101 to 125 of 156 SOC 2 Jobs in the UK

Qualifications and experience/Relevant Information Security certification such as CISSP, CISA, CISM, GSEC is advantageous/Familiar with regulatory and compliance standards; ISO27001, SOC2, PCI DSS/2+ years experience working as an information security professional within a medium to large sized global organisation/Solid understanding of security More ❯

tools such as SIEM, EDR/XDR, Firewalls, IDS/IPS, DLP, and IAM solutions. Working knowledge of security frameworks: ISO 27001, NIST, CIS, SOC 2, GDPR, GXP, etc. Experience in cloud security Proficient in threat modeling, penetration testing, vulnerability management, and security incident response. Demonstrated ability to More ❯

Actions, and Kubernetes to create efficient, scalable systems. Ensuring the platform meets rigorous security standards, with compliance certifications including ISO 27001, PCI-DSS, and SOC 2. Working with high-availability systems using Azure SQL and MongoDB. What We Are Looking For Experience with core technology stack, especially C#. A More ❯

ll be responsible for leading our Governance, Risk and Compliance programme, ensuring we achieve and maintain industry best practices and standards such as ISO27001, SOC2 and others as Cloudsmith expands and meets its customers' requirements. Additionally, you will be responsible for ensuring the secure configuration, hardening, and monitoring of our … Cloudsmith utilises are also adhering to best practices. Key Responsibilities Governance, Risk and Compliance Help Cloudsmith maintain and expand its regulatory Frameworks, including ISO27001, SOC2 and other industry-leading standards, to define our security-first best practices and lead by example for our customers. (Utilising Vanta) Lead Vendor Security engagements … unifying our security configuration, deployment, monitoring and response utilising seamless integrations between services and automated playbooks to reduce response times to potential threats - our SOC, SIEM and SOAR initiatives Internal Training and Readiness Assist in designing and leading regular security training of our staff to maintain best in class More ❯

with enterprise organizations. Deep understanding of the cybersecurity landscape, vulnerability management, and security testing methodologies. Experience with enterprise security programs, compliance frameworks (ISO 27001, SOC 2, GDPR, etc.), and risk management. Strong business acumen and ability to translate technical concepts into business value for C-level executives. Excellent … commission. 26 days of annual leave and Bank Holidays Top-notch Private Healthcare and Health Cash Plan Hybrid working model Initial home office budget ️ 2-month work abroad policy Great training and yearly learning budget Employer pension scheme ️ Enhanced maternity pay Social activities and team outings Referral bonus Employee More ❯

with customers' RFIs and RFPs; Obtain at least CII certification to appreciate how the insurance industry works. Knowledge and Experience: Essential: A minimum of 2 years in an infrastructure, SysOps or Security role; Active Directory management; NTFS permission & Group Policy configuration & management; Microsoft RDS Architecture (RemoteApp/RDWeb Gateway … Information Security specialism. Desirable: IaaS and PaaS environments; SQL; VMWare Cloud Director; SharePoint; Windows IIS security & management; Security & GDPR compliance (ISO27001/ISO27032/SOC 2); AWS ecosystem, especially AppStream 2.0. More ❯

and Improve Compliance Programmes: manage internal control evaluations and testing to ensure adherence. Ensure compliance with industry standards such as DORA, ISO 27001, and SOC 2. Coordinate responses to internal and external audits, and facilitate independent security assessments, including third-party penetration tests. Develop and Implement Security Policies: create … answering complex compliance questionnaires, ideally from Banks or highly regulated organisations Experience in developing and implementing information security policies, standards and procedures Completed a SOC 2 or ISO27001 certification process for at least two different organisations Experience implementing and managing a GRC automation tool Have familiarity with security More ❯

Good knowledge of technical controls and privacy-enhancing technologies (PETs) and principles like encryption, anonymization, and pseudonymization. Good understanding of ISO 27001, NIST CSF, SOC 2, and best practices in system hardening, access management, and incident response. A combination of in-house company experience and law firm experience More ❯

compliance with DORA’s outsourcing requirements , including due diligence, contract oversight, and continuity planning. Audit & Assurance: Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes or documentation. Risk Management: Maintain the enterprise risk More ❯

compliance with DORA’s outsourcing requirements , including due diligence, contract oversight, and continuity planning. Audit & Assurance: Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes or documentation. Risk Management: Maintain the enterprise risk More ❯

compliance with DORA's outsourcing requirements , including due diligence, contract oversight, and continuity planning. Audit & Assurance: Participate in internal/external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes or documentation. Risk Management: Maintain the enterprise risk More ❯

