26 to 50 of 119 SOC 2 Jobs in England

asset inventories and ensure patching and configuration baselines are followed. Security Governance & Compliance Contribute to maintaining security standards and aligning with frameworks such as ISO 27001, NIST, CIS, or SOC 2. Support audits, evidence collection, and compliance reporting (e.g., GDPR, PCI-DSS). Develop and maintain documentation for policies, procedures, architecture, and runbooks. Collaboration & Knowledge Sharing Work with IT More ❯

Azure Government, Google Cloud Platform Assured Workloads, private clouds). Security frameworks and compliance standards relevant to defenceand national security (e.g., NCSC best practices, NIST 800-53, DISA STIGs, SOC 2, ISO 27001). Secure cloud architecture patterns (e.zero trust, micro-segmentation, data loss prevention, encryption at rest and in transit). Infrastructure-as-Code (IaC) and automation More ❯

. Proficiency in scripting (Bash, Python, or PowerShell). Experience with monitoring and observability tools (Prometheus, Grafana, ELK, or equivalent). Understanding of compliance/security frameworks (e.g., GDPR, SOC2, PCI DSS). Soft Skills Strong problem-solving and troubleshooting mindset. Excellent communication and collaboration skills across distributed teams. Ability to work independently in a fast-paced environment. Detail-oriented More ❯

. Proficiency in scripting (Bash, Python, or PowerShell). Experience with monitoring and observability tools (Prometheus, Grafana, ELK, or equivalent). Understanding of compliance/security frameworks (e.g., GDPR, SOC2, PCI DSS). Soft Skills Strong problem-solving and troubleshooting mindset. Excellent communication and collaboration skills across distributed teams. Ability to work independently in a fast-paced environment. Detail-oriented More ❯

Proven track record in DevOps, automation, and infrastructure as code. Strong incident management, disaster recovery, and performance-tuning experience Familiarity with compliance standards such as ISO 27001, GDPR, and SOC 2. Strong strategic thinking and problem-solving skills. Excellent communication and interpersonal skills, with the ability to engage and influence stakeholders at all levels. Proficiency in platform management and More ❯

Mortgage origination and servicing, Payments, core banking, or lending domain expertise. Production experience with Kubernetes, IaC (Terraform), service meshes, and GitOps (Argo CD/Flux). Navigated PCI DSS, SOC 2, ISO 27001, GDPR; partnered with Risk/Compliance and auditors and delivered audit-ready evidence. Privacy engineering (GDPR, data residency) Experience leading across multiple geographies/time More ❯

with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. In addition, you will have More ❯

Leadership : Guide engineering teams in implementing cloud-native solutions, microservices, and container orchestration (e.g., Kubernetes). Security & Compliance : Ensure cloud architectures meet security, privacy, and compliance requirements (e.g., ISO, SOC2, GDPR). Performance Optimization : Analyze system performance and recommend improvements for scalability, reliability, and cost-efficiency. Stakeholder Collaboration : Work closely with DevOps, software engineering, and business teams to align technical More ❯

. Knowledge of container security and cloud compliance best practices. Experience with scripting languages (e.g., Python, Bash, PowerShell). Understanding of security certifications or industry compliance (e.g., ISO 27001, SOC 2) is a plus. Experience with Kubernetes or OpenShift for container orchestration. Familiarity with CI/CD pipelines and automation tools (e.g., GitHub Actions, Jenkins). Exposure to More ❯

