18 of 18 Permanent SOC 2 Jobs in Hertfordshire

distinct phases: Phase 1: The Fixer (Months 1-6) Rapidly assess, identify gaps, and implement critical foundations—from security posture to operational resilience. Phase 2: The Builder (Months 6-18) Establish scalable structures and lead the product roadmap. Drive best practice development standards, build security credentials (SOC 2 … shoulder with Chris, you'll tackle four key areas: Product Security & Compliance – Audit Triangle, implement end-to-end security improvements, and establish pathways to SOC 2 compliance for our highly regulated clients Product Roadmap & Strategy – Create a conversational roadmap that balances new features with technical debt whilst guiding ...

distinct phases: Phase 1: The Fixer (Months 1-6) Rapidly assess, identify gaps, and implement critical foundations—from security posture to operational resilience. Phase 2: The Builder (Months 6-18) Establish scalable structures and lead the product roadmap. Drive best practice development standards, build security credentials (SOC 2 … shoulder with Chris, you'll tackle four key areas: Product Security & Compliance – Audit Triangle, implement end-to-end security improvements, and establish pathways to SOC 2 compliance for our highly regulated clients Product Roadmap & Strategy – Create a conversational roadmap that balances new features with technical debt whilst guiding ...

partners, and auditors. Requirements Security Governance & Compliance Lead the company's efforts to achieve and maintain ISO 27001 (and other frameworks as needed, e.g., SOC 2, EU AI Act readiness). Establish, document, and evolve security and compliance policies, ensuring they meet company needs and regulatory requirements. Drive … propose mitigation strategies. Qualifications Proven experience in a security engineering, compliance, or security leadership role. Strong understanding of security standards and frameworks (ISO 27001, SOC 2, CIS, NIST, GDPR, EU AI Act). Hands-on technical skills in areas such as penetration testing, application security, or infrastructure hardening. ...

partners, and auditors. Requirements Security Governance & Compliance Lead the company's efforts to achieve and maintain ISO 27001 (and other frameworks as needed, e.g., SOC 2, EU AI Act readiness). Establish, document, and evolve security and compliance policies, ensuring they meet company needs and regulatory requirements. Drive … propose mitigation strategies. Qualifications Proven experience in a security engineering, compliance, or security leadership role. Strong understanding of security standards and frameworks (ISO 27001, SOC 2, CIS, NIST, GDPR, EU AI Act). Hands-on technical skills in areas such as penetration testing, application security, or infrastructure hardening. ...

partners, and auditors. Requirements Security Governance & Compliance Lead the company's efforts to achieve and maintain ISO 27001 (and other frameworks as needed, e.g., SOC 2, EU AI Act readiness). Establish, document, and evolve security and compliance policies, ensuring they meet company needs and regulatory requirements. Drive … propose mitigation strategies. Qualifications Proven experience in a security engineering, compliance, or security leadership role. Strong understanding of security standards and frameworks (ISO 27001, SOC 2, CIS, NIST, GDPR, EU AI Act). Hands-on technical skills in areas such as penetration testing, application security, or infrastructure hardening. ...

vulnerability scanning or penetration testing tools. Introductory experience with scripting (Python or Bash). Awareness of cybersecurity frameworks or compliance standards (ISO 27001, NIST, SOC 2). Familiarity with common cyber threats and attack methodologies. What You'll Gain Hands-on exposure to real-world cybersecurity operations and ...

vulnerability scanning or penetration testing tools. Introductory experience with scripting (Python or Bash). Awareness of cybersecurity frameworks or compliance standards (ISO 27001, NIST, SOC 2). Familiarity with common cyber threats and attack methodologies. What You'll Gain Hands-on exposure to real-world cybersecurity operations and ...

vulnerability scanning or penetration testing tools. Introductory experience with scripting (Python or Bash). Awareness of cybersecurity frameworks or compliance standards (ISO 27001, NIST, SOC 2). Familiarity with common cyber threats and attack methodologies. What You'll Gain Hands-on exposure to real-world cybersecurity operations and ...

