151 to 175 of 724 SOC 2 Jobs in the UK

the GRC Information Security Manager. Responsibilities: Maintain compliance tracking capabilities to help ensure adherence with Turnitin’s security program and industry standards such as NIST CSF, NIST 800-53, SOC 2, TX-RAMP and PCI DSS. Conduct risk and compliance assessments, audits, and risk evaluations to identify potential risk and compliance gaps. Lead preparation and audit activities required … to maintain our SOC 2 Type 2. Collaborate with internal teams and external auditors for audit and compliance reviews. Collaborate with sales and customer support teams to respond to security questionnaires and security posture questions from customers. Support TPRM Program and conduct third-party risk assessments. Complete user access reviews. Administration of GRC platform. Participate in the development … to Information Security or Cybersecurity Compliance. Professional certification such as CCSK, AWS Cloud Practitioner, or other related industry certification. Familiarity with cybersecurity frameworks and regulatory standards such as NIST, SOC 2, TX-RAMP, and PCI DSS. Familiarity of risk management and security best practices. Experience with assessing security controls, risk mitigation strategies, and audit procedures. Understanding of concepts More ❯

building reusable and maintainable modules for our teams. Embedding security best practices into the platform by designing and implementing network policies, RBAC, and automated checks to meet enterprise and SOC 2 compliance standards. Mentoring other engineers, providing insightful code and design reviews, and documenting platform features and architectural decisions to foster a culture of collaboration and knowledge sharing. … Alex from our People team 30 min technical background call with one of our engineers. Following this, you might receive a small take home assignment/programming task (max 2 - 3h effort) related to our open source platform. This is your chance to prove your skill! Complete the assignment and review together with the CTO Meet the founders Culture … fit call with team members Offer Our process also includes reference and background checks. We aim to respond or provide feedback in 2 or 3 days between each stage of the process. We're usually hiring through Deel as our Employer of Record, except for Germany or Florida where we're hiring directly. WunderGraph is an equal opportunity workplace More ❯

The Business Intelligence Developer will be responsible for working with fund accounting professionals and technology organizations to build, maintain, and complete customized reporting statements. The position requires at least 2 years of experience using QlikView version 11 or higher, with proven expertise in the following areas: Good knowledge of SQL, relational databases, and Dimensional Modeling Experience working with large … experience across various fund types. Key facts include: Over $1 Trillion assets under administration Servicing nearly all significant investors in the asset class Institutional-grade infrastructure with SSAE 18 (SOC-1, Type 2) certification Industry-leading experienced team More ❯

Information Security Excellent interpersonal, written and oral communication skills, and ability to assimilate easily into teams Strong technical skills and a working knowledge of SOX IT General Controls, COSO, SOC 1, and SOC 2 Awareness of ISO 27001, NIST standards, HIPAA, FAIR, and other relevant standards Effective analytical and critical thinking abilities Entrepreneurial nature, self-motivated, ethical More ❯

and CIS Controls . Integrate security testing into the CI/CD pipeline to detect and fix vulnerabilities early. Ensure compliance with industry security regulations (PCI DSS, GDPR, HIPAA, SOC 2). Use PTES, MITRE ATT&CK, and CVSS scoring for standardized security assessments. Collaborate with developers and QA teams to build comprehensive security test strategies . Provide More ❯

to embed security into CI/CD pipelines. Lead the deployment of zero-trust architectures, security automation, and monitoring solutions. Support security incident detection, investigation, and response alongside the SOC and Red Team. Threat & Vulnerability Management Perform regular security assessments, vulnerability scans, and penetration tests, prioritizing remediation efforts. Develop automated remediation for common security risks and misconfigurations. Monitor and … analyze security logs and alerts, fine-tuning detections and response playbooks. Risk & Compliance Support Work with GRC and compliance teams to implement security controls aligned with ISO 27001, NIST, SOC 2, and GDPR. Support security reviews for third-party vendors, M&A due diligence, and cloud risk assessments. Ensure compliance with regulatory frameworks and internal security policies. Required … network security, and automation tools. Familiarity with scripting (Python, PowerShell) and infrastructure-as-code (Terraform, Ansible). Deep understanding of vulnerability management, penetration testing, and security hardening. Knowledge of SOC processes, incident response, and forensics. Strong grasp of zero-trust architectures, identity security, and secure DevOps practices. Ability to work cross-functionally with IT, DevOps, compliance, and engineering teams. More ❯

to embed security into CI/CD pipelines. Lead the deployment of zero-trust architectures, security automation, and monitoring solutions. Support security incident detection, investigation, and response alongside the SOC and Red Team. Threat & Vulnerability Management Perform regular security assessments, vulnerability scans, and penetration tests, prioritizing remediation efforts. Develop automated remediation for common security risks and misconfigurations. Monitor and … analyze security logs and alerts, fine-tuning detections and response playbooks. Risk & Compliance Support Work with GRC and compliance teams to implement security controls aligned with ISO 27001, NIST, SOC 2, and GDPR. Support security reviews for third-party vendors, M&A due diligence, and cloud risk assessments. Ensure compliance with regulatory frameworks and internal security policies. Required … network security, and automation tools. Familiarity with scripting (Python, PowerShell) and infrastructure-as-code (Terraform, Ansible). Deep understanding of vulnerability management, penetration testing, and security hardening. Knowledge of SOC processes, incident response, and forensics. Strong grasp of zero-trust architectures, identity security, and secure DevOps practices. Ability to work cross-functionally with IT, DevOps, compliance, and engineering teams. More ❯

fixing, code maintenance. Ensure that our services communicate with each other seamlessly, have minimal downtime, and recover quickly. Make sure we respect any software security norms (Kiln is a SOC 2 Type 1 and Type 2 company). Actively suggest continuous improvement of Kiln's platform and engineering practices. Communicate with other Kiln teams to help them … and smart contracts - check our Tech Blog and Open-Source Contribution Fluent (written and spoken) in French and English. Nice-to-have: Previous experience working within a certified environment (SOC2, ISO 27001, PCI DSS, HIPAA ) Genuine interest in Web3, blockchain, cryptocurrency and smart contracts - check our Tech Blog and Open-Source Contribution About Kiln: Kiln is the leading enterprise-grade More ❯

