1 to 25 of 45 Remote SOC 2 Jobs in England

Overview An exciting opportunity has arisen for an experienced Cyber Security Assurance Manager to take ownership of security certifications, audits, and assurance standards for a leading Security Operations Centre (SOC) environment. This role will focus on delivering and maintaining key certifications such as ISO/IEC 27001 , SOC 2 Type II , Cyber Essentials Plus , and CREST SOC … candidate will have a strong background in cybersecurity assurance , experience engaging with external auditors and customers , and a proactive approach to maintaining compliance and continuous improvement within a global SOC function. Key Responsibilities Certification Delivery & Maintenance Lead the delivery and ongoing maintenance of SOC-related certifications including SOC 2 Type II , SOC 3 , ISO/… Plus , and CREST . Manage sector-specific compliance such as PCI DSS and NCSC CIR/CHECK . Ensure timely renewals and proactively address compliance gaps. Security Assurance for SOC Operations Integrate certification and assurance requirements into SOC governance, processes, and operations. Maintain evidence collection and audit readiness for both internal and external audits. Translate assurance and control More ❯

take ownership of day-to-day security operations, implement and refine controls, and play a hands-on role in ensuring compliance with recognised standards such as ISO 27001 and SOC 2 Type II. This is a visible and strategic position - ideal for someone who enjoys combining technical depth with governance, audit, and risk management responsibilities. Key Responsibilities Develop … Implement and manage controls across cloud and on-premises environments (Azure/AWS preferred). Lead incident response processes and investigations, coordinating remediation actions. Support compliance programmes - ISO 27001, SOC 2 Type II, and data-protection (GDPR). Deliver regular security reporting and KPI tracking for senior leadership. Drive security awareness training and best practice across the wider … team. What You'll Bring 5+ years' experience in information security, risk, or compliance roles. Strong understanding of ISMS principles (ISO 27001) and audit support for SOC 2 Type II. Hands-on experience with security tools and controls - SIEM, IAM/PAM, endpoint protection, vulnerability management. Working knowledge of data-protection and privacy standards (GDPR, HIPAA). Excellent More ❯

Salary: Up to £65,000 Employment Type: Permanent Job Summary: Our client, a leading IT services and consulting firm, is seeking a Cyber Security Assurance Manager to ensure their SOC meets and maintains … top security certifications and assurance standards. As part of the GRC function, you’ll lead customer assurance activities, manage external audits, and oversee key certifications such as ISO 27001, SOC2 Type II, Cyber Essentials Plus, and CREST SOC accreditation. Key Responsibilities: Act as primary contact for customer assurance activities, supporting RFIs, RFPs, and client audit requests Deliver training and … awareness sessions on SOC assurance standards to internal teams Develop customer-facing assurance documentation demonstrating the organisation's security posture Lead the delivery and ongoing maintenance of SOC-related certifications (SOC 2 Type II, SOC 3, ISO/IEC 27001, Cyber Essentials Plus, CREST) Embed certification requirements into SOC governance, processes, and operational practices More ❯

Salary: Up to £65,000 Employment Type: Permanent Job Summary: Our client, a leading IT services and consulting firm, is seeking a Cyber Security Assurance Manager to ensure their SOC meets and maintains … top security certifications and assurance standards. As part of the GRC function, you’ll lead customer assurance activities, manage external audits, and oversee key certifications such as ISO 27001, SOC2 Type II, Cyber Essentials Plus, and CREST SOC accreditation. Key Responsibilities: Act as primary contact for customer assurance activities, supporting RFIs, RFPs, and client audit requests Deliver training and … awareness sessions on SOC assurance standards to internal teams Develop customer-facing assurance documentation demonstrating the organisation's security posture Lead the delivery and ongoing maintenance of SOC-related certifications (SOC 2 Type II, SOC 3, ISO/IEC 27001, Cyber Essentials Plus, CREST) Embed certification requirements into SOC governance, processes, and operational practices More ❯

the global information security compliance program. Conduct internal audits, third-party risk assessments, and due diligence reviews. Ensure alignment with regulatory and industry standards including ISO27001, NIST, SOX, GDPR, SOC 2, HIPAA, CCPA, LGPD. Collaborate with cross-functional teams across multiple jurisdictions to drive compliance initiatives. Identify gaps in security controls and recommend corrective actions. Maintain and update … information security compliance, risk management, and audit. Strong understanding of international regulatory frameworks and standards. Hands-on experience with: ISO27001 audits and implementation GDPR compliance NIST cybersecurity framework SOX, SOC 2, HIPAA, CCPA, LGPD Ability to interpret complex regulatory requirements and translate them into actionable controls. Excellent communication and stakeholder engagement skills. Strong analytical and problem-solving capabilities. More ❯

