1 to 25 of 49 SOC 2 Jobs in the UK

designing and implementing cutting‐edge security and compliance programs. As a fast‐growing startup, we specialize in a wide range of frameworks—including SOC 2, ISO 27001, GDPR, CMMC, NIST 800-171, NIST 800-53, and FedRAMP—empowering companies to meet regulatory requirements and enhance their cybersecurity posture … build trust, navigate complex accounts, and deliver an outstanding client experience — while also bringing deep expertise in cybersecurity compliance frameworks such as SOC 2, ISO 27001, and NIST CSF. The successful candidate will be able to come up to speed quickly, integrate into the organization, and take ...

chaos to strategic partnerships Compliance & Security Transform compliance from a checkbox exercise into a sales accelerator that wins enterprise deals Own and execute our SOC 2 certification end‐to‐end with efficient, automated evidence gathering Turn RFI and security questionnaire responses into a competitive advantage—fast, thorough, repeatable … people) Able to manage and procure upwards of 50+ vendors, owning a budget in the 7 digits Track record implementing and maintaining compliance frameworks (SOC 2, ISO 27001, GDPR) Experience with enterprise sales support in a B2B SaaS company—you’ve answered RFIs and security questionnaires Proven ability ...

technology or a listed environment Strong experience managing risk registers, control frameworks, remediation plans and executive reporting Working knowledge and experience supporting or managing SOC 2, ISO 27001/27002, NIST CSF or similar certification processes Practical understanding and experience of global data protection and supplier risk requirements … horizon scanning across jurisdictions Reduce cyber risk exposure and strengthen cybersecurity governance in partnership with the CISO, aligning to global standards e.g. ISO 27001, SOC 2 Contribute to Board, Audit Committee and Annual Report risk disclosures Risk & Compliance Operations: Lead the Group’s risk and compliance programme, ensuring ...

policies, covering endpoint security, access management, and controls suited to a remote, globally distributed workforce Maintain and build upon our existing certifications (ISO 27001, SOC 2 Type II), and drive expansion of SOC 2 coverage across our full product portfolio Ensure compliance with GDPR and applicable … SaaS or technology environment Strong understanding of application security and secure software development Strong working knowledge of compliance frameworks including ISO 27001 and SOC 2, with hands‐on experience managing or achieving these certifications; solid understanding of GDPR compliance across multiple jurisdictions Strong communication skills with the ability ...

already HIPAA and ISO27001 certified, we’re heading into a PCI DSS audit shortly, and later this year we’ll have GDPR and SOC 2 Type II coming up. The role is based in our dog‐friendly office in London: The Bower, 207‐122, Old Street, London EC1V … 9NR. What you’ll own Audits and certifications Run the PCI DSS audit to completion, then GDPR and SOC 2 Type II this year Serve as the main point of contact for external auditors—scoping, evidence, walkthroughs, findings Maintain HIPAA and ISO 27001 compliance between recertifications Compliance operations ...

Azure, AWS, GCP) Application security and OWASP Top 10 Identity and access management (IAM, MFA, PAM, Zero Trust) Security frameworks including NIST, ISO 27001, SOC 2, PCI-DSS, GDPR Support secure design discussions with architects and engineers Pipeline and commercial support Support qualification and shaping of early-stage … cyber security, cloud security, or enterprise security domains Experience working with Azure, AWS, or GCP Knowledge of security frameworks such as NIST, ISO 27001, SOC 2, GDPR, OWASP Ability to engage credibly with both technical teams and senior stakeholders Experience working alongside architects, engineers, and delivery teams What ...

external platform access Managing relationships with third-party security providers and ensuring recommendations are delivered effectively Supporting compliance initiatives across standards including ISO 27001, SOC 2 and NIST Acting as an escalation point for significant security incidents when required Driving security awareness and embedding best practice across … operational teams Hands-on scripting or automation experience using Python, Bash or similar tools Experience supporting audits, certifications and compliance frameworks including ISO 27001, SOC 2 and NIST Knowledge of security methodologies such as MITRE ATT&CK Excellent communication and stakeholder management skills Experience operating within high-growth ...

Aurora’s security controls are effective, proportionate and aligned to business, customer and regulatory requirements Lead security assurance and certification activities, including ISO 27001, SOC 2, and related audit readiness, while contributing to the continued evolution of Aurora’s wider security and compliance operating model Partner with Legal … structured, risk‐based way Significant experience managing external audits, customer assurance and recognised security standards/certifications such as ISO 27001 and SOC 2 Experience influencing senior stakeholders and communicating clearly at executive level, including the ability to translate technical risk into clear business decisions and trade‐offs ...

vulnerabilities from audits, penetration tests, and assessments Ensure timely closure of findings with clear, audit-ready evidence Deliver and maintain technical controls aligned with SOC 2 and ISO 27001 Support customer, supplier, and contractual security assurance activities Own and enhance the security awareness programme, including phishing simulations Manage … Defender, M365) Experience implementing Zero Trust, identity, and endpoint security controls Track record of remediating audit and penetration test findings Solid understanding of SOC 2, ISO 27001, and security control frameworks A proactive, delivery-focused mindset with confidence to challenge and influence stakeholders The successful Cyber Security Engineer ...

subject-matter experts, chase inputs, and maintain a clear audit trail of reviews and approvals. Compile and maintain evidence packs including: Policies and attestations, SOC 2 and compliance materials, Diagrams and Trust Centre links Manage Trust Centre access for prospects and customers: Triage access requests, Grant or revoke … Docs, Sheets, Slides, Drive), Notion, shared drives, and Q&A libraries (or equivalents). Preferred Experience Exposure to SaaS security and IT questionnaires (e.g. SOC 2, ISO 27001, cloud hosting, IAM/SSO). Experience using RFP platforms or response libraries (e.g. Responsive). Familiarity with AI-assisted ...

