1 to 25 of 83 Remote Permanent SOC 2 Jobs

Knowledge of observability tools such as Prometheus, Grafana, ELK Stack, or Datadog. Experience with security best practices, monitoring, and incident response. Familiarity with DevSecOps and compliance frameworks (ISO 27001, SOC 2, GDPR). Exposure to big data processing, ML pipelines, or simulation workflows. Bonus: Existing interest in data science and simulation workflows in the manufacturing, energy or chemical More ❯

Cloud Development and architecture Kubernetes Administration Linux Administration Software engineering disciplines Proficiency developing for serverless frameworks such as Azure Functions or AWS Lambda Experience with compliance frameworks such as SOC 2 Type 2, ISO-27001, FedRAMP, or IRAP and privacy regulations suchas GDPR and PIPEDA Roadmap for Success 90 Days: Onboarding and role-training is complete You More ❯

paced dynamic environment with shifting roles and responsibilities Technically creative and open-minded Bonus If You: Earned Cloud Solutions Architect Certifications Engaged with platform security & privacy regulatory standards like SOC-2, ISO27001, and HIPAA. Attained an Undergraduate degree in Computer Science, Engineering or related fields Qualities we look for: Adaptability: Ability to thrive in a fast-paced, dynamic environment More ❯

Access, Entra ID, and Identity Governance setups Implement Data Loss Prevention (DLP) and sensitivity labels Work with Azure Key Vault and manage encryption and certificate strategies Collaborate with our SOC and managed Sentinel provider on incident handling Compliance & Governance Help ensure compliance with ISO 27001, SOC 2, GDPR, and NIS2 Support configuration and monitoring in Microsoft Compliance More ❯

support vulnerability management, secure development, and event detection workflows. Define and track metrics related to application security, vulnerability remediation, detection coverage, and incident response effectiveness. Support compliance initiatives (e.g., SOC 2), contribute to control implementation, and assist with security documentation. Contribute to internal security education and awareness by developing training materials and coaching engineers. Requirements: Bachelor's degree More ❯

Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and Microsoft Sentinel for advanced security monitoring. Threat Detection & SOAR Automation: Oversee Security Orchestration, Automation, and Response (SOAR) solutions including SOC Prime. Network & Application Security: Manage Web Application Firewalls (WAF) and Intrusion Prevention Systems (IPS). Vulnerability & Penetration Testing: Review Penetration Testing, vulnerability assessments, and security scanning to proactively identify … security operations. Desirable Certifications: Azure Security Engineer Associate, CISSP, OSCP (Offensive Security Certified Professional), CCSP, or equivalent. Experience with container security (Docker, Kubernetes). Knowledge of NIST, ISO 27001, SOC 2 compliance frameworks. Familiarity with Zero Trust security principles. Other Stuff NB: Please only apply if you are able to work from their Debden (IG10) offices Monday-Friday. More ❯

technical and non-technical stakeholders. Experience working collaboratively with cross-functional teams in an agile environment. Enthusiasm for mentoring and upskilling junior team members. Ability to obtain a Tier 2/Moderate Risk government security clearance Desired qualifications/non-essential skills required: Experience with hybrid cloud or multi-cloud solutions (e.g., Azure, Google Cloud). Background in data … architecture, analytics, or machine learning on AWS. Knowledge of compliance frameworks and security best practices, including SOC 2, GDPR, etc. Prior experience in a consulting or customer-facing role. Familiarity with modern software development methodologies such as Agile and SAFe. Masters degree in computer science, Information Technology, or related field. CGI is required by law in some jurisdictions More ❯

and compliant technology environment. Develop, maintain security remediation oversight, and conduct reviews across all CLS environments, services, and assets, ensuring compliance with industry standards (e.g., CIS, NIST, ISO 27001, SOC 1/2) and internal security policies across all platforms and environments. Lead the security governance mechanism for capturing and managing security baseline adherence to rectify any policy … principles, to reduce risk to an acceptable level. Experience with GRC tools and best practices. RSA Archer is preferred. Proficiency in security frameworks (e.g., NIST CSF, ISO 27001, SOC1,2). Expert knowledge of security assurance practices such as audit, risk assessing, associated lifecycles and key management practices. In an ever-changing cyber landscape to be able to lead … employees have access to our inclusive benefits, including: Holiday - UK/Asia: 25 holiday days and 3 'life days' (in addition to bank holidays). US: 23 holiday days. 2 paid volunteer days so that you can actively support causes within your community that are important to you. Generous parental leave policies to ensure you can enjoy valuable time More ❯