them to specific business outcomes on their timelines. Become a product expert on Vanta and how our platform can be used to improve security posture through our compliance offerings (SOC 2, ISO 27001, GDPR, HIPAA, USDP and Custom Frameworks), Trust Reports, and Risk Management solution. Provide insightful technical answers and recommend the most efficient way for customers to … by a vision to restore trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making security continuous-not just a More ❯

the Way in Cyber Security Assurance? Robert Half are seeking a dynamic, proactive, and experienced Cyber Security Assurance Manager to join a globally-scaled, fast-paced Security Operations Centre (SOC) environment. In this crucial role, you will ensure that the SOC maintains its commitment to best-in-class standards through internationally recognised security certifications and industry-wide assurance … member in Governance, Risk, and Compliance (GRC) , you will lead certification efforts, influence operational processes, and engage directly with customers and auditors to showcase security credentials that differentiate our SOC from the competition. If you're skilled in blending technical insight with customer-focused communication … while driving compliance excellence, this opportunity is for you! What We're Looking For: Qualifications and Experience: Proven experience delivering and managing cybersecurity certifications (e.g., ISO/IEC 27001, SOC2 Type II, Cyber Essentials Plus, CREST). A strong understanding of SOC operations and security assurance frameworks. Experience engaging with customers during audits and RFP/RFI processes, showcasing More ❯

Proven track record in DevOps, automation, and infrastructure as code. Strong incident management, disaster recovery, and performance-tuning experience Familiarity with compliance standards such as ISO 27001, GDPR, and SOC 2. Strong strategic thinking and problem-solving skills. Excellent communication and interpersonal skills, with the ability to engage and influence stakeholders at all levels. Proficiency in platform management and More ❯

with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. In addition, you will have More ❯

key customers. Lead and mentor cross-functional security teams (Enterprise IT SecOps, Cloud Security, Network Security, Compliance, Identity). Oversee global security policies, risk management, and regulatory alignment (ISO27001, SOC2, GDPR, NIS2/DORA, Telecom-specific regulations). Ensure security is embedded in product/service lifecycles (Internet access, SD-WAN, SASE, NaaS) and that they are secure by design … with credibility at executive, technical, and regulatory levels; with customer-focused mindset with emphasis on trust, resilience, and service assurance. Information Security & Compliance Expertise : Deep knowledge of ISO 27001, SOC 2 Type II, NIS2, and DORA regulations, with experience leading audits and closing compliance gaps. Security Architecture & Engineering : Proficiency in secure SDLC practices, application security tooling (SAST/ More ❯

of suppliers. Management of key stakeholders at all levels in a typical corporate environment. Desirable: Experience working within or implementing industry standard security and compliance standards, e.g. ISO 27001, SOC2, Cyber Essentials Plus Experience working with outsourced providers for engineering & technical resources as well as systems/services. Experience working in a regulated industry, e.g. telecoms, financial services, utilities. Experience More ❯

portals, or golden path templates. Serverless and event-driven architectures (Functions, Logic Apps, Event Grid). Experience in regulated industries (e.g., Financial Services) and with compliance standards (ISO 27001, SOC 2). Knowledge of FinOps principles and cost governance on Azure. Interview process Stage 1 (remote): competency and technical interview including discussion of prior platform/DevOps work … and scenario-based problem solving. Stage 2 (on-site/remote): practical exercise (e.g., pipeline/IaC/Kubernetes task) and a short design presentation to a panel. Working schedule This role is permanent, full time, 37.5 hours per week, Monday to Friday. We offer a hybrid flexible working pattern to enable you the option of working from home More ❯

s Information Security function and maintain/improve its security posture Take the lead in responding to customer security questionnaires or audit follow ups Oversee our regular ISO27001 and SOC 2 Type II audits Research and choose technical tools to proactively detect and respond to weaknesses, threats and potential compromises Lead the development, implementation, and continuous improvement of More ❯

