1 to 25 of 125 Permanent SOC 2 Jobs in England

working in a rapidly evolving fluid company is vital. The successful applicant must have experience in a firm that has delivered product to external customers. Knowledge and Experience Required: 2-3 years + experience as a hands-on Technical Support Engineer/Application Support Analyst Hands on experience administering Linux and Windows estates Excellent problem-solving and communication skills … Beneficial Experience: Hands-on experience with Amazon Web Services Hands-on experience with Kubernetes/containerised environments Experience with No-Code tools such as Retool or Appsmith Experience with SOC2/ISO 27001 Certifications. Other required Skillsets/Traits: Experienced in taking ownership, responsibility and accountability of projects end to end. Excellent project management skills Strong written and verbal communication More ❯

authentication, authorization, TLS, and encryption Exposure to Kubernetes (administering, deploying, or developing apps on K8s clusters) Understanding of compliance and system hardening in regulated environments (e.g., HIPAA, PCI-DSS, SOC 2) Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or More ❯

visibility, compliance, and lifecycle management of IT assets. Security, Compliance & Risk Management: Embed security and compliance into operational workflows with automated security controls. Ensure adherence to ISO 27001, NIST, SOC 2, GDPR, and cloud security best practices. Collaborate with cybersecurity teams to integrate zero-trust security models. Drive resiliency planning, disaster recovery, and business continuity initiatives. Financial & Vendor More ❯

and develop plans to address them Refactor legacy systems to improve maintainability and performance Ensure Security and Compliance Implement security best practices and maintain security posture Ensure compliance with SOC 2 and other relevant standards Lead security audits and remediation efforts Work closely with cross-functional teams to align platform architecture with business goals. Build and maintain efficient … region You will be collaborating with talented individuals in the industry Join a lively and highly international team Indulge in a challenging and innovative working culture Personal development allowance 2 weeks of work from anywhere per year Regular fun team-building activities & Company trip If you are a visionary leader passionate about platform engineering and meet the above requirements … Media Referrals increase your chances of interviewing at Manatal by 2x Get notified about new Head of Engineering jobs in London Area, United Kingdom . London, England, United Kingdom 2 months ago London, England, United Kingdom 2 hours ago London, England, United Kingdom 1 month ago London, England, United Kingdom 2 months ago London, England, United Kingdom More ❯

Access, Entra ID, and Identity Governance setups Implement Data Loss Prevention (DLP) and sensitivity labels Work with Azure Key Vault and manage encryption and certificate strategies Collaborate with our SOC and managed Sentinel provider on incident handling Compliance & Governance Help ensure compliance with ISO 27001, SOC 2, GDPR, and NIS2 Support configuration and monitoring in Microsoft Compliance More ❯

infrastructure and software delivery. Automate audit evidence collection, change tracking, and access management (e.g., HashiCorp Vault, OPA, AWS IAM). Ensure all systems meet internal and regulatory audit requirements (SOC2, GDPR, etc.). Infrastructure & Automation Champion infrastructure-as-code (IaC) using Terraform, Helm, and Kubernetes for scalable cloud and hybrid deployments. Optimise infrastructure cost, elasticity, and resilience through autoscaling, canary … Kingdom 1 month ago London, England, United Kingdom 3 weeks ago London, England, United Kingdom 1 week ago London, England, United Kingdom 5 minutes ago London, England, United Kingdom 2 weeks ago London, England, United Kingdom 1 week ago London, England, United Kingdom 3 days ago London, England, United Kingdom 16 hours ago London, England, United Kingdom 3 weeks … England, United Kingdom $130,000.00-$180,000.00 1 month ago London, England, United Kingdom 3 days ago South Croydon, England, United Kingdom 1 month ago London, England, United Kingdom 2 days ago London, England, United Kingdom 1 week ago London, England, United Kingdom 2 weeks ago London, England, United Kingdom 4 days ago City Of London, England, United More ❯

support vulnerability management, secure development, and event detection workflows. Define and track metrics related to application security, vulnerability remediation, detection coverage, and incident response effectiveness. Support compliance initiatives (e.g., SOC 2), contribute to control implementation, and assist with security documentation. Contribute to internal security education and awareness by developing training materials and coaching engineers. Requirements: Bachelor's degree More ❯

