1 to 25 of 128 Permanent SOC 2 Jobs in London

a leading role in evolving and maturing our security and compliance posture while building robust infrastructure for our cell manufacturing platform. Mytos is already SOC 2 Type 2 audited, but as our our customers move from research into production of cell therapies, they need our technology to … Mytos to customers' executive, security, and quality teams, effectively communicating our approach to security, compliance and risk management Own Mytos' information security program (e.g., SOC 2, ISO 27001) and work cross-discipline to bring the business and product into GMP environments Develop automated testing and validation strategies that … and interface directly with vendors and customers At least one of these areas Compliance framework experience: Implementation or maintenance of ISO 27001, ISO 9001, SOC 2, or similar frameworks Regulated industry background: Experience in healthcare, finance, or other regulated domains that required balancing innovation with compliance Lifecycle management More ❯

a leading role in evolving and maturing our security and compliance posture while building robust infrastructure for our cell manufacturing platform. Mytos is already SOC 2 Type 2 audited, but as our our customers move from research into production of cell therapies, they need our technology to … Mytos to customers' executive, security, and quality teams, effectively communicating our approach to security, compliance and risk management Own Mytos' information security program (e.g., SOC 2, ISO 27001) and work cross-discipline to bring the business and product into GMP environments Develop automated testing and validation strategies that … and interface directly with vendors and customers At least one of these areas Compliance framework experience: Implementation or maintenance of ISO 27001, ISO 9001, SOC 2, or similar frameworks Regulated industry background: Experience in healthcare, finance, or other regulated domains that required balancing innovation with compliance Lifecycle management More ❯

a leading role in evolving and maturing our security and compliance posture while building robust infrastructure for our cell manufacturing platform. Mytos is already SOC 2 Type 2 audited, but as our our customers move from research into production of cell therapies, they need our technology to … Mytos to customers' executive, security, and quality teams, effectively communicating our approach to security, compliance and risk management Own Mytos' information security program (e.g., SOC 2, ISO 27001) and work cross-discipline to bring the business and product into GMP environments Develop automated testing and validation strategies that … and interface directly with vendors and customers At least one of these areas Compliance framework experience: Implementation or maintenance of ISO 27001, ISO 9001, SOC 2, or similar frameworks Regulated industry background: Experience in healthcare, finance, or other regulated domains that required balancing innovation with compliance Lifecycle management More ❯

streamline transactions and enhance customer relationships. As they continue their growth, they are engaging with larger customers who are wary of security, particularly around SOC 2 and data protection. As a result, they are looking for a highly skilled and experienced Information Security Analyst/Manager to help … lead them through an end-to-end SOC 2 implementation. You will need to define the SOC 2 compliance, identifying necessary controls and collaborating with engineers and admins to implement and control effectively. Required Experience: Experience implementing SOC 2 at Scale. (Must-Have) Background More ❯

. This role is critical in shaping and enforcing security policies, driving enterprise-wide risk management, and ensuring ongoing compliance with frameworks such as SOC 2, ISO 27001, and other regulatory requirements . The ideal candidate is not only a technical expert but also a business-savvy leader … Governance, Risk & Compliance: Develop, implement, and maintain the company's information security governance framework. Lead the strategy and execution for security compliance initiatives including SOC 2 , ISO 27001 , NIST , and other relevant standards. Oversee and manage the enterprise risk management program , including identification, assessment, and mitigation of information … re a security leader who can balance business risk with technical rigor in high-stakes environments. You have direct experience with audits, compliance frameworks (SOC2, ISO 27001, GDPR, DORA), and regulatory engagement. You're comfortable leading both strategy and hands-on execution, including during incidents and client escalations. You thrive More ❯

legal work . You will play a key role in helping the business stay compliant with relevant laws and standards, including oversight of our SOC 2 compliance processes, while also helping to drive practical legal solutions across the business. This role will require you to handle both legal … costs, etc). Compliance & Risk Management Lead or support internal compliance programs, with a focus on data privacy, corporate governance, and regulatory frameworks. Oversee SOC 2 Type II maintenance and readiness efforts. Conduct internal training sessions on legal and compliance topics. About You: Experience & Qualifications Qualified lawyer with … qualification experience (PQE) in-house or at a law firm. Strong working knowledge of global data privacy laws and compliance standards (e.g. GDPR, CCPA, SOC 2). Demonstrated experience reviewing and negotiating commercial agreements. Exposure to employment law and corporate legal matters preferred. Skills & Traits You enjoy data More ❯

product roadmap priorities based on client feedback. Respond to technical sections of RFPs, RFIs, and security questionnaires, ensuring alignment with regulatory standards (e.g., ISO27001, SOC 2, GDPR). Act as a trusted advisor to clients and internal teams, bridging the gap between commercial goals and technical feasibility. Stay … managers, or exchanges. Proven experience supporting long sales cycles and navigating enterprise procurement processes. Familiarity with industry standards and frameworks such as ISO 27001, SOC 2, MiFID II, GDPR, or cloud governance in regulated industries. Skills & Competencies: Excellent communication and presentation skills, with the ability to simplify complex More ❯

