26 to 50 of 81 SOC 2 Jobs in London

with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. In addition, you will have More ❯

stakeholders, collaborators and clients, at different levels Preferred Qualifications Highly experience in analytical and problem-solving skills, including a basic understanding of data analysis techniques Good grasp of SOX, SOC2, NIST, PCI, ISO, and other security regulations Experience in the IAM domain in a cloud based infrastructure environment Program and project management skills About Meta Meta builds technologies that help More ❯

with basic incident response workflows. •Comfort representing engineering in external calls with auditors, pentesters and security vendors; able to explain infrastructure decisions in security terms. •Familiarity with compliance standards (SOC 2, ISO 27001, etc) and cloud security postures in AWS, Azure or GCP would be preferable but not essential. Salary & Benefits •Competitive salary and equity grants •Employer pension More ❯

risks and deploy effective remediation measures. Monitor systems, networks, and logs then Investigate security breaches, incidents, and other cybersecurity events. Oversight of compliance for regulatory compliance requirements, such as SOC2, HIPAA, ISO 27001, GDPR etc, and ensure our systems adhere to these standards Conduct security awareness training sessions, enabling the business. Who you are Cloud security enthusiast - You're comfortable More ❯

building reusable and maintainable modules for our teams. Embedding security best practices into the platform by designing and implementing network policies, RBAC, and automated checks to meet enterprise and SOC 2 compliance standards. Mentoring other engineers, providing insightful code and design reviews, and documenting platform features and architectural decisions to foster a culture of collaboration and knowledge sharing. … Alex from our People team 30 min technical background call with one of our engineers. Following this, you might receive a small take home assignment/programming task (max 2 - 3h effort) related to our open source platform. This is your chance to prove your skill! Complete the assignment and review together with the CTO Meet the founders Culture … fit call with team members Offer Our process also includes reference and background checks. We aim to respond or provide feedback in 2 or 3 days between each stage of the process. We're usually hiring through Deel as our Employer of Record, except for Germany or Florida where we're hiring directly. WunderGraph is an equal opportunity workplace More ❯

sector, based in London, on a permanent basis paying up to £65,000 plus great benefits. This role offers hybrid working with an expectation to be in the office 2-3 days per week. You’ll be joining a technical team focused on strengthening cloud security and ensuring compliance across Microsoft Azure environments. This role will involve hands-on … essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working More ❯

sector, based in London, on a permanent basis paying up to £65,000 plus great benefits. This role offers hybrid working with an expectation to be in the office 2–3 days per week. You’ll be joining a technical team focused on strengthening cloud security and ensuring compliance across Microsoft Azure environments. This role will involve hands-on … essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working More ❯

security requirements in digital health, life sciences, or FDA-regulated software environments Proven track record managing security and compliance under HIPAA, FDA, and NIST Knowledge of GDPR, ISO 27001, SOC 2 and international security standards Experience with cloud-native environments (e.g., AWS), data encryption, identity management, and secure software development practices Strong communicator who can translate security priorities More ❯

operations, from sprint planning to release cycles and incident response. Security & Compliance: Ensure the platform meets industry best practices around security, data privacy (e.g., GDPR), and compliance standards (e.g., SOC 2, ISO 27001). Stakeholder Communication: Act as a bridge between technical and non-technical teams, including reporting to the board and investors. Profile The CTO will have More ❯

Microsoft Purview, Compliance Manager and related compliance tools - essential Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working More ❯

and non-technical stakeholders. Adaptive, proactive, and grounded in high-integrity problem solving. Bonus Qualifications Understanding of European regulations (e.g. MiFID II, GDPR, CASS). Familiarity with ISO 27001, SOC 2, or similar frameworks. Experience with Agile, Scrum, MSP, or software product lifecycle knowledge. Enhanced leave - 38 days inclusive of 8 UK Public Holidays Private Health Care including More ❯

access control mechanisms implemented on the firms AI products to ensure they are fit for purpose. Compliance & Governance Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, SOC 2) and any emerging AI regulations (e.g., ISO 42001, EU AI Act, UK AI Code of Conduct, GDPR) and ethical guidelines. Standardise a control framework for any AI More ❯

control mechanisms implemented on the firm's AI products to ensure they are fit for purpose. Compliance & Governance Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, SOC 2) and any emerging AI regulations (e.g., ISO 42001, EU AI Act, UK AI Code of Conduct, GDPR) and ethical guidelines. Standardise a control framework for any AI More ❯

in SaaS architecture, especially as it relates to multi-tenancy, secure integrations, or search infrastructure. Previous work on global or multi-region product rollouts with compliance considerations (e.g., GDPR, SOC 2, ISO 27001). Why You'll Love Working at Actionstep Build products that power the world's most impactful legal work. Work in a collaborative, mission-driven More ❯

