1 to 25 of 188 Permanent SOC 2 Jobs in England

lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The SOC 2 Manager, Audit & Certification will be perform the following: Lead SOC 2 audits and related projects for Deloitte Technology Liaise with … SOC 2 external auditors to scope and facilitate SOC 2 audits gathering and presenting evidence as required to support DT's SOC 2 audits. Understand technology controls, testing of controls, and supporting evidence to meet SOC 2 Trust Service Criteria. Understand technology … the confidentiality, integrity, and availability of the information technology environment for on premises as well as cloud hosted IT applications and infrastructure meet the SOC 2 Trust Service Criteria. Manage audit findings; identify and track remediation activities to meet target dates for closure, and track/report progress. More ❯

lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The SOC 2 Manager, Audit & Certification will be perform the following: Lead SOC 2 audits and related projects for Deloitte Technology Liaise with … SOC 2 external auditors to scope and facilitate SOC 2 audits gathering and presenting evidence as required to support DT's SOC 2 audits. Understand technology controls, testing of controls, and supporting evidence to meet SOC 2 Trust Service Criteria. Understand technology … the confidentiality, integrity, and availability of the information technology environment for on premises as well as cloud hosted IT applications and infrastructure meet the SOC 2 Trust Service Criteria. Manage audit findings; identify and track remediation activities to meet target dates for closure, and track/report progress. More ❯

lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The SOC 2 Manager, Audit & Certification will be perform the following: Lead SOC 2 audits and related projects for Deloitte Technology Liaise with … SOC 2 external auditors to scope and facilitate SOC 2 audits gathering and presenting evidence as required to support DT's SOC 2 audits. Understand technology controls, testing of controls, and supporting evidence to meet SOC 2 Trust Service Criteria. Understand technology … the confidentiality, integrity, and availability of the information technology environment for on premises as well as cloud hosted IT applications and infrastructure meet the SOC 2 Trust Service Criteria. Manage audit findings; identify and track remediation activities to meet target dates for closure, and track/report progress. More ❯

lead every decision wemake and action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity The SOC 2 Manager, Audit & Certification will be perform the following: Lead SOC 2 audits and related projects for Deloitte Technology Liaise with … SOC 2 external auditors to scope and facilitate SOC 2 audits gathering and presenting evidence as required to support DT's SOC 2 audits. Understand technology controls, testing of controls, and supporting evidence to meet SOC 2 Trust Service Criteria. Understand technology … the confidentiality, integrity, and availability of the information technology environment for on premises as well as cloud hosted IT applications and infrastructure meet the SOC 2 Trust Service Criteria. Manage audit findings; identify and track remediation activities to meet target dates for closure, and track/report progress. More ❯

Engineer to join our growing engineering team. As a company, we are ISO 27001-certified and need to maintain this certification while preparing for SOC 2 compliance. Security responsibilities currently sit across different teams, but as compliance requirements increase, a dedicated security engineer is needed to support ongoing … improve Duel's overall security posture. The focus of this role is to help maintain our compliance responsibilities through Secureframe, support ISO 27001 and SOC 2 audits, manage security vulnerabilities, and work within engineering to introduce security best practices into development, infrastructure, and operations. We're Looking for … Assist in managing ISO 27001 renewals by maintaining compliance documentation and ensuring key security practices are followed. Help support the company's transition towards SOC 2 certification by tracking requirements and implementing necessary security measures. Work within Secureframe to maintain compliance records, ensuring a structured and organised approach More ❯

streamline transactions and enhance customer relationships. As they continue their growth, they are engaging with larger customers who are wary of security, particularly around SOC 2 and data protection. As a result, they are looking for a highly skilled and experienced Information Security Analyst/Manager to help … lead them through an end-to-end SOC 2 implementation. You will need to define the SOC 2 compliance, identifying necessary controls and collaborating with engineers and admins to implement and control effectively. Required Experience: Experience implementing SOC 2 at Scale. (Must-Have) Background More ❯

