Knowledge of observability tools such as Prometheus, Grafana, ELK Stack, or Datadog. Experience with security best practices, monitoring, and incident response. Familiarity with DevSecOps and compliance frameworks (ISO 27001, SOC2, GDPR). Exposure to big data processing, ML pipelines, or simulation workflows. Bonus: Existing interest in data science and simulation workflows in the manufacturing, energy or chemical More ❯
Dundee, Angus, United Kingdom Hybrid / WFH Options
Ivanti
Cloud Development and architecture Kubernetes Administration Linux Administration Software engineering disciplines Proficiency developing for serverless frameworks such as Azure Functions or AWS Lambda Experience with compliance frameworks such as SOC2 Type 2, ISO-27001, FedRAMP, or IRAP and privacy regulations suchas GDPR and PIPEDA Roadmap for Success 90 Days: Onboarding and role-training is complete You More ❯
paced dynamic environment with shifting roles and responsibilities Technically creative and open-minded Bonus If You: Earned Cloud Solutions Architect Certifications Engaged with platform security & privacy regulatory standards like SOC-2, ISO27001, and HIPAA. Attained an Undergraduate degree in Computer Science, Engineering or related fields Qualities we look for: Adaptability: Ability to thrive in a fast-paced, dynamic environment More ❯
Access, Entra ID, and Identity Governance setups Implement Data Loss Prevention (DLP) and sensitivity labels Work with Azure Key Vault and manage encryption and certificate strategies Collaborate with our SOCand managed Sentinel provider on incident handling Compliance & Governance Help ensure compliance with ISO 27001, SOC2, GDPR, and NIS2 Support configuration and monitoring in Microsoft Compliance More ❯
support vulnerability management, secure development, and event detection workflows. Define and track metrics related to application security, vulnerability remediation, detection coverage, and incident response effectiveness. Support compliance initiatives (e.g., SOC2), contribute to control implementation, and assist with security documentation. Contribute to internal security education and awareness by developing training materials and coaching engineers. Requirements: Bachelor's degree More ❯
Loughton, Essex, South East, United Kingdom Hybrid / WFH Options
Profile 29
Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and Microsoft Sentinel for advanced security monitoring. Threat Detection & SOAR Automation: Oversee Security Orchestration, Automation, and Response (SOAR) solutions including SOC Prime. Network & Application Security: Manage Web Application Firewalls (WAF) and Intrusion Prevention Systems (IPS). Vulnerability & Penetration Testing: Review Penetration Testing, vulnerability assessments, and security scanning to proactively identify … security operations. Desirable Certifications: Azure Security Engineer Associate, CISSP, OSCP (Offensive Security Certified Professional), CCSP, or equivalent. Experience with container security (Docker, Kubernetes). Knowledge of NIST, ISO 27001, SOC2 compliance frameworks. Familiarity with Zero Trust security principles. Other Stuff NB: Please only apply if you are able to work from their Debden (IG10) offices Monday-Friday. More ❯
London, Tower, United Kingdom Hybrid / WFH Options
Skillcast
play a key role in managing security incidents, audits, and vulnerability programs, while mentoring junior team members and helping shape the future of cybersecurity at Skillcast. Key Responsibilities: - Coordinate SOC2, ISO 27001, and Cyber Essentials audits – including documentation, evidence management, gap analysis, and communication with auditors - Administer and enhance Azure Sentinel SIEM – including data source configuration, detection … CI/CD security practices - Proficient in SIEM platforms (especially Azure Sentinel) and vulnerability management tools - Strong knowledge of incident response, infrastructure hardening, and cloud security controls - Familiarity with SOC2, ISO 27001, Cyber Essentials, and NIST frameworks - Experience with core security technologies: firewalls, EDR, IAM, DLP, encryption - Strong communication, documentation, and stakeholder engagement skills Benefits: - Join a … growing business in a thriving and innovative sector - Join a collaborative team culture with clear opportunities for growth and ownership - Hybrid working currently a minimum of 2 days per week at our office and 3 days per week working independently and proactively from home - Competitive salary - 28 days holiday (full time) plus Bank Holidays - Contributory Pension - Health Care Plan More ❯
City of London, London, England, United Kingdom Hybrid / WFH Options
Skillcast
play a key role in managing security incidents, audits, and vulnerability programs, while mentoring junior team members and helping shape the future of cybersecurity at Skillcast. Key Responsibilities: - Coordinate SOC2, ISO 27001, and Cyber Essentials audits – including documentation, evidence management, gap analysis, and communication with auditors - Administer and enhance Azure Sentinel SIEM – including data source configuration, detection … CI/CD security practices - Proficient in SIEM platforms (especially Azure Sentinel) and vulnerability management tools - Strong knowledge of incident response, infrastructure hardening, and cloud security controls - Familiarity with SOC2, ISO 27001, Cyber Essentials, and NIST frameworks - Experience with core security technologies: firewalls, EDR, IAM, DLP, encryption - Strong communication, documentation, and stakeholder engagement skills Benefits: - Join a … growing business in a thriving and innovative sector - Join a collaborative team culture with clear opportunities for growth and ownership - Hybrid working currently a minimum of 2 days per week at our office and 3 days per week working independently and proactively from home - Competitive salary - 28 days holiday (full time) plus Bank Holidays - Contributory Pension - Health Care Plan More ❯
