1 to 25 of 50 Permanent SOC 2 Jobs in England

Cyber Security Assurance Manager Portsmouth, UK (flexible working - 2 days a week on-site!) I'm working with a fast-growing UK cyber security provider delivering SOC and managed security services to enterprise and critical infrastructure customers. As they scale, they're investing in assurance and governance … strengthen customer trust and credibility. They're hiring a Cyber Security Assurance Manager to own certifications, audits, and customer assurance across their SOC environment. This is a high-impact, visible role working closely with SOC, GRC, and commercial leadership. Key focus areas * Leading ISO 27001, SOC 2 ...

addition maintaining the organisations compliance with ISO 9001:2025 (Already certified). Looking forward into the future these requirements are also on the horizon: SOC 2 Type 2: For targeting US-based clients DPIA (Data Protection Impact Assessment) AI-Specific Compliance (The 2026 Frontier) ISO/… people side of making compliance work in practice. Youll likely bring: Proven experience implementing at least one of: Cyber Essentials, ISO 27001:2022 or SOC 2 Strong organisational skills and the ability to break complex frameworks into clear, actionable steps Confidence working with technical teams and a comfort ...

emerging threats, risk and security. Governance and Compliance - maintain frameworks and ensure compliance with a range of standards including - GDPR, PCI DSS, PCI 3DS, SOC 2, NIST, etc. Risk Management - responsible for risk audits and managing 3rd party and supply chain risk. Secure Development - ensure security is integrated … senior Information Security roles. A relevant professional certification (CISS or CISM) Detailed understanding of GDPR Strong knowledge of compliance frameworks (PCI DSS, PCI 3DS, SOC 2) Experience of secure software development practices and cloud security. Strong analytical and problem solving skills. This is an excellent opportunity ...

Cybersecurity is fast growing ventured back startup that provides best-in-class cybersecurity and compliance. Our software and services simplify complex compliance frameworks including SOC2, ISO 27001, HIPAA, and others, empowering businesses to scale securely and confidently. We're backed by top tier investors like Y Combinator and have offices … contract fee) Performance-based commission Uncapped upside Top performers will earn meaningfully above OTE. About the Role We are hiring an Account Executive with 2-4 years of B2B SaaS closing experience. This is not an entry-level role. This is a full-cycle Account Executive position for someone ...

container security. Identity & Access Management experience (e.g. Okta). Experience with JVM languages, Terraform/IaC, CDK, or React. Familiarity with GDPR, ISO 27001, SOC 2, EU AI Act/LLMs. Experience delivering audits or using GRC tools (e.g. Drata, Vanta) Interest in AI and/or knowledge ...

with engineering teams to embed data protection into application architecture and CI/CD pipelines Support compliance initiatives including GDPR, HIPAA, PCI DSS, and SOC 2 Conduct data-focused risk assessments and threat modelling Monitor and respond to data-related security incidents and alerts Develop and maintain data ...

someone who enjoys solving practical security challenges and building automation that makes secure development the default. Location: London – 3 days in office/2 days remote Salary: Negotiable + comprehensive benefits package Requirements for DevSecOps Engineer: This company is seeking a technically strong security engineer with proven experience … ability to work across technical and non-technical stakeholders Desirable: Experience with container and Kubernetes security Experience operating within compliance-driven environments (ISO 27001, SOC 2, NIST) Experience building policy-as-code or automated guardrails Exposure to incident response and threat detection engineering Responsibilities for DevSecOps Engineer: Take ...

ability to influence senior stakeholders Desirable: Experience leading or maturing ISO 27001 programmes Exposure to operational resilience or outsourced service provider requirements Familiarity with SOC 2 and cyber assurance testing Personal Attributes Strategic and analytical mindset Confident working with senior leadership Able to make pragmatic, risk-based decisions ...

automation tasks. Strong understanding of API security, IAM policies, network security, and secrets management. Bonus Points For: Experience in regulated fintech or compliance frameworks (SOC2, ISO 27001, PCI DSS, DORA). Certifications such as Google Cloud Professional Security Engineer, CKS, or CISSP. Why You’ll Love Working Here Competitive salary ...

/7 OTC brokerage with deep liquidity fiat gateways and competitive pricing; omnibus brokerage solutions enabling traditional financial institutions to integrate digital assets; SOC 2 Type 2-certified custody with up to US$1 billion insurance protection; and compliant retail trading channels; wealth management solutions, including scheduled ...

across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. ...

and optimisation modelling using PyCaret, Prophet, and Optuna to strengthen data‐driven decision‐making. Security, Compliance & Responsible AI Ensure alignment with enterprise security frameworks (SOC2, ISO27001, NIST). Oversee identity and access management via Azure AD, OAuth2, OpenID Connect, and enterprise IAM systems. Champion ethical AI practices, including bias detection ...

