1 to 25 of 160 Remote SOC 2 Jobs

designing and implementing cutting‐edge security and compliance programs. As a fast‐growing startup, we specialize in a wide range of frameworks—including SOC 2, ISO 27001, GDPR, CMMC, NIST 800-171, NIST 800-53, and FedRAMP—empowering companies to meet regulatory requirements and enhance their cybersecurity posture … build trust, navigate complex accounts, and deliver an outstanding client experience — while also bringing deep expertise in cybersecurity compliance frameworks such as SOC 2, ISO 27001, and NIST CSF. The successful candidate will be able to come up to speed quickly, integrate into the organization, and take ...

chaos to strategic partnerships Compliance & Security Transform compliance from a checkbox exercise into a sales accelerator that wins enterprise deals Own and execute our SOC 2 certification end‐to‐end with efficient, automated evidence gathering Turn RFI and security questionnaire responses into a competitive advantage—fast, thorough, repeatable … people) Able to manage and procure upwards of 50+ vendors, owning a budget in the 7 digits Track record implementing and maintaining compliance frameworks (SOC 2, ISO 27001, GDPR) Experience with enterprise sales support in a B2B SaaS company—you’ve answered RFIs and security questionnaires Proven ability ...

policies, covering endpoint security, access management, and controls suited to a remote, globally distributed workforce Maintain and build upon our existing certifications (ISO 27001, SOC 2 Type II), and drive expansion of SOC 2 coverage across our full product portfolio Ensure compliance with GDPR and applicable … SaaS or technology environment Strong understanding of application security and secure software development Strong working knowledge of compliance frameworks including ISO 27001 and SOC 2, with hands‐on experience managing or achieving these certifications; solid understanding of GDPR compliance across multiple jurisdictions Strong communication skills with the ability ...

group-level data capability is live with a published catalog and cross-divisional SLAs. Regulatory & Cost Control: Engineering consistently hits all MiCA, DORA, and SOC 2 milestones while managing cloud and vendor spend against clear business-unit baselines. Key Responsibilities Engineering Delivery & Cadence: Run day-to-day global … group data pipelines and governance. Cybersecurity Execution & Compliance: Own the on-the-ground execution of The Company’s security and regulatory commitments (MiCA, DORA, SOC 2). Foster a "controls-by-design" engineering culture while respecting regulated divisional information walls. Talent, Budget & Scale: Manage the global engineering budget ...

connects to company-wide priorities Communicate clearly with executive stakeholders on delivery status, risks, and tradeoffs, without hedging or obscuring problems Enforce compliance with SOC 2, PCI DSS, and data handling requirements applicable to a financial services platform processing borrower PII and lender data Participate in procurement, vendor … tasks, evaluate results, and hold engineers to the same discipline Experience managing cross-functional delivery with dependencies on product, design, and operations Familiarity with SOC 2, PCI DSS, or other compliance frameworks relevant to financial services Clear, direct written and verbal communication; this role has consistent CTO and ...

capabilities (CloudTrail, GuardDuty, Security Hub, Config) and support incident response and automated remediation. Support compliance and risk management initiatives (NIST 800-53, ISO 27001, SOC 2, FedRAMP, GDPR) through secure baseline management, control implementation, and remediation tracking. Collaborate with Systems Integration & Test (SI&T) and cross-functional engineering … obtain FAA Public Trust Clearance. Qualifications: Bachelor's Degree and minimum 4 years of prior relevant experience. Graduate Degree and a minimum of 2 years of prior related experience. In lieu of a degree, minimum of 8 years of prior related experience. Preferred Additional Skills: VPC architecture, encryption ...

and develop creative solutions to business challenges and opportunities to continually improve our services. Specifically, we're looking for InfoSec Analysts with at least 2 years of relevant experience to help us improve security across the Octopus Energy Group. If you’re passionate about Information Security and driving … producing or supporting the delivery of security awareness programs in different business environments Knowledge of industry and regulatory security standards, such as ISO 27001, SOC2, and GDPR A good candidate will have experience in at least some of the areas mentioned, we’re not expecting any candidate ...

