1 to 25 of 60 SOC 2 Jobs in London

distinct phases: Phase 1: The Fixer (Months 1-6) Rapidly assess, identify gaps, and implement critical foundations—from security posture to operational resilience. Phase 2: The Builder (Months 6-18) Establish scalable structures and lead the product roadmap. Drive best practice development standards, build security credentials (SOC 2 … shoulder with Chris, you'll tackle four key areas: Product Security & Compliance – Audit Triangle, implement end-to-end security improvements, and establish pathways to SOC 2 compliance for our highly regulated clients Product Roadmap & Strategy – Create a conversational roadmap that balances new features with technical debt whilst guiding ...

distinct phases: Phase 1: The Fixer (Months 1-6) Rapidly assess, identify gaps, and implement critical foundations—from security posture to operational resilience. Phase 2: The Builder (Months 6-18) Establish scalable structures and lead the product roadmap. Drive best practice development standards, build security credentials (SOC 2 … shoulder with Chris, you'll tackle four key areas: Product Security & Compliance – Audit Triangle, implement end-to-end security improvements, and establish pathways to SOC 2 compliance for our highly regulated clients Product Roadmap & Strategy – Create a conversational roadmap that balances new features with technical debt whilst guiding ...

partners, and auditors. Requirements Security Governance & Compliance Lead the company's efforts to achieve and maintain ISO 27001 (and other frameworks as needed, e.g., SOC 2, EU AI Act readiness). Establish, document, and evolve security and compliance policies, ensuring they meet company needs and regulatory requirements. Drive … propose mitigation strategies. Qualifications Proven experience in a security engineering, compliance, or security leadership role. Strong understanding of security standards and frameworks (ISO 27001, SOC 2, CIS, NIST, GDPR, EU AI Act). Hands-on technical skills in areas such as penetration testing, application security, or infrastructure hardening. ...

partners, and auditors. Requirements Security Governance & Compliance Lead the company's efforts to achieve and maintain ISO 27001 (and other frameworks as needed, e.g., SOC 2, EU AI Act readiness). Establish, document, and evolve security and compliance policies, ensuring they meet company needs and regulatory requirements. Drive … propose mitigation strategies. Qualifications Proven experience in a security engineering, compliance, or security leadership role. Strong understanding of security standards and frameworks (ISO 27001, SOC 2, CIS, NIST, GDPR, EU AI Act). Hands-on technical skills in areas such as penetration testing, application security, or infrastructure hardening. ...

given risk assessment framework (Third Party Risk Management/Vendor Assessment). Assists and/or takes the lead in managing/overseeing annual SOC2 & ISO27001 audits. Contributes in annual InfoSec Policies review/edits/updates and provides considered input. Review proposed client engagement terms and conditions and apply … direction. Demonstrates the ability to take on an assignment, project, or problem and lead, define, and implement a solution to completion. Requirements: Knowledge of SOC2 and ISO 27001 control frameworks. Knowledge of risk frameworks and risk management processes. Ability to work effectively in a team environment and across all organizational ...

given risk assessment framework (Third Party Risk Management/Vendor Assessment). Assists and/or takes the lead in managing/overseeing annual SOC2 & ISO27001 audits. Contributes in annual InfoSec Policies review/edits/updates and provides considered input. Review proposed client engagement terms and conditions and apply … direction. Demonstrates the ability to take on an assignment, project, or problem and lead, define, and implement a solution to completion. Requirements: Knowledge of SOC2 and ISO 27001 control frameworks. Knowledge of risk frameworks and risk management processes. Ability to work effectively in a team environment and across all organizational ...

and configuration baselines are followed. Security Governance & Compliance Contribute to maintaining security standards and aligning with frameworks such as ISO 27001, NIST, CIS, or SOC 2. Support audits, evidence collection, and compliance reporting (e.g., GDPR, PCI-DSS). Develop and maintain documentation for policies, procedures, architecture, and runbooks. Collaboration ...

and configuration baselines are followed. Security Governance & Compliance Contribute to maintaining security standards and aligning with frameworks such as ISO 27001, NIST, CIS, or SOC 2. Support audits, evidence collection, and compliance reporting (e.g., GDPR, PCI-DSS). Develop and maintain documentation for policies, procedures, architecture, and runbooks. Collaboration ...

Alert Logic, Qualys, M365 Security, and AWS Security Products. Understanding security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. We value teamwork, collaboration & technical excellence – the company are heavily ...

