1 to 25 of 32 SOC 2 Jobs in London

chaos to strategic partnerships Compliance & Security Transform compliance from a checkbox exercise into a sales accelerator that wins enterprise deals Own and execute our SOC 2 certification end‐to‐end with efficient, automated evidence gathering Turn RFI and security questionnaire responses into a competitive advantage—fast, thorough, repeatable … people) Able to manage and procure upwards of 50+ vendors, owning a budget in the 7 digits Track record implementing and maintaining compliance frameworks (SOC 2, ISO 27001, GDPR) Experience with enterprise sales support in a B2B SaaS company—you’ve answered RFIs and security questionnaires Proven ability ...

Lead structured pilots with signed mutual action plans, clear success criteria, and measurable exit criteria before they start. Navigate enterprise procurement end-to-end: SOC 2, DPAs, MSAs, redlines, and vendor security reviews. Feed tight feedback loops to product and engineering on objections, competitive context, and pilot learnings. … Comfortable selling to and holding conversations with deeply technical buyers (engineering, AI/ML, security teams). Experience navigating enterprise security and compliance procurement (SOC 2, DPAs, MSAs). Startup experience (Seed–Series B) — you thrive in ambiguity and can iterate fast. Tech stack at company : Voice ...

group-level data capability is live with a published catalog and cross-divisional SLAs. Regulatory & Cost Control: Engineering consistently hits all MiCA, DORA, and SOC 2 milestones while managing cloud and vendor spend against clear business-unit baselines. Key Responsibilities Engineering Delivery & Cadence: Run day-to-day global … group data pipelines and governance. Cybersecurity Execution & Compliance: Own the on-the-ground execution of The Company’s security and regulatory commitments (MiCA, DORA, SOC 2). Foster a "controls-by-design" engineering culture while respecting regulated divisional information walls. Talent, Budget & Scale: Manage the global engineering budget ...

and cross‐border transfer mechanisms (UK/EU/US/SG). Work closely with our vCISO to maintain ISO 27001 and SOC 2 compliance – owning the legal and policy layer, supporting audit cycles, and closing out action items. Draft and maintain privacy notices, DPAs, and internal … improve contracts, not just mark them up. Working knowledge of UK GDPR and practical experience managing compliance programmes or certification cycles (ISO 27001/SOC 2 exposure strongly preferred). Genuine AI literacy – you use Claude or equivalent tools in your workflow; drafting without them would feel like ...

world's leading financial groups. Headquartered in Tokyo and with approximately 350 years of history, MUFG is a global network with around 2,300 offices in over 50 countries including the Americas, Europe, the Middle East and Africa, Asia and Oceania, and East Asia. The group has over … workflows, APIs, and orchestration with tangible reductions in manual effort and ticket volume. Experience supporting audits and compliance requirements related to access controls (SOX, SOC 2, ISO 27001, PCI, or similar), including evidence production and remediation. Excellent stakeholder management and communication skills, including leading major incidents and delivering ...

and resolve production issues. Security & compliance aware engineering Work closely with Security and GRC teams to ensure services meet security and compliance requirements (e.g. SOC 2, ISO 27001). Implement secure coding practices, strong authentication and authorization patterns, and data protection controls. Contribute to internal documentation and standards … Opportunity to travel (if applicable) Flexible vacation policy Private Healthcare Employee stock ownership (ESOP) Flexible working and autonomy Pay it forward days - we offer 2 annual pay it forward days where you can take time to volunteer for a charitable cause that is important to you. Wellness days ...

design, data modelling, and integration with internal and external financial systems. Security & Compliance Ensure systems meet regulatory, security, and audit standards (PCI-DSS, SOC2, GDPR). ...

deployments, and observability-first culture. Drive metrics for deployment frequency, lead time, MTTR, change failure rate; implement platform reliability standards (target 99.95%+ uptime, SOC 2 Type II, GDPR/data sovereignty). Champion developer experience and AI-assisted development tools (e.g., Copilot, Claude Code, Cursor) and rapid ...

Senior Security & Compliance Architect London/Hybrid (1–2 days onsite per week) Salary: Up to £140,000 + Package Experience as an end-to-end Security Solution Architect within large-scale enterprise transformation programmes is essential. Security clearance or eligibility for clearance is essential Key Responsibilities Define and … platforms Design and implement data protection controls including classification, DLP, encryption, retention, and access policies Interpret and implement compliance requirements including GDPR, ISO 27001, SOC 2, and client security obligations Lead SaaS/vendor security assurance, including risk assessments, architecture reviews, and due diligence Support incident response, resilience ...

and evidence. - Align MLOps processes with data governance, AppSec, logging, monitoring and enterprise GRC expectations. - Support AI-specific control closure across NIST-style controls, SOC 2, ISO 27001 and enterprise GRC contexts. - Create repeatable evidence for monitoring, alerting, response, review and BAU handover. - Ensure MLOps controls are sustainable ...

microservices, etc.) and evaluate new technologies that can drive business value.Risk & Compliance : Oversee technical risk management, data privacy, security standards, and regulatory compliance (SOC2, GDPR, HIPAA, etc. as applicable).Budget & Operations : Manage the engineering budget, vendor relationships, and infrastructure costs. Optimize resource allocation across projects and initiatives.Cross-functional Collaboration ...

least privilege, and security hardening principles. Desirable Experience with Microsoft Sentinel, Splunk, Tenable, Qualys, or Defender TVM. Knowledge of NIST, ISO 27001, CIS, or SOC 2 frameworks. Familiarity with Azure Automation, Logic Apps, PKI, and certificate management. About You - You are a proactive and detail-oriented security professional ...

trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making ...

