1 to 25 of 39 Remote SOC 2 Jobs

chaos to strategic partnerships Compliance & Security Transform compliance from a checkbox exercise into a sales accelerator that wins enterprise deals Own and execute our SOC 2 certification end‐to‐end with efficient, automated evidence gathering Turn RFI and security questionnaire responses into a competitive advantage—fast, thorough, repeatable … people) Able to manage and procure upwards of 50+ vendors, owning a budget in the 7 digits Track record implementing and maintaining compliance frameworks (SOC 2, ISO 27001, GDPR) Experience with enterprise sales support in a B2B SaaS company—you’ve answered RFIs and security questionnaires Proven ability ...

policies, covering endpoint security, access management, and controls suited to a remote, globally distributed workforce Maintain and build upon our existing certifications (ISO 27001, SOC 2 Type II), and drive expansion of SOC 2 coverage across our full product portfolio Ensure compliance with GDPR and applicable … SaaS or technology environment Strong understanding of application security and secure software development Strong working knowledge of compliance frameworks including ISO 27001 and SOC 2, with hands‐on experience managing or achieving these certifications; solid understanding of GDPR compliance across multiple jurisdictions Strong communication skills with the ability ...

will own the evolution of our security posture. Youll be the driving force behind our SIEM/SOAR capabilities and the guardian of our SOC 2 Type II and ISO 27001 standards. Key Responsibilities: Security Operations: Lead monitoring, detection, and incident response for internal and client-facing systems. … real-world threats (malware, phishing, cloud misconfigurations) and ensure rapid remediation. Vulnerability Management: Conduct regular assessments, penetration testing, and risk analysis. Compliance & GRC: Maintain SOC 2 Type II accreditation and lead ISO 27001 readiness. Administer compliance platforms like Drata. DevSecOps: Collaborate with Engineering and IT to integrate security ...

program.- Conduct internal audits, third-party risk assessments, and due diligence reviews.- Ensure alignment with regulatory and industry standards including ISO27001, NIST, SOX, GDPR, SOC 2, HIPAA, CCPA, LGPD.- Collaborate with cross-functional teams across multiple jurisdictions to drive compliance initiatives.- Identify gaps in security controls and recommend … and audit.- Strong understanding of international regulatory frameworks and standards.- Hands-on experience with:- ISO27001 audits and implementation- GDPR compliance- NIST cybersecurity framework- SOX, SOC 2, HIPAA, CCPA, LGPD- Ability to interpret complex regulatory requirements and translate them into actionable controls.- Excellent communication and stakeholder engagement skills.- Strong ...

vulnerabilities from audits, penetration tests, and assessments Ensure timely closure of findings with clear, audit-ready evidence Deliver and maintain technical controls aligned with SOC 2 and ISO 27001 Support customer, supplier, and contractual security assurance activities Own and enhance the security awareness programme, including phishing simulations Manage … Defender, M365) Experience implementing Zero Trust, identity, and endpoint security controls Track record of remediating audit and penetration test findings Solid understanding of SOC 2, ISO 27001, and security control frameworks A proactive, delivery-focused mindset with confidence to challenge and influence stakeholders The successful Cyber Security Engineer ...

subject-matter experts, chase inputs, and maintain a clear audit trail of reviews and approvals. Compile and maintain evidence packs including: Policies and attestations, SOC 2 and compliance materials, Diagrams and Trust Centre links Manage Trust Centre access for prospects and customers: Triage access requests, Grant or revoke … Docs, Sheets, Slides, Drive), Notion, shared drives, and Q&A libraries (or equivalents). Preferred Experience Exposure to SaaS security and IT questionnaires (e.g. SOC 2, ISO 27001, cloud hosting, IAM/SSO). Experience using RFP platforms or response libraries (e.g. Responsive). Familiarity with AI-assisted ...

multi-tenant data isolation and least-privilege principles Support audit readiness against NCSC Cyber Assessment Framework (CAF), CSA CAIQ, NIST, and our roadmap towards SOC 2 Establish and track quantifiable technical baselines - encryption coverage, log retention, API compliance (OWASP) and source-code analysis checks Verify data input/… Broad exposure to IT operations, DevOps principles, or a related technical discipline. Familiarity with one or more governance frameworks (ISO 27001, NCSC CAF, NIST, SOC 2 or similar) - you do not need to be an expert in all of them Process-driven mindset - able to translate policy into ...

specialist responsible for defining and enforcing security standards, hardening baselines, and embedding security into design and automation by partnering with DevOps, networking, and SOC teams. Role Overview Location: Dublin, Ireland (Hybrid: 2 days/week from office) Type: Full-time (FTE) Key Responsibilities Architecture & Guardrails: Define and enforce … Technical Skills: Network Security Architecture, Penetration Testing, and Red Teaming. Scripting: Proficiency in Python (preferred), Bash, or Go. Compliance Knowledge: Familiarity with ISO 27001, SOC 2, NIST, and CIS Benchmarks. Preferred Certifications: CKS, CISSP, GCP Professional Cloud Security Engineer, or Azure Security Engineer. Soft Skills Proven ability ...

