1 to 25 of 38 Remote SOC 2 Jobs

clear visibility of its cyber risk exposure and the processes in place to respond effectively. You will oversee the enterprise risk register, manage the risk exception process, and drive SOC 2 readiness initiatives. Partnering with IT, architecture, SRE, and procurement teams, you'll translate complex technical risks into actionable business decisions and provide senior leaders with clear, data … driven insights. You will also align the company with leading industry frameworks such as NIST CSF, NIST 800 53, and SOC 2, helping advance its risk maturity. What You'll Be Doing ** Lead and continuously improve the cyber risk management program, including oversight of the enterprise risk register. ** Manage risk exceptions and ensure timely review, tracking, and remediation … of risks. ** Drive SOC 2 readiness activities and collaborate with auditors and internal stakeholders to ensure compliance. ** Develop and enforce cybersecurity governance policies, standards, and procedures aligned with industry frameworks. ** Work with IT, SRE, Architecture, and Procurement teams to identify, assess, and mitigate technology and third party risks. ** Provide clear, actionable reporting and metrics to senior leadership, translating More ❯

clear visibility of its cyber risk exposure and the processes in place to respond effectively. You will oversee the enterprise risk register, manage the risk exception process, and drive SOC 2 readiness initiatives. Partnering with IT, architecture, SRE, and procurement teams, you'll translate complex technical risks into actionable business decisions and provide senior leaders with clear, data … driven insights. You will also align the company with leading industry frameworks such as NIST CSF, NIST 800 53, and SOC 2, helping advance its risk maturity. What You'll Be Doing ** Lead and continuously improve the cyber risk management program, including oversight of the enterprise risk register. ** Manage risk exceptions and ensure timely review, tracking, and remediation … of risks. ** Drive SOC 2 readiness activities and collaborate with auditors and internal stakeholders to ensure compliance. ** Develop and enforce cybersecurity governance policies, standards, and procedures aligned with industry frameworks. ** Work with IT, SRE, Architecture, and Procurement teams to identify, assess, and mitigate technology and third party risks. ** Provide clear, actionable reporting and metrics to senior leadership, translating More ❯

take ownership of day-to-day security operations, implement and refine controls, and play a hands-on role in ensuring compliance with recognised standards such as ISO 27001 and SOC 2 Type II. This is a visible and strategic position - ideal for someone who enjoys combining technical depth with governance, audit, and risk management responsibilities. Key Responsibilities Develop … Implement and manage controls across cloud and on-premises environments (Azure/AWS preferred). Lead incident response processes and investigations, coordinating remediation actions. Support compliance programmes - ISO 27001, SOC 2 Type II, and data-protection (GDPR). Deliver regular security reporting and KPI tracking for senior leadership. Drive security awareness training and best practice across the wider … team. What You'll Bring 5+ years' experience in information security, risk, or compliance roles. Strong understanding of ISMS principles (ISO 27001) and audit support for SOC 2 Type II. Hands-on experience with security tools and controls - SIEM, IAM/PAM, endpoint protection, vulnerability management. Working knowledge of data-protection and privacy standards (GDPR, HIPAA). Excellent More ❯

Salary: Up to £65,000 Employment Type: Permanent Job Summary: Our client, a leading IT services and consulting firm, is seeking a Cyber Security Assurance Manager to ensure their SOC meets and maintains … top security certifications and assurance standards. As part of the GRC function, you’ll lead customer assurance activities, manage external audits, and oversee key certifications such as ISO 27001, SOC2 Type II, Cyber Essentials Plus, and CREST SOC accreditation. Key Responsibilities: Act as primary contact for customer assurance activities, supporting RFIs, RFPs, and client audit requests Deliver training and … awareness sessions on SOC assurance standards to internal teams Develop customer-facing assurance documentation demonstrating the organisation's security posture Lead the delivery and ongoing maintenance of SOC-related certifications (SOC 2 Type II, SOC 3, ISO/IEC 27001, Cyber Essentials Plus, CREST) Embed certification requirements into SOC governance, processes, and operational practices More ❯

external pen-test liaison) and two GRC specialists. What you’ll do Drive and extend ISO 27001 implementation/maintenance (UK certified; expanding to Madrid and Manila ). Support SOC 2 Type 2 maintenance (already accredited)—expert level not required. Oversee SIEM operations with the tech team: ensure log ingestion/coverage , daily monitoring, and follow-up. … GRC grounding plus solid technical understanding (AWS-heavy environment). Comfortable being hands-on where needed; people management nice-to-have, not essential. ISO 27001 (implementation/assurance) experience; SOC 2 exposure helpful. SIEM familiarity and the ability to work with engineers on coverage, tuning, and use-cases . Stakeholder-savvy; calm under pressure; excellent written/verbal More ❯