product roadmap priorities based on client feedback. Respond to technical sections of RFPs, RFIs, and security questionnaires, ensuring alignment with regulatory standards (e.g., ISO27001, SOC 2, GDPR). Act as a trusted advisor to clients and internal teams, bridging the gap between commercial goals and technical feasibility. Stay … managers, or exchanges. Proven experience supporting long sales cycles and navigating enterprise procurement processes. Familiarity with industry standards and frameworks such as ISO 27001, SOC 2, MiFID II, GDPR, or cloud governance in regulated industries. Skills & Competencies: Excellent communication and presentation skills, with the ability to simplify complex More ❯

product roadmap priorities based on client feedback. Respond to technical sections of RFPs, RFIs, and security questionnaires, ensuring alignment with regulatory standards (e.g., ISO27001, SOC 2, GDPR). Act as a trusted advisor to clients and internal teams, bridging the gap between commercial goals and technical feasibility. Stay … managers, or exchanges. Proven experience supporting long sales cycles and navigating enterprise procurement processes. Familiarity with industry standards and frameworks such as ISO 27001, SOC 2, MiFID II, GDPR, or cloud governance in regulated industries. Skills & Competencies: Excellent communication and presentation skills, with the ability to simplify complex More ❯

with security teams to ensure that the platform complies with industry regulations and standards, including data protection, privacy, and security best practices (e.g., GDPR, SOC 2, etc.). Cost Management: Optimize platform operations and infrastructure for cost-efficiency, particularly in cloud environments. Implement monitoring and alerting to keep … systems. Experience implementing SLAs, SLOs, and SLIs is a plus. In-depth understanding of platform security, data privacy, and regulatory compliance requirements (e.g., GDPR, SOC 2, PCI-DSS). Experience managing infrastructure costs, optimizing cloud usage, and driving operational efficiencies. Proven ability to analyze complex problems, identify solutions More ❯

security strategy, policies, and procedures, aligning them with business objectives and risk tolerance. Oversee the maintenance and expansion of existing security certifications (ISO 27001, SOC 2) and drive initiatives for future certifications (e.g., ISO 22301, DORA). Direct regular security audits, risk assessments, and vulnerability analyses, ensuring that … and IT-regulations that apply to financial institutions or its outsourcing partners. In-depth knowledge of relevant regulatory requirements and industry standards (ISO 27001, SOC 2, GDPR, DORA, etc.). Experience with cloud security (AWS, Google etc.), application security, and DevSecOps practices is a significant plus. Proven experience More ❯

role is for you. THE CHALLENGE: As an InfoSec Third Party Audit Specialist, you will: Conduct security risk assessments on third-party vendors, review SOC reports, and evaluate technical and non-technical controls. Maintain and enhance TPRM documentation, including policies, workflows, and assessment templates aligned with ISO/IEC … preferably within an information security, risk, or compliance team. Strong working knowledge of information security standards and frameworks such as ISO/IEC 27001, SOC 2, NIST CSF, or SIG. Familiarity with technology systems, infrastructure, and related security controls. Experience conducting vendor risk assessments, including reviewing SOC 2 reports and security questionnaires. Familiarity with GRC platforms and tools used for third-party or enterprise risk management. Understanding of contractual and regulatory requirements around third-party risk (e.g., GDPR, DORA, or other industry-specific regulations). Bonus: Hands-on involvement in broader GRC functions like ISMS More ❯

the establishment and implementation of policies and procedures. The CISO is also usually responsible for information-related compliance (e.g. ISO/IEC 27001 and SOC 2 certification). What you'll be doing Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program. … of risk management, information security and IT jobs. Knowledge of common regulatory and information security management frameworks, such as ISO/IEC 27001, NIST, SOC 2 and GDPR. Excellent written and verbal communication skills and high level of personal integrity. Innovative thinking and leadership with an ability to More ❯

book of business. Become a product expert on Vanta and how our platform can be used to improve security posture through our compliance offerings (SOC 2, ISO 27001, GDPR, HIPAA, USDP, and Custom Frameworks), Trust Reports, and Risk Management solution. Guide implementation, configuration, and optimization of Vanta Trust … trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA, and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making More ❯

on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external security assessments. Support third-party risk management, including vendor due … organisational threat awareness. Champion secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and/or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide range More ❯

on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external security assessments. Support third-party risk management, including vendor due … organisational threat awareness. Champion secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and/or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide range More ❯

on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external security assessments. Support third-party risk management, including vendor due … organisational threat awareness. Champion secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and/or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide range More ❯

on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external security assessments. Support third-party risk management, including vendor due … organisational threat awareness. Champion secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and/or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide range More ❯

on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external security assessments. Support third-party risk management, including vendor due … organisational threat awareness. Champion secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and/or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide range More ❯

on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external security assessments. Support third-party risk management, including vendor due … organisational threat awareness. Champion secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and/or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide range More ❯

on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external security assessments. Support third-party risk management, including vendor due … organisational threat awareness. Champion secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and/or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide range More ❯

on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external security assessments. Support third-party risk management, including vendor due … organisational threat awareness. Champion secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and/or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide range More ❯

on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external security assessments. Support third-party risk management, including vendor due … organisational threat awareness. Champion secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and/or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide range More ❯

on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external security assessments. Support third-party risk management, including vendor due … organisational threat awareness. Champion secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and/or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide range More ❯

on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external security assessments. Support third-party risk management, including vendor due … organisational threat awareness. Champion secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and/or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide range More ❯