. This role is critical in shaping and enforcing security policies, driving enterprise-wide risk management, and ensuring ongoing compliance with frameworks such as SOC 2, ISO 27001, and other regulatory requirements . The ideal candidate is not only a technical expert but also a business-savvy leader … Governance, Risk & Compliance: Develop, implement, and maintain the company's information security governance framework. Lead the strategy and execution for security compliance initiatives including SOC 2 , ISO 27001 , NIST , and other relevant standards. Oversee and manage the enterprise risk management program , including identification, assessment, and mitigation of information … re a security leader who can balance business risk with technical rigor in high-stakes environments. You have direct experience with audits, compliance frameworks (SOC2, ISO 27001, GDPR, DORA), and regulatory engagement. You're comfortable leading both strategy and hands-on execution, including during incidents and client escalations. You thrive More ❯

legal work . You will play a key role in helping the business stay compliant with relevant laws and standards, including oversight of our SOC 2 compliance processes, while also helping to drive practical legal solutions across the business. This role will require you to handle both legal … costs, etc). Compliance & Risk Management Lead or support internal compliance programs, with a focus on data privacy, corporate governance, and regulatory frameworks. Oversee SOC 2 Type II maintenance and readiness efforts. Conduct internal training sessions on legal and compliance topics. About You: Experience & Qualifications Qualified lawyer with … qualification experience (PQE) in-house or at a law firm. Strong working knowledge of global data privacy laws and compliance standards (e.g. GDPR, CCPA, SOC 2). Demonstrated experience reviewing and negotiating commercial agreements. Exposure to employment law and corporate legal matters preferred. Skills & Traits You enjoy data More ❯

product roadmap priorities based on client feedback. Respond to technical sections of RFPs, RFIs, and security questionnaires, ensuring alignment with regulatory standards (e.g., ISO27001, SOC 2, GDPR). Act as a trusted advisor to clients and internal teams, bridging the gap between commercial goals and technical feasibility. Stay … managers, or exchanges. Proven experience supporting long sales cycles and navigating enterprise procurement processes. Familiarity with industry standards and frameworks such as ISO 27001, SOC 2, MiFID II, GDPR, or cloud governance in regulated industries. Skills & Competencies: Excellent communication and presentation skills, with the ability to simplify complex More ❯

product roadmap priorities based on client feedback. Respond to technical sections of RFPs, RFIs, and security questionnaires, ensuring alignment with regulatory standards (e.g., ISO27001, SOC 2, GDPR). Act as a trusted advisor to clients and internal teams, bridging the gap between commercial goals and technical feasibility. Stay … managers, or exchanges. Proven experience supporting long sales cycles and navigating enterprise procurement processes. Familiarity with industry standards and frameworks such as ISO 27001, SOC 2, MiFID II, GDPR, or cloud governance in regulated industries. Skills & Competencies: Excellent communication and presentation skills, with the ability to simplify complex More ❯

with security teams to ensure that the platform complies with industry regulations and standards, including data protection, privacy, and security best practices (e.g., GDPR, SOC 2, etc.). Cost Management: Optimize platform operations and infrastructure for cost-efficiency, particularly in cloud environments. Implement monitoring and alerting to keep … systems. Experience implementing SLAs, SLOs, and SLIs is a plus. In-depth understanding of platform security, data privacy, and regulatory compliance requirements (e.g., GDPR, SOC 2, PCI-DSS). Experience managing infrastructure costs, optimizing cloud usage, and driving operational efficiencies. Proven ability to analyze complex problems, identify solutions More ❯

security strategy, policies, and procedures, aligning them with business objectives and risk tolerance. Oversee the maintenance and expansion of existing security certifications (ISO 27001, SOC 2) and drive initiatives for future certifications (e.g., ISO 22301, DORA). Direct regular security audits, risk assessments, and vulnerability analyses, ensuring that … and IT-regulations that apply to financial institutions or its outsourcing partners. In-depth knowledge of relevant regulatory requirements and industry standards (ISO 27001, SOC 2, GDPR, DORA, etc.). Experience with cloud security (AWS, Google etc.), application security, and DevSecOps practices is a significant plus. Proven experience More ❯

creation, and permission management. Monitor and maintain IT security best practices (MFA, endpoint protection, device patching, etc.) aligned with compliance frameworks (Cyber Essentials, ISO27001, SOC 2). Support and contribute to the firm's compliance initiatives, including audits and certification processes. Assist in evaluating, implementing, and optimising new … to legal, private equity, or financial services environments. Experience supporting or administering AI-based applications or workflow tools. Familiarity with security frameworks (ISO 27001, SOC 2) and compliance requirements. Experience with scripting (PowerShell, Bash) or IT automation tools. Knowledge of additional SaaS platforms (Slack, HubSpot, etc.). EQUAL … know ahead of any interview, we will be happy to suggest or confidentially discuss reasonable adjustments. Recruitment Process: Step 1: Submit your CV Step 2: Introductory call with our Head of Talent Step 3: Interview with our IT Manager Step 4: Interview with our CTO Step 5: Interview with More ❯