Cyber Security Lead Oxfordshire - Hybrid - 2 days per week (Flexible) £50k - £60k plus Benefits Our Client are an award-winning leading IT company offering complete outsourced IT solutions to organisations across the UK and Europe. Based in Oxfordshire they provide a comprehensive range of support services, software and hardware solutions to major blue-chip clients and their technicians are … Act as the strategic security escalation point for clients when risks require senior involvement. Internal MSP Security Own the MSP's internal security frameworks and certifications (e.g., CE+, ISO, SOC 2). Oversee patching, vulnerability, and risk management of MSP-owned infrastructure and tools. Ensure MSP's technology stack (RMM, XDR, PSA, backup, etc.) is securely deployed and … Secure Score, M365 compliance dashboards). Drive continuous posture improvement across client environments. Team Leadership & Growth Mentor and develop Security Analysts. Ensure team certifications remain up to date (minimum 2 per year per Analyst). Lead internal knowledge-sharing sessions to keep the team and wider MSP relevant against new threats and frameworks. Champion automation (RPA/AI) in More ❯

key customers. Lead and mentor cross-functional security teams (Enterprise IT SecOps, Cloud Security, Network Security, Compliance, Identity). Oversee global security policies, risk management, and regulatory alignment (ISO27001, SOC2, GDPR, NIS2/DORA, Telecom-specific regulations). Ensure security is embedded in product/service lifecycles (Internet access, SD-WAN, SASE, NaaS) and that they are secure by design … with credibility at executive, technical, and regulatory levels; with customer-focused mindset with emphasis on trust, resilience, and service assurance. Information Security & Compliance Expertise : Deep knowledge of ISO 27001, SOC 2 Type II, NIS2, and DORA regulations, with experience leading audits and closing compliance gaps. Security Architecture & Engineering : Proficiency in secure SDLC practices, application security tooling (SAST/ More ❯

of suppliers. Management of key stakeholders at all levels in a typical corporate environment. Desirable: Experience working within or implementing industry standard security and compliance standards, e.g. ISO 27001, SOC2, Cyber Essentials Plus Experience working with outsourced providers for engineering & technical resources as well as systems/services. Experience working in a regulated industry, e.g. telecoms, financial services, utilities. Experience More ❯

identify and mitigate risks. Work closely with the security team to integrate best practices into new and existing features. Ensure compliance with security standards and regulations (e.g., ISO 27001, SOC 2). Implement monitoring solutions to detect and respond to real-time security incidents. Troubleshoot infrastructure and security issues, performing root cause analysis in production. Mentor junior engineers More ❯

portals, or golden path templates. Serverless and event-driven architectures (Functions, Logic Apps, Event Grid). Experience in regulated industries (e.g., Financial Services) and with compliance standards (ISO 27001, SOC 2). Knowledge of FinOps principles and cost governance on Azure. Interview process Stage 1 (remote): competency and technical interview including discussion of prior platform/DevOps work … and scenario-based problem solving. Stage 2 (on-site/remote): practical exercise (e.g., pipeline/IaC/Kubernetes task) and a short design presentation to a panel. Working schedule This role is permanent, full time, 37.5 hours per week, Monday to Friday. We offer a hybrid flexible working pattern to enable you the option of working from home More ❯

security requirements in digital health, life sciences, or FDA-regulated software environments Proven track record managing security and compliance under HIPAA, FDA, and NIST Knowledge of GDPR, ISO 27001, SOC 2 and international security standards Experience with cloud-native environments (e.g., AWS), data encryption, identity management, and secure software development practices Strong communicator who can translate security priorities More ❯

Azure Security Center/Microsoft Defender for Cloud, encryption using Azure Key Vault, network security with NSGs and Azure Firewall, Azure Policy for governance, and compliance frameworks (ISO 27001, SOC 2, GDPR). Experience conducting security assessments using Microsoft Secure Score, implementing security hardening, and responding to security incidents. Backup & Disaster Recovery - Experience implementing and managing Backup for More ❯

simplifying regulatory challenges, designing pragmatic governance models, and influencing security strategy at scale this could be your next move. Key Responsibilities Translate international standards (NIST CSF, ISO 27001, GDPR, SOC 2, PCI DSS, CSA CCM) into actionable policies and controls. Design and implement unified compliance frameworks across cloud, hybrid, and enterprise systems. Lead internal and external audits, certification More ❯

