4 of 4 Permanent SOC 2 Jobs in the Channel Islands

Vulnerability Management Proactively identify, assess, and mitigate risks. ISMS Ownership Lead and maintain the Information Security Management System end-to-end. Certifications & Compliance Drive ISO 27001, Cyber Essentials Plus & SOC 2 readiness, certification, and ongoing compliance. Incident Response Leadership Build, refine, and lead incident response & security operations. Security Culture & Training Develop training programs and foster a culture of … spotting trends to inform leadership decisions. Stakeholder Partnership Be the security conscience for internal & external teams, giving clear, actionable guidance. Key Deliverables ISO 27001 & Cyber Essentials Plus certification & recertification SOC 2 Type I & Type II readiness & audits Up-to-date security risk register & treatment plans Regular internal security audits & training completion metrics Security policies reviewed & refreshed annually (or … red tape, just real impact and rapid results Were Looking For Someone Who Lives & breathes information security, governance, and cyber best practice Knows ISO 27001, Cyber Essentials Plus, and SOC 2 inside out Can design & deliver incident response, security ops, and security awareness programs that people actually use Is comfortable being the security point person across product, engineering More ❯

Lead enterprise-wide vulnerability assessments, remediation programmes, and Breach and Attack Simulation (BAS) exercises for proactive threat mitigation. Compliance & Third-Party Security: Ensure adherence to PCI DSS, ISO 27001, SOC 2 , and perform rigorous third-party security risk assessments. Secure Software Development (SDLC): Embed secure coding practices into development lifecycles, enabling DevSecOps and automation-first security strategies. Cross More ❯

security into DevOps workflows and CI/CD pipelines. Work with engineering, product, and compliance teams to align security best practices with business goals. Support initiatives around ISO 27001, SOC 2, and other compliance frameworks. Monitor, detect, and respond to security threats proactively. What Were Looking For Experience in security engineering, preferably in fintech, SaaS, or other regulated More ❯

/IPS, packet analysis) Secure software development & code review Incident response, digital forensics, malware analysis Identity & access management (IAM, Zero Trust, SSO/MFA) Security frameworks & compliance (NIST, CIS, SOC2) Interviews: October/November 2025 Start Date: January 2026 How to Apply: Apply to Gary Hargreaves at X4 Technology to learn more about the role or connect with me on More ❯