Alert Logic, Qualys, M365 Security, and AWS Security Products. Understanding security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs. We value teamwork, collaboration & technical excellence – the company are heavily ...

designing and implementing next-generation cloud security architectures, securing WTW cloud environments, and driving automation and intelligence within Cybe r Defence Security Platforms & SOC Engineering. This is a hybrid role at London office with a requirement to be in the office based on the business need. The Role: Agentic … needs. Stay up to date with emerging threats, Microsoft security innovations, and industry trends to drive continuous security enhancements. Provide training and mentorship to SOC teams on Microsoft cloud security best practices. Team Management Manage and mentor a team of Cyber Defence Security Engineers. The Requirements: Must-Have Skills ...

monitor systems, networks, and logs then investigate security breaches, incidents and other cybersecurity events. You will also oversee compliance for regulatory requirements, such as SOC2, HIPAA, ISO 27001, GDPR and ensure systems adhere to these standards. You'll be part of a fast-paced, inclusive team that values creativity, curiosity ...

communicate confidently with senior stakeholders, simplify technical topics, and drive collaboration across teams. Success in this role requires strong knowledge of security architectures, SOC operations, and attacker techniques, plus experience with platforms like Microsoft Sentinel, AWS security, and tools such as CrowdStrike and Tenable. Excellent communication, commercial awareness, and … security architectures (SIEM/SOAR, EDR/XDR, identity, cloud, vulnerability management). • Understanding of attacker techniques (MITRE ATT&CK), detection engineering, and SOC KPIs. • Experience with professional services (penetration testing, DFIR, threat hunting). • Proficiency in Microsoft (Sentinel, Defender, Entra), AWS security, and tools like CrowdStrike, Darktrace, SentinelOne ...

Defender for Cloud, encryption using Azure Key Vault, network security with NSGs and Azure Firewall, Azure Policy for governance, and compliance frameworks (ISO 27001, SOC 2, GDPR). Experience conducting security assessments using Microsoft Secure Score, implementing security hardening, and responding to security incidents. Backup & Disaster Recovery - Experience ...

and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required ...

and Datadog experience desirable). Ensure compliance and security through Microsoft Defender for Cloud, Azure Policy, Key Vault, and accepted frameworks (ISO 27001, SOC 2, GDPR). Conduct backup and disaster recovery operations using Azure Backup, Site Recovery, and geo-redundant storage for business continuity. Collaborate effectively across ...

and Datadog experience desirable). Ensure compliance and security through Microsoft Defender for Cloud, Azure Policy, Key Vault, and accepted frameworks (ISO 27001, SOC 2, GDPR). Conduct backup and disaster recovery operations using Azure Backup, Site Recovery, and geo-redundant storage for business continuity. Collaborate effectively across ...

balances speed with sustainability. Passion for writing maintainable, scalable code. Knowledge of security and compliance best practices (e.g. HIPAA/GDPR, NHS DTAC, SOC 2). Bonus: experience in healthcare, medtech, or regulated environments. ...

balances speed with sustainability. Passion for writing maintainable, scalable code. Knowledge of security and compliance best practices (e.g. HIPAA/GDPR, NHS DTAC, SOC 2). Bonus: experience in healthcare, medtech, or regulated environments. ...

vulnerability scanning or penetration testing tools. Introductory experience with scripting (Python or Bash). Awareness of cybersecurity frameworks or compliance standards (ISO 27001, NIST, SOC 2). Familiarity with common cyber threats and attack methodologies. What You'll Gain Hands-on exposure to real-world cybersecurity operations and ...

vulnerability scanning or penetration testing tools. Introductory experience with scripting (Python or Bash). Awareness of cybersecurity frameworks or compliance standards (ISO 27001, NIST, SOC 2). Familiarity with common cyber threats and attack methodologies. What You'll Gain Hands-on exposure to real-world cybersecurity operations and ...

vulnerability scanning or penetration testing tools. Introductory experience with scripting (Python or Bash). Awareness of cybersecurity frameworks or compliance standards (ISO 27001, NIST, SOC 2). Familiarity with common cyber threats and attack methodologies. What You'll Gain Hands-on exposure to real-world cybersecurity operations and ...

balances speed with sustainability. Passion for writing maintainable, scalable code. Knowledge of security and compliance best practices (e.g. HIPAA/GDPR, NHS DTAC, SOC 2). Bonus: experience in healthcare, medtech, or regulated environments. ...

balances speed with sustainability. Passion for writing maintainable, scalable code. Knowledge of security and compliance best practices (e.g. HIPAA/GDPR, NHS DTAC, SOC 2). Bonus: experience in healthcare, medtech, or regulated environments. ...

balances speed with sustainability. Passion for writing maintainable, scalable code. Knowledge of security and compliance best practices (e.g. HIPAA/GDPR, NHS DTAC, SOC 2). Bonus: experience in healthcare, medtech, or regulated environments. Why join Eolas Medical This is not a normal role. You will help define ...