Information Security Engineer London (Barbican) Hybrid Working (2 days per week onsite) 80,000 - 90,000 + 8% Bonus + Excellent Pension & Benefits Must be eligible for UK Security Clearance Are you an Information Security Engineer looking to work on technology that genuinely makes a difference? This … security initiatives Desirable Experience Security certifications such as Security+, CISSP, SSCP, CISA, CCSK or similar Exposure to compliance frameworks including GDPR, PCI-DSS, SOC 2, HIPAA, FedRAMP or similar Experience within large-scale enterprise or highly regulated environments What's On Offer? Salary ...

Information Security Engineer London (Barbican) Hybrid Working (2 days per week onsite) 80,000 to 90,000 + 8% Bonus + Excellent Pension & Benefits Must be eligible for UK Security Clearance Are you an Information Security Engineer looking to work on technology that genuinely makes a difference? This … security initiatives Desirable Experience Security certifications such as Security+, CISSP, SSCP, CISA, CCSK or similar Exposure to compliance frameworks including GDPR, PCI-DSS, SOC 2, HIPAA, FedRAMP or similar Experience within large-scale enterprise or highly regulated environments What's On Offer? Salary ...

review techniques relevant to identifying cryptographic weaknesses in application code or infrastructure-as-code. Experience developing and managing security related controls and processes to SOC2 standards, ensuring ongoing audit-readiness. Understanding of certificate lifecycle management, including X.509 certificate operations, renewal processes, and associated tooling. Familiarity with relevant cryptography related regulatory ...

following would be a distinct advantage: Experience with Microsoft Sentinel, Splunk, Tenable, Qualys, or Defender TVM. Knowledge of NIST, ISO 27001, CIS, or SOC 2 frameworks. Familiarity with Azure Automation, Logic Apps, PKI, and certificate management. Daily Responsibilities Lead the investigation and remediation of complex security incidents. Enhance ...

Information Security Analyst - ISO 27001, SOC2, PCI DSS Audit & Compliance - Large Government Projects London Hybrid. Full-Time Permanent £80,000 - £90,000 plus bonus & benefits We're working with a global leader in workforce management solutions to find a certified Information Security Analyst well versed in ISO Audit & Compliance. ...

Information Security Officer 6-Month contract - Inside IR35 - up to £580 per day London based - hybrid working - 2 days a week on site Role Summary We are seeking an Information Security Officer (ISO) to lead and enhance our information security posture across governance, risk, compliance, and security-by-design. … objectives. Run security risk assessments, maintain risk registers, and drive risk treatment/remediation plans. Compliance, Audit & Assurance Support compliance programs (e.g., ISO 27001, SOC 2, GDPR and other applicable regulations). Coordinate internal/external audits, track findings, and ensure timely remediation and evidence management. ...

and evidence. - Align MLOps processes with data governance, AppSec, logging, monitoring and enterprise GRC expectations. - Support AI-specific control closure across NIST-style controls, SOC 2, ISO 27001 and enterprise GRC contexts. - Create repeatable evidence for monitoring, alerting, response, review and BAU handover. - Ensure MLOps controls are sustainable ...

client workflows, leveraging Tungsten Automation's cutting-edge technologies Security & Compliance Enterprise Security : Maintain a strong grasp of enterprise security practices (IAM, data encryption, SOC2, GDPR, HIPAA) when integrating AI into regulated industries What You Bring Educational Foundation Bachelor's degree in Computer Science, Information Systems, or a related technical ...

shared risks, incidents, and cross-cutting initiatives. Represent AppSec externally where relevant — with customers, auditors, and in the context of compliance programmes such as SOC2 and ISO 42001. What's in it for you: Lead a small, senior team with high autonomy, focusing on creating leverage rather than running ...

across cultures, functions, and geographies. Familiarity with the development and maintenance of privacy information management systems, including frameworks based on ISO/IEC 27701, SOC 2, and relevant ISO audit and compliance programs. CIPP/E, CIPP/M, or equivalent privacy certification. Desirable Qualifications Experience advising … with data protection authorities, cybersecurity regulators, or other relevant supervisory bodies. What’s in it For You? Hybrid Work Model: Flexible hybrid working environment (2-3 days a week in the office depending on the role). Flexibility & Work-Life Balance: Flexible work arrangements, including work from anywhere ...

Senior Cyber Security Engineer InfoSec Cybersecurity London Hybrid (2 days per week onsite) 90,000 to 100,000 + 8% Bonus + Pension & Benefits Large government projects Requires eligibility for UK Security Clearance This is an opportunity to join one of the world's leading enterprise software organisations, delivering … security incidents Desirable Experience Security certifications such as Security+, CISSP, SSCP, CISA, CCSK or similar Exposure to compliance frameworks including GDPR, PCI-DSS, SOC 2, HIPAA, FedRAMP or similar Experience within large-scale enterprise or highly regulated environments Hit apply to upload your CV Spectrum IT Recruitment (South ...

postmortem afterward. You understand that reliability is built through good design, not just good monitoring. Awareness of security best practices and compliance requirements (SOC 2 or similar). Cost consciousness: not just making things work, but making them work economically at scale. You've rightsized compute, managed Spot ...