1 to 25 of 33 Permanent SOC 2 Jobs in the UK excluding London

to take ownership of cyber security and data privacy across myairops. This role balances strategic oversight with practical, day-to-day security operations. Youll be central to maintaining our SOC 2 Type II … accreditation, managing third-party relationships, and ensuring our products and cloud infrastructure are secure, resilient, and compliant. In this role, you will have the unique opportunity to lead our SOC2 audit activities, perform risk management reviews, and drive our vulnerability management program in alignment with industry best practices. Your keen eye for detail and exceptional problem-solving skills will be … to demonstrate the attitude and aptitude to take this next career step Experience working in a software environment that is cloud native Experience of successfully achieving ISO27001 or preferably SOC2 Type 2 Strong understanding of application security, cloud infrastructure, and DevOps practices Awareness of industry frameworks, such as NCSC Cyber Assessment Framework, Cyber Essentials Plus and OWASP Experience managing More ❯

technical controls advisory for engineering, security, IT and beyond-keeping our security posture audit-ready and globally compliant across all products and regions. Plan and lead ISO 27001:2022, SOC 2 Type II, PCI DSS v4, SOX assessments with external assessors and regulators globally. Develop and sustain expert-level knowledge on regulations impacting Security, IT, Engineering Prepare the … time, self-service workflows. Skills you should HODL 7+ years in security engineering or technical external audit/advisory, including hands-on experience with industry frameworks (e.g. ISO 27001, SOC 2, PCI DSS, FedRAMP, NIST). Strong long-form and asynchronous writing skills for a fully remote, globally distributed team. Built and/or made substantial contributions to More ❯

Cloud Development and architecture Kubernetes Administration Linux Administration Software engineering disciplines Proficiency developing for serverless frameworks such as Azure Functions or AWS Lambda Experience with compliance frameworks such as SOC 2 Type 2, ISO-27001, FedRAMP, or IRAP and privacy regulations suchas GDPR and PIPEDA Roadmap for Success 90 Days: Onboarding and role-training is complete You More ❯

you won't need experience in all of these areas, their current accreditations are as follows: ISO 9001, 27001, 27701, 27017, 22301, 14001, 20000-1, 42001, 13485, PCI-DSS, SOC 2 Type 2, CE+. The company work on a hybrid model typically involving 2-3 days a week in the office. Examples of responsibilities: Coordination of More ❯

authentication, authorization, TLS, and encryption Exposure to Kubernetes (administering, deploying, or developing apps on K8s clusters) Understanding of compliance and system hardening in regulated environments (e.g., HIPAA, PCI-DSS, SOC 2) Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or More ❯

Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and Microsoft Sentinel for advanced security monitoring. Threat Detection & SOAR Automation: Oversee Security Orchestration, Automation, and Response (SOAR) solutions including SOC Prime. Network & Application Security: Manage Web Application Firewalls (WAF) and Intrusion Prevention Systems (IPS). Vulnerability & Penetration Testing: Review Penetration Testing, vulnerability assessments, and security scanning to proactively identify … security operations. Desirable Certifications: Azure Security Engineer Associate, CISSP, OSCP (Offensive Security Certified Professional), CCSP, or equivalent. Experience with container security (Docker, Kubernetes). Knowledge of NIST, ISO 27001, SOC 2 compliance frameworks. Familiarity with Zero Trust security principles. Other Stuff NB: Please only apply if you are able to work from their Debden (IG10) offices Monday-Friday. More ❯

Security team to ensure that cloud infrastructure is properly secured, and that sufficient controls are in place to meet our compliance goals with respect to industry standards such as SOC 2. Role Responsibilities Write high-quality infrastructure-as-code that automates the provisioning, deployment, scaling, and monitoring of Pendo's infrastructure to ensure that it is reliable and performant More ❯

Security team to ensure that cloud infrastructure is properly secured, and that sufficient controls are in place to meet our compliance goals with respect to industry standards such as SOC 2. Role Responsibilities Write high-quality infrastructure-as-code that automates the provisioning, deployment, scaling, and monitoring of Pendo's infrastructure to ensure that it is reliable and performant More ❯

evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to More ❯

evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to More ❯

evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to More ❯

Certified: Enterprise Administrator Expert Apple certifications or deep macOS support experience Familiarity with Microsoft Purview or other governance and compliance tooling Knowledge of security frameworks like ISO 27001, SOC 2, etc. PowerShell, Bash, or other scripting/automation experience An understanding of Microsoft Copilot and what secure AI readiness looks like This is your chance to shape the More ❯