play a key role in managing security incidents, audits, and vulnerability programs, while mentoring junior team members and helping shape the future of cybersecurity at Skillcast. Key Responsibilities: - Coordinate SOC 2, ISO 27001, and Cyber Essentials audits – including documentation, evidence management, gap analysis, and communication with auditors - Administer and enhance Azure Sentinel SIEM – including data source configuration, detection … CI/CD security practices - Proficient in SIEM platforms (especially Azure Sentinel) and vulnerability management tools - Strong knowledge of incident response, infrastructure hardening, and cloud security controls - Familiarity with SOC 2, ISO 27001, Cyber Essentials, and NIST frameworks - Experience with core security technologies: firewalls, EDR, IAM, DLP, encryption - Strong communication, documentation, and stakeholder engagement skills Benefits: - Join a … growing business in a thriving and innovative sector - Join a collaborative team culture with clear opportunities for growth and ownership - Hybrid working currently a minimum of 2 days per week at our office and 3 days per week working independently and proactively from home - Competitive salary - 28 days holiday (full time) plus Bank Holidays - Contributory Pension - Health Care Plan More ❯

play a key role in managing security incidents, audits, and vulnerability programs, while mentoring junior team members and helping shape the future of cybersecurity at Skillcast. Key Responsibilities: - Coordinate SOC 2, ISO 27001, and Cyber Essentials audits – including documentation, evidence management, gap analysis, and communication with auditors - Administer and enhance Azure Sentinel SIEM – including data source configuration, detection … CI/CD security practices - Proficient in SIEM platforms (especially Azure Sentinel) and vulnerability management tools - Strong knowledge of incident response, infrastructure hardening, and cloud security controls - Familiarity with SOC 2, ISO 27001, Cyber Essentials, and NIST frameworks - Experience with core security technologies: firewalls, EDR, IAM, DLP, encryption - Strong communication, documentation, and stakeholder engagement skills Benefits: - Join a … growing business in a thriving and innovative sector - Join a collaborative team culture with clear opportunities for growth and ownership - Hybrid working currently a minimum of 2 days per week at our office and 3 days per week working independently and proactively from home - Competitive salary - 28 days holiday (full time) plus Bank Holidays - Contributory Pension - Health Care Plan More ❯

maintaining security measures to safeguard our information assets. We operate in a highly regulated global SaaS organization that has multiple certifications such as PCI-DSS, ISO/IEC 27001, SOC2 and other standards we adhere to. In addition, we have a large, federated customer base that we strive to embed improvements for. You will collaborate with cross-functional teams to … maintaining security measures to safeguard our information assets. We operate in a highly regulated global SaaS organization that has multiple certifications such as PCI-DSS, ISO/IEC 27001, SOC2 and other standards we adhere to. In addition, we have a large, federated customer base that we strive to embed improvements for. You will collaborate with cross-functional teams to … challenging projects, with multiple security tools. Have a proven track record of successes. Understanding of security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of application security principals, best practices, OWASP/related standards. Knowledge of security frameworks & controls, hardening standards & security best practices. An understanding of network protocols & practices, firewalls More ❯

with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. In addition, you will have More ❯

with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearman's strategy to lead where global complexity creates opportunity. In addition, you will More ❯

timely response and mitigation for security events. Basic Qualifications: As a requirement of this position, all candidates must be a U.S. Citizen. In accordance with 8 U.S.C. 1324b(a)(2)(C) , Epsilon will not consider candidates for this position who do not meet the aforementioned conditions. Minimum 3 years of experience in information security or a closely related field. … or CCNA-Security). Proficiency with SIEM platforms (e.g., Splunk, QRadar) and vulnerability scanning tools (e.g., Nessus). Practical knowledge of security frameworks such as NIST, ISO 27001, and SOC 2. Hands-on experience with common security technologies like firewalls, IDS/IPS, and endpoint protection solutions. Familiarity with Python scripting, SQL and automation tools for security-related tasks. …/or maintain the appropriate level of Security Clearance or Public Trust, Epsilon will be unable to place the candidate in this position.) Must be located within a two (2) hour commute of the physical work location Physical Demands and Working Conditions: Listed below are the physical or mental requirements necessary for the job's performance. Reasonable accommodation may More ❯

discussions and reporting, with guidance and training from senior security leads. About You: Bachelor's degree in Computer Science, Engineering, or a related field, or equivalent hands-on experience. 2-5 years in a client-facing technical role such as Solutions Consulting, Sales Engineering, or Technical Account Management. Comfort working with APIs, SaaS platforms, and data-driven solutions. Some … or life sciences data (e.g., patents, journals, bioinformatics). Familiarity with AI/ML applications or data transformation pipelines. Basic understanding of IT security frameworks and cloud compliance (e.g., SOC 2, ISO 27001). Examples of past technical prototypes, side projects, or client-facing deliverables. You'll Thrive Here If You: Love solving technical problems and collaborating across … impact early in your career. Benefits & Perks: 25 days annual leave allowance + bank holidays (Additional time off based on service up to a maximum of 5 extra days) 2 company paid volunteering days Eyecare voucher scheme Private healthcare with Axa Healthcare Private pension with Scottish Widows Parental leave policies Perkbox benefit scheme, we aim to reward our Patsnappers More ❯

and forward-thinking. Job information: Functional title - VP, IT Security Risk Department - Security Governance and Risk Management Corporate level - Vice President Report to - Director of Security Location - London, onsite 2 days per week About the role The individual will be part of the security function that is responsible for security governance, risk and assurance, to ensure the organisations security … external requirements. Provide assurance to stakeholders through detailed reporting and metrics. What we're looking for: Minimum of 5 years' experience in Information and Cyber Security, with minimum of 2 years' experience in a security risk team. Highly organised with experience of planning and reporting data, information and updates. Ability to collaborate effectively with others to drive forward key … MSc Information Security, CICA, CRISC, CISM and/or Data analysis beneficial but not essential if experience validates skills. Proficiency in security frameworks (e.g., NIST CSF, ISO 27001, SOC1,2). Prince 2, MSP, APMQ advantageous. A desire to continue learning and developing security skills and qualifications. Our commitment to employees: At CLS, we celebrate diversity and consider More ❯