Background in DevOps, SRE, or Infrastructure Engineering. Knowledge of monitoring/logging tools (e.g., CloudWatch, Datadog, Prometheus, ELK). Experience with enterprise security and compliance frameworks (e.g., ISO 27001, SOC 2, GDPR). Familiarity with cost modeling and optimization strategies in AWS. More ❯

Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and Microsoft Sentinel for advanced security monitoring. Threat Detection & SOAR Automation: Oversee Security Orchestration, Automation, and Response (SOAR) solutions including SOC Prime. Network & Application Security: Manage Web Application Firewalls (WAF) and Intrusion Prevention Systems (IPS). Vulnerability & Penetration Testing: Review Penetration Testing, vulnerability assessments, and security scanning to proactively identify … security operations. Desirable Certifications: Azure Security Engineer Associate, CISSP, OSCP (Offensive Security Certified Professional), CCSP, or equivalent. Experience with container security (Docker, Kubernetes). Knowledge of NIST, ISO 27001, SOC 2 compliance frameworks. Familiarity with Zero Trust security principles. Other Stuff NB: Please only apply if you are able to work from their Debden (IG10) offices Monday-Friday. More ❯

and compliant technology environment. Develop, maintain security remediation oversight, and conduct reviews across all CLS environments, services, and assets, ensuring compliance with industry standards (e.g., CIS, NIST, ISO 27001, SOC 1/2) and internal security policies across all platforms and environments. Lead the security governance mechanism for capturing and managing security baseline adherence to rectify any policy … principles, to reduce risk to an acceptable level. Experience with GRC tools and best practices. RSA Archer is preferred. Proficiency in security frameworks (e.g., NIST CSF, ISO 27001, SOC1,2). Expert knowledge of security assurance practices such as audit, risk assessing, associated lifecycles and key management practices. In an ever-changing cyber landscape to be able to lead … employees have access to our inclusive benefits, including: Holiday - UK/Asia: 25 holiday days and 3 'life days' (in addition to bank holidays). US: 23 holiday days. 2 paid volunteer days so that you can actively support causes within your community that are important to you. Generous parental leave policies to ensure you can enjoy valuable time More ❯

detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. Oversee endpoint security, cloud network and API security for robust protection across all assets Define … Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response More ❯

play a key role in managing security incidents, audits, and vulnerability programs, while mentoring junior team members and helping shape the future of cybersecurity at Skillcast. Key Responsibilities: - Coordinate SOC 2, ISO 27001, and Cyber Essentials audits – including documentation, evidence management, gap analysis, and communication with auditors - Administer and enhance Azure Sentinel SIEM – including data source configuration, detection … CI/CD security practices - Proficient in SIEM platforms (especially Azure Sentinel) and vulnerability management tools - Strong knowledge of incident response, infrastructure hardening, and cloud security controls - Familiarity with SOC 2, ISO 27001, Cyber Essentials, and NIST frameworks - Experience with core security technologies: firewalls, EDR, IAM, DLP, encryption - Strong communication, documentation, and stakeholder engagement skills Benefits: - Join a … growing business in a thriving and innovative sector - Join a collaborative team culture with clear opportunities for growth and ownership - Hybrid working currently a minimum of 2 days per week at our office and 3 days per week working independently and proactively from home - Competitive salary - 28 days holiday (full time) plus Bank Holidays - Contributory Pension - Health Care Plan More ❯

play a key role in managing security incidents, audits, and vulnerability programs, while mentoring junior team members and helping shape the future of cybersecurity at Skillcast. Key Responsibilities: - Coordinate SOC 2, ISO 27001, and Cyber Essentials audits – including documentation, evidence management, gap analysis, and communication with auditors - Administer and enhance Azure Sentinel SIEM – including data source configuration, detection … CI/CD security practices - Proficient in SIEM platforms (especially Azure Sentinel) and vulnerability management tools - Strong knowledge of incident response, infrastructure hardening, and cloud security controls - Familiarity with SOC 2, ISO 27001, Cyber Essentials, and NIST frameworks - Experience with core security technologies: firewalls, EDR, IAM, DLP, encryption - Strong communication, documentation, and stakeholder engagement skills Benefits: - Join a … growing business in a thriving and innovative sector - Join a collaborative team culture with clear opportunities for growth and ownership - Hybrid working currently a minimum of 2 days per week at our office and 3 days per week working independently and proactively from home - Competitive salary - 28 days holiday (full time) plus Bank Holidays - Contributory Pension - Health Care Plan More ❯

