18 of 18 Permanent SOC 2 Jobs in Berkshire

availability systems. DevOps & CI/CD: Knowledge of Kubernetes, Docker, Terraform, Ansible, and other infrastructure automation tools. Security & Compliance: Understanding of cloud security, identity management, and regulatory compliance (GDPR, SOC2, ISO 27001, etc.). Programming & Frameworks: Proficiency in languages like React, Python, Go, or Node.js, with a strong understanding of modern frameworks. Experience Requirements: Bachelor’s or Master’s degree More ❯

full ownership of its cloud-first security operations function. This is a high-impact, hands-on leadership role with end-to-end responsibility for managing the Security Operations Centre (SOC), incident detection and response, threat intelligence, and cloud-native security engineering-with a strong focus on Google Cloud Platform (GCP). Operating in a highly regulated, Real Time financial … services environment, this role requires deep technical knowledge, operational maturity, and experience applying security best practices across a fast-moving cloud infrastructure. What You'll Do SOC Leadership & Threat Detection Lead and mentor a team of SOC analysts and engineers, ensuring high-quality coverage across all GCP workloads. Establish and maintain 24/7 detection and response capabilities … with infrastructure and DevOps teams to embed security into CI/CD pipelines, containers (GKE), and API services. Compliance & Risk Alignment Ensure operational alignment with PCI-DSS, ISO 27001, SOC 2, NIST, and GDPR requirements. Support internal and external audits with relevant security evidence and reports. Work closely with GRC teams to implement controls and technical safeguards for More ❯

full ownership of its cloud-first security operations function. This is a high-impact, hands-on leadership role with end-to-end responsibility for managing the Security Operations Centre (SOC), incident detection and response, threat intelligence, and cloud-native security engineering-with a strong focus on Google Cloud Platform (GCP). Operating in a highly regulated, Real Time financial … services environment, this role requires deep technical knowledge, operational maturity, and experience applying security best practices across a fast-moving cloud infrastructure. What You'll Do SOC Leadership & Threat Detection Lead and mentor a team of SOC analysts and engineers, ensuring high-quality coverage across all GCP workloads. Establish and maintain 24/7 detection and response capabilities … with infrastructure and DevOps teams to embed security into CI/CD pipelines, containers (GKE), and API services. Compliance & Risk Alignment Ensure operational alignment with PCI-DSS, ISO 27001, SOC 2, NIST, and GDPR requirements. Support internal and external audits with relevant security evidence and reports. Work closely with GRC teams to implement controls and technical safeguards for More ❯

evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to More ❯

large, complex technology programmes involving multiple concurrent projects with significant experience of delivering through offshore/nearshore strategic vendors. Knowledge of security frameworks & standards (ISO 27001, NIST, CIS, GDPR, SOC 2) Be experienced in 'hands on' technology software delivery from initiation to implementation. Have knowledge of programme and project management methodology and managing full lifecycle of programmes from More ❯

management and off-boarding Experience with business service, system and data architectures Experience of information security audit and assurance Familiarity with formal information security frameworks and certifications such as SOC 2, ISO27001, CE+, CIS top 20, OWASP Experience with contract review of information security schedules and terms Excellent verbal, written and interpersonal communication skills. Listens and communicates technical More ❯

management and off-boarding Experience with business service, system and data architectures Experience of information security audit and assurance Familiarity with formal information security frameworks and certifications such as SOC 2, ISO27001, CE+, CIS top 20, OWASP Experience with contract review of information security schedules and terms Excellent verbal, written and interpersonal communication skills. Listens and communicates technical More ❯

and resources you need to succeed in your role. We don't require you to be in on specific days; instead, we ask people to come into the office 2-3 days each week, for at least 8 days per month. You should work with your line manager to understand what their expectations are for you, your specific role … complex cross-domain Networks/IT solutions architectures/designs in the telecommunications industry Knowledge of common information technology management/compliance frameworks such as ISO/IEC 27001, SOC 2, SOX, ITIL, COBIT, and NIST. Knowledge of legal, regulatory and privacy requirements, such as Personally Identifiable Information (PII) Protection and Payment Card Industry (PCI)/Data Security More ❯

first culture, driving awareness, training, and the adoption of modern threat detection and prevention tools. What we look for: Strong understanding of compliance standards such as PCI DSS, GDPR, SOC2, ISO27001, Cyber Essentials Impressive verbal and written communication skills Experience with Azure CSSIP/CSIM/CompTIA+ or equivalent qualification 2 years’ experience in cyber security Experience with Cisco More ❯

providers, and outsourced services. Ensure compliance with DORA’s outsourcing requirements, including due diligence, contract oversight, and continuity planning. Audit & Assurance: Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes or documentation. Risk Management: Maintain the enterprise risk register, prioritizing risks tied to More ❯

providers, and outsourced services. Ensure compliance with DORA’s outsourcing requirements, including due diligence, contract oversight, and continuity planning. Audit & Assurance: Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes or documentation. Risk Management: Maintain the enterprise risk register, prioritizing risks tied to More ❯

Gatwick, Leeds, London, Manchester, Reading Business Line Enabling Functions Date published 29-May-2025 18437 Connect to your Industry Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this More ❯

financial services context Desirable (Nice to have) Experience in fintech, payments, banking, or working with payments and cards Experience of working in a regulated and/or PCI/SOC2 compliant company with high availability and high security requirements Experience with Node and React in production systems Our tech stack: Rails/Node/React/MySQL (MariaDB)/Linux More ❯

you won't need experience in all of these areas, their current accreditations are as follows: ISO 9001, 27001, 27701, 27017, 22301, 14001, 20000-1, 42001, 13485, PCI-DSS, SOC 2 Type 2, CE+. The company work on a hybrid model typically involving 3 days a week in the office. Examples of responsibilities: Coordination of the annual More ❯

you won't need experience in all of these areas, their current accreditations are as follows: ISO 9001, 27001, 27701, 27017, 22301, 14001, 20000-1, 42001, 13485, PCI-DSS, SOC 2 Type 2, CE+. The company work on a hybrid model typically involving 2-3 days a week in the office. Examples of responsibilities: Coordination of More ❯

time-consuming routine labor, preempts ransomware and security risks, and protects the digital employee experience. Trusted by thousands of enterprises managing millions of endpoints globally, Action1 is certified for SOC 2 and ISO 27001. The company is founder-led by industry veterans Alex Vovk and Mike Walters, American entrepreneurs who founded Netwrix, which has grown into a multi More ❯

time-consuming routine labor, preempts ransomware and security risks, and protects the digital employee experience. Trusted by thousands of enterprises managing millions of endpoints globally, Action1 is certified for SOC 2 and ISO 27001. The company is founder-led by industry veterans Alex Vovk and Mike Walters, American entrepreneurs who founded Netwrix, which has grown into a multi More ❯

optimising SQL queries Desirable (Nice to have) Experience in fintech, payments, banking, or working with payments and cards Experience of working in a regulated and/or PCI/SOC2 compliant company with high availability and demanding security requirements What we offer 25 days annual leave Annual wellness day off Access to one-to-one confidential counselling sessions through our More ❯