26 to 50 of 52 SOC 2 Jobs in England

evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32. Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability More ❯

security requirements in digital health, life sciences, or FDA-regulated software environments Proven track record managing security and compliance under HIPAA, FDA, and NIST Knowledge of GDPR, ISO 27001, SOC 2 and international security standards Experience with cloud-native environments (e.g., AWS), data encryption, identity management, and secure software development practices Strong communicator who can translate security priorities More ❯

essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working More ❯

essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working More ❯

essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working More ❯

innovation and continuous improvement in client workflows, leveraging Tungsten Automation's cutting-edge technologies Security & Compliance Enterprise Security : Maintain a strong grasp of enterprise security practices (IAM, data encryption, SOC2, GDPR, HIPAA) when integrating AI into regulated industries What You Bring Educational Foundation Bachelor's degree in Computer Science, Information Systems, or a related technical field required Advanced degree preferred More ❯

and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

Kubernetes. Contribute to a platform that handles 200k transactions per minute and supports 1M+ active users per month. Ensure compliance with industry-leading security standards (ISO 27001, PCI-DSS, SOC 2). Work in a high-availability ecosystem with Azure SQL and MongoDB for data management. What you'll be doing: Designing and implementing innovative solutions to meet More ❯

fast-moving SaaS or product-led business before. Bonus points if you've helped shape DevOps roadmaps, mentored others, or worked with cost optimisation, security, or compliance frameworks (ISO, SOC2, etc.). This is more than just another DevOps role - it's a chance to join a company at the perfect stage: profitable, scaling, tech-led, and genuinely empowering its More ❯

am looking for an infrastructure engineer to join a 6 month contracting within the public sector.Inside IR35Till 13th March 2026Onsite aspect in Newcastle £466 per day Tech stack Minimum 2 years of professional experience in cloud security, specifically within AWS environments, demonstrating a track record of implementing and managing comprehensive security strategies. Experience leading projects with a focus on … at rest and in transit. Experience with AWS Key Management Service (KMS) and AWS Certificate Manager (ACM). Knowledge of compliance requirements that impact cloud security (e.g., GDPR, HIPAA, SOC 2) and experience in implementing controls to meet these requirements. Ability to design and execute incident response strategies within the AWS cloud, including the use of AWS CloudWatch More ❯

into platform and team operations. Establish and track key platform KPIs including availability, deployment frequency, and MTTR. Collaborate closely with InfoSec and Compliance to support regulatory readiness (e.g., ISO, SOC2). What we're looking for 10+ years of experience in cloud infrastructure and platform engineering, including team leadership. Expert-level knowledge of AWS and deep hands-on experience with More ❯

and issue resolution to safeguard delivery success. Create and maintain standard templates, playbooks, and checklists to elevate project discipline. Monitor adherence to ISO/industry standards (e.g., ISO 27001, SOC2, GDPR, etc.) where relevant. Oversee partner-delivered projects, ensuring they adhere to the same quality, methodology, and governance standards as internal delivery. Work closely with Systems Integrators (SIs), consulting partners More ❯

or business projects. Proven experience in performing IT/Cyber security control assessment reviews. Experience working with Information security frameworks and compliance standards (e.g. ISO27001, Cyber Essentials Plus, NIST, SOC2 and PCI-DSS). Strong interest in Information security and technology, and motivated to learn new technologies. Robert Half Ltd acts as an employment business for temporary positions and an More ❯

Azure B2C user journeys Work closely with engineering teams to ensure seamless API-first integrations Analyse data flows across Microsoft Customer Insights and Optimizely CDP Ensure alignment with GDPR, SOC 2, and HIPAA compliance standards Facilitate workshops, journey mapping, and process optimisation What You'll Bring Proven experience as a Business Analyst in digital or data-driven environments More ❯

the rest of the group. Providing technical support and delivering training workshops within your area of expertise. Supporting the delivery of client and certification audits, such as ISO and SOC 2 Type II. Coordinating administration tasks acting as an assistant for the Group Compliance Director and the Chief Risk Officer. Experience & Knowledge: Collaboration with business stakeholders across all … IT skills, including use of Microsoft Office with an ability to quickly learn new systems and software. Relevant Financial Services qualifications or bachelor's degree will be advantageous. Typically, 2-3 years of experience. What We Offer Save For Your Future - Equiniti Pension Plan; Equiniti matches your pension contributions up to 10% All Employee Long Term Incentive Plan (LTIP … to purchase a wide variety of benefits through our flex plan; gadgets, travel insurance, will writing, holiday trading and more. Time Off - Typically 29 days holiday + bank holidays. 2 volunteer days to get involved with a charity of your choosing. Winning together - Equiniti ICON award vouchers; recognising the individuals going above and beyond to help the business succeed. More ❯

