1 to 25 of 123 SOC 2 Jobs in England

Engineer to join our growing engineering team. As a company, we are ISO 27001-certified and need to maintain this certification while preparing for SOC 2 compliance. Security responsibilities currently sit across different teams, but as compliance requirements increase, a dedicated security engineer is needed to support ongoing … improve Duel's overall security posture. The focus of this role is to help maintain our compliance responsibilities through Secureframe, support ISO 27001 and SOC 2 audits, manage security vulnerabilities, and work within engineering to introduce security best practices into development, infrastructure, and operations. We're Looking for … Assist in managing ISO 27001 renewals by maintaining compliance documentation and ensuring key security practices are followed. Help support the company's transition towards SOC 2 certification by tracking requirements and implementing necessary security measures. Work within Secureframe to maintain compliance records, ensuring a structured and organised approach More ❯

streamline transactions and enhance customer relationships. As they continue their growth, they are engaging with larger customers who are wary of security, particularly around SOC 2 and data protection. As a result, they are looking for a highly skilled and experienced Information Security Analyst/Manager to help … lead them through an end-to-end SOC 2 implementation. You will need to define the SOC 2 compliance, identifying necessary controls and collaborating with engineers and admins to implement and control effectively. Required Experience: Experience implementing SOC 2 at Scale. (Must-Have) Background More ❯

product roadmap priorities based on client feedback. Respond to technical sections of RFPs, RFIs, and security questionnaires, ensuring alignment with regulatory standards (e.g., ISO27001, SOC 2, GDPR). Act as a trusted advisor to clients and internal teams, bridging the gap between commercial goals and technical feasibility. Stay … managers, or exchanges. Proven experience supporting long sales cycles and navigating enterprise procurement processes. Familiarity with industry standards and frameworks such as ISO 27001, SOC 2, MiFID II, GDPR, or cloud governance in regulated industries. Skills & Competencies: Excellent communication and presentation skills, with the ability to simplify complex More ❯

product roadmap priorities based on client feedback. Respond to technical sections of RFPs, RFIs, and security questionnaires, ensuring alignment with regulatory standards (e.g., ISO27001, SOC 2, GDPR). Act as a trusted advisor to clients and internal teams, bridging the gap between commercial goals and technical feasibility. Stay … managers, or exchanges. Proven experience supporting long sales cycles and navigating enterprise procurement processes. Familiarity with industry standards and frameworks such as ISO 27001, SOC 2, MiFID II, GDPR, or cloud governance in regulated industries. Skills & Competencies: Excellent communication and presentation skills, with the ability to simplify complex More ❯

with security teams to ensure that the platform complies with industry regulations and standards, including data protection, privacy, and security best practices (e.g., GDPR, SOC 2, etc.). Cost Management: Optimize platform operations and infrastructure for cost-efficiency, particularly in cloud environments. Implement monitoring and alerting to keep … systems. Experience implementing SLAs, SLOs, and SLIs is a plus. In-depth understanding of platform security, data privacy, and regulatory compliance requirements (e.g., GDPR, SOC 2, PCI-DSS). Experience managing infrastructure costs, optimizing cloud usage, and driving operational efficiencies. Proven ability to analyze complex problems, identify solutions More ❯

security strategy, policies, and procedures, aligning them with business objectives and risk tolerance. Oversee the maintenance and expansion of existing security certifications (ISO 27001, SOC 2) and drive initiatives for future certifications (e.g., ISO 22301, DORA). Direct regular security audits, risk assessments, and vulnerability analyses, ensuring that … and IT-regulations that apply to financial institutions or its outsourcing partners. In-depth knowledge of relevant regulatory requirements and industry standards (ISO 27001, SOC 2, GDPR, DORA, etc.). Experience with cloud security (AWS, Google etc.), application security, and DevSecOps practices is a significant plus. Proven experience More ❯

our global security posture and ensure regulatory compliance across our AWS and Azure cloud environments. This role involves managing security frameworks, maintaining compliance with SOC 2, GDPR, ISO 9001, ISO 27001, and other standards, while implementing best practices to protect our infrastructure, applications, and data. The ideal candidate … and external auditors to maintain a robust security foundation in a rapidly evolving environment. Key Responsibilities Security & Compliance Management Lead and maintain compliance with SOC 2, GDPR, ISO 27001, and ISO 9001 by implementing, managing, and improving security controls, policies, and processes, while addressing any compliance gaps to More ❯

