1 to 25 of 51 SOC 2 Jobs in the UK

chaos to strategic partnerships Compliance & Security Transform compliance from a checkbox exercise into a sales accelerator that wins enterprise deals Own and execute our SOC 2 certification end‐to‐end with efficient, automated evidence gathering Turn RFI and security questionnaire responses into a competitive advantage—fast, thorough, repeatable … people) Able to manage and procure upwards of 50+ vendors, owning a budget in the 7 digits Track record implementing and maintaining compliance frameworks (SOC 2, ISO 27001, GDPR) Experience with enterprise sales support in a B2B SaaS company—you’ve answered RFIs and security questionnaires Proven ability ...

owning an entire domain end‐to‐end, is comfortable moving between strategy and execution, and is equally credible with a senior engineer and a SOC 2 auditor. You believe security is most effective when it is practical, measurable, and built into how the business operates. Key Responsibilities Vulnerability … assessments. Report regularly on status, SLA performance, and trends. Security operations and incident response: Manage our MSSP partner for 24/7 SIEM and SOC monitoring; ensure telemetry, detections, and playbooks match our threat model. Serve as incident commander for real events, and run regular tabletops and post‐incident ...

Lead structured pilots with signed mutual action plans, clear success criteria, and measurable exit criteria before they start. Navigate enterprise procurement end-to-end: SOC 2, DPAs, MSAs, redlines, and vendor security reviews. Feed tight feedback loops to product and engineering on objections, competitive context, and pilot learnings. … Comfortable selling to and holding conversations with deeply technical buyers (engineering, AI/ML, security teams). Experience navigating enterprise security and compliance procurement (SOC 2, DPAs, MSAs). Startup experience (Seed–Series B) — you thrive in ambiguity and can iterate fast. Tech stack at company : Voice ...

group-level data capability is live with a published catalog and cross-divisional SLAs. Regulatory & Cost Control: Engineering consistently hits all MiCA, DORA, and SOC 2 milestones while managing cloud and vendor spend against clear business-unit baselines. Key Responsibilities Engineering Delivery & Cadence: Run day-to-day global … group data pipelines and governance. Cybersecurity Execution & Compliance: Own the on-the-ground execution of The Company’s security and regulatory commitments (MiCA, DORA, SOC 2). Foster a "controls-by-design" engineering culture while respecting regulated divisional information walls. Talent, Budget & Scale: Manage the global engineering budget ...

Compliance Officer (ISO, SOC2, GDPR) Fully Remote £45,000 - £50,000 + Bonus & Benefits Are you a hands-on compliance professional who thrives on variety and ownership? Do you have experience delivering ISO, SOC & GDPR audit & compliance projects? Join a leading international managed services provider and become the driving … and governance is critical. You'll manage and maintain ISO 27001, ISO 9001 and ISO 22301 certifications, lead GDPR and data protection compliance, oversee SOC 2 - Type II controls, coordinate business continuity and disaster recovery activities, and support customer audits and due diligence requests. You'll also play ...

and cross‐border transfer mechanisms (UK/EU/US/SG). Work closely with our vCISO to maintain ISO 27001 and SOC 2 compliance – owning the legal and policy layer, supporting audit cycles, and closing out action items. Draft and maintain privacy notices, DPAs, and internal … improve contracts, not just mark them up. Working knowledge of UK GDPR and practical experience managing compliance programmes or certification cycles (ISO 27001/SOC 2 exposure strongly preferred). Genuine AI literacy – you use Claude or equivalent tools in your workflow; drafting without them would feel like ...

world's leading financial groups. Headquartered in Tokyo and with approximately 350 years of history, MUFG is a global network with around 2,300 offices in over 50 countries including the Americas, Europe, the Middle East and Africa, Asia and Oceania, and East Asia. The group has over … workflows, APIs, and orchestration with tangible reductions in manual effort and ticket volume. Experience supporting audits and compliance requirements related to access controls (SOX, SOC 2, ISO 27001, PCI, or similar), including evidence production and remediation. Excellent stakeholder management and communication skills, including leading major incidents and delivering ...

systems. This role exists to operationalize that principle across every function of the company. You won’t be building from scratch. We already have SOC 2 Type 2 and HIPAA certifications and will soon have HITRUST R2 certification. We view these compliance items as a baseline starting ...

Security to lead security operations and report directly to the CEO. This role involves building a comprehensive security program while ensuring compliance with SOC 2 Type 2 and HIPAA standards. The ideal candidate will have significant experience in cloud-native security environments, strong technical skills, and ...