Experience with authentication methods such as OAuth 2.0, API keys, JWT IT background with experience supporting, integrating, or administering enterprise software systems Exposure to SOC 2, GDPR, or enterprise security requirements Experience with Infrastructure as Code (CDK, CloudFormation, or Terraform) Knowledge of CI/CD pipelines and deployment … backed by real clients, real revenue, and real partnerships What We Offer 25 days holiday + bank holidays Pension scheme with 10% employer contribution 2% interest rate reduction on home mortgages Professional development & life assistance programs Snacks sent to your door—you pick, we pay 50% off Apple products ...

Experience with authentication methods such as OAuth 2.0, API keys, JWT IT background with experience supporting, integrating, or administering enterprise software systems Exposure to SOC 2, GDPR, or enterprise security requirements Experience with Infrastructure as Code (CDK, CloudFormation, or Terraform) Knowledge of CI/CD pipelines and deployment … backed by real clients, real revenue, and real partnerships What We Offer 25 days holiday + bank holidays Pension scheme with 10% employer contribution 2% interest rate reduction on home mortgages Professional development & life assistance programs Snacks sent to your door—you pick, we pay 50% off Apple products ...

documentation, organisation, and communication skills. Confidence engaging with auditors, regulators, customers, and senior stakeholders. Desirable Experience HIPAA and healthcare/health tech compliance experience. SOC2 knowledge. Understanding of cloud security and SaaS environments. Qualifications (desirable but not required) CIPP/E, CIPM, CIPT ISO27001 Lead Implementer/Lead Auditor HCISPP ...

and associated services. Enhance identity governance, privileged access management, DLP, and data classification. Support Defender tooling and alert management. Threat & Vulnerability Management Work with SOC partners to triage and respond to alerts. Conduct vulnerability assessments and coordinate remediation efforts. Enhance endpoint protection and XDR capabilities. Security Operations & Compliance Harden … endpoints, and virtual desktop environments. Maintain logging, monitoring, and alerting coverage. Support external audits and recognised security certifications (e.g., Cyber Essentials Plus, ISO 27001, SOC 2). About You 3+ years’ experience in security engineering or cyber operations. Strong hands-on Azure and Microsoft 365 security expertise. Experience ...

Senior Security Risk Specialist – Contract Location - London (Hybrid – 2 days onsite in Bank) Term: 6 months Rate: £800 per day (Inside iR35) We’re looking for a Senior Security Risk Specialist to support a technology company’s Security Risk Management function. Reporting to the Head of Security Risk & Assurance … background in security risk management within tech or regulated environments Cloud security risk assessment experience (AWS experience a must) Familiarity with ISO 27001, NIST, SOC 2, PCI-DSS Comfortable engaging technical and non-technical stakeholders GRC tooling experience, consulting background, CISM/CRISC/CISSP This ...

highly regulated technical environment. Frameworks: Expert-level knowledge of NIST CSF 2.0 , ISO 27001 , and NIST 800-53 . Familiarity with TPN (MPA) or SOC 2 is highly preferred. Technical Fluency: You do not need to be a coder, but you must understand core security concepts (e.g., SAML ...

security Infrastructure-as-code mindset and strong automation skills Comfortable working cross-functionally and owning shared platforms Nice to Have Experience with compliance frameworks (SOC 2, ISO 27001, etc.) Familiarity with SRE principles and reliability engineering Security certifications or deep interest in cloud security About ...

security Infrastructure-as-code mindset and strong automation skills Comfortable working cross-functionally and owning shared platforms Nice to Have Experience with compliance frameworks (SOC 2, ISO 27001, etc.) Familiarity with SRE principles and reliability engineering Security certifications or deep interest in cloud security About ...

operating within IT service providers, consultancies, or complex enterprise environments advantageous Strong knowledge of security frameworks and standards (ISO 27001, NIST CSF, CIS, GDPR, SOC 2, IEC 62443) Familiarity with risk management and regulatory compliance Desirable Certifications PMP, MSP, CISSP, CISM or equivalent ...

large technology environment Deep expertise across multiple cyber security domains Strong understanding of frameworks such as ISO 27001, NIST, CAF, CIS, Cyber Essentials+, SOC 2 At least one major certification (CISSP, CISM, CISA, ISO Lead Auditor/Implementer) Exceptional stakeholder engagement skills and executive presence Strong analytical and ...

teams. Key Responsibilities Design and implement security strategies, policies and controls Lead vulnerability assessments, penetration testing and remediation Oversee regulatory and compliance frameworks including SOC2, ISO 27001 and GDPR Monitor systems and respond to incidents and security events Strengthen AWS and GCP cloud security environments Support customer and sales teams ...

project risks and dependencies Background & Skills Technical Expertise Requirements: Knowledge of data protection frameworks and security standards relevant to financial services (e.g. ISO 27001, SOC 2, NIST) Experience with third-party risk management (TPRM) frameworks or security assessment methodologies Strong understanding of API security, RESTful APIs, and OAuth ...

project risks and dependencies Background & Skills Technical Expertise Requirements: Knowledge of data protection frameworks and security standards relevant to financial services (e.g. ISO 27001, SOC 2, NIST) Experience with third-party risk management (TPRM) frameworks or security assessment methodologies Strong understanding of API security, RESTful APIs, and OAuth ...