7 of 7 Permanent SOC 2 Jobs in the City of London

container security. Identity & Access Management experience (e.g. Okta). Experience with JVM languages, Terraform/IaC, CDK, or React. Familiarity with GDPR, ISO 27001, SOC 2, EU AI Act/LLMs. Experience delivering audits or using GRC tools (e.g. Drata, Vanta) Interest in AI and/or knowledge ...

someone who enjoys solving practical security challenges and building automation that makes secure development the default. Location: London – 3 days in office/2 days remote Salary: Negotiable + comprehensive benefits package Requirements for DevSecOps Engineer: This company is seeking a technically strong security engineer with proven experience … ability to work across technical and non-technical stakeholders Desirable: Experience with container and Kubernetes security Experience operating within compliance-driven environments (ISO 27001, SOC 2, NIST) Experience building policy-as-code or automated guardrails Exposure to incident response and threat detection engineering Responsibilities for DevSecOps Engineer: Take ...

automation tasks. Strong understanding of API security, IAM policies, network security, and secrets management. Bonus Points For: Experience in regulated fintech or compliance frameworks (SOC2, ISO 27001, PCI DSS, DORA). Certifications such as Google Cloud Professional Security Engineer, CKS, or CISSP. Why You’ll Love Working Here Competitive salary ...

Senior Security Risk Specialist – Contract Location - London (Hybrid – 2 days onsite in Bank) Term: 6 months Rate: £800 per day (Inside iR35) We’re looking for a Senior Security Risk Specialist to support a technology company’s Security Risk Management function. Reporting to the Head of Security Risk & Assurance … background in security risk management within tech or regulated environments Cloud security risk assessment experience (AWS experience a must) Familiarity with ISO 27001, NIST, SOC 2, PCI-DSS Comfortable engaging technical and non-technical stakeholders GRC tooling experience, consulting background, CISM/CRISC/CISSP This ...

highly regulated technical environment. Frameworks: Expert-level knowledge of NIST CSF 2.0 , ISO 27001 , and NIST 800-53 . Familiarity with TPN (MPA) or SOC 2 is highly preferred. Technical Fluency: You do not need to be a coder, but you must understand core security concepts (e.g., SAML ...

ideal for someone ready to step up and shape a growing security function. The Role Build and mature security frameworks (ISO 27001, CE+, NIST, SOC 2) Lead gap analysis and audit readiness Own the security risk register and drive mitigation Develop policies, standards, and procedures Support ...

Senior Security Analyst/Security Engineer to strengthen a Microsoft-centric security posture across detection, response, tooling, and infrastructure hardening. Not a one-lane SOC role. Not governance-heavy. This role blends incident response with security engineering and hardening and ideal for someone with 4–5 years’ experience … analytics, baselines and security automation Run vulnerability scanning using tools like Tenable, Pentera, Varonis, Secure Score Support compliance work (ISO 27001, Cyber Essentials, NIST, SOC2) Contribute to threat hunting, threat intelligence application and proactive monitoring Support operational resilience: scenario testing, DR exercises, post-incident reviews Assist with security tooling assessments ...