1 to 25 of 30 SOC 2 Jobs in the South East

Overview An exciting opportunity has arisen for an experienced Cyber Security Assurance Manager to take ownership of security certifications, audits, and assurance standards for a leading Security Operations Centre (SOC) environment. This role will focus on delivering and maintaining key certifications such as ISO/IEC 27001 , SOC 2 Type II , Cyber Essentials Plus , and CREST SOC … candidate will have a strong background in cybersecurity assurance , experience engaging with external auditors and customers , and a proactive approach to maintaining compliance and continuous improvement within a global SOC function. Key Responsibilities Certification Delivery & Maintenance Lead the delivery and ongoing maintenance of SOC-related certifications including SOC 2 Type II , SOC 3 , ISO/… Plus , and CREST . Manage sector-specific compliance such as PCI DSS and NCSC CIR/CHECK . Ensure timely renewals and proactively address compliance gaps. Security Assurance for SOC Operations Integrate certification and assurance requirements into SOC governance, processes, and operations. Maintain evidence collection and audit readiness for both internal and external audits. Translate assurance and control More ❯

Salary: Up to £65,000 Employment Type: Permanent Job Summary: Our client, a leading IT services and consulting firm, is seeking a Cyber Security Assurance Manager to ensure their SOC meets and maintains … top security certifications and assurance standards. As part of the GRC function, you’ll lead customer assurance activities, manage external audits, and oversee key certifications such as ISO 27001, SOC2 Type II, Cyber Essentials Plus, and CREST SOC accreditation. Key Responsibilities: Act as primary contact for customer assurance activities, supporting RFIs, RFPs, and client audit requests Deliver training and … awareness sessions on SOC assurance standards to internal teams Develop customer-facing assurance documentation demonstrating the organisation's security posture Lead the delivery and ongoing maintenance of SOC-related certifications (SOC 2 Type II, SOC 3, ISO/IEC 27001, Cyber Essentials Plus, CREST) Embed certification requirements into SOC governance, processes, and operational practices More ❯

Salary: Up to £65,000 Employment Type: Permanent Job Summary: Our client, a leading IT services and consulting firm, is seeking a Cyber Security Assurance Manager to ensure their SOC meets and maintains … top security certifications and assurance standards. As part of the GRC function, you’ll lead customer assurance activities, manage external audits, and oversee key certifications such as ISO 27001, SOC2 Type II, Cyber Essentials Plus, and CREST SOC accreditation. Key Responsibilities: Act as primary contact for customer assurance activities, supporting RFIs, RFPs, and client audit requests Deliver training and … awareness sessions on SOC assurance standards to internal teams Develop customer-facing assurance documentation demonstrating the organisation's security posture Lead the delivery and ongoing maintenance of SOC-related certifications (SOC 2 Type II, SOC 3, ISO/IEC 27001, Cyber Essentials Plus, CREST) Embed certification requirements into SOC governance, processes, and operational practices More ❯

mitigate threats in real-time, conducting post-incident analysis and documentation. Risk and Compliance Management Conduct regular security assessments and audits to ensure compliance with industry standards (ISO 27001, SOC 2, etc.). Develop strategies to address vulnerabilities and mitigate risks. Collaboration and Integration Work closely with IT and development teams to integrate security services into CI/… Security – Specialty or AWS Certified Solutions Architect Checkpoint Certified Security Expert (CCSE) or similar certification Experience with scripting (Python, PowerShell, or Bash) Familiarity with compliance frameworks (ISO 27001, GDPR, SOC 2, PCI-DSS) At Cognizant you will experience an exciting mix of innovation by design, creativity, collaboration, and efficiency within a framework of stimulating objectives and a passion More ❯

and company builders come from DeepMind, OpenAI, Google Brain, Meta, Character.AI, Anthropic and beyond. What You'll Do Develop and maintain company-wide information security policies and frameworks (US: SOC 2, NIST, GDPR; UK: ISO 27001, Cyber Essentials, GDPR) Oversee IT operations across our three offices (London, New York, San Francisco), ensuring systems, devices, and networks remain secure … experience, including leadership in high-growth or tech-driven environments Strong knowledge of network, cloud, and endpoint security (AWS/GCP/Azure) Familiarity with key compliance frameworks (US: SOC 2, NIST; UK: ISO 27001, Cyber Essentials) Experience implementing MDM, SSO, and IAM systems Excellent communication skills and the ability to translate technical risk into practical action Certifications More ❯

regulatory compliance across the business. The Role: Own and evolve the company-wide security strategy across infrastructure, application, and corporate environments Lead our global compliance programs (e.g., ISO 27001, SOC 2) ensuring we meet regulatory and customer trust requirements. Build and maintain relationships with auditors, ensuring smooth audit processes Address AI-specific compliance requirements around data usage, model … Manager) Deep understanding of infrastructure security, application security, and cloud security Experience performing security operations or investigations involving large scale Kubernetes environments Track record of successfully managing compliance certifications (SOC 2, ISO 27001, etc.) Exceptional communication and collaboration skills An ability to lead projects with little guidance Experience contributing to a high growth startup environment Experience securing cloud More ❯

