1 to 25 of 51 Remote SOC 2 Jobs in London

You'll help us keep Synthesia secure and audit-ready by supporting our internal and external trust operation efforts. This includes working with standards like ISO 27001, ISO 42001, SOC 2 and CSA STAR, while also interfacing with customers where necessary. In short, everything that is necessary to earn and maintain customer trust in our security and privacy. … and others to keep us all aligned Getting involved in risk assessments and tracking mitigation efforts Keep us on track and aligned with various frameworks (ISO 27001, ISO 42001, SOC 2, etc.) Exploring other certifications and frameworks as the business evolves We'd love to hear from you if you: Are comfortable navigating technical concepts and asking insightful … growing startup or SaaS company Have supported or participated in an external audit before Work and incorporated AI into your work habits Have experience with frameworks like ISO 27001, SOC 2, or ISO 42001 Have used compliance tools like Vanta , Drata , or similar platforms Know what Okta, Wiz, and Github are Our culture At Synthesia we're passionate More ❯

driven decisions to enhance customer outcomes. Develop a deep understanding of Vanta's platform and its applications, advising customers on how to optimize their use of our compliance offerings (SOC 2, ISO 27001, GDPR, HIPAA, USDP, Custom Frameworks), Trust Reports, and Risk Management solutions. Partner closely with your Scale CSA team to co-develop and execute plays that … inspired by a vision to restore trust in internet businesses by enabling companies to improve and prove their security.From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making security continuous-not just a More ❯

them to specific business outcomes on their timelines. Become a product expert on Vanta and how our platform can be used to improve security posture through our compliance offerings (SOC 2, ISO 27001, GDPR, HIPAA, USDP and Custom Frameworks), Trust Reports, and Risk Management solution. Provide insightful technical answers and recommend the most efficient way for customers to … by a vision to restore trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making security continuous-not just a More ❯

and expansion opportunities within your book of business Become a product expert on Vanta and how our platform can be used to improve security posture through our compliance offerings (SOC 2, ISO 27001, GDPR, HIPAA, USDP and Custom Frameworks), Trust Reports, and Risk Management solution. Guide implementation, configuration, and optimization of Vanta Trust Management Platform Provide professional advice … inspired by a vision to restore trust in internet businesses by enabling companies to improve and prove their security.From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making security continuous-not just a More ❯

track if this doesn't align with what you want to do. Hybrid working - our approach is to be in the office or on client site a minimum of 2 days per week. Work on a broad variety of projects and tech stacks for clients across seven sectors - no project is ever the same Join other experts within our … modeling, security testing) and determining residual risk after applying compensating security controls Experience implementing and demonstrating compliance to security frameworks such as NIST, IEC, HITRUST, HIPAA, GDPR, ISO 27001, SOC 2 Type 2 and familiarity working with Quality Management Systems Experience working with teams in a structured software development lifecycle process Excellent interpersonal skills, both written and … the role. Quick call with one of our Tech Recruiters - to discuss your application, the role and PA Round 1: Either a competency or technical interview (60 mins) Round 2: Either a competency or technical interview, whichever you didn't do at first round (60 mins) Final round : Meeting with a PA leader - a mini case study and discussion More ❯

Access, Entra ID, and Identity Governance setups Implement Data Loss Prevention (DLP) and sensitivity labels Work with Azure Key Vault and manage encryption and certificate strategies Collaborate with our SOC and managed Sentinel provider on incident handling Compliance & Governance Help ensure compliance with ISO 27001, SOC 2, GDPR, and NIS2 Support configuration and monitoring in Microsoft Compliance More ❯

Develop comprehensive monitoring solutions using Prometheus, Grafana, ELK stack, or similar tools to improve system reliability. Security & Compliance: Apply best practices for cloud security, IAM policies, and compliance frameworks (SOC2, ISO 27001, etc.). Incident Response & Performance Optimization: Troubleshoot issues, perform root cause analysis, and implement fixes to optimize performance. Infrastructure as Code (IaC): Utilize Terraform, Ansible, or similar tools More ❯

Able to influence the engineering culture and practices of the teams, workswith self-confidence with stakeholders outside of own team aswell Drive IAM strategy to support compliance initiatives (e.g. SOC 2, HIPAA, GDPR, etc.) Required Experience/Skills: 10+ years in Information Security related positions, with at least 5 years in leadership Bachelors degree in Computer Science, Information More ❯

Senior Contract Consultant | Empowering Clients with the Best Cloud & Infrastructure Talent in the UK & Europe Head of IT Long-Term Contract (London/Hybrid) Location: London (3 days onsite, 2 days remote) The Opportunity We are seeking an accomplished Head of IT to lead and deliver strategic IT initiatives for a leading organisation based in London. This long-term … compliance , and risk management. Proven delivery of digital transformation , infrastructure modernization, and change management initiatives. Excellent stakeholder engagement and vendor management capabilities. Knowledge of frameworks: ITIL, ISO 27001, GDPR, SOC 2 , etc. Certifications preferred: CISSP, CISM, ITIL, TOGAF, PRINCE2 . Strong written and verbal communication skills. Contract Length: 1224 months (with possible extension) Location: Central London (Hybrid … jobs in London Area, United Kingdom . London Area, United Kingdom 120,000.00-130,000.00 16 hours ago Senior Director, Head of IT Service Delivery London, England, United Kingdom 2 weeks ago London, England, United Kingdom 1 week ago Greater London, England, United Kingdom 3 days ago London, England, United Kingdom 11 hours ago Uxbridge, England, United Kingdom 2 More ❯