working over them. Compliance Buff: You understand what controls are, their importance in maintaining a strict and compliant working environment and platform (ISO27001, DORA, SOC2, etc). AWS Security Hub will be a tool that you're familiar with. You must be able to understand risks and plan for mitigation ...

working over them. Compliance Buff: You understand what controls are, their importance in maintaining a strict and compliant working environment and platform (ISO27001, DORA, SOC2, etc). AWS Security Hub will be a tool that you're familiar with. You must be able to understand risks and plan for mitigation ...

working over them. Compliance Buff: You understand what controls are, their importance in maintaining a strict and compliant working environment and platform (ISO27001, DORA, SOC2, etc). AWS Security Hub will be a tool that you're familiar with. You must be able to understand risks and plan for mitigation ...

platforms. Background in Software Engineering, SRE or infrastructure engineering, with a strong developer tooling focus. Knowledge of compliance-driven SDLC requirements (e.g., ISO 27001, SOC2). Experience running developer surveys, DX metrics frameworks (e.g., DORA, SPACE), or feedback-driven adoption programs. Benefits Join a pioneering joint venture at the intersection ...

platforms. Background in Software Engineering, SRE or infrastructure engineering, with a strong developer tooling focus. Knowledge of compliance-driven SDLC requirements (e.g., ISO 27001, SOC2). Experience running developer surveys, DX metrics frameworks (e.g., DORA, SPACE), or feedback-driven adoption programs. Benefits Join a pioneering joint venture at the intersection ...

platforms. Background in Software Engineering, SRE or infrastructure engineering, with a strong developer tooling focus. Knowledge of compliance-driven SDLC requirements (e.g., ISO 27001, SOC2). Experience running developer surveys, DX metrics frameworks (e.g., DORA, SPACE), or feedback-driven adoption programs. Benefits Join a pioneering joint venture at the intersection ...

senior or director-level leadership experience. Strong experience with cloud platforms, microservices, distributed systems, and data engineering. Solid security and compliance knowledge; experience with SOC2, ISO27001, CE+, or similar standards is a plus. Experience building early-stage or founding engineering teams. Comfortable balancing hands-on engineering with strategic leadership. Experience ...

strategy, compliance, and incident response. Coordinate third-party penetration tests, audits, and manage remediation plans. Ensure compliance with relevant frameworks and regulations (ISO 27001, SOC2, GDPR). Communicate security posture, risks, and progress to leadership and stakeholders. Cross-Functional Collaboration Work closely with engineering, QA, DevOps, and security teams … pipelines Secure SDLC and vulnerability management Experience coordinating penetration tests and working with CISOs/security leadership. Familiarity with compliance frameworks (ISO 27001, SOC2, GDPR). Preferred Skills Excellent communication and stakeholder management skills. Ability to translate technical concepts for non-technical audiences. Strong organizational skills to manage multiple streams ...

strategy, compliance, and incident response. Coordinate third-party penetration tests, audits, and manage remediation plans. Ensure compliance with relevant frameworks and regulations (ISO 27001, SOC2, GDPR). Communicate security posture, risks, and progress to leadership and stakeholders. Cross-Functional Collaboration Work closely with engineering, QA, DevOps, and security teams … pipelines Secure SDLC and vulnerability management Experience coordinating penetration tests and working with CISOs/security leadership. Familiarity with compliance frameworks (ISO 27001, SOC2, GDPR). Preferred Skills Excellent communication and stakeholder management skills. Ability to translate technical concepts for non-technical audiences. Strong organizational skills to manage multiple streams ...

strategy, compliance, and incident response. Coordinate third-party penetration tests, audits, and manage remediation plans. Ensure compliance with relevant frameworks and regulations (ISO 27001, SOC2, GDPR). Communicate security posture, risks, and progress to leadership and stakeholders. Cross-Functional Collaboration Work closely with engineering, QA, DevOps, and security teams … pipelines Secure SDLC and vulnerability management Experience coordinating penetration tests and working with CISOs/security leadership. Familiarity with compliance frameworks (ISO 27001, SOC2, GDPR). Preferred Skills Excellent communication and stakeholder management skills. Ability to translate technical concepts for non-technical audiences. Strong organizational skills to manage multiple streams ...