the Way in Cyber Security Assurance? Robert Half are seeking a dynamic, proactive, and experienced Cyber Security Assurance Manager to join a globally-scaled, fast-paced Security Operations Centre (SOC) environment. In this crucial role, you will ensure that the SOC maintains its commitment to best-in-class standards through internationally recognised security certifications and industry-wide assurance … member in Governance, Risk, and Compliance (GRC) , you will lead certification efforts, influence operational processes, and engage directly with customers and auditors to showcase security credentials that differentiate our SOC from the competition. If you're skilled in blending technical insight with customer-focused communication … while driving compliance excellence, this opportunity is for you! What We're Looking For: Qualifications and Experience: Proven experience delivering and managing cybersecurity certifications (e.g., ISO/IEC 27001, SOC2 Type II, Cyber Essentials Plus, CREST). A strong understanding of SOC operations and security assurance frameworks. Experience engaging with customers during audits and RFP/RFI processes, showcasing More ❯

Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Operationalize policy enforcement through automated More ❯

or partner engagements when needed. Security, Compliance & Reliability: Lead the adoption of secure coding standards , vulnerability management, and security-by-design practices. Ensure compliance with relevant frameworks (ISO 27001, SOC 2, GDPR). Drive observability, monitoring, and incident response strategies to ensure reliability and uptime. Work closely with InfoSec and Data teams to embed security at every stage More ❯

asset inventories and ensure patching and configuration baselines are followed. Security Governance & Compliance Contribute to maintaining security standards and aligning with frameworks such as ISO 27001, NIST, CIS, or SOC 2. Support audits, evidence collection, and compliance reporting (e.g., GDPR, PCI-DSS). Develop and maintain documentation for policies, procedures, architecture, and runbooks. Collaboration & Knowledge Sharing Work with IT More ❯

Azure Government, Google Cloud Platform Assured Workloads, private clouds). Security frameworks and compliance standards relevant to defenceand national security (e.g., NCSC best practices, NIST 800-53, DISA STIGs, SOC 2, ISO 27001). Secure cloud architecture patterns (e.zero trust, micro-segmentation, data loss prevention, encryption at rest and in transit). Infrastructure-as-Code (IaC) and automation More ❯

Cyber Security Lead Oxfordshire - Hybrid - 2 days per week (Flexible) £50k - £60k plus Benefits Our Client are an award-winning leading IT company offering complete outsourced IT solutions to organisations across the UK and Europe. Based in Oxfordshire they provide a comprehensive range of support services, software and hardware solutions to major blue-chip clients and their technicians are … Act as the strategic security escalation point for clients when risks require senior involvement. Internal MSP Security Own the MSP's internal security frameworks and certifications (e.g., CE+, ISO, SOC 2). Oversee patching, vulnerability, and risk management of MSP-owned infrastructure and tools. Ensure MSP's technology stack (RMM, XDR, PSA, backup, etc.) is securely deployed and … Secure Score, M365 compliance dashboards). Drive continuous posture improvement across client environments. Team Leadership & Growth Mentor and develop Security Analysts. Ensure team certifications remain up to date (minimum 2 per year per Analyst). Lead internal knowledge-sharing sessions to keep the team and wider MSP relevant against new threats and frameworks. Champion automation (RPA/AI) in More ❯

identify and mitigate risks. Work closely with the security team to integrate best practices into new and existing features. Ensure compliance with security standards and regulations (e.g., ISO 27001, SOC 2). Implement monitoring solutions to detect and respond to real-time security incidents. Troubleshoot infrastructure and security issues, performing root cause analysis in production. Mentor junior engineers More ❯

testing, code reviews, and vulnerability remediation Drive secure DevOps culture through training, playbooks, and developer champions Strengthen cloud & container security (AWS, Azure, GCP, Kubernetes, Docker) What you'll bring: 2-4 years' experience in AppSec/DevSecOps Hands-on with tools like Checkmarx, Veracode, SonarQube, OWASP ZAP Strong coding skills (Java, Python, JavaScript, Go, .NET) Familiar with CI/… CD (Jenkins, GitHub Actions, Azure DevOps) and IaC (Terraform) Knowledge of OWASP Top 10, API security, and compliance (ISO 27001, SOC 2) Eligibility for SC clearance is mandatory (UK nationals only) Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates More ❯