maintaining security measures to safeguard our information assets. We operate in a highly regulated global SaaS organization that has multiple certifications such as PCI-DSS, ISO/IEC 27001, SOC2and other standards we adhere to. In addition, we have a large, federated customer base that we strive to embed improvements for. You will collaborate with cross-functional teams to … maintaining security measures to safeguard our information assets. We operate in a highly regulated global SaaS organization that has multiple certifications such as PCI-DSS, ISO/IEC 27001, SOC2and other standards we adhere to. In addition, we have a large, federated customer base that we strive to embed improvements for. You will collaborate with cross-functional teams to … challenging projects, with multiple security tools. Have a proven track record of successes. Understanding of security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of application security principals, best practices, OWASP/related standards. Knowledge of security frameworks & controls, hardening standards & security best practices. An understanding of network protocols & practices, firewalls More ❯
East London, London, United Kingdom Hybrid / WFH Options
A&O Shearman
with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 andSOC2and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. In addition, you will have More ❯
with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 andSOC2and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearman's strategy to lead where global complexity creates opportunity. In addition, you will More ❯
Falls Church, Virginia, United States Hybrid / WFH Options
Epsilon Inc
timely response and mitigation for security events. Basic Qualifications: As a requirement of this position, all candidates must be a U.S. Citizen. In accordance with 8 U.S.C. 1324b(a)(2)(C) , Epsilon will not consider candidates for this position who do not meet the aforementioned conditions. Minimum 3 years of experience in information security or a closely related field. … or CCNA-Security). Proficiency with SIEM platforms (e.g., Splunk, QRadar) and vulnerability scanning tools (e.g., Nessus). Practical knowledge of security frameworks such as NIST, ISO 27001, andSOC 2. Hands-on experience with common security technologies like firewalls, IDS/IPS, and endpoint protection solutions. Familiarity with Python scripting, SQL and automation tools for security-related tasks. …/or maintain the appropriate level of Security Clearance or Public Trust, Epsilon will be unable to place the candidate in this position.) Must be located within a two (2) hour commute of the physical work location Physical Demands and Working Conditions: Listed below are the physical or mental requirements necessary for the job's performance. Reasonable accommodation may More ❯
discussions and reporting, with guidance and training from senior security leads. About You: Bachelor's degree in Computer Science, Engineering, or a related field, or equivalent hands-on experience. 2-5 years in a client-facing technical role such as Solutions Consulting, Sales Engineering, or Technical Account Management. Comfort working with APIs, SaaS platforms, and data-driven solutions. Some … or life sciences data (e.g., patents, journals, bioinformatics). Familiarity with AI/ML applications or data transformation pipelines. Basic understanding of IT security frameworks and cloud compliance (e.g., SOC2, ISO 27001). Examples of past technical prototypes, side projects, or client-facing deliverables. You'll Thrive Here If You: Love solving technical problems and collaborating across … impact early in your career. Benefits & Perks: 25 days annual leave allowance + bank holidays (Additional time off based on service up to a maximum of 5 extra days) 2 company paid volunteering days Eyecare voucher scheme Private healthcare with Axa Healthcare Private pension with Scottish Widows Parental leave policies Perkbox benefit scheme, we aim to reward our Patsnappers More ❯
Southampton, Hampshire, United Kingdom Hybrid / WFH Options
gen2fund.com
The Business Intelligence Developer will be responsible for working with fund accounting professionals and technology organizations to build, maintain, and complete customized reporting statements. The position requires at least 2 years of experience using QlikView version 11 or higher, with proven expertise in the following areas: Good knowledge of SQL, relational databases, and Dimensional Modeling Experience working with large … experience across various fund types. Key facts include: Over $1 Trillion assets under administration Servicing nearly all significant investors in the asset class Institutional-grade infrastructure with SSAE 18 (SOC-1, Type 2) certification Industry-leading experienced team More ❯
fixing, code maintenance. Ensure that our services communicate with each other seamlessly, have minimal downtime, and recover quickly. Make sure we respect any software security norms (Kiln is a SOC2 Type 1 and Type 2 company). Actively suggest continuous improvement of Kiln's platform and engineering practices. Communicate with other Kiln teams to help them … and smart contracts - check our Tech Blog and Open-Source Contribution Fluent (written and spoken) in French and English. Nice-to-have: Previous experience working within a certified environment (SOC2, ISO 27001, PCI DSS, HIPAA ) Genuine interest in Web3, blockchain, cryptocurrency and smart contracts - check our Tech Blog and Open-Source Contribution About Kiln: Kiln is the leading enterprise-grade More ❯
Cardiff, Wales, United Kingdom Hybrid / WFH Options
Creditsafe