and develop creative solutions to business challenges and opportunities to continually improve our services. Specifically, we're looking for InfoSec Analysts with at least 2 years of relevant experience to help us improve security across the Octopus Energy Group. If you’re passionate about Information Security and driving … producing or supporting the delivery of security awareness programs in different business environments Knowledge of industry and regulatory security standards, such as ISO 27001, SOC2, and GDPR A good candidate will have experience in at least some of the areas mentioned, we’re not expecting any candidate ...

and develop creative solutions to business challenges and opportunities to continually improve our services. Specifically, we're looking for InfoSec Analysts with at least 2 years of relevant experience to help us improve security across the Octopus Energy Group. If you’re passionate about Information Security and driving … producing or supporting the delivery of security awareness programs in different business environments Knowledge of industry and regulatory security standards, such as ISO 27001, SOC2, and GDPR A good candidate will have experience in at least some of the areas mentioned, we’re not expecting any candidate ...

and develop creative solutions to business challenges and opportunities to continually improve our services. Specifically, we're looking for InfoSec Analysts with at least 2 years of relevant experience to help us improve security across the Octopus Energy Group. If you’re passionate about Information Security and driving … producing or supporting the delivery of security awareness programs in different business environments Knowledge of industry and regulatory security standards, such as ISO 27001, SOC2, and GDPR A good candidate will have experience in at least some of the areas mentioned, we’re not expecting any candidate ...

and develop creative solutions to business challenges and opportunities to continually improve our services. Specifically, we're looking for InfoSec Analysts with at least 2 years of relevant experience to help us improve security across the Octopus Energy Group. If you’re passionate about Information Security and driving … producing or supporting the delivery of security awareness programs in different business environments Knowledge of industry and regulatory security standards, such as ISO 27001, SOC2, and GDPR A good candidate will have experience in at least some of the areas mentioned, we’re not expecting any candidate ...

and develop creative solutions to business challenges and opportunities to continually improve our services. Specifically, we're looking for InfoSec Analysts with at least 2 years of relevant experience to help us improve security across the Octopus Energy Group. If you’re passionate about Information Security and driving … producing or supporting the delivery of security awareness programs in different business environments Knowledge of industry and regulatory security standards, such as ISO 27001, SOC2, and GDPR A good candidate will have experience in at least some of the areas mentioned, we’re not expecting any candidate ...

and develop creative solutions to business challenges and opportunities to continually improve our services. Specifically, we're looking for InfoSec Analysts with at least 2 years of relevant experience to help us improve security across the Octopus Energy Group. If you’re passionate about Information Security and driving … producing or supporting the delivery of security awareness programs in different business environments Knowledge of industry and regulatory security standards, such as ISO 27001, SOC2, and GDPR A good candidate will have experience in at least some of the areas mentioned, we’re not expecting any candidate ...

and develop creative solutions to business challenges and opportunities to continually improve our services. Specifically, we're looking for InfoSec Analysts with at least 2 years of relevant experience to help us improve security across the Octopus Energy Group. If you’re passionate about Information Security and driving … producing or supporting the delivery of security awareness programs in different business environments Knowledge of industry and regulatory security standards, such as ISO 27001, SOC2, and GDPR A good candidate will have experience in at least some of the areas mentioned, we’re not expecting any candidate ...

and develop creative solutions to business challenges and opportunities to continually improve our services. Specifically, we're looking for InfoSec Analysts with at least 2 years of relevant experience to help us improve security across the Octopus Energy Group. If you’re passionate about Information Security and driving … producing or supporting the delivery of security awareness programs in different business environments Knowledge of industry and regulatory security standards, such as ISO 27001, SOC2, and GDPR A good candidate will have experience in at least some of the areas mentioned, we’re not expecting any candidate ...