the global information security compliance program. Conduct internal audits, third-party risk assessments, and due diligence reviews. Ensure alignment with regulatory and industry standards including ISO27001, NIST, SOX, GDPR, SOC 2, HIPAA, CCPA, LGPD. Collaborate with cross-functional teams across multiple jurisdictions to drive compliance initiatives. Identify gaps in security controls and recommend corrective actions. Maintain and update … information security compliance, risk management, and audit. Strong understanding of international regulatory frameworks and standards. Hands-on experience with: ISO27001 audits and implementation GDPR compliance NIST cybersecurity framework SOX, SOC 2, HIPAA, CCPA, LGPD Ability to interpret complex regulatory requirements and translate them into actionable controls. Excellent communication and stakeholder engagement skills. Strong analytical and problem-solving capabilities. More ❯

the Way in Cyber Security Assurance? Robert Half are seeking a dynamic, proactive, and experienced Cyber Security Assurance Manager to join a globally-scaled, fast-paced Security Operations Centre (SOC) environment. In this crucial role, you will ensure that the SOC maintains its commitment to best-in-class standards through internationally recognised security certifications and industry-wide assurance … member in Governance, Risk, and Compliance (GRC) , you will lead certification efforts, influence operational processes, and engage directly with customers and auditors to showcase security credentials that differentiate our SOC from the competition. If you're skilled in blending technical insight with customer-focused communication … while driving compliance excellence, this opportunity is for you! What We're Looking For: Qualifications and Experience: Proven experience delivering and managing cybersecurity certifications (e.g., ISO/IEC 27001, SOC2 Type II, Cyber Essentials Plus, CREST). A strong understanding of SOC operations and security assurance frameworks. Experience engaging with customers during audits and RFP/RFI processes, showcasing More ❯

Endpoint, AWS GuardDuty, WAF, SIEM solutions). Detect, investigate, and respond to security incidents, ensuring timely escalation and resolution. Governance, Risk Compliance Support compliance initiatives such as ISO 27001, SOC 2, and Cyber Essentials Plus by maintaining relevant controls and documentation. Assist with audit readiness and evidence gathering. Ensure data protection and encryption mechanisms meet GDPR and other More ❯

key customers. Lead and mentor cross-functional security teams (Enterprise IT SecOps, Cloud Security, Network Security, Compliance, Identity). Oversee global security policies, risk management, and regulatory alignment (ISO27001, SOC2, GDPR, NIS2/DORA, Telecom-specific regulations). Ensure security is embedded in product/service lifecycles (Internet access, SD-WAN, SASE, NaaS) and that they are secure by design … with credibility at executive, technical, and regulatory levels; with customer-focused mindset with emphasis on trust, resilience, and service assurance. Information Security & Compliance Expertise : Deep knowledge of ISO 27001, SOC 2 Type II, NIS2, and DORA regulations, with experience leading audits and closing compliance gaps. Security Architecture & Engineering : Proficiency in secure SDLC practices, application security tooling (SAST/ More ❯

of suppliers. Management of key stakeholders at all levels in a typical corporate environment. Desirable: Experience working within or implementing industry standard security and compliance standards, e.g. ISO 27001, SOC2, Cyber Essentials Plus Experience working with outsourced providers for engineering & technical resources as well as systems/services. Experience working in a regulated industry, e.g. telecoms, financial services, utilities. Experience More ❯

portals, or golden path templates. Serverless and event-driven architectures (Functions, Logic Apps, Event Grid). Experience in regulated industries (e.g., Financial Services) and with compliance standards (ISO 27001, SOC 2). Knowledge of FinOps principles and cost governance on Azure. Interview process Stage 1 (remote): competency and technical interview including discussion of prior platform/DevOps work … and scenario-based problem solving. Stage 2 (on-site/remote): practical exercise (e.g., pipeline/IaC/Kubernetes task) and a short design presentation to a panel. Working schedule This role is permanent, full time, 37.5 hours per week, Monday to Friday. We offer a hybrid flexible working pattern to enable you the option of working from home More ❯

Anchore) Programming and scripting languages (Python, Go, YAML, JSON etc.) A background in financial services or similar regulated industries. Familiarity with compliance frameworks, and security requirements (e.g., ISO 27001, SOC 2, SOX, PCI DSS, FedRAMP, FFIEC, NYDFS, and SEC compliance requirements) A track record in consulting, solutions architecture, or technical coaching. Interest in technical sales and supporting go More ❯

