1 to 25 of 26 SOC 2 Jobs in the South East

won't need experience in all of these areas, their current accreditations are as follows: ISO 9001, 27001, 27701, 27017, 22301, 14001, (phone number removed), 42001, 13485, PCI-DSS, SOC 2 Type 2, CE+. The company work on a hybrid model typically involving 2-3 days a week in the office. Examples of responsibilities: Coordination of More ❯

Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and Microsoft Sentinel for advanced security monitoring. Threat Detection & SOAR Automation: Oversee Security Orchestration, Automation, and Response (SOAR) solutions including SOC Prime. Network & Application Security: Manage Web Application Firewalls (WAF) and Intrusion Prevention Systems (IPS). Vulnerability & Penetration Testing: Review Penetration Testing, vulnerability assessments, and security scanning to proactively identify … security operations. Desirable Certifications: Azure Security Engineer Associate, CISSP, OSCP (Offensive Security Certified Professional), CCSP, or equivalent. Experience with container security (Docker, Kubernetes). Knowledge of NIST, ISO 27001, SOC 2 compliance frameworks. Familiarity with Zero Trust security principles. Other Stuff NB: Please only apply if you are able to work from their Debden (IG10) offices Monday-Friday. More ❯

evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to More ❯

evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to More ❯

operations. Expereince : Essential Prior experience in cybersecurity, risk management, compliance, or governance. Strong understanding of regulatory requirements, security frameworks, and standards such as ISO 27001, NIST CSF, CIS, and SOC 2. Hands-on experience with ISO 27001 implementation and audit readiness. Experience supporting SOC 2 readiness and evidence collection. Proficient with risk assessment methodologies and control frameworks More ❯

sector, based in London, on a permanent basis paying up to £65,000 plus great benefits. This role offers hybrid working with an expectation to be in the office 2-3 days per week. You’ll be joining a technical team focused on strengthening cloud security and ensuring compliance across Microsoft Azure environments. This role will involve hands-on … essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working More ❯

Recommend suitable technology stacks for new projects or modernisation efforts. 5. Security & Compliance Assess application security risks and provide remediation strategies. Ensure compliance with industry standards (ISO 27001, GDPR, SOC 2, etc.). Implement best practices for secure software development (OWASP, encryption, IAM, etc.). 6. Performance Optimisation & Scaling Analyse system bottlenecks and recommend performance tuning strategies. Support More ❯

identify and mitigate risks. Work closely with the security team to integrate best practices into new and existing features. Ensure compliance with security standards and regulations (e.g., ISO 27001, SOC 2). Implement monitoring solutions to detect and respond to real-time security incidents. Troubleshoot infrastructure and security issues, performing root cause analysis in production. Mentor junior engineers More ❯

large, complex technology programmes involving multiple concurrent projects with significant experience of delivering through offshore/nearshore strategic vendors. Knowledge of security frameworks & standards (ISO 27001, NIST, CIS, GDPR, SOC 2) Be experienced in 'hands on' technology software delivery from initiation to implementation. Have knowledge of programme and project management methodology and managing full lifecycle of programmes from More ❯

procedures or guidelines acrossthe organisation. • Development of new organizational processes within the organization. • Ensure the organization's internal regulatory compliance. • Monitor compliance with regulations such as ISO27001, NIST, NIS2, SOC2, ENS, or ANSSI. • Maintenance of Information Security KPIs for the maintenance of existing certifications. • Analysis and management of the authorization of HR, IT, TECH and business processes. • Identify and manage … French (B2). Ability to speak Spanish to C1 level desired. Ability to communicate clearly with technical and non-technical stakeholders at all levels of the business. Experience supporting SOC 2,NIS2, ISO 27001, or GDPR compliance programs. Knowledge of SaaS architecture and cloud platforms (e.g., AWS, Azure, GCP). Familiarity with penetration testing methodologies and remediation workflows. More ❯

would be advantageous (TypeScript/Express/AWS Lambdas, MySQL, MongoDB and React-based micro front ends) Security & compliance : working knowledge of secure software development practices and ISO27001/SOC2 or equivalent Academic foundation : BSc/MSc in Computer Science, Engineering or a related field, or equivalent practical experience What we offer Some of the benefits we include are: Private More ❯

with message-based architectures and tools like RabbitMQ, Kafka, or Kinesis Demonstrable experience building LLM backed systems and applications Understanding of regulatory and compliance frameworks (e.g., PCI, ISO 27001, SOC 2, GDPR) and how to apply them in software and cloud system design AWS certifications (e.g., Developer Associate, Data Analytics Specialty) Please click the APPLY button to send More ❯

from day one. Advising on risks, vulnerabilities and mitigation strategies across the tech estate. Shaping and maintaining internal security standards and governance frameworks. Ensuring compliance with ISO 27001, GDPR, SOC 2, PCI-DSS and similar regulations. Collaborating with IT, business stakeholders, and third parties to drive secure delivery. Supporting incident response and proactively planning for emerging threats. Translating More ❯

