20 of 20 SOC 2 Jobs in the UK excluding London

RFIs, RFPs, and audit requests with accurate certification evidence and security documentation. Build customer-facing assurance packs that demonstrate Bell's security posture and SOC credibility. Regulatory & Industry Alignment: Monitor developments in global cybersecurity regulations and frameworks (e.g. NIST CSF, UK NCSC guidance, EU NIS2, GDPR). Continuous Improvement … ability to develop and maintain compliance documentation and audit evidence. Excellent communication skills to explain complex security assurance topics to customers, senior leaders, and SOC teams. Analytical and detail-oriented, with the ability to identify gaps and design improvements. Stakeholder engagement and influencing skills, particularly with technical and commercial ...

and accountability across the business. Key Responsibilities Regulatory Compliance Monitor and interpret data protection and IT-related regulations (e.g., GDPR, CCPA, HIPAA, ISO 27001, SOC 2) to ensure organisational compliance. Develop and maintain compliance frameworks, standards, and policies aligned with regulatory obligations and industry best practices. … CISM, CISA, CISSP, CIPM, or equivalent preferred. Strong knowledge of global data protection laws (e.g., GDPR, CCPA) and IT compliance frameworks (e.g., ISO 27001, SOC 2, NIST). Proven experience in IT compliance, risk management, or data governance roles. Excellent understanding of IT infrastructure, cyber security principles, and ...

teams to embed security into SDLC. Evaluate and recommend security technologies, tools, and vendors. Ensure compliance with regulatory and industry requirements (ISO 27001, NIST, SOC 2, PCI DSS). Support incident response and forensic investigations. Identify security gaps and drive remediation plans. Create and maintain security documentation and … cloud security (AWS, Azure, or GCP). Expertise in IAM, network security, encryption, and monitoring tools. Familiarity with regulatory frameworks (ISO 27001, NIST, SOC 2, PCI DSS). Ability to conduct threat modeling and risk assessments. Excellent communication and stakeholder management skills. Interested? Please apply now for immediate ...

IR35 | 3 Months | Fully Remote We’re hiring a Cybersecurity Engineer to support a client on a 3-month initial contract focused on achieving SOC 2 and ISO 27001 compliance. This role is Outside IR35, fully remote, and offers a daily rate of £500–£700.The successful candidate will … implementation of controls, monitoring, and documentation for compliance readiness. Key Requirements Proven experience in s ecurity engineering and compliance delivery Deep understanding of SOC 2, ISO 27001, GRC frameworks and audit processes Hands-on experience integrating cybersecurity tools and platforms such as Crowdstrike, Vanta, Rapid7 Strong adherence ...

designing and implementing next-generation cloud security architectures, securing WTW cloud environments, and driving automation and intelligence within Cybe r Defence Security Platforms & SOC Engineering. This is a hybrid role at London office with a requirement to be in the office based on the business need. The Role: Agentic … needs. Stay up to date with emerging threats, Microsoft security innovations, and industry trends to drive continuous security enhancements. Provide training and mentorship to SOC teams on Microsoft cloud security best practices. Team Management Manage and mentor a team of Cyber Defence Security Engineers. The Requirements: Must-Have Skills ...

team members' daily project and operational activities Contribute to security and technology strategic planning to mature our programmes Work with Risk & Compliance teams on SOC 2, PCI DSS, HIPAA, and other audits. Research and recommend policy and procedures as they relate to Attack Surface Management Qualifications Expert experience ...

stakeholders at all levels in a typical corporate environment. Desirable: Experience working within or implementing industry standard security and compliance standards, e.g. ISO 27001, SOC2, Cyber Essentials Plus Experience working with outsourced providers for engineering & technical resources as well as systems/services. Experience working in a regulated industry, e.g. ...

stakeholders at all levels in a typical corporate environment. Desirable: Experience working within or implementing industry standard security and compliance standards, e.g. ISO 27001, SOC2, Cyber Essentials Plus Experience working with outsourced providers for engineering & technical resources as well as systems/services. Experience working in a regulated industry, e.g. ...

and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required ...

skills, with attention to detail Critical competencies – technical fit Good understanding of at least one audit framework; PCI DSS, ISO 27001, Cyber Essentials, NIST, SOC 2, NIS2, Microsoft 365 Certification, etc. Ability to deliver, without supervision/support, at least one Cyber Practice GRC service Aptitude for understanding ...