with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. In addition, you will have More ❯

with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearman's strategy to lead where global complexity creates opportunity. In addition, you will More ❯

or a related field. Proven track record in technology risk, third-party risk management, or IT audit. Strong understanding of regulatory frameworks and standards (e.g., ISO 27001, NIST, DORA, SOC 2). Evidence of ability to handle complex vendor relationships and risk assessments. Excellent analytical, organisational, and problem-solving skills. Strong written and verbal communication skills, with experience More ❯

evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to More ❯

TechOps. Responsibilities Security Strategy & Governance - Define and continuously refine the technical security roadmap that aligns with business objectives, industry best practice (e.g., NIST CSF, OWASP SAMM), and compliance frameworks (SOC 2, ISO 27001, GDPR). Secure SDLC & DevSecOps - Build and maintain guardrails for static/dynamic analysis, container and IaC scanning, SBOM management, and supply-chain security; automate More ❯

with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. In addition, you will have More ❯

sector, based in London, on a permanent basis paying up to £65,000 plus great benefits. This role offers hybrid working with an expectation to be in the office 2-3 days per week. You’ll be joining a technical team focused on strengthening cloud security and ensuring compliance across Microsoft Azure environments. This role will involve hands-on … essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working More ❯

sector, based in London, on a permanent basis paying up to £65,000 plus great benefits. This role offers hybrid working with an expectation to be in the office 2–3 days per week. You’ll be joining a technical team focused on strengthening cloud security and ensuring compliance across Microsoft Azure environments. This role will involve hands-on … essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working More ❯

with basic incident response workflows. •Comfort representing engineering in external calls with auditors, pentesters and security vendors; able to explain infrastructure decisions in security terms. •Familiarity with compliance standards (SOC 2, ISO 27001, etc) and cloud security postures in AWS, Azure or GCP would be preferable but not essential. Salary & Benefits •Competitive salary and equity grants •Employer pension More ❯

Microsoft Purview, Compliance Manager and related compliance tools - essential Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working More ❯

access control mechanisms implemented on the firms AI products to ensure they are fit for purpose. Compliance & Governance Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, SOC 2) and any emerging AI regulations (e.g., ISO 42001, EU AI Act, UK AI Code of Conduct, GDPR) and ethical guidelines. Standardise a control framework for any AI More ❯

control mechanisms implemented on the firm's AI products to ensure they are fit for purpose. Compliance & Governance Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, SOC 2) and any emerging AI regulations (e.g., ISO 42001, EU AI Act, UK AI Code of Conduct, GDPR) and ethical guidelines. Standardise a control framework for any AI More ❯

building reusable and maintainable modules for our teams. Embedding security best practices into the platform by designing and implementing network policies, RBAC, and automated checks to meet enterprise and SOC 2 compliance standards. Mentoring other engineers, providing insightful code and design reviews, and documenting platform features and architectural decisions to foster a culture of collaboration and knowledge sharing. … Alex from our People team 30 min technical background call with one of our engineers. Following this, you might receive a small take home assignment/programming task (max 2 - 3h effort) related to our open source platform. This is your chance to prove your skill! Complete the assignment and review together with the CTO Meet the founders Culture … fit call with team members Offer Our process also includes reference and background checks. We aim to respond or provide feedback in 2 or 3 days between each stage of the process. We're usually hiring through Deel as our Employer of Record, except for Germany or Florida where we're hiring directly. WunderGraph is an equal opportunity workplace More ❯

and non-technical stakeholders. Adaptive, proactive, and grounded in high-integrity problem solving. Bonus Qualifications Understanding of European regulations (e.g. MiFID II, GDPR, CASS). Familiarity with ISO 27001, SOC 2, or similar frameworks. Experience with Agile, Scrum, MSP, or software product lifecycle knowledge. Enhanced leave - 38 days inclusive of 8 UK Public Holidays Private Health Care including More ❯

from day one. Advising on risks, vulnerabilities and mitigation strategies across the tech estate. Shaping and maintaining internal security standards and governance frameworks. Ensuring compliance with ISO 27001, GDPR, SOC 2, PCI-DSS and similar regulations. Collaborating with IT, business stakeholders, and third parties to drive secure delivery. Supporting incident response and proactively planning for emerging threats. Translating More ❯

IT Compliance Auditor In the United Kingdom - London Simon-Kucher is a global consultancy with more than 2,000employees in 30+ countries. Our sole focus is on unlocking better growth thatdrives measurable revenue and profit for our clients. We achieve this by optimizingevery lever of their commercial strategy - product, price, innovation,marketing, and sales - based on deep insights into … cybersecurity. Have at least 4-5 years of experience in similar audit roles within international organizations. Have hands-on experience with auditing of either ISO 2700x standards, BSI Grundschutz, SOC 2 Type II, or similar standards covering information security and information security management. Certifications in information security auditing are a plus. Experienced in audit planning, including scope definition More ❯