open source compliance platform in the world. We've built an AI-native platform that reduces the time it takes to get compliant with SOC 2, ISO 27001, HIPAA and GDPR from months to just hours. We're looking for account executives who are hungry, ready … product/customer success team Represent the Comp AI team at events, conferences, and in-customer meetings Bonus points: Knowledge of compliance frameworks like SOC 2, ISO 27001, HIPAA, GDPR Why us: It's not often you'll find a funded startup that's hyper scaling - every single ...

software lifecycle Oversee architecture and delivery across modern microservices and cloud-native applications Ensure engineering compliance with recognised security and governance standards including SOC 1 , SOC 2 , and ISO frameworks Manage Agile delivery processes using JIRA Collaborate with stakeholders to define technical strategy and product direction Champion ...

Code: Bridging the gap between technical execution and regulatory requirements. You will build the automated systems that provide real‐time evidence for frameworks like SOC 2, ISO 27001 & PCI ensuring we stay compliant without manual overhead You will be a key member of our growing Security Engineering team … building the systems that check them for you Security as Code: Design and maintain custom security tooling in Go to automate evidence collection for SOC2/ISO 27001 and remediation of security alerts Infrastructure & IAM: Write and peer‐review Terraform to manage identity and core infrastructure across AWS and ...

Code: Bridging the gap between technical execution and regulatory requirements. You will build the automated systems that provide real-time evidence for frameworks like SOC 2, ISO 27001 & PCI ensuring we stay compliant without manual overhead. The Team You will be a key member of our growing Security … building the systems that check them for you. Security as Code: Design and maintain custom security tooling in Go to automate evidence collection for SOC2/ISO 27001 and remediation of security alerts. Infrastructure & IAM: Write and peer-review Terraform to manage identity and core infrastructure across AWS and ...

and Docker environments Data Loss Prevention (DLP) and SaaS security governance. Advanced detection engineering or SOAR playbook development. Experience supporting ISO 27001 or SOC 2 audits. Relevant certifications (e.g. CISSP, CISM, GIAC). Workplace & Benefits At Deliveroo we know that people are the heart of the business and ...

cloud security and compliance Own platform‐level security decisions and risk mitigation Ensure secure‐by‐design infrastructure and access controls Support compliance initiatives (SOC 2, ISO:27001) Leadership & Team Development Lead and mentor the DevOps team including DevOps engineers, IT Support and an Information Security Officer Provide technical ...

observability, and operational performance optimization. Ability to independently lead complex infrastructure initiatives with minimal oversight in fast-paced environments. Familiarity with cloud security principles, SOC 2 compliance, zero‐trust architectures, and network security best practices. Experience with Cloudflare technologies, including WAF, CDN, or edge infrastructure services, is considered ...

platforms (Power BI, Looker) Enable predictive modelling and optimisation using modern ML toolkits Security, Compliance & Responsible AI Ensure alignment with enterprise security standards (SOC2, ISO27001, NIST) Champion explainability, bias mitigation, and ethical AI practices Leadership & Talent Build and lead high-performing global teams across AI, data, and automation Foster ...

work in the United Kingdom (Desirable) Experience supporting public sector, defense, or regulated industries (Desirable) Familiarity with compliance frameworks such as ISO 27001, SOC 2, GDPR, NIS2, or UK NCSC security guidance (Desirable) Experience supporting air-gapped or highly secure deployments (Desirable) Existing or eligibility for security clearance ...

Terraform, and cloud security experience. Strong understanding of SRE, observability, incident response, and disaster recovery. Experience operating within regulated environments such as ISO 27001, SOC 2, or GxP. Comfortable balancing strategic leadership with hands-on operational delivery. AWS Solutions Architect - Professional certification required. CKA or CKS certification highly ...

English required. Bonus: Experience with AI/ML systems and associated governance, risk, or compliance controls. Familiarity with additional standards such as ISO 27001, SOC 2, or GDPR‐related technical controls. Experience designing platform‐level shared controls or compliance automation. German and/or French language skills. #J ...

e.g., pen tests, scanning). Experience delivering security awareness and incident exercising programmes. Working knowledge of assurance frameworks and resilience expectations (e.g., ISO 27001, SOC 2, NIST CSF). Candidates should be strongly motivated by BII’s development mission and ideally demonstrate some commitment to development or social ...

deep technical involvement • Engage with strategic customers on architecture and roadmap discussions Governance & Compliance • Ensure alignment with data privacy and financial regulatory standards • Strengthen SOC2, ISO, and enterprise security posture Requirements • 10–15+ years of engineering leadership experience • 5+ years at VP or Director level • Experience scaling B2B SaaS platforms ...

Infrastructure as Code (Terraform or CloudFormation) Proven experience leading cloud migration strategies and implementations Strong understanding of cloud security and compliance frameworks (e.g. CIS, SOC2) Experience with DevOps tooling (e.g. Git, Jenkins, Docker, Kubernetes) Ability to work in fast-paced, client-facing environments Desirable: Multi-cloud experience (AWS, Azure ...

become a change order. Calm under pressure. Auditors, contentious clients, and last-minute scope changes don’t rattle you. Fluency across multiple frameworks (SOC 2 plus at least one of ISO 27001, HIPAA, GDPR, PCI DSS). Bonus Points For Prior experience as a GRC engagement manager, senior ...