and assist with customers’ RFIs and RFPs; Obtain at least CII certification to appreciate how the insurance industry works. Qualifications Essential: A minimum of 2 years in an infrastructure, SysOps or Security role; Active Directory management; AWS ecosystem, especially AppStream 2.0. NTFS permission & Group Policy configuration & management; Microsoft … Information Security specialism. Desirable: IaaS and PaaS environments; SQL; VMWare Cloud Director; SharePoint Windows IIS security & management; Security & GDPR compliance (ISO27001/ISO27032/SOC 2 ...

methodologies. Experience in industries relevant to Fusion such as telecoms, retail, utilities etc. Knowledge of specific industry regulations or compliance standards (e.g., ISO 27007, SOC 2, HIPAA, PCI DSS) relevant to MSP operations. Experience with APls, web services, and integration tools to connect ServiceNow with other enterprise systems. ...

Presales Consultant/SaaS Integrations/APIs/Security/Compliance/AWS/Azure/GCP/NLP/ML/ISO27001/SOC2/GDPR ...

enhance the firm’s Information Security function and overall security posture. Lead responses to client security questionnaires and audit follow-ups. Oversee ISO27001 and SOC 2 Type II audits. Select and implement tools to proactively detect and respond to threats. Drive continuous improvement of security practices across ...

compliance topics. Champion ethical governance and sustainable practices in all sales engagements. Skills & experience Strong understanding of compliance frameworks (e.g. ISO 27001, GDPR, SOC 2) and risk management principles. Experience supporting sales teams in a technical or compliance-focused capacity. Proven ability to complete RFPs and security questionnaires ...

policies, and controls Act as the senior hands-on security authority across the organisation Ensure alignment with recognised security frameworks (ISO 27001, NIST, CIS, SOC2, etc.) Embed security by design across infrastructure, cloud, networks, and applications Lead incident response, vulnerability management, and threat mitigation Partner closely with engineering, infrastructure, and ...

and guidelines Maintain monthly security key performance indicators and present to the ISMS Management Team Ensure ongoing ISO 27001:2022, ISO 27701:2019 and SOC 2 compliance across UK and international offices Conduct internal audits, lead remediation efforts, and support third-party reviews Operate supplier due diligence and … assessments Investigate and escalate incidents, contributing to ongoing threat awareness Deliver awareness training and drive adoption of secure behaviours Required skills: Minimum experience of 2 years working full time in I.T Clear understanding of GDPR, CCPA and other data protection legislation Good written and verbal communications skills Self sufficient ...

travel when needed. Desirable: Experience in MxDR/SOC support, security technologies (IDS/IPS, SIEM, firewalls), and compliance frameworks (GDPR, Cyber Essentials+, SOC2, PCI-DSS). Strong understanding of data protection principles. If you're a proactive security professional looking to shape and strengthen a growing cyber capability ...

timelines, resources, project plans, action logs, status reports, and statistics to ensure milestones, goals, and commitments are met. Qualifications Experience leading ISO, PCI and SOC2 accreditations with cloud platforms such as Amazon Web Services (AWS), Azure, Google Cloud Platform (GCP) with demonstrable experience orchestrating, leading and delivering accreditations … . Technical knowledge of specific security standards such as PCI DSS, HIPAA, ISO 27001/2, CCM, NIST. Experience presenting to board level. Project management skills running projects end-to-end; project initiation, planning/scheduling, execution, monitoring/reporting, and closure. ISO lead Auditor, PMP, CISA, CISM, CCSP ...

this role You will own the secure design and deployment of Azure services in environments governed by NIST 800-53 (or ISO 27001, MITRE, SOC2 similar standards), embedding "security by design" into everything you deliver. Partnering closely with engineering, security, and compliance teams, you will shape resilient platforms that meet … stand out Deep hands-on Azure experience in regulated environments, with a solid track record against NIST 800-53 (or ISO 27001, Mitre, SOC2 comparable frameworks)? Strong security mindset, comfortable partnering with security and GRC functions to translate requirements into clean, automated technical solutions.? Bonus points for experience with Azure ...