2 of 2 Contract SOC 2 Jobs in the UK excluding London

and security risk assessments on suppliers, vendors, and other third parties across the supply chain. Evaluating vendor security postures using evidence-based assessments (e.g., SOC 2, ISO 27001, penetration tests). Ensuring third parties meet Evelyn Partners' minimum security standards and apply effective risk mitigations where gaps are … and governance, risk, and compliance . Strong understanding of ISO 27001 (implementation, audit, and continuous improvement), Cyber Essentials, and NIST CSF. Familiarity with reviewing SOC 2 Type II, ISO 27001 certifications, and other third-party assurance artefacts. Ability to analyse and evaluate technical and procedural controls in vendor More ❯

Microsoft Defender for Cloud, and Microsoft Sentinel for advanced security monitoring. Threat Detection & SOAR Automation: Oversee Security Orchestration, Automation, and Response (SOAR) solutions including SOC Prime. Network & Application Security: Manage Web Application Firewalls (WAF) and Intrusion Prevention Systems (IPS). Vulnerability & Penetration Testing: Review Penetration Testing, vulnerability assessments, and … Security Engineer Associate, CISSP, OSCP (Offensive Security Certified Professional), CCSP, or equivalent. Experience with container security (Docker, Kubernetes). Knowledge of NIST, ISO 27001, SOC 2 compliance frameworks. Familiarity with Zero Trust security principles. Other Stuff Please only apply if you are able to work from their Debden More ❯