simplifying regulatory challenges, designing pragmatic governance models, and influencing security strategy at scale this could be your next move. Key Responsibilities Translate international standards (NIST CSF, ISO 27001, GDPR, SOC 2, PCI DSS, CSA CCM) into actionable policies and controls. Design and implement unified compliance frameworks across cloud, hybrid, and enterprise systems. Lead internal and external audits, certification More ❯

testing, code reviews, and vulnerability remediation Drive secure DevOps culture through training, playbooks, and developer champions Strengthen cloud & container security (AWS, Azure, GCP, Kubernetes, Docker) What you'll bring: 2-4 years' experience in AppSec/DevSecOps Hands-on with tools like Checkmarx, Veracode, SonarQube, OWASP ZAP Strong coding skills (Java, Python, JavaScript, Go, .NET) Familiar with CI/… CD (Jenkins, GitHub Actions, Azure DevOps) and IaC (Terraform) Knowledge of OWASP Top 10, API security, and compliance (ISO 27001, SOC 2) Eligibility for SC clearance is mandatory (UK nationals only) Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates More ❯

Analytics, Application Insights, and dashboards (KQL and Datadog experience desirable). Ensure compliance and security through Microsoft Defender for Cloud, Azure Policy, Key Vault, and accepted frameworks (ISO 27001, SOC 2, GDPR). Conduct backup and disaster recovery operations using Azure Backup, Site Recovery, and geo-redundant storage for business continuity. Collaborate effectively across DevOps, infrastructure, security, and More ❯

Analytics, Application Insights, and dashboards (KQL and Datadog experience desirable). Ensure compliance and security through Microsoft Defender for Cloud, Azure Policy, Key Vault, and accepted frameworks (ISO 27001, SOC 2, GDPR). Conduct backup and disaster recovery operations using Azure Backup, Site Recovery, and geo-redundant storage for business continuity. Collaborate effectively across DevOps, infrastructure, security, and More ❯

experience with Agile/Scrum methodologies. • Experience in industries relevant to Fusion such as telecoms, retail, utilities etc. • Knowledge of specific industry regulations or compliance standards (e.g., ISO 27007, SOC 2, HIPAA, PCI DSS) relevant to MSP operations. • Experience with APls, web services, and integration tools to connect ServiceNow with other enterprise systems. Skills: • Technical: o Strong implementation More ❯

team Good numeracy and organisational skills, with attention to detail Critical competencies – technical fit Good understanding of at least one audit framework; PCI DSS, ISO 27001, Cyber Essentials, NIST, SOC 2, NIS2, Microsoft 365 Certification, etc. Ability to deliver, without supervision/support, at least one Cyber Practice GRC service Aptitude for understanding, interpreting, and applying objective standards More ❯

to Standardise information security policies, frameworks, and controls across all entities, while allowing flexibility for business specific regulations. Oversee Cyber security regulatory compliance initiatives ns (e.g. NIST, ISO 27001, SOC2 compliance). Lead the design and operation of shared security services between IAG Loyalty and IAG airlines (e.g., threat detection, incident response, intel management, data sharing) at the group level. More ❯

ServiceNow products, particularly within the ITSM suite. Strategy & Compliance Operate within Agile/Scrum methodologies to ensure efficient project execution. Apply knowledge of relevant compliance frameworks (e.g., ISO 27001, SOC 2, HIPAA) within enterprise service management environments. Required Skills, Knowledge & Experience Technical & Platform Expertise ServiceNow Expertise: 4–5 years of hands-on ServiceNow implementation experience, with a proven … . Cloud Architect-level certification on a major platform (e.g., AWS, Azure, or Google Cloud). Salary - Up to £150,000 per annum + bonus Work Model - Ideally Hybrid 2 days a week in London (can be flexible) MUST BE SC CLEARED OR CAN BE SC CLEARED More ❯