The Business Intelligence Developer will be responsible for working with fund accounting professionals and technology organizations to build, maintain, and complete customized reporting statements. The position requires at least 2 years of experience using QlikView version 11 or higher, with proven expertise in the following areas: Good knowledge of SQL, relational databases, and Dimensional Modeling Experience working with large … experience across various fund types. Key facts include: Over $1 Trillion assets under administration Servicing nearly all significant investors in the asset class Institutional-grade infrastructure with SSAE 18 (SOC-1, Type 2) certification Industry-leading experienced team More ❯

and Security Engineering teams. The successful candidate will play a crucial role in continuing to improve organizational maturity in line with our existing ISO27001 and ISO22301 certifications and implementing SOC2 controls. This role demands an experienced, highly skilled, and motivated professional committed to advancing our security strategies to protect critical assets and ensure operational resilience. KEY DUTIES AND RESPONSIBILITIES • Manage … and Vulnerability Management. • Conduct regular 1-2-1s, Performance Reviews, and Personal Development Plans of team members. • Develop and implement security policies, processes, and procedures to comply with SOC2 and ISO27001 standards. • Participate in Steering groups for Identity and Access Management and Data Protection • Setting and aligning team objectives and tasks to help achieve the overall Information Security and … Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials. • Proven experience in managing security operations teams in a similar industry. • Familiarity with SOC2, PCI-DSS, ISO22301 and ISO27001 standards. Desirable Qualifications: • Bachelor’s or masters degree in CyberSecurity, Computer Science, Information Technology, or a related field • Cloud security qualifications such as ISC2 CCSP More ❯

a variety of challenging projects, with multiple security tools & be confident working with internal stakeholders to make sure the organization is compliant with PCI DSS, ISO/IEC 27001, SOC & HIPAA & IRAP controls. Strong … understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. Knowledge of security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. Experience of external penetration testing scopes. Experience securing code reviews and security approvals Experience in Cryptography management & enhancements We value teamwork, collaboration & technical excellence – the company are heavily weighted More ❯

a variety of challenging projects, with multiple security tools & be confident working with internal stakeholders to make sure the organization is compliant with PCI DSS, ISO/IEC 27001, SOC & HIPAA & IRAP controls. Strong … understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. Knowledge of security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. Experience of external penetration testing scopes. Experience securing code reviews and security approvals Experience in Cryptography management & enhancements We value teamwork, collaboration & technical excellence – the company are heavily weighted More ❯

cloud-first platform for our clients. You'll be the go-to person for everything IT and InfoSec, from laptop imaging and VPN issues to AWS IAM policies and SOC2 audit prep. You'll be empowered to make fast, informed decisions that directly improve how our team works and how our customers stay secure. What You Will Do Run Internal … vendor tools, etc. Everything from config to compliance. Own InfoSec: Be accountable for our cybersecurity posture. Define controls, drive implementation, and respond to incidents. You'll guide us to SOC2 compliance and beyond. Support the Business: Be the hands-on enabler of cross-functional productivity - ensuring engineers, product managers, and business teams can work securely and efficiently. Build + Scale … and cybersecurity, ideally in fast-paced, cloud-native environments. Hands-on expertise in AWS/Azure, IAM, Intune/Autopilot, device security, and endpoint protection. Extensive experience with zscaler SOC2 experience-preparation, execution, audit remediation, and vendor coordination. Comfort with modern security tools: SSO, MDM, EDR, SIEM, password managers, VPN, etc. Ability to prioritize, execute, and deliver without handholding. Willingness More ❯

with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. In addition, you will have More ❯

access control mechanisms implemented on the firms AI products to ensure they are fit for purpose. Compliance & Governance Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, SOC 2) and any emerging AI regulations (e.g., ISO 42001, EU AI Act, UK AI Code of Conduct, GDPR) and ethical guidelines. Standardise a control framework for any AI More ❯

control mechanisms implemented on the firm's AI products to ensure they are fit for purpose. Compliance & Governance Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, SOC 2) and any emerging AI regulations (e.g., ISO 42001, EU AI Act, UK AI Code of Conduct, GDPR) and ethical guidelines. Standardise a control framework for any AI More ❯

aggregators such as StatsD. Proficient with Python; experience with Go is a plus. Strong fundamentals in Infrastructure-as-Code and CI/CD pipelines. Bonus points for experience with SOC-2, ISO 27001 or similar. The person 3+ years of experience as a DevOps Engineer, Site Reliability Engineer, Platform Engineer or similar role. You have a good understanding of More ❯