and Security Engineering teams. The successful candidate will play a crucial role in continuing to improve organizational maturity in line with our existing ISO27001 and ISO22301 certifications and implementing SOC2 controls. This role demands an experienced, highly skilled, and motivated professional committed to advancing our security strategies to protect critical assets and ensure operational resilience. KEY DUTIES AND RESPONSIBILITIES • Manage … and Vulnerability Management. • Conduct regular 1-2-1s, Performance Reviews, and Personal Development Plans of team members. • Develop and implement security policies, processes, and procedures to comply with SOC2and ISO27001 standards. • Participate in Steering groups for Identity and Access Management and Data Protection • Setting and aligning team objectives and tasks to help achieve the overall Information Security and … Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials. • Proven experience in managing security operations teams in a similar industry. • Familiarity with SOC2, PCI-DSS, ISO22301 and ISO27001 standards. Desirable Qualifications: • Bachelor’s or masters degree in CyberSecurity, Computer Science, Information Technology, or a related field • Cloud security qualifications such as ISC2 CCSP More ❯
a variety of challenging projects, with multiple security tools & be confident working with internal stakeholders to make sure the organization is compliant with PCI DSS, ISO/IEC 27001, SOC & HIPAA & IRAP controls. Strong … understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. Knowledge of security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. Experience of external penetration testing scopes. Experience securing code reviews and security approvals Experience in Cryptography management & enhancements We value teamwork, collaboration & technical excellence – the company are heavily weighted More ❯
Central London, London, England, United Kingdom Hybrid / WFH Options
hireful
a variety of challenging projects, with multiple security tools & be confident working with internal stakeholders to make sure the organization is compliant with PCI DSS, ISO/IEC 27001, SOC & HIPAA & IRAP controls. Strong … understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. Knowledge of security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. Experience of external penetration testing scopes. Experience securing code reviews and security approvals Experience in Cryptography management & enhancements We value teamwork, collaboration & technical excellence – the company are heavily weighted More ❯
cloud-first platform for our clients. You'll be the go-to person for everything IT and InfoSec, from laptop imaging and VPN issues to AWS IAM policies andSOC2 audit prep. You'll be empowered to make fast, informed decisions that directly improve how our team works and how our customers stay secure. What You Will Do Run Internal … vendor tools, etc. Everything from config to compliance. Own InfoSec: Be accountable for our cybersecurity posture. Define controls, drive implementation, and respond to incidents. You'll guide us to SOC2 compliance and beyond. Support the Business: Be the hands-on enabler of cross-functional productivity - ensuring engineers, product managers, and business teams can work securely and efficiently. Build + Scale … and cybersecurity, ideally in fast-paced, cloud-native environments. Hands-on expertise in AWS/Azure, IAM, Intune/Autopilot, device security, and endpoint protection. Extensive experience with zscaler SOC2 experience-preparation, execution, audit remediation, and vendor coordination. Comfort with modern security tools: SSO, MDM, EDR, SIEM, password managers, VPN, etc. Ability to prioritize, execute, and deliver without handholding. Willingness More ❯
East London, London, United Kingdom Hybrid / WFH Options
A&O Shearman
with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 andSOC2and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. In addition, you will have More ❯
Central London, London, England, United Kingdom Hybrid / WFH Options
Bupa UK
Nmap, Claire, and OpenSCAP). Extensive experience with Red Teaming, Purple Teaming and Attack Automation. Familiarity with industry regulations and compliance standards related to cybersecurity, such as NIST CSF, SOC2, PCI DSS, and ISO 27001. A relevant professional qualification in Cyber and Information Security (e.g., OCSP, CISM, CISSP, CEH) Experience of vulnerability management and security testing in cloud environments (such … importance of our people representing the communities and customers we serve. That’s why we especially encourage applications from people with diverse backgrounds and experiences. Bupa is a Level 2 Disability Confident Employer. This means we aim to offer an interview/assessment to every disabled applicant who meets the minimum criteria for the role. We’ll make sure More ❯
control mechanisms implemented on the firm's AI products to ensure they are fit for purpose. Compliance & Governance Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, SOC2) and any emerging AI regulations (e.g., ISO 42001, EU AI Act, UK AI Code of Conduct, GDPR) and ethical guidelines. Standardise a control framework for any AI More ❯
aggregators such as StatsD. Proficient with Python; experience with Go is a plus. Strong fundamentals in Infrastructure-as-Code and CI/CD pipelines. Bonus points for experience with SOC-2, ISO 27001 or similar. The person 3+ years of experience as a DevOps Engineer, Site Reliability Engineer, Platform Engineer or similar role. You have a good understanding of More ❯
enhance the GxP Package to support clients in achieving faster regulatory approvals and validations. Lead internal audits and prepare the organization for external assessments (e.g., ISO 9001, ISO 27001, SOC2 Type II). Ensure the Quality Management System (QMS) is up to date and aligned with evolving industry standards. Act as a point of contact for compliance … validation, with emphasis on pharma or biotech compliance. Solid knowledge of EU regulatory frameworks (e.g., GxP, 21 CFR Part 11, Annex 11). Experience preparing for and navigating ISO, SOC, and other third-party compliance audits. Strong documentation, project management, and cross-functional collaboration skills. Proven ability to influence compliance culture across multiple teams and geographies. Bachelor's degree More ❯
evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to More ❯