17 of 17 Permanent SOC 2 Jobs in the UK excluding London

RFIs, RFPs, and audit requests with accurate certification evidence and security documentation. Build customer-facing assurance packs that demonstrate Bell's security posture and SOC credibility. Regulatory & Industry Alignment: Monitor developments in global cybersecurity regulations and frameworks (e.g. NIST CSF, UK NCSC guidance, EU NIS2, GDPR). Continuous Improvement … ability to develop and maintain compliance documentation and audit evidence. Excellent communication skills to explain complex security assurance topics to customers, senior leaders, and SOC teams. Analytical and detail-oriented, with the ability to identify gaps and design improvements. Stakeholder engagement and influencing skills, particularly with technical and commercial ...

and accountability across the business. Key Responsibilities Regulatory Compliance Monitor and interpret data protection and IT-related regulations (e.g., GDPR, CCPA, HIPAA, ISO 27001, SOC 2) to ensure organisational compliance. Develop and maintain compliance frameworks, standards, and policies aligned with regulatory obligations and industry best practices. … CISM, CISA, CISSP, CIPM, or equivalent preferred. Strong knowledge of global data protection laws (e.g., GDPR, CCPA) and IT compliance frameworks (e.g., ISO 27001, SOC 2, NIST). Proven experience in IT compliance, risk management, or data governance roles. Excellent understanding of IT infrastructure, cyber security principles, and ...

designing and implementing next-generation cloud security architectures, securing WTW cloud environments, and driving automation and intelligence within Cybe r Defence Security Platforms & SOC Engineering. This is a hybrid role at London office with a requirement to be in the office based on the business need. The Role: Agentic … needs. Stay up to date with emerging threats, Microsoft security innovations, and industry trends to drive continuous security enhancements. Provide training and mentorship to SOC teams on Microsoft cloud security best practices. Team Management Manage and mentor a team of Cyber Defence Security Engineers. The Requirements: Must-Have Skills ...

team members' daily project and operational activities Contribute to security and technology strategic planning to mature our programmes Work with Risk & Compliance teams on SOC 2, PCI DSS, HIPAA, and other audits. Research and recommend policy and procedures as they relate to Attack Surface Management Qualifications Expert experience ...

stakeholders at all levels in a typical corporate environment. Desirable: Experience working within or implementing industry standard security and compliance standards, e.g. ISO 27001, SOC2, Cyber Essentials Plus Experience working with outsourced providers for engineering & technical resources as well as systems/services. Experience working in a regulated industry, e.g. ...

stakeholders at all levels in a typical corporate environment. Desirable: Experience working within or implementing industry standard security and compliance standards, e.g. ISO 27001, SOC2, Cyber Essentials Plus Experience working with outsourced providers for engineering & technical resources as well as systems/services. Experience working in a regulated industry, e.g. ...

skills, with attention to detail Critical competencies – technical fit Good understanding of at least one audit framework; PCI DSS, ISO 27001, Cyber Essentials, NIST, SOC 2, NIS2, Microsoft 365 Certification, etc. Ability to deliver, without supervision/support, at least one Cyber Practice GRC service Aptitude for understanding ...

and assist with customers’ RFIs and RFPs; Obtain at least CII certification to appreciate how the insurance industry works. Qualifications Essential: A minimum of 2 years in an infrastructure, SysOps or Security role; Active Directory management; AWS ecosystem, especially AppStream 2.0. NTFS permission & Group Policy configuration & management; Microsoft … Information Security specialism. Desirable: IaaS and PaaS environments; SQL; VMWare Cloud Director; SharePoint Windows IIS security & management; Security & GDPR compliance (ISO27001/ISO27032/SOC 2 ...

methodologies. Experience in industries relevant to Fusion such as telecoms, retail, utilities etc. Knowledge of specific industry regulations or compliance standards (e.g., ISO 27007, SOC 2, HIPAA, PCI DSS) relevant to MSP operations. Experience with APls, web services, and integration tools to connect ServiceNow with other enterprise systems. ...

Presales Consultant/SaaS Integrations/APIs/Security/Compliance/AWS/Azure/GCP/NLP/ML/ISO27001/SOC2/GDPR ...

enhance the firm’s Information Security function and overall security posture. Lead responses to client security questionnaires and audit follow-ups. Oversee ISO27001 and SOC 2 Type II audits. Select and implement tools to proactively detect and respond to threats. Drive continuous improvement of security practices across ...

compliance topics. Champion ethical governance and sustainable practices in all sales engagements. Skills & experience Strong understanding of compliance frameworks (e.g. ISO 27001, GDPR, SOC 2) and risk management principles. Experience supporting sales teams in a technical or compliance-focused capacity. Proven ability to complete RFPs and security questionnaires ...

policies, and controls Act as the senior hands-on security authority across the organisation Ensure alignment with recognised security frameworks (ISO 27001, NIST, CIS, SOC2, etc.) Embed security by design across infrastructure, cloud, networks, and applications Lead incident response, vulnerability management, and threat mitigation Partner closely with engineering, infrastructure, and ...

and guidelines Maintain monthly security key performance indicators and present to the ISMS Management Team Ensure ongoing ISO 27001:2022, ISO 27701:2019 and SOC 2 compliance across UK and international offices Conduct internal audits, lead remediation efforts, and support third-party reviews Operate supplier due diligence and … assessments Investigate and escalate incidents, contributing to ongoing threat awareness Deliver awareness training and drive adoption of secure behaviours Required skills: Minimum experience of 2 years working full time in I.T Clear understanding of GDPR, CCPA and other data protection legislation Good written and verbal communications skills Self sufficient ...

travel when needed. Desirable: Experience in MxDR/SOC support, security technologies (IDS/IPS, SIEM, firewalls), and compliance frameworks (GDPR, Cyber Essentials+, SOC2, PCI-DSS). Strong understanding of data protection principles. If you're a proactive security professional looking to shape and strengthen a growing cyber capability ...

timelines, resources, project plans, action logs, status reports, and statistics to ensure milestones, goals, and commitments are met. Qualifications Experience leading ISO, PCI and SOC2 accreditations with cloud platforms such as Amazon Web Services (AWS), Azure, Google Cloud Platform (GCP) with demonstrable experience orchestrating, leading and delivering accreditations … . Technical knowledge of specific security standards such as PCI DSS, HIPAA, ISO 27001/2, CCM, NIST. Experience presenting to board level. Project management skills running projects end-to-end; project initiation, planning/scheduling, execution, monitoring/reporting, and closure. ISO lead Auditor, PMP, CISA, CISM, CCSP ...

this role You will own the secure design and deployment of Azure services in environments governed by NIST 800-53 (or ISO 27001, MITRE, SOC2 similar standards), embedding "security by design" into everything you deliver. Partnering closely with engineering, security, and compliance teams, you will shape resilient platforms that meet … stand out Deep hands-on Azure experience in regulated environments, with a solid track record against NIST 800-53 (or ISO 27001, Mitre, SOC2 comparable frameworks)? Strong security mindset, comfortable partnering with security and GRC functions to translate requirements into clean, automated technical solutions.? Bonus points for experience with Azure ...