risk management framework and ensuring key risks are reported to the CISO. Performing regular internal security audits aligned to ISO/IEC 27001 and SOC2 controls. Developing our security awareness training programme aligned with internal security policies. Comfortable engaging with customers and internal stakeholders to discuss security related matters. Skills More ❯

risk management framework and ensuring key risks are reported to the CISO. Performing regular internal security audits aligned to ISO/IEC 27001 and SOC2 controls. Developing our security awareness training programme aligned with internal security policies. Comfortable engaging with customers and internal stakeholders to discuss security related matters. Skills More ❯

restore trust in internet businesses by enabling companies to improve and prove their security.From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making More ❯

information security policies, standards, and guidance in collaboration with stakeholders. Ensure compliance with industry standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC 2. Coordinate responses to internal and external audits and liaise with key stakeholders. Develop and deliver security policy awareness and training programs. Assess policy More ❯

our overall security posture. What You’ll Do: Monitor threats and respond to incidents Run vulnerability scans and support remediation Help with compliance (ISO27001, SOC 2, FCA) Collaborate with DevOps to embed security in our pipeline Raise security awareness across the company What You Bring: Experience in a … AWS/Azure), firewalls Knowledge of security frameworks and regulations (FCA, GDPR) Certs like Security+, CEH, or CISSP are a plus Perks: Hybrid work (2–3 days in-office) Learning budget + paid certs Bonus, pension, private health, and more 🚀 Ready to protect the future of fintech? Apply now More ❯

our overall security posture. What You’ll Do: Monitor threats and respond to incidents Run vulnerability scans and support remediation Help with compliance (ISO27001, SOC 2, FCA) Collaborate with DevOps to embed security in our pipeline Raise security awareness across the company What You Bring: Experience in a … AWS/Azure), firewalls Knowledge of security frameworks and regulations (FCA, GDPR) Certs like Security+, CEH, or CISSP are a plus Perks: Hybrid work (2–3 days in-office) Learning budget + paid certs Bonus, pension, private health, and more 🚀 Ready to protect the future of fintech? Apply now More ❯

Experience working on an Agile team Nice to have Experience in multi-cloud and hybrid environments IAM implementations Understanding of compliance controls such as SOC2 and GDPR IAM knowledge on other clouds such as Azure and AWS GCP certifications such as Professional Cloud Architect Experience working with Okta Scripting experience More ❯

adoption . Governance, Compliance & Best Practices Establish CI/CD pipelines, DevOps practices , and test automation for Salesforce deployments. Ensure compliance with GDPR, HIPAA, SOC2, and industry regulations . Drive the adoption of the Salesforce Well-Architected Framework and best practices. More ❯

Lead and manage internal IT systems, infrastructure, and information security practices. Oversee compliance with recognised standards such as GDPR , ISO27001:2022 , Cyber Essentials , and SOC2 Type II . Coordinate audit readiness, compile evidence, liaise with auditors, and address any gaps or risks. Collaborate with engineering teams to embed secure coding More ❯

Lead and manage internal IT systems, infrastructure, and information security practices. Oversee compliance with recognised standards such as GDPR , ISO27001:2022 , Cyber Essentials , and SOC2 Type II . Coordinate audit readiness, compile evidence, liaise with auditors, and address any gaps or risks. Collaborate with engineering teams to embed secure coding More ❯

clients, challenge assumptions diplomatically, and influence senior stakeholders Provide guidance across security frameworks and standards such as ISO27001, NIST CSF, PCI-DSS, Cyber Essentials, SOC 2 Drive security maturity and risk management initiatives tailored to each client's needs Understand buyer behaviour and how organisations really work - beyond More ❯

owned by the camp, ensuring appropriate tradeoffs are being made. Take accountability for meeting all security best practices, government regulatory requirements and ISO/SOC2 compliance for all the assets owned by the camp. You have Extensive experience with platform engineering in fast-growth tech companies A solid understanding of More ❯

owned by the camp, ensuring appropriate tradeoffs are being made. Take accountability for meeting all security best practices, government regulatory requirements and ISO/SOC2 compliance for all the assets owned by the camp. You have Extensive experience with platform engineering in fast-growth tech companies A solid understanding of More ❯

It's easier and better to go through StackOne than to connect to the tools directly. Extreme security and privacy : We will soon be SOC2 certified, we have data residency options for GDPR compliance, and more features to protect your customers' data. More ❯