ServiceNow products, particularly within the ITSM suite. Strategy & Compliance Operate within Agile/Scrum methodologies to ensure efficient project execution. Apply knowledge of relevant compliance frameworks (e.g., ISO 27001, SOC 2, HIPAA) within enterprise service management environments. Required Skills, Knowledge & Experience Technical & Platform Expertise ServiceNow Expertise: 4–5 years of hands-on ServiceNow implementation experience, with a proven … . Cloud Architect-level certification on a major platform (e.g., AWS, Azure, or Google Cloud). Salary - Up to £150,000 per annum + bonus Work Model - Ideally Hybrid 2 days a week in London (can be flexible) MUST BE SC CLEARED OR CAN BE SC CLEARED More ❯

Senior DevSecOps Engineer - Global Health Data Platform Location: Oxford or London (hybrid: 3 office/2 WFH) Join a world-class research and technology organisation using data and AI to tackle global challenges - from health and food security to climate and clean energy. They're now hiring a Senior DevSecOps Engineer to help build and secure this cloud-first … Develop CI/CD pipelines (e.g., GitHub Actions) with built-in security testing. Support data scientists and engineers in deploying secure, automated workflows. Implement monitoring and compliance (ISO 27001, SOC 2, GDPR). Mentor engineers on DevSecOps best practices. What you'll bring Strong cloud experience (ideally OCI ). Industry experience in the pharma space Hands-on with More ❯

GDPR, HIPAA, and OWASP, as well as leading risk assessments and managing the risk register. Key skills and responsibilities, Comprehensive knowledge of ISO 27001, NIST CSF, GDPR, HIPAA, SOC 2, and OWASP frameworks. Senior Security Analyst/Senior Security Engineer background Proven experience collaborating with software development teams and implementing technical controls. Skilled in articulating technical risks in More ❯

e.g. EC2, S3, RDS, Lambda, VPC, IAM, CloudFormation/Terraform). Experience with DevOps tools (e.g. Git, Jenkins, Docker, Kubernetes). Familiarity with security and compliance frameworks (e.g. CIS, SOC 2, HIPAA). Cloud certification at Associate or Professional level (e.g. AWS Solutions Architect, DevOps Engineer). For Associate Manager Level: Minimum 4 years of relevant experience. Strong More ❯

across multiple entities and territories, including risk appetite and impact/likelihood calibration. Has familiarity with regulations and standards such as ISO27001, NIST CSF, NIS2, COBIT, ITIL, GDPR, and SOC2, including developing and maintaining frameworks, policies and guidance, and implementation and monitoring strategies. Some of the key skillset required for this position are: Graduate level in Cyber Security, Computer Science More ❯

Cloud Presales Specialist/AI Presales Consultant/SaaS Integrations/APIs/Security/Compliance/AWS/Azure/GCP/NLP/ML/ISO27001/SOC2/GDPR More ❯

documentation for public APIs. Familiarity with Azure services and automation tools such as Power Automate or Zapier . Exposure to IoT or Telematics platforms . Awareness of ISO 27001, SOC 2 , or GDPR compliance frameworks . More ❯

Familiarity with Azure services and cloud-based automation tools (e.g., Power Automate, Zapier). Exposure to IoT or Telematics platforms and data handling. Awareness of standards like ISO 27001 , SOC 2 , or GDPR compliance. Salary Range: £45-70k (depending upon experience) Job Type: Hybrid (3days in office) Why Work at MCS We’re proud recipients of the More ❯

Information Security Compliance Analyst Location: Central London (Hybrid, 2 days in office per week) Type: Permanent, Full-time An exciting opportunity for an analytical and detail-oriented Information Security Compliance Analyst to join a growing, dynamic team supporting clients in the legal sector. This role offers broad exposure to information security frameworks, compliance standards, and client advisory work. Key … a motivated individual early in their career, possibly from a technical support, legal, or professional services background. Candidates should have: A foundational understanding of information security frameworks (ISO 27001, SOC 2, Cyber Essentials). Strong written communication and organisational skills. Interest in risk, compliance, and information security. A relevant certification (or willingness to obtain one), such as ISO More ❯

by a vision to restore trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making security continuous—not just a More ❯

maintaining, and maturing the already established audit lifecycles for the following frameworks: PCI DSS v4.0, ISO 27001:2022, ISO 9001:2015, ISO 14001:2015, Cyber Essentials, Cyber Essentials Plus, SOC2 Type 1 – 3 & HIPAA Working in close collaboration with other team members, with peers, and across the business to ensure that mandatory and audit defined GRC requirements are effectively managed … Be a subject matter expert level knowledge of all the Information Security frameworks (as listed within the You Will be Responsible For section), e.g. PCI DSS, ISO 27001:2022, SOC2 etc. Possess a good, and demonstrable, understanding of EU/UK GDPR and the Data Protection Act 2018 etc. Have led and managed audit programmes from inception to completion for … PCI DSS and ISO 27001:2022. Experience in managing SOC2 audit requirements is highly desirable Any experience of working with CSA CCM v4.0 and associated cloud security frameworks is highly desirable. Have excellent knowledge of the principles of risk management, associated processes, and their relevance to maintaining a GRC programme. Are a strong and proactive collaborator with a positive professional More ❯