERMS integration Exposure to cybersecurity standards (NERC CIP, ISO 27001, SOC2) Cloud/hybrid environments (Azure, AWS) Certifications: ITIL, Security+, or utility-specific systems training Scripting/automation: Python, Bash, PowerShell Key Responsibilities L2/ ...

Security Risk Specialist

Hiring Organisation: Tenth Revolution Group
Location: London, South East, England, United Kingdom
Employment Type: Contractor
Contract Rate: £650 per day

Security Risk Specialist - 6-Month Contract - Inside IR35 - Hybrid London (2-3 Days Onsite) A leading technology-driven organisation is seeking an experienced Security Risk Specialist to support the ongoing development and operation of its security risk function. This role sits within a growing security team and will focus … varying technical levels, from engineers to senior non-technical leaders. Familiarity with frameworks and standards such as ISO 27001 , NIST CSF , NIST 800-53 , SOC 2 , PCI DSS , etc. Practical experience applying Large Language Models (LLMs) in security workflows, including: Speeding up risk analysis and documentation Supporting control ...

GRC Analyst

Hiring Organisation: InfinityQuest Ltd,
Location: London, United Kingdom
Employment Type: Contract
Contract Rate: £300 per day

Ability to manage multiple audits, remediation streams, and stakeholder expectations simultaneously Preferred Qualifications Hands-on experience maintaining ISO/IEC 27001 certification Experience supporting SOC 2 Type II audits and ongoing compliance Familiarity with NIST Cybersecurity Framework (CSF) Experience managing audit findings through remediation and closure Experience with ...

IT Service Manager - ITIL / ITSM - hybrid - £60K

Hiring Organisation: Oscar Technology
Location: Huddersfield, West Yorkshire, England, United Kingdom
Employment Type: Full-Time
Salary: £50,000 - £60,000 per annum

desk triage and out-of-hours support coverage. Partner with key stakeholders across Product, Engineering, and Compliance to support audit readiness (ISO 27001/SOC 2). What you'll need: 5+ years' experience in IT service management, ITSM, ITIL, including awareness of Devops/Strong understanding ...

Senior Machine Learning Engineer

Hiring Organisation: Onsera Health
Location: City of London, London, United Kingdom

systems in production Familiarity with prompt management, tool calling, evaluation, and AI safety patterns Healthcare or regulated-industry experience, including familiarity with HIPAA or SOC-2 compliance Experience with claims data, EHR-derived datasets, or real-world evidence Strong written and verbal communication skills with technical and non-technical ...

Info Security Compliance Analyst

Hiring Organisation: Southco, Inc
Location: Worcester, England, United Kingdom

compliance requirements across the organisation. Is this role for you: • Familiarity with auditing standards and security frameworks (e.g., ISO/IEC 27001, CMMC, SOC 2). • Working knowledge of global data privacy and protection laws (e.g., GDPR, PIPL, CCPA, DPDP). • Experience conducting or supporting security audits and ...

Senior Security Risk Specialist - Inside IR35 - Hybrid

Hiring Organisation: Tenth Revolution Group
Location: London, South East, England, United Kingdom
Employment Type: Contractor
Contract Rate: £649 - £650 per day

engineering and non-technical roles Familiarity with security standards and frameworks such as PCI-DSS, NIST SP 800-53, NIST CSF, ISO 27001, and SOC 2 Practical experience using Large Language Models (LLMs) in day-to-day security risk management activities, including: Accelerating risk analysis and documentation Supporting ...

Technical Infrastructure Manager

Hiring Organisation: Reed Technology
Location: Bradford, West Yorkshire, Yorkshire, United Kingdom
Employment Type: Temporary
Salary: £450 - £500 per day

best practice. Support and deliver workload migrations, including transitions to Azure. Maintain clear documentation, technical standards, and operational procedures. Ensure compliance with ITIL, ISO, SOC 2, and GDPR frameworks. Collaborate with technical teams and stakeholders to drive continual service improvement. Skills & Experience Core Technical Skills Strong experience with ...