Senior DevSecOps Engineer - Global Health Data Platform Location: Oxford or London (hybrid: 3 office/2 WFH) Join a world-class research and technology organisation using data and AI to tackle global challenges - from health and food security to climate and clean energy. They're now hiring a Senior DevSecOps Engineer to help build and secure this cloud-first … Develop CI/CD pipelines (e.g., GitHub Actions) with built-in security testing. Support data scientists and engineers in deploying secure, automated workflows. Implement monitoring and compliance (ISO 27001, SOC 2, GDPR). Mentor engineers on DevSecOps best practices. What you'll bring Strong cloud experience (ideally OCI ). Industry experience in the pharma space Hands-on with More ❯

logging tools. Lead incident detection and response, including root-cause analysis and remediation tracking. Maintain Humanoid’s information security risk register and control library. Drive readiness for ISO 27001, SOC 2, and GDPR compliance. Deliver staff security-awareness and phishing-simulation programmes. Partner with Engineering to align product and corporate security practices. Networking & Connectivity Manage office and lab … efficiencies through the deployment of AI solutions Knowledge of ITIL or other IT service management frameworks, particularly incident/change management. Exposure to compliance frameworks such as ISO 27001, SOC2, or NIST. Prior experience scaling IT teams from small core functions into mature multi-discipline organisations. What We Offer Competitive salary plus participation in our Stock Option Plan. Paid vacations. More ❯

logging tools. Lead incident detection and response, including root-cause analysis and remediation tracking. Maintain Humanoid’s information security risk register and control library. Drive readiness for ISO 27001, SOC 2, and GDPR compliance. Deliver staff security-awareness and phishing-simulation programmes. Partner with Engineering to align product and corporate security practices. Networking & Connectivity Manage office and lab … efficiencies through the deployment of AI solutions Knowledge of ITIL or other IT service management frameworks, particularly incident/change management. Exposure to compliance frameworks such as ISO 27001, SOC2, or NIST. Prior experience scaling IT teams from small core functions into mature multi-discipline organisations. What We Offer Competitive salary plus participation in our Stock Option Plan. Paid vacations. More ❯

GDPR, HIPAA, and OWASP, as well as leading risk assessments and managing the risk register. Key skills and responsibilities, Comprehensive knowledge of ISO 27001, NIST CSF, GDPR, HIPAA, SOC 2, and OWASP frameworks. Senior Security Analyst/Senior Security Engineer background Proven experience collaborating with software development teams and implementing technical controls. Skilled in articulating technical risks in More ❯

GDPR, HIPAA, and OWASP, as well as leading risk assessments and managing the risk register. Key skills and responsibilities, Comprehensive knowledge of ISO 27001, NIST CSF, GDPR, HIPAA, SOC 2, and OWASP frameworks. Senior Security Analyst/Senior Security Engineer background Proven experience collaborating with software development teams and implementing technical controls. Skilled in articulating technical risks in More ❯

across multiple entities and territories, including risk appetite and impact/likelihood calibration. Has familiarity with regulations and standards such as ISO27001, NIST CSF, NIS2, COBIT, ITIL, GDPR, and SOC2, including developing and maintaining frameworks, policies and guidance, and implementation and monitoring strategies. Some of the key skillset required for this position are: Graduate level in Cyber Security, Computer Science More ❯

apply them to supplier oversight. The Successful Applicant Extensive experience in security risk management, particularly in third party and supplier contexts. Strong understanding of frameworks such as ISO27001, ISO27005, SOC2, and NIST. Holds certifications such as CISSP, CISM, or CRISC. Telecoms sector experience is a plus. Skilled in stakeholder engagement and translating technical risks into business language. What's on More ❯

standards and apply them to supplier oversight. Profile Extensive experience in security risk management, particularly in third-party and supplier contexts. Strong understanding of frameworks such as ISO27001, ISO27005, SOC2, and NIST. Holds certifications such as CISSP, CISM, or CRISC. Telecoms sector experience is a plus. Skilled in stakeholder engagement and translating technical risks into business language. Job Offer Discretionary More ❯

Cloud Presales Specialist/AI Presales Consultant/SaaS Integrations/APIs/Security/Compliance/AWS/Azure/GCP/NLP/ML/ISO27001/SOC2/GDPR More ❯

Cloud Presales Specialist/AI Presales Consultant/SaaS Integrations/APIs/Security/Compliance/AWS/Azure/GCP/NLP/ML/ISO27001/SOC2/GDPR More ❯

Cloud Presales Specialist/AI Presales Consultant/SaaS Integrations/APIs/Security/Compliance/AWS/Azure/GCP/NLP/ML/ISO27001/SOC2/GDPR More ❯

Experience in cybersecurity, risk management, GRC (governance, risk & compliance) or supply-chain risk management. Familiarity with third-party/vendor risk management platforms and frameworks (e.g., NIST, ISO 27001, SOC2, supply-chain risk standards). Understanding of machine-learning/AI concepts (e.g., risk-scoring models, graph analytics, anomaly detection). Experience working with enterprise B2B customers, especially security teams More ❯