and security risk assessments on suppliers, vendors, and other third parties across the supply chain. Evaluating vendor security postures using evidence-based assessments (e.g., SOC 2, ISO 27001, penetration tests). Ensuring third parties meet Evelyn Partners' minimum security standards and apply effective risk mitigations where gaps are … and governance, risk, and compliance . Strong understanding of ISO 27001 (implementation, audit, and continuous improvement), Cyber Essentials, and NIST CSF. Familiarity with reviewing SOC 2 Type II, ISO 27001 certifications, and other third-party assurance artefacts. Ability to analyse and evaluate technical and procedural controls in vendor More ❯

and security risk assessments on suppliers, vendors, and other third parties across the supply chain. Evaluating vendor security postures using evidence-based assessments (e.g., SOC 2, ISO 27001, penetration tests). Ensuring third parties meet Evelyn Partners' minimum security standards and apply effective risk mitigations where gaps are … and governance, risk, and compliance . Strong understanding of ISO 27001 (implementation, audit, and continuous improvement), Cyber Essentials, and NIST CSF. Familiarity with reviewing SOC 2 Type II, ISO 27001 certifications, and other third-party assurance artefacts. Ability to analyse and evaluate technical and procedural controls in vendor More ❯

and security risk assessments on suppliers, vendors, and other third parties across the supply chain. Evaluating vendor security postures using evidence-based assessments (e.g., SOC 2, ISO 27001, penetration tests). Ensuring third parties meet Evelyn Partners' minimum security standards and apply effective risk mitigations where gaps are … and governance, risk, and compliance . Strong understanding of ISO 27001 (implementation, audit, and continuous improvement), Cyber Essentials, and NIST CSF. Familiarity with reviewing SOC 2 Type II, ISO 27001 certifications, and other third-party assurance artefacts. Ability to analyse and evaluate technical and procedural controls in vendor More ❯

role is for you. THE CHALLENGE: As an InfoSec Third Party Audit Specialist, you will: Conduct security risk assessments on third-party vendors, review SOC reports, and evaluate technical and non-technical controls. Maintain and enhance TPRM documentation, including policies, workflows, and assessment templates aligned with ISO/IEC … preferably within an information security, risk, or compliance team. Strong working knowledge of information security standards and frameworks such as ISO/IEC 27001, SOC 2, NIST CSF, or SIG. Familiarity with technology systems, infrastructure, and related security controls. Experience conducting vendor risk assessments, including reviewing SOC 2 reports and security questionnaires. Familiarity with GRC platforms and tools used for third-party or enterprise risk management. Understanding of contractual and regulatory requirements around third-party risk (e.g., GDPR, DORA, or other industry-specific regulations). Bonus: Hands-on involvement in broader GRC functions like ISMS More ❯

the establishment and implementation of policies and procedures. The CISO is also usually responsible for information-related compliance (e.g. ISO/IEC 27001 and SOC 2 certification). What you'll be doing Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program. … of risk management, information security and IT jobs. Knowledge of common regulatory and information security management frameworks, such as ISO/IEC 27001, NIST, SOC 2 and GDPR. Excellent written and verbal communication skills and high level of personal integrity. Innovative thinking and leadership with an ability to More ❯

book of business. Become a product expert on Vanta and how our platform can be used to improve security posture through our compliance offerings (SOC 2, ISO 27001, GDPR, HIPAA, USDP, and Custom Frameworks), Trust Reports, and Risk Management solution. Guide implementation, configuration, and optimization of Vanta Trust … trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA, and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making More ❯

on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external security assessments. Support third-party risk management, including vendor due … organisational threat awareness. Champion secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and/or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide range More ❯

on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external security assessments. Support third-party risk management, including vendor due … organisational threat awareness. Champion secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and/or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide range More ❯

on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external security assessments. Support third-party risk management, including vendor due … organisational threat awareness. Champion secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and/or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide range More ❯

on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external security assessments. Support third-party risk management, including vendor due … organisational threat awareness. Champion secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and/or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide range More ❯

on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external security assessments. Support third-party risk management, including vendor due … organisational threat awareness. Champion secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and/or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide range More ❯

on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external security assessments. Support third-party risk management, including vendor due … organisational threat awareness. Champion secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and/or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide range More ❯