Swagger/OpenAPI documentation for Open APIs Familiarity with Azure services and automation tools like Power Automate or Zapier Exposure to IoT or Telematics platforms Awareness of ISO 27001, SOC 2, or GDPR compliance standards Benefits: Competitive base salary Hybrid working Private healthcare Exciting and unique projects Pension scheme If you are a Senior .NET Developer experienced in More ❯

third-party vendors or partners to ensure compliance with security standards. Understanding of risk management principles and their application in security audits. Knowledge of compliance frameworks like ISO 27001, SOC 2, or similar, and their implementation within enterprise environments. Experience with audit tools and software used for planning, executing, and documenting audits. Experience in writing a comprehensive audit More ❯

third-party vendors or partners to ensure compliance with security standards. Understanding of risk management principles and their application in security audits. Knowledge of compliance frameworks like ISO 27001, SOC 2, or similar, and their implementation within enterprise environments. Experience with audit tools and software used for planning, executing, and documenting audits. Experience in writing a comprehensive audit More ❯

modelling. Security Operations (SOC) : Overseeing monitoring, incident response, vulnerability management, and operational resilience. Governance, Risk & Compliance (GRC) : Leading our efforts to achieve and maintain compliance with PCI, GDPR, SOC2, and ISO27001. Vendor Security : Spearheading due diligence and monitoring of third parties, integrated with our Vendor Governance Forum. Policies & Assurance : Defining and enforcing security standards, collaborating with IT Ops and … have deep experience overseeing a Security Operations function, managing monitoring, incident response, and vulnerability management. Driving GRC : You're an expert in managing compliance frameworks such as PCI, GDPR, SOC2, and ISO 27001, and you're skilled at preparing for audits. Vendor Security : You have led vendor security analysis, including due diligence and ongoing monitoring. Collaboration & Execution : You can define More ❯

Location: London, UK (Hybrid: 2 days per week in the office) Company: Navro - Pioneering the Future of Payments Architecting Trust: Information Security Manager This isn't just another Information Security role. No legacy systems. No corporate red tape. No coasting. This is about building something from the ground up. Fast. We're Navro, a rapidly scaling B2B payments startup … regional regulatory requirements. Own security GRC automation tooling (Vanta) and work across the business to maintain security compliance posture. Successfully lead internal and external security audits - ISO 27001/SOC2 Type II/PCI-DSS. Champion a company-wide culture of security awareness and operational resilience by playing a key role in defining, maintaining, and managing security incident response and … research effectively to find the missing details. ISO 27001 et al - You have built and maintained an ISO 27001 certified ISMS before and led other important security audit assessments (SOC2, PCI, etc.). You may have also gained ISO 27001 Lead Auditor or alike certifications (a plus). Collaborator Extraordinaire - Strong communications skills with the ability to explain technical and More ❯

regional regulatory requirements. Own security GRC automation tooling (Vanta) and work across the business to maintain security compliance posture. Successfully lead internal and external security audits - ISO 27001/SOC2 Type II/PCI-DSS. Champion a company-wide culture of security awareness and operational resilience by playing a key role in defining, maintaining, and managing security incident response and … research effectively to find the missing details. ISO 27001 et al - You have built and maintained an ISO 27001 certified ISMS before and led other important security audit assessments (SOC2, PCI, etc.). You may have also gained ISO 27001 Lead Auditor or alike certifications (a plus). Collaborator Extraordinaire - Strong communications skills with the ability to explain technical and … frameworks Flexibility surrounding other commitments; within your team we will work around child-care or other appointments you have. We just ask for advance notice! For those London Based 2-3 days per week in office Working in a diverse and inclusive environment where we ensure that our people thrive Navro does not accept unsolicited resumes from search firms More ❯

a hands-on, operationally focused role that blends technical security responsibilities with governance, risk, and compliance (GRC) elements. As Cyber Security Analyst, you will: Lead cyber incident investigations with SOC and client teams Triage and analyse alerts across email, cloud, and hybrid systems Perform threat hunting and develop detection use cases Manage vulnerability assessments and remediation efforts Maintain and … role. Hands-on experience with the Microsoft Security Stack and other leading security tools. Familiarity with network and application firewalls. Working knowledge of security frameworks such as ISO27001, NIST, SOC2, and Cyber Essentials Plus. Experience with Privileged Access Management tools (e.g., CyberArk, Entra, SailPoint). Ability to quickly learn and adapt to new security tools and technologies. Please be aware More ❯