3 of 3 Permanent SOC 2 Jobs in Central London

process Location Why join BoardOutlook? About this role About you Compensation 1. Hiring process We keep our process fast and human. You can expect: A short screening call 1–2 interviews with team members A short written or practical exercise Final interview and references We aim to provide feedback quickly after each stage. 1.1 How to apply: Please send … legal experience, ideally including in-house experience in a SaaS or tech business. Strong working knowledge of privacy and data protection laws (especially GDPR). Familiarity with ISO 27001, SOC 2, or similar frameworks. Skills & Attributes Strong commercial judgment, drafting skills, and attention to detail. Practical, solutions-focused approach to balancing risk and business outcomes. Excellent communication and More ❯

existing technology stack, including PostgreSQL, NestJS, PostgREST, and an AngularJS frontend. Define security policies, standards, procedures, and guidelines to align with industry best practices and regulatory requirements (e.g., GDPR, SOC2). Manage security incidents and breaches: Lead incident response efforts, conduct thorough investigations, and implement corrective actions. What we are looking for: 7+ years experience in a Senior/Team More ❯

Information Security GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the secure rollout of … U.S. banking operations, driving ISO27001 and SOC2 maturity, and mentoring an evolving InfoSec team. This is a hands-on manager-level role with real scope: oversight of policy, third-party risk, architectural reviews, and cloud compliance. You'll work closely with the Head of InfoSec to maintain audit readiness, improve security posture, and influence business-wide awareness and accountability. What … you’ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP, CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort More ❯