PaaS), and SaaS platforms. Evaluate emerging technologies and recommend adoption strategies. Governance & Compliance Establish governance frameworks for environment management, including data residency, access control, and compliance (e.g., GDPR, ISO, SOC2). Collaborate with InfoSec teams to ensure secure configuration and operation of all environments. Operational Oversight Develop and oversee lifecycle management of infrastructure assets across all environments. Ensure high availability More ❯

to help businesses scale securely by designing and implementing cutting-edge security and compliance programs. As a fast-growing startup, we specialize in a wide range of frameworks-including SOC 2, ISO 27001, GDPR, CMMC, NIST 800-171, NIST 800-53, and FedRAMP-empowering companies to meet regulatory requirements and enhance their cybersecurity posture from day one. The More ❯

with Azure Private Link, VNET integration, and network security. Hands-on experience with Azure Policy, RBAC, and resource governance. Knowledge of Azure Security practices, tools, and compliance standards (e.g., SOC 2, ISO, etc.). Familiarity with Azure Cost Management, tagging strategies, and budget controls. Extensive experience managing Databricks as a platform, including Unity Catalog, identity federation, cluster policies More ❯

operational workflows. Maintain and evolve infrastructure documentation and runbooks. Security & Compliance Enforce security best practices including MFA, time-based access controls, and role-based access. Ensure compliance with ISO27001, SOC 2, and other relevant standards. Manage responses to vendor security questionnaires and client-facing security documentation. Cross-Team Collaboration Partner with Engineering, Product, and Support teams to resolve More ❯

Develop cloud infrastructure architecture, standards, and best practices. Optimize cloud costs and performance for complex workloads including GPU-based instances. Implement cloud security measures aligned with compliance frameworks (CIS, SOC 2, HIPAA). Collaborate with data scientists and development teams to deploy production-ready solutions. Provide technical guidance and evaluate new cloud services. Necessary skills of the AWS More ❯

s Information Security function and maintain/improve its security posture Take the lead in responding to customer security questionnaires or audit follow ups Oversee our regular ISO27001 and SOC 2 Type II audits Research and choose technical tools to proactively detect and respond to weaknesses, threats and potential compromises Lead the development, implementation, and continuous improvement of More ❯

Senior DevSecOps Engineer - Global Health Data Platform Location: Oxford or London (hybrid: 3 office/2 WFH) Join a world-class research and technology organisation using data and AI to tackle global challenges - from health and food security to climate and clean energy. They're now hiring a Senior DevSecOps Engineer to help build and secure this cloud-first … Develop CI/CD pipelines (e.g., GitHub Actions) with built-in security testing. Support data scientists and engineers in deploying secure, automated workflows. Implement monitoring and compliance (ISO 27001, SOC 2, GDPR). Mentor engineers on DevSecOps best practices. What you'll bring Strong cloud experience (ideally OCI ). Industry experience in the pharma space Hands-on with More ❯

e.g. EC2, S3, RDS, Lambda, VPC, IAM, CloudFormation/Terraform). Experience with DevOps tools (e.g. Git, Jenkins, Docker, Kubernetes). Familiarity with security and compliance frameworks (e.g. CIS, SOC 2, HIPAA). Cloud certification at Associate or Professional level (e.g. AWS Solutions Architect, DevOps Engineer). For Associate Manager Level: Minimum 4 years of relevant experience. Strong More ❯

across multiple entities and territories, including risk appetite and impact/likelihood calibration. Has familiarity with regulations and standards such as ISO27001, NIST CSF, NIS2, COBIT, ITIL, GDPR, and SOC2, including developing and maintaining frameworks, policies and guidance, and implementation and monitoring strategies. Some of the key skillset required for this position are: Graduate level in Cyber Security, Computer Science More ❯

Cloud Presales Specialist/AI Presales Consultant/SaaS Integrations/APIs/Security/Compliance/AWS/Azure/GCP/NLP/ML/ISO27001/SOC2/GDPR More ❯

Strategy Define and implement the company's security strategy across AI, blockchain, and cloud environments. Establish policies, standards, and governance frameworks aligned with industry best practices (ISO 27001, NIST, SOC2). Lead incident response, risk assessment, and threat modelling programmes. Build and mentor a world-class security team. AI Data Security Protect proprietary AI models, training data, and pipelines from … trust networks. Harden DevSecOps pipelines to ensure secure software delivery. Collaborate with engineering teams to integrate security by design into products. Compliance & Risk Management Ensure regulatory compliance with GDPR, SOC2, ISO, PCI-DSS, and crypto-specific frameworks. Lead risk assessments for third-party vendors and service providers. Work with legal and compliance teams on KYC/AML security for crypto More ❯

meaningfully. A collaborative, inclusive leadership style that builds trust and engagement across technical and non-technical teams. Strong IT security, compliance, and risk management experience; familiarity with ISO 27001, SOC 2, or similar frameworks is a plus-backed by support from our compliance team. Familiarity with tools like Google Workspace, Microsoft 365, Slack, Notion, etc., or equivalent experience More ❯

overnight and occasional daytime hours. Preferred: Certifications such as CompTIA A+, Network+, or Microsoft 365 Fundamentals . Experience with Vertafore (AMS360, ImageRight) or Salesforce. Familiarity with compliance frameworks (NYDFS, SOC 2, HIPAA). Total Rewards Package: Compensation: $65,000 - $75,000, based on experience, education, and work location. Benefits: Comprehensive package including Medical, Dental, Vision, 401(k) with More ❯