Cloud and Zero Trust principles. Own compliance across multiple jurisdictions, including data residency and sovereignty, mapping controls to relevant frameworks (e.g. ISO 27001, SOC 2, GDPR, regional equivalents) and evidencing them for audit. Govern at scale with Azure Policy, authoring definitions and initiatives, applying them across scopes, and … days holiday plus all UK bank holidays 4x life assurance Enhanced family‐friendly leave – 5 months' full pay for maternity or adoption, plus 2 weeks' fully paid paternity/adoption leave and an extra 2 weeks to use as paid annual leave within 24 months of birth ...

take full ownership of security operations, reporting to the CEO. This role involves building and managing a comprehensive security program, ensuring compliance with SOC 2 Type 2 and HIPAA standards, and working closely with engineering and legal teams. Ideal candidates will have significant experience in cloud-native ...

primarily GCP, with some AWS exposure also useful Secret management - HashiCorp Vault, AWS Secrets Manager, or similar Knowledge of Fintech compliance requirements - PCI-DSS, SOC 2, ISO 27001 Scripting skills - Python, Bash, or similar Someone who can translate between security and engineering teams, and is respected by both ...

and resolve production issues. Security & compliance aware engineering Work closely with Security and GRC teams to ensure services meet security and compliance requirements (e.g. SOC 2, ISO 27001). Implement secure coding practices, strong authentication and authorization patterns, and data protection controls. Contribute to internal documentation and standards … Opportunity to travel (if applicable) Flexible vacation policy Private Healthcare Employee stock ownership (ESOP) Flexible working and autonomy Pay it forward days - we offer 2 annual pay it forward days where you can take time to volunteer for a charitable cause that is important to you. Wellness days ...

platforms Design and implement data protection controls including classification, DLP, encryption, retention, and access policies Interpret and implement compliance requirements including GDPR, ISO 27001, SOC 2, and client security obligations Lead SaaS/vendor security assurance, including risk assessments, architecture reviews, and due diligence Support incident response, resilience ...

design, data modelling, and integration with internal and external financial systems. Security & Compliance Ensure systems meet regulatory, security, and audit standards (PCI-DSS, SOC2, GDPR). ...

Senior Security & Compliance Architect London/Hybrid (1–2 days onsite per week) Salary: Up to £140,000 + Package Experience as an end-to-end Security Solution Architect within large-scale enterprise transformation programmes is essential. Security clearance or eligibility for clearance is essential Key Responsibilities Define and … platforms Design and implement data protection controls including classification, DLP, encryption, retention, and access policies Interpret and implement compliance requirements including GDPR, ISO 27001, SOC 2, and client security obligations Lead SaaS/vendor security assurance, including risk assessments, architecture reviews, and due diligence Support incident response, resilience ...

deployments, and observability-first culture. Drive metrics for deployment frequency, lead time, MTTR, change failure rate; implement platform reliability standards (target 99.95%+ uptime, SOC 2 Type II, GDPR/data sovereignty). Champion developer experience and AI-assisted development tools (e.g., Copilot, Claude Code, Cursor) and rapid ...

platforms Design and implement data protection controls including classification, DLP, encryption, retention, and access policies Interpret and implement compliance requirements including GDPR, ISO 27001, SOC 2, and client security obligations Lead SaaS/vendor security assurance, including risk assessments, architecture reviews, and due diligence Support incident response, resilience ...

platforms Design and implement data protection controls including classification, DLP, encryption, retention, and access policies Interpret and implement compliance requirements including GDPR, ISO 27001, SOC 2, and client security obligations Lead SaaS/vendor security assurance, including risk assessments, architecture reviews, and due diligence Support incident response, resilience ...

experience a plus) IaC security (Terraform, CloudFormation) - spotting misconfigs before they hit production Knowledge of compliance frameworks relevant to Fintech - PCI-DSS, ISO 27001, SOC 2 Cloud-native logging and monitoring - Google Cloud Logging, Chronicle, or similar Someone who's comfortable working across engineering teams, not just ...

experience a plus) IaC security (Terraform, CloudFormation) - spotting misconfigs before they hit production Knowledge of compliance frameworks relevant to Fintech - PCI-DSS, ISO 27001, SOC 2 Cloud-native logging and monitoring - Google Cloud Logging, Chronicle, or similar Someone who's comfortable working across engineering teams, not just ...

and evidence. - Align MLOps processes with data governance, AppSec, logging, monitoring and enterprise GRC expectations. - Support AI-specific control closure across NIST-style controls, SOC 2, ISO 27001 and enterprise GRC contexts. - Create repeatable evidence for monitoring, alerting, response, review and BAU handover. - Ensure MLOps controls are sustainable ...

least privilege, and security hardening principles. Desirable Experience with Microsoft Sentinel, Splunk, Tenable, Qualys, or Defender TVM. Knowledge of NIST, ISO 27001, CIS, or SOC 2 frameworks. Familiarity with Azure Automation, Logic Apps, PKI, and certificate management. About You - You are a proactive and detail-oriented security professional ...

microservices, etc.) and evaluate new technologies that can drive business value.Risk & Compliance : Oversee technical risk management, data privacy, security standards, and regulatory compliance (SOC2, GDPR, HIPAA, etc. as applicable).Budget & Operations : Manage the engineering budget, vendor relationships, and infrastructure costs. Optimize resource allocation across projects and initiatives.Cross-functional Collaboration ...

Terraform, and cloud security experience. Strong understanding of SRE, observability, incident response, and disaster recovery. Experience operating within regulated environments such as ISO 27001, SOC 2, or GxP. Comfortable balancing strategic leadership with hands-on operational delivery. AWS Solutions Architect - Professional certification required. CKA or CKS certification highly ...