20 of 20 SOC 2 Jobs in the South East

Cybersecurity Engineer (ISO27001 & SOC 2 Lead) Location: London (3 days per week onsite) Must have Right to Work: Cannot provide sponsorship Overview A newly created role to take ownership of ISO27001 and SOC 2 certification, ongoing compliance, and the organisation's overall security posture. This position … transitioned or is transitioning into cybersecurity and wants to operate as the central technical security owner. Key Responsibilities Security Governance & Compliance (ISO27001 & SOC 2) Own and maintain ISO27001 and SOC 2 certification processes. Lead evidence collection, control implementation, compliance documentation, and readiness for external audits. Maintain ...

while helping to strengthen overall security posture. Key Responsibilities Certification & Compliance Lead the delivery and maintenance of key certifications including ISO/IEC 27001, SOC 2 Type II, SOC 3, Cyber Essentials Plus, and CREST Oversee additional frameworks such as PCI DSS and NCSC standards (CIR/… commercial teams Deliver training and promote best practices across the organisation What We're Looking For Experience Proven experience managing cybersecurity certifications (ISO 27001, SOC 2, Cyber Essentials Plus, CREST) Strong understanding of Security Operations (SOC) environments Experience supporting audits, RFPs, and customer assurance activities Knowledge ...

addition maintaining the organisations compliance with ISO 9001:2025 (Already certified). Looking forward into the future these requirements are also on the horizon: SOC 2 Type 2: For targeting US-based clients DPIA (Data Protection Impact Assessment) AI-Specific Compliance (The 2026 Frontier) ISO/… people side of making compliance work in practice. Youll likely bring: Proven experience implementing at least one of: Cyber Essentials, ISO 27001:2022 or SOC 2 Strong organisational skills and the ability to break complex frameworks into clear, actionable steps Confidence working with technical teams and a comfort ...

with a willingness to broaden your expertise.Understanding of hybrid and on-premise security concepts.Awareness of key frameworks such as ISO 27001, NIST, SOC 2, and CIS Controls.Cloud Security Technologies & PlatformsExperience with some of the following is helpful (not all required):Microsoft Defender for Cloud, AWS Security Hub, GuardDuty … KeywordsCloud Security, Cyber Security, Pre-Sales Consultant, Azure Security, AWS Security, GCP Security, CSPM, CIEM, IAM, Zero Trust, SIEM, XDR, Kubernetes Security, DevSecOps, ISO27001, SOC 2, Security Consultant. ...

emerging threats, risk and security. Governance and Compliance - maintain frameworks and ensure compliance with a range of standards including - GDPR, PCI DSS, PCI 3DS, SOC 2, NIST, etc. Risk Management - responsible for risk audits and managing 3rd party and supply chain risk. Secure Development - ensure security is integrated … senior Information Security roles. A relevant professional certification (CISS or CISM) Detailed understanding of GDPR Strong knowledge of compliance frameworks (PCI DSS, PCI 3DS, SOC 2) Experience of secure software development practices and cloud security. Strong analytical and problem solving skills. This is an excellent opportunity ...

operating as an Interim CISO/Head of InfoSec/Cyber Security Lead within global SaaS or technology environments Deep expertise across ISO27001, NIST, SOC 2 and PCI-DSS, with experience aligning and embedding controls across multi-region businesses Strong experience delivering and optimising ISMS/security governance ...

assurance programmes. Proven experience designing, executing, and improving structured vendor due diligence processes. Strong understanding of vendor-held assurance artefacts such as ISO 27001, SOC 2, CSA STAR/CAIQ, and security questionnaires. Ability to communicate complex vendor-related cyber risks clearly to both business and technical audiences. ...

adhering to best practices in data protection and cloud security, in line with Cyber Essentials Plus and ISO27001, and implement compliance measures (e.g., GDPR, SOC 2). Analyse performance metrics and make data-driven decisions to improve platform performance, stability, and cost-efficiency. Engage with stakeholders (internal and ...

degree with 8+ years). In-depth understanding of key frameworks such as NIST (800-37, 800-30, 800-53), ISO 27001/27005, SOC 2, PCI or MITRE ATT&CK. Solid understanding of cloud models, application security, vulnerability and patch management. Experience in regulated and/ ...