ELK/EFK) stacks Preferred Qualifications Experience integrating Kubernetes with OpenStack and Magnum Knowledge of Rancher add-ons: Fleet, Longhorn, CIS Scanning Familiarity with compliance-driven infrastructure (PCI, FedRAMP, SOC2) Certifications: CKA, CKS, or Rancher Kubernetes Administrator Strategic thinker with strong technical judgment and execution ability Calm and clear communicator, especially during incidents or reviews Mentorship-oriented; supports team learning More ❯

and have experience of managing Azure subscriptions You have a good knowledge of DevOps and IaC concepts You're familiar with cloud based security (e.g. ISO27001, NIST, CIS, OWASP, SOC2) and Identity and Access Management (IAM) within Azure You're familiar with ARM templates and/or Pulumi Ideally you will have automation and scripting (PowerShell or similar) skills You More ❯

and have experience of managing Azure subscriptions You have a good knowledge of DevOps and IaC concepts You're familiar with cloud based security (e.g. ISO27001, NIST, CIS, OWASP, SOC2) and Identity and Access Management (IAM) within Azure You're familiar with ARM templates and/or Pulumi Ideally you will have automation and scripting (PowerShell or similar) skills You More ❯

and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

Work closely with internal and external R&D teams to integrate security best practices into new and existing features. Ensure compliance with security standards and regulations (e.g., ISO 27001, SOC2). Implement monitoring solutions to detect and respond to security incidents in real-time. Perform root cause analysis and troubleshoot infrastructure and security-related issues in production. Mentor junior engineers More ❯

existing technology stack, including PostgreSQL, NestJS, PostgREST, and an AngularJS frontend. Define security policies, standards, procedures, and guidelines to align with industry best practices and regulatory requirements (e.g., GDPR, SOC2). Manage security incidents and breaches: Lead incident response efforts, conduct thorough investigations, and implement corrective actions. What we are looking for: 7+ years experience in a Senior/Team More ❯

building resilient cloud infrastructure? Join our growing team as a Senior Cyber Security Engineer , and help us protect critical platforms while enabling innovation at scale. ?? Location: Berkshire, UK (Hybrid 2-3 days onsite) About the Role As a Senior Cyber Security Engineer, youll be a key member of our security team, responsible for designing, implementing, and maintaining robust security … into CI/CD pipelines Monitor and respond to security incidents, coordinating investigation and remediation efforts Drive security automation and infrastructure-as-code initiatives Support compliance efforts (ISO 27001, SOC2, etc.) through technical controls and documentation What Were Looking For Proven experience as a security engineer with a strong background in cloud security (AWS, Azure, or GCP) Solid understanding of More ❯

pipelines. Working experience of the above concepts in the context of at least one major public cloud provider (AWS, GCP, or Azure). Understanding of global security standards (like SOC2 or ISO 27001) and regulatory requirements and experience in maintaining compliance with these. A desire to teach others and share knowledge. We want you to coach other team members on … Infrastructure penetration testing (OWASP top 10, OWASP ASVS). Understanding of security vulnerabilities and remediation options in codebases & containers. Working knowledge of methods for authentication and authorization (ODIC, OAuth 2, FIDO 2, etc) Don't worry if you don't meet all the criteria - your unique skills and experiences are valued, and we encourage you to apply! What More ❯

The Business Intelligence Developer will be responsible for working with fund accounting professionals and technology organizations to build, maintain, and complete customized reporting statements. The position requires at least 2 years of experience using QlikView version 11 or higher, with proven expertise in the following areas: Good knowledge of SQL, relational databases, and Dimensional Modeling Experience working with large … experience across various fund types. Key facts include: Over $1 Trillion assets under administration Servicing nearly all significant investors in the asset class Institutional-grade infrastructure with SSAE 18 (SOC-1, Type 2) certification Industry-leading experienced team More ❯

vendor relationships, ensuring long-term value creation. Champion vendor compliance through regular audits and assessments, ensuring adherence to internal policies, external regulations, and industry standards. Review and evaluate the SOC 1 Type 2 reports to ensure robust change control processes are in place, verifying vendor compliance with contractual and operational requirements. Stay at the forefront of industry developments … Gatekeeper preferred), contract management (including systems), and performance monitoring software. Certifications in Vendor Management (e.g., CPO, CPSM and CIPS) are a plus. Knowledge and experience in maintaining and reviewing SOC 1 Type 2 Reports, along with other certifications and disaster recovery (DR) outputs. Knowledge of fintech regulatory environments and compliance frameworks (e.g., PSD2, GDPR, PCI-DSS) preferred. Working More ❯

AI Back End Engineer** (Contract) Duration: 6 Months (Possibility for extension) Location: London/Hybrid (2 - 3 days on site) Rate: A highly competitive Umbrella Day Rate is available for suitable candidates Role Profile Are you ready to shape the future of AI in financial services? We are looking for a talented AI Back-End Engineer to join our … EU AI Act, FCA cybersecurity principles, and oversight of critical systems. Previous collaboration with cybersecurity and compliance teams in regulated environments. Knowledge of controls under ISO 27001, NIST, or SOC2 frameworks. Candidates will need to show evidence of the above in their CV in order to be considered. If you feel you have the skills and experience and want to More ❯