our global security posture and ensure regulatory compliance across our AWS and Azure cloud environments. This role involves managing security frameworks, maintaining compliance with SOC 2, GDPR, ISO 9001, ISO 27001, and other standards, while implementing best practices to protect our infrastructure, applications, and data. The ideal candidate … and external auditors to maintain a robust security foundation in a rapidly evolving environment. Key Responsibilities Security & Compliance Management Lead and maintain compliance with SOC 2, GDPR, ISO 27001, and ISO 9001 by implementing, managing, and improving security controls, policies, and processes, while addressing any compliance gaps to More ❯

creation, and permission management. Monitor and maintain IT security best practices (MFA, endpoint protection, device patching, etc.) aligned with compliance frameworks (Cyber Essentials, ISO27001, SOC 2). Support and contribute to the firm's compliance initiatives, including audits and certification processes. Assist in evaluating, implementing, and optimising new … to legal, private equity, or financial services environments. Experience supporting or administering AI-based applications or workflow tools. Familiarity with security frameworks (ISO 27001, SOC 2) and compliance requirements. Experience with scripting (PowerShell, Bash) or IT automation tools. Knowledge of additional SaaS platforms (Slack, HubSpot, etc.). EQUAL … know ahead of any interview, we will be happy to suggest or confidentially discuss reasonable adjustments. Recruitment Process: Step 1: Submit your CV Step 2: Introductory call with our Head of Talent Step 3: Interview with our IT Manager Step 4: Interview with our CTO Step 5: Interview with More ❯

the establishment and implementation of policies and procedures. The CISO is also usually responsible for information-related compliance (e.g. ISO/IEC 27001 and SOC 2 certification). What you'll be doing Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program. … of risk management, information security and IT jobs. Knowledge of common regulatory and information security management frameworks, such as ISO/IEC 27001, NIST, SOC 2 and GDPR. Excellent written and verbal communication skills and high level of personal integrity. Innovative thinking and leadership with an ability to More ❯

Lead the development and execution of the overall security strategy Own and manage risk across infrastructure, applications, and data Drive compliance efforts (ISO 27001, SOC 2, etc.) and support audit readiness Build security awareness across the company, including training and best practices Work closely with engineering to embed … scaling business Hands-on knowledge of cloud (AWS, GCP or Azure), application security, and security tooling Familiarity with compliance frameworks such as ISO 27001, SOC 2, and GDPR Excellent communication skills with the ability to influence both technical and non-technical stakeholders A strategic mindset, but comfortable working More ❯

Lead the development and execution of the overall security strategy Own and manage risk across infrastructure, applications, and data Drive compliance efforts (ISO 27001, SOC 2, etc.) and support audit readiness Build security awareness across the company, including training and best practices Work closely with engineering to embed … scaling business Hands-on knowledge of cloud (AWS, GCP or Azure), application security, and security tooling Familiarity with compliance frameworks such as ISO 27001, SOC 2, and GDPR Excellent communication skills with the ability to influence both technical and non-technical stakeholders A strategic mindset, but comfortable working More ❯

book of business. Become a product expert on Vanta and how our platform can be used to improve security posture through our compliance offerings (SOC 2, ISO 27001, GDPR, HIPAA, USDP, and Custom Frameworks), Trust Reports, and Risk Management solution. Guide implementation, configuration, and optimization of Vanta Trust … trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA, and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making More ❯

SENIOR SOC ANALYST Up to £80,000/Bonus + Excellent Staff Benefits Strong Career Growth Opportunities 2 Days Onsite/3 Days Remote No Shift Work (Normal 09:00-17:30pm) Working Hours An interesting opportunity has presented itself within one of the UKs largest Independent Software … Tools & Onboard New Functionality. You will also work with colleagues in the Governance & Compliance Functions to ensure appropriate usage of Data. As a Senior SOC Analyst you will use Leading, Enterprise-Led Tools & take Responsibility for Tuning & Maintaining Security Platforms to Deliver the Best Capability to other Information Security … Strong Verbal & Written Communication Skills Leadership, Coaching & Mentoring Skills. Strong Team Player Ideally Familiarity with Industry Standard Security Frameworks such as ISO 27001 or SOC2 Understanding of Common Network Protocols & Technologies such as TCP/IP, DNS & DHCP Searches: SOC Analyst/Lead SOC Analyst/Principle SOC More ❯