Certified: Enterprise Administrator Expert Apple certifications or deep macOS support experience Familiarity with Microsoft Purview or other governance and compliance tooling Knowledge of security frameworks like ISO 27001, SOC 2, etc. PowerShell, Bash, or other scripting/automation experience An understanding of Microsoft Copilot and what secure AI readiness looks like This is your chance to shape the More ❯

and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

large, complex technology programmes involving multiple concurrent projects with significant experience of delivering through offshore/nearshore strategic vendors. Knowledge of security frameworks & standards (ISO 27001, NIST, CIS, GDPR, SOC 2) Be experienced in 'hands on' technology software delivery from initiation to implementation. Have knowledge of programme and project management methodology and managing full lifecycle of programmes from More ❯

databases, or LLM integrations. Power BI data modeling, DAX, and RLS. Certifications: AZ-104 , AZ-305 , DP-203 , or AI-102 . Knowledge of ISO 27001 , Cyber Essentials+ , or SOC 2 frameworks. Exposure to consulting or professional services environments. Familiarity with the Power Platform . Awareness of data privacy regulations (e.g., GDPR, CCPA). Soft Skills Consultative mindset … Greenfield opportunity: Shape and deliver the first enterprise data platform. Career growth: Scale with the company into Lead Data, Cloud, or Solution Architect roles. Hybrid flexibility: Remote-first with 2-3 days/week onsite in Cardiff office . Development: Funded certifications, dedicated R&D time, access to Company networks and resources. More ❯

master data management standards. Promote reusability and standardisation of data flows, services, and integration components. Embed security, privacy, and audit controls into every solution design, ensuring readiness for GDPR, SOC 2, and ISAE 3402 requirements. Work closely with InfoSec, Compliance, and Risk functions to identify and mitigate architectural risks. Skills, knowledge, expertise: Strong experience in designing complex, multi More ❯

databases, or LLM integrations. Power BI data modeling, DAX, and RLS. Certifications: AZ-104 , AZ-305 , DP-203 , or AI-102 . Knowledge of ISO 27001 , Cyber Essentials+ , or SOC 2 frameworks. Exposure to consulting or professional services environments. Familiarity with the Power Platform . Awareness of data privacy regulations (e.g., GDPR, CCPA). Soft Skills Consultative mindset More ❯

user-first approach to IT Nice to Have Microsoft 365 Certified: Enterprise Administrator Expert Apple certifications Experience with Microsoft Purview or similar data governance tools Familiarity with ISO 27001, SOC 2, or similar compliance frameworks Scripting or automation skills (PowerShell, Bash, etc.) Awareness of secure deployment practices for Microsoft Copilot or similar AI tools Why Join Us? Youll More ❯

comfortable getting into the code, and knows how to scale quality operations across both onshore and offshore teams . Work full time on a hybrid basis with 1 or 2 days per week in our Swinton - Manchester office. We're looking for a driven self-starter who wants to lead a team as well as still get their hands … Bonus Skills Experience in the HR, Payroll, or workforce management software domain. Familiarity with performance testing tools (e.g., JMeter, Gatling). Experience with security, audit, or compliance testing (e.g., SOC 2, GDPR). ISTQB or similar QA certification. Benefits & culture Part of the Zellis Group,Moorepayisa team ofover500friendly professionalsacross four offices in Swinton (Manchester), Sheffield, Birmingham and Kochi More ❯

technology solutions that drive productivity. Own system documentation, knowledge management, and IT governance processes. Manage licensing, vendor negotiations, and technology renewals. Security & Compliance Readiness Support enterprise security initiatives including SOC 2 prep, phishing simulations, data governance, and quarterly security reviews. Qualifications 7-10+ years in IT, systems operations, or enterprise architecture roles. Strong experience with cloud-based More ❯

and tactical levels, engaging technical and executive stakeholders Comprehensive IT security leadership background within global organizations, ideally in enterprise consulting environments Proficiency in security frameworks including ISO27001, Cyber Essentials, SOC2, NIST CSF and CIS Extensive understanding of cybersecurity regulations, cloud security, identity management, data protection, security governance, risk management, and remediation planning Technical expertise: SaaS, Cloud platforms, SDLC, Vulnerability Management More ❯