Terraform or CloudFormation.Preferred Background & Additional Capabilities* Knowledge of securing containerised environments and orchestration platforms.* Experience working within assurance-focused frameworks including ISO 27001, SOC 2, or NIST.* Familiarity with automated governance and policy-driven cloud controls.* Exposure to investigative, detection, or security operations workflows.Qualifications That Would Be Beneficial ...

and container security (AKS). Integrate SAST/DAST/SCA tools into CI/CD pipelines and collaborate on compliance (NIST, ISO 27001, SOC 2, GDPR). Qualifications: 5+ years of hands-on cloud security experience with Azure. Proven expertise in secure architecture design and DevOps integration. ...

Concourse, CircleCI) Familiarity with maintaining HIDS systems (Wazuh preferred). NICE TO HAVE Knowledge of security standards and governance frameworks (e.g., CIS Benchmarks, NIST, SOC2, ISO 27001, PCI DSS) and how to operationalize them. Hands-on experience with building and maintaining a SIEM comprised of open-source and hosted components ...

across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. ...

cloud security and compliance Own platform‐level security decisions and risk mitigation Ensure secure‐by‐design infrastructure and access controls Support compliance initiatives (SOC 2, ISO:27001) Leadership & Team Development Lead and mentor the DevOps team including DevOps engineers, IT Support and an Information Security Officer Provide technical ...

lifecycle, cipher policy, and mTLS where used. · Support security audits, vulnerability management, patch cycles, and incident response. · Maintain alignment with relevant frameworks (ISO 27001, SOC 2, GDPR, PCI-DSS as applicable). Monitoring, Observability & Incident Response · Maintain monitoring and alerting across the stack (Prometheus, Grafana, CloudWatch, Zabbix, HOMER ...

Hands-on with IaC (Terraform), CSPM tools, and SIEM platforms - Strong scripting skills (Python, Go) and security automation experience - Working knowledge of compliance frameworks (SOC 2, ISO 27001, HIPAA, PCI) - Industry certifications (CISSP, AWS Security, GCP Security) are a plus What You'll Bring - Curiosity to dig into ...

Hands-on with IaC (Terraform), CSPM tools, and SIEM platforms - Strong scripting skills (Python, Go) and security automation experience - Working knowledge of compliance frameworks (SOC 2, ISO 27001, HIPAA, PCI) - Industry certifications (CISSP, AWS Security, GCP Security) are a plus What You'll Bring - Curiosity to dig into ...

Hands-on with IaC (Terraform), CSPM tools, and SIEM platforms - Strong scripting skills (Python, Go) and security automation experience - Working knowledge of compliance frameworks (SOC 2, ISO 27001, HIPAA, PCI) - Industry certifications (CISSP, AWS Security, GCP Security) are a plus What You'll Bring - Curiosity to dig into ...

Hands-on with IaC (Terraform), CSPM tools, and SIEM platforms - Strong scripting skills (Python, Go) and security automation experience - Working knowledge of compliance frameworks (SOC 2, ISO 27001, HIPAA, PCI) - Industry certifications (CISSP, AWS Security, GCP Security) are a plus What You'll Bring - Curiosity to dig into ...

Hands-on with IaC (Terraform), CSPM tools, and SIEM platforms - Strong scripting skills (Python, Go) and security automation experience - Working knowledge of compliance frameworks (SOC 2, ISO 27001, HIPAA, PCI) - Industry certifications (CISSP, AWS Security, GCP Security) are a plus What You'll Bring - Curiosity to dig into ...

secure-by-design practices, ensuring data protection, and conducting regular threat modelling and reviews. Standards Compliance : Ensure engineering practices and systems comply with ISO27001, SOC2, and other relevant standards. Budget & Reporting : Participate in budget planning and reviews relating to engineering requirements. Stakeholder Reporting : Report regularly to senior management on team … security into the SDLC. Testing & quality : strong background in automated testing (unit, integration, regression) and building for reliability. Essential Experience (Other) Scale-up journey : 2-3 years of experience in a senior role with a SaaS company @ $5-20m ARR, ideally as part of a scaling journey. Data ...

having been in the room when something went wrong Knowledge of common security frameworks and standards (e.g. NCSC Cyber Essentials, ISO 27001, NIST, SOC 2) Highly Desirable ISO 27001 Lead Implementer or Lead Auditor certification, or hands‐on experience leading an ISO 27001 certification programme Experience ...

skills and the ability to partner effectively with both technical and non-technical stakeholders. Bonus: Knowledge of security frameworks and controls (e.g., ISO 27001, SOC 2) and cloud hardening practices. Experience with monitoring/observability stacks (e.g., CloudWatch Insights, Prometheus/Grafana, ELK/OpenSearch). Familiarity with ...

rapid product growth. Own DevOps and platform engineering practices, enabling teams to deploy quickly and safely. Prepare and maintain audit-ready infrastructure aligned with SOC 2 and ISO 27001 expectations. Build and evolve CI/CD pipelines across backend, frontend, and data services. Implement observability across logging, metrics ...

Previous VP Engineering experience. Experience in a scale-up or high-growth environment. Knowledge of AI/ML integration in product development. Familiarity with SOC 2, ISO 27001, and GDPR compliance. Background in SaaS, fintech, or enterprise software. Experience customising Trading Systems (e.g., Calypso). Advanced degree ...

Infrastructure as Code (Terraform or CloudFormation) Proven experience leading cloud migration strategies and implementations Strong understanding of cloud security and compliance frameworks (e.g. CIS, SOC2) Experience with DevOps tooling (e.g. Git, Jenkins, Docker, Kubernetes) Ability to work in fast-paced, client-facing environments Desirable: Multi-cloud experience (AWS, Azure ...