design, build and maintain solutions in collaboration with our System Architects and Systems Security Officer, ensuring we adhere to our existing ISO 27001 and SOC 2 Type 2 obligations. In performing this role your core duties and responsibilities will include, but will not be limited to: Line More ❯

and evaluate residual risks with compensating controls. Solid experience in applying and proving compliance with frameworks like NIST, IEC, HITRUST, HIPAA, GDPR, ISO 27001, SOC 2 Type 2, as well as working with Quality Management Systems (QMS). Strong record of delivering results and cultivating client relationships. More ❯

analysis, and post‑mortems. Security & Compliance Embed DevSecOps practices—secrets management, container image hardening, zero‑trust networking, vulnerability management, and compliance automation (ISO 27001, SOC 2). Collaborate with ML/AI Teams Package and deploy large‑language‑model (LLM) training jobs on distributed GPU clusters (Slurm, Ray More ❯

analysis, and post‑mortems. Security & Compliance Embed DevSecOps practices—secrets management, container image hardening, zero‑trust networking, vulnerability management, and compliance automation (ISO 27001, SOC 2). Collaborate with ML/AI Teams Package and deploy large‑language‑model (LLM) training jobs on distributed GPU clusters (Slurm, Ray More ❯

and oral communication skills, and ability to assimilate easily into teams Strong technical skills and a working knowledge of SOX IT General Controls, COSO, SOC 1, and SOC 2 Awareness of ISO 27001, NIST standards, HIPAA, FAIR, and other relevant standards Effective analytical and critical thinking abilities More ❯

degree in Computer Science, Information Security, or related field; or equivalent experience. Proven experience (5+ years) in IT and security management, with at least 2 years in a leadership role. Strong understanding of operating systems (Windows, macOS), productivity tools (Google Workspace, Microsoft 365), security frameworks (NIST, ISO 27001, SOC 2, GDPR, PCI DSS), and DevOps practices. Proficiency with monitoring platforms like Datadog, New Relic, or similar. Familiarity with ITSM tools, endpoint management, and asset tracking. Strong leadership, analytical, problem-solving, and communication skills. Ability to collaborate in a dynamic environment. Willingness to travel to branch offices as More ❯

CD: Knowledge of Kubernetes, Docker, Terraform, Ansible , and other infrastructure automation tools. Security & Compliance: Understanding of cloud security, identity management, and regulatory compliance (GDPR, SOC2, ISO 27001, etc.) . Programming & Frameworks: Proficiency in languages like React, Python, Go, or Node.js , with a strong understanding of modern frameworks . Experience Requirements More ❯

CD: Knowledge of Kubernetes, Docker, Terraform, Ansible , and other infrastructure automation tools. Security & Compliance: Understanding of cloud security, identity management, and regulatory compliance (GDPR, SOC2, ISO 27001, etc.) . Programming & Frameworks: Proficiency in languages like React, Python, Go, or Node.js , with a strong understanding of modern frameworks . Experience Requirements More ❯

Azure, Google Cloud). Experience with Oracle, Postgres, and NoSQL databases. Experience with CI/CD pipelines, containerized deployments. Familiarity with compliance frameworks (e.g. SOC2, ISO 27001). Familiarity with regulatory frameworks (e.g. GDPR, HIPAA). Ability to guide senior engineers on modern architecture principles and best practices. Excellent written More ❯

and oral communication skills, and ability to assimilate easily into teams; Strong technical skills and a working knowledge of SOX IT General Controls, COSO, SOC 1, and SOC 2; Awareness of ISO 27001, NIST standards, HIPAA, FAIR, and other relevant standards; Effective analytical and critical thinking abilities More ❯

gaps and control weaknesses. Conduct assessments of cybersecurity frameworks, including access management, vulnerability management, incident response, and endpoint protection. Review and assess vendor-provided SOC 1 and SOC 2 reports, evaluating vendor risk and control sufficiency across critical outsourced functions. Audit the full software development lifecycle (SDLC More ❯