XDR, Purview, Entra ID, Azure Policy. - Hands-on experience integrating or piloting AI agents or LLMs in operational workflows. - Knowledge of compliance standards such as NIST, HIPAA, FedRAMP, PCI, SOC2, or HITRUST. - Security certifications such as SC-200, GCSA, or equivalent. Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry More ❯

or data engineering roles-especially in settings that integrate governance tightly into data platform design. Familiarity with privacy-by-design , data minimization , and regulatory standards including GDPR, ISO 27001, SOC 2, and PCI DSS. Strong analytical and communication skills - capable of translating technical, regulatory, and business requirements into actionable solutions across teams. What We Offer: Fully remote and More ❯

least two backend languages i.e. Python, Node.js, Go - Familiar with frontend frameworks i.e. React, Angular, Vue.js - Strong knowledge of security scanning, secrets management, IAM policies, and compliance frameworks (ISO27001, SOC 2, CIS Benchmarks). - Proven ability to lead technical initiatives, mentor others, and collaborate with distributed teams. Experience Requirements Deep experience with infrastructure-as-code (Terraform, Pulumi), CI More ❯

and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

or desktop apps with Tauri/Electron. Familiarity with Kubernetes, CI/CD pipelines, and cloud infra (AWS/GCP/Azure). Exposure to enterprise authentication (SAML, SCIM), SOC2/GDPR compliance, or financial-grade security. Prior work in AI/ML product surfaces, data visualization, or developer-tool UX. Open-source contributions, tech talks, or blogging that showcase More ❯

updated on zero-day vulnerabilities and emerging threats. Maintain dashboards and reports on vulnerability trends, KPIs, and SLAs. Update documentation to meet compliance standards like ISO 27001, PCI DSS, SOC 2, and NIST. Define scanning schedules, thresholds, and automation opportunities. Collaborate with DevSecOps and product teams to integrate security into CI/CD pipelines. Assess new tools and … threat contextualization and threat intelligence application. Interview Process Our interview process is conversational and designed for mutual understanding. It typically involves: Stage 1: 45-minute chat with BISO Stage 2: 60-minute interview with peers Stage 3: Final interview with CTO or Deputy CTO Benefits include 33 days of holiday, extra days for birthdays, flexible leave options, volunteering time More ❯

of network security protocols and best practices. Scripting and automation experience (e.g. Python). Proven experience with incident response and threat mitigation. Familiarity with security compliance frameworks (ISO 27001, SOC 2, etc.). Security certifications (e.g. Security+, CISSP, or equivalent) are a plus. You'll Thrive If You Are: Comfortable taking ownership and working autonomously in a high More ❯

with the business to, supporting risk assessments, mitigation strategies, and reporting. Information Security: Lead the legal and compliance aspects of Prolific's information security programme, including ISO 27001 and SOC2 standards. Maintain Prolific's information security certifications. Closely collaborate with the tech team to ensure robust information and cyber security. Corporate Governance: Manage corporate governance, including board and shareholders approvals More ❯

with the business to, supporting risk assessments, mitigation strategies, and reporting. Information Security: Lead the legal and compliance aspects of Prolific's information security programme, including ISO 27001 and SOC2 standards. Maintain Prolific's information security certifications. Closely collaborate with the tech team to ensure robust information and cyber security. Corporate Governance: Manage corporate governance, including board and shareholders approvals More ❯

counsel and manage legal spend; Support on customer contracts, sales processes, and commercial compliance; Monitor evolving international regulatory and privacy environments and support with our audit processes (GDPR, ISO, SOC2, etc.). Business operations Build internal operational processes to improve speed, clarity, and accountability; Own planning processes (e.g. annual planning, KPIs, hiring plan, budgets); Partner with the CEO and functional More ❯