London CityRole SummaryTheSecurity Awareness Lead is responsible for developing, delivering, andContinuously improving global security awareness and behaviour change programme across a multinational organisation of 2,000+ users. This roleEnsures employees, contractors, and partners understand their securityResponsibilities, make secure decisions, and actively contribute to a strongSecurity culture.The ideal candidate … regions and business units. Develop KPIs and metrics to track behavioural change, susceptibility, and programme effectiveness. Use data insights from Phishing, security incidents, and SOC analytics to drive targeted Interventions. 4. Stakeholder Engagement Collaborate closely with HR, Communications, IT, Data Protection, Legal, and Regional Business Leads. Influence senior stakeholders ...

Tech Assurance Delivery Lead – Cyber Transformation Location: Reading (Hybrid 2 days/week) Duration: Initial 6 Months Contract Type: Day Rate Inside IR35 A major cyber transformation programme is underway, and we’re looking for a Tech Assurance Delivery Lead to drive delivery across a workstream focused on strengthening … change projects in complex, distributed environments Strong experience in cyber security delivery , with knowledge of frameworks such as ISO 27001, NIST CSF, CIS, GDPR, SOC 2, IEC 62443 Ability to work across matrixed teams and manage multiple priorities Strong communication skills, able to translate complex topics into clear ...

frameworks. Ability to interpret high-level security concepts and translate them into usable, pragmatic controls. Knowledge of recognised frameworks (e.g., ISO 27001, NIST CSF, SOC 2) without needing to be tied to specific industry implementations. Comfortable engaging with senior stakeholders and presenting risk and security themes with clarity. ...

Service Manager - ITIL/ITSM - hybrid - £80K Hybrid - 2 days a week in office - Kings Cross Are you a proactive IT Service Manager who wants to lead technology service operations and ensure consistent, reliable performance across systems and platforms? In this role, you'll take ownership of incident management … desk triage and out-of-hours support coverage. Partner with key stakeholders across Product, Engineering, and Compliance to support audit readiness (ISO 27001/SOC 2). What you'll need: 5+ years' experience in IT service management, ITSM, ITIL, including awareness of Devops/Strong understanding ...

technical assurance programmes Strong project or programme delivery experience Experience managing complex projects across distributed teams Knowledge of security frameworks (ISO 27001, NIST, CIS, SOC 2, etc.) Strong stakeholder management and communication skills Desirable Experience delivering CCM, vulnerability management, or security assurance initiatives Experience working in federated organisations ...

Cyber Security Project Manager required for a global FTSE 100 organisation. The role is focused on leading the Threat Defence (SOC) workstream within a major cyber transformation programme. This role will drive the uplift of security operations and response capabilities, delivering enhanced network visibility and transitioning services into business … usual. Key Responsibilities Lead end-to-end delivery of the Threat Defence workstream (SOC, EDR, SIEM and security operations uplift). Define scope, milestones, resource plans, budgets and success criteria. Manage delivery through stage gates, governance forums and Steering Committee oversight. Oversee RAID management, risk mitigation and inter-workstream ...

Experience implementing MFA, SSO, IGA and PAM solutions. Delivery across global organisations. Knowledge of security frameworks and standards (ISO 27001, NIST CSF, CIS, GDPR, SOC 2, IEC62443). Strong governance, risk and stakeholder management capability. Core Skills Programme leadership with strong commercial and budget oversight. Ability to influence ...

market Oversee delivery across multiple concurrent initiatives Ensure operational excellence in deployment, monitoring and resilience Champion Security & Governance Drive secure engineering and compliance (GDPR, SOC2) Ensure risk-aware practices across architecture and delivery Support responsible AI governance What Youll Bring 10+ years in software engineering, including senior leadership experience Proven ...

potentially looking for: Degree or higher award in an IT or Security related discipline. Some knowledge of compliance frameworks such as ISO 27001, SOC 2, PCI DSS, NIST, CIS etc. Some knowledge of security risk management and governance experience with the ability to demonstrate how key deliverables provided ...

with: Defining and delivering an information security strategy aligned with business objectives Managing compliance with UK and international standards such as GDPR, PCI DSS, SOC 2, and related frameworks Leading audit activity, certifications, and third-party security assessments Incident response planning, vulnerability management, and security awareness initiatives Does ...

form with your information, CV, video link and answer to the question "Why are you applying for this role?” Optional: Record a short (max 2 min) video introducing yourself and telling us why you should do sales at ProcurePro. You can use a free tool such as Loom What … beliefs, and life experiences to join our team. We complete police/background checks or the equivalent once you join as part of our SOC2 compliance requirements. We cannot sponsor visas. You must be based in the country of the advertised role and have the right to work independently. Otherwise ...