and develop creative solutions to business challenges and opportunities to continually improve our services. Specifically, we're looking for InfoSec Analysts with at least 2 years of relevant experience to help us improve security across the Octopus Energy Group. If you’re passionate about Information Security and driving … producing or supporting the delivery of security awareness programs in different business environments Knowledge of industry and regulatory security standards, such as ISO 27001, SOC2, and GDPR A good candidate will have experience in at least some of the areas mentioned, we’re not expecting any candidate ...

and develop creative solutions to business challenges and opportunities to continually improve our services. Specifically, we're looking for InfoSec Analysts with at least 2 years of relevant experience to help us improve security across the Octopus Energy Group. If you’re passionate about Information Security and driving … producing or supporting the delivery of security awareness programs in different business environments Knowledge of industry and regulatory security standards, such as ISO 27001, SOC2, and GDPR A good candidate will have experience in at least some of the areas mentioned, we’re not expecting any candidate ...

and develop creative solutions to business challenges and opportunities to continually improve our services. Specifically, we're looking for InfoSec Analysts with at least 2 years of relevant experience to help us improve security across the Octopus Energy Group. If you’re passionate about Information Security and driving … producing or supporting the delivery of security awareness programs in different business environments Knowledge of industry and regulatory security standards, such as ISO 27001, SOC2, and GDPR A good candidate will have experience in at least some of the areas mentioned, we’re not expecting any candidate ...

and develop creative solutions to business challenges and opportunities to continually improve our services. Specifically, we're looking for InfoSec Analysts with at least 2 years of relevant experience to help us improve security across the Octopus Energy Group. If you’re passionate about Information Security and driving … producing or supporting the delivery of security awareness programs in different business environments Knowledge of industry and regulatory security standards, such as ISO 27001, SOC2, and GDPR A good candidate will have experience in at least some of the areas mentioned, we’re not expecting any candidate ...

and incident response workflows Experience with scripting or automation using Python, PowerShell, or similar Knowledge of security frameworks such as NIST, ISO 27001, SOC 2, or CIS Strong problem-solving mindset with the ability to operate across multiple security domains Experience within regulated or financial environments is beneficial ...

Senior Security & Compliance Architect London/Hybrid (1–2 days onsite per week) Salary: Up to £140,000 + Package We are seeking a Senior Security & Compliance Architect to lead the design, governance, and assurance of secure cloud and SaaS platforms across large-scale enterprise transformation programmes. This … platforms Design and implement data protection controls including classification, DLP, encryption, retention, and access policies Interpret and implement compliance requirements including GDPR, ISO 27001, SOC 2, and client security obligations Lead SaaS/vendor security assurance, including risk assessments, architecture reviews, and due diligence Support incident response, resilience ...

platforms Design and implement data protection controls including classification, DLP, encryption, retention, and access policies Interpret and implement compliance requirements including GDPR, ISO 27001, SOC 2, and client security obligations Lead SaaS/vendor security assurance, including risk assessments, architecture reviews, and due diligence Support incident response, resilience ...

experience a plus) IaC security (Terraform, CloudFormation) - spotting misconfigs before they hit production Knowledge of compliance frameworks relevant to Fintech - PCI-DSS, ISO 27001, SOC 2 Cloud-native logging and monitoring - Google Cloud Logging, Chronicle, or similar Someone who's comfortable working across engineering teams, not just ...

services, banking, or payments. Experience in InfoSec and Cyber Security. Experience setting up policies and processes in InfoSec area. Familiarity with PCI-DSS, ISO27001, SOC 2/3 or other global standards. Familiarity with regulatory requirements (DORA, PCI-DSS, PSD2, GDPR). Understanding of agile development processes and ...

development experience, particularly with Vue 3 Composition API and state management. Experience working in B2B SaaS companies serving enterprise customers with strict compliance requirements (SOC 2, HIPAA, FedRAMP, GDPR). Familiarity with DevOps/DevSecOps toolchains and practices in the Salesforce ecosystem. The Kind of Person … and why. You take ownership not because someone assigned it to you, but because that’s who you are. When something is broken at 2 AM, you don’t check whether it’s “your responsibility” — you fix it. Builder, Not a Bystander You don’t wait for perfect specifications. ...