Engineering, Embedded Software through to other fringe disciplines like Manufacturing, Electronics, Sensor Development, and Mechanical Engineering. Preferred Exposure to regulated environments (e.g., healthcare, finance) or compliance frameworks (e.g., HIPAA, SOC2, ISO 27001). Experience working with data residency constraints and multi-region architectures. Understanding of secure data handling practices and basic vulnerability concepts. Familiarity with model-based design approaches, including More ❯

detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. • Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). • Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. • Oversee endpoint security, cloud network and API security for robust protection across all assets • Define … Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. • Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. • Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). • Threat Management & Incident Response More ❯

with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. In addition, you will have More ❯

with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearman's strategy to lead where global complexity creates opportunity. In addition, you will More ❯

Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Operationalize policy enforcement through automated More ❯

discussions and reporting, with guidance and training from senior security leads. About You: Bachelor's degree in Computer Science, Engineering, or a related field, or equivalent hands-on experience. 2-5 years in a client-facing technical role such as Solutions Consulting, Sales Engineering, or Technical Account Management. Comfort working with APIs, SaaS platforms, and data-driven solutions. Some … or life sciences data (e.g., patents, journals, bioinformatics). Familiarity with AI/ML applications or data transformation pipelines. Basic understanding of IT security frameworks and cloud compliance (e.g., SOC 2, ISO 27001). Examples of past technical prototypes, side projects, or client-facing deliverables. You'll Thrive Here If You: Love solving technical problems and collaborating across … impact early in your career. Benefits & Perks: 25 days annual leave allowance + bank holidays (Additional time off based on service up to a maximum of 5 extra days) 2 company paid volunteering days Eyecare voucher scheme Private healthcare with Axa Healthcare Private pension with Scottish Widows Parental leave policies Perkbox benefit scheme, we aim to reward our Patsnappers More ❯

is a plus Solid understanding of SaaS platforms and their identity integration Understanding of Zero Trust Architecture principles Familiarity with IT security frameworks and compliance standards (e.g., NIST, GDPR, SOC 2, PCI DSS, HIPAA) Awareness of logging, monitoring, and alerting practices related to identity and access events Basic understanding of email security and DNS Backup and recovery awareness More ❯

and compliant technology environment. Develop and maintain security remediation oversight, conducting reviews across all environments, services, and assets to ensure compliance with industry standards (e.g., CIS, NIST, ISO 27001, SOC 1/2) and internal policies. Lead security governance to manage adherence to security policies, rectify exceptions, and align security risks. Oversee remediation review lifecycle, testing evidence, and More ❯

detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. Oversee endpoint security, cloud network and API security for robust protection across all assets Define … Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response More ❯

detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. Oversee endpoint security, cloud network and API security for robust protection across all assets Define … Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response More ❯

and forward-thinking. Job information: Functional title - VP, IT Security Risk Department - Security Governance and Risk Management Corporate level - Vice President Report to - Director of Security Location - London, onsite 2 days per week About the role The individual will be part of the security function that is responsible for security governance, risk and assurance, to ensure the organisations security … external requirements. Provide assurance to stakeholders through detailed reporting and metrics. What we're looking for: Minimum of 5 years' experience in Information and Cyber Security, with minimum of 2 years' experience in a security risk team. Highly organised with experience of planning and reporting data, information and updates. Ability to collaborate effectively with others to drive forward key … MSc Information Security, CICA, CRISC, CISM and/or Data analysis beneficial but not essential if experience validates skills. Proficiency in security frameworks (e.g., NIST CSF, ISO 27001, SOC1,2). Prince 2, MSP, APMQ advantageous. A desire to continue learning and developing security skills and qualifications. Our commitment to employees: At CLS, we celebrate diversity and consider More ❯

The Business Intelligence Developer will be responsible for working with fund accounting professionals and technology organizations to build, maintain, and complete customized reporting statements. The position requires at least 2 years of experience using QlikView version 11 or higher, with proven expertise in the following areas: Good knowledge of SQL, relational databases, and Dimensional Modeling Experience working with large … experience across various fund types. Key facts include: Over $1 Trillion assets under administration Servicing nearly all significant investors in the asset class Institutional-grade infrastructure with SSAE 18 (SOC-1, Type 2) certification Industry-leading experienced team More ❯