Systems Security Professional (CISSP) or equivalent IT Risk, Governance, Security Strategy certification. - Digital transformations experience to drive process improvements. - A good understanding of regulatory landscape (CSSF, DORA, EBA, NIS2, SOC 2) - Experience with cloud platforms risk management, cloud security, and compliance, including IAM, cloud incident response, and resilience testing. - Master's degree or equivalent. Amazon is an equal More ❯

Systems Security Professional (CISSP) or equivalent IT Risk, Governance, Security Strategy certification. - Digital transformations experience to drive process improvements. - A good understanding of regulatory landscape (CSSF, DORA, EBA, NIS2, SOC 2) - Experience with cloud platforms risk management, cloud security, and compliance, including IAM, cloud incident response , and resilience testing. - Master's degree or equivalent. Amazon is an equal More ❯

Tracking & Optimization : Monitor and optimise costs associated with infrastructure and services, ensuring alignment with budgetary goals. Compliance & Audits Compliance : Manage and contribute to recurring annual compliance activities, including ISO27001 and SOC2 audits, in collaboration with the respective audit teams and third-party advisors. Security: Ensure security best practice including identifying potential threats and vulnerabilities, designing secure software systems, and implementing … vulnerability assessment, IAM, SIEM and incident response. Skills in system monitoring, performance tuning, and troubleshooting infrastructure and micro-service-based architectures. Understanding of compliance frameworks like ISO 27001 and SOC 2, and experience in managing audits and compliance activities. Familiarity with incident response processes and tools, ensuring timely resolution of issues. Benefits: Competitive salary DOE 25 days annual More ❯

compensating controls to allow for business to continue while protecting BCG's assets. Partnering with cross-functional teams to ensure compliance to industry and company standards including ISO 27001, SOC2, NIST, GDPR, and DPO standards. Updating job knowledge by tracking and understanding emerging practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations. More ❯

in Identity & Access Management area Manage business relationships, creating awareness of security posture Provide additional support to the Global Cyber Risk & Assurance team where required Experience: Applicants should have 2-5 years experience in cyber security or technology risk management Knowledge of information security standards and frameworks (., ISO/IEC 27001/27002, PCI-DSS, NIST Cybersecurity Framework … or attestation reports (., SOC 1/2) Understanding of risk management process and principles. Proficient use of personal computers and Microsoft Office Suite Ability to multitask and manage competing priorities Excellent time management and organizational skills Excellent interpersonal and conflict management skills Excellent written and verbal communication skills Qualifications: Minimum Requirements: Completed a minimum of two years … of study pursuing an Associates, Bachelors, or Master’s degree focusing in Information Technology or a STEM subject, and be on track to achieve a 2:1. Preferred courses include; Information Security, Information Technology, Computer Forensics, Ethical Hacking or other subjects related to information technology or information security. The candidate might have or might be interested in looking certifications More ❯

in secure coding practices to reduce vulnerabilities proactively. Governance, Compliance & Training Ensure that application security architecture and practices comply with relevant regulatory and industry standards such as PCI-DSS, SOC 2, ISO 27001, and GDPR. Lead efforts to prepare for and support external and internal audits by providing comprehensive documentation, risk assessments, and remediation evidence. Develop and deliver … identity management. Proficient in at least one programming or Scripting language such as Python, Java, JavaScript, or Go. Solid understanding of FinTech compliance requirements and standards including PCI-DSS, SOC 2, GDPR, and ISO 27001. Excellent communication and collaboration skills, capable of working with diverse teams and stakeholders. Nice to Have Industry certifications such as Certified Secure Software More ❯

cloud-first platform for our clients. You'll be the go-to person for everything IT and InfoSec, from laptop imaging and VPN issues to AWS IAM policies and SOC2 audit prep. You'll be empowered to make fast, informed decisions that directly improve how our team works and how our customers stay secure. What You Will Do Run Internal … vendor tools, etc. Everything from config to compliance. Own InfoSec: Be accountable for our cybersecurity posture. Define controls, drive implementation, and respond to incidents. You'll guide us to SOC2 compliance and beyond. Support the Business: Be the hands-on enabler of cross-functional productivity - ensuring engineers, product managers, and business teams can work securely and efficiently. Build + Scale … and cybersecurity, ideally in fast-paced, cloud-native environments. Hands-on expertise in AWS/Azure, IAM, Intune/Autopilot, device security, and endpoint protection. Extensive experience with zscaler SOC2 experience—preparation, execution, audit remediation, and vendor coordination. Comfort with modern security tools: SSO, MDM, EDR, SIEM, password managers, VPN, etc. Ability to prioritize, execute, and deliver without handholding. Willingness More ❯

Nice To Haves Experience with Kubernetes, particularly during platform transitions Exposure to platform-as-a-product approaches or developer portals Familiarity with compliance frameworks such as ISO 27001 or SOC 2 Knowledge of AWS multi-account setups, Control Tower, or advanced IAM practices A background in cloud cost optimisation or FinOps practices What’s it like to work … days ago Greater London, England, United Kingdom 3 months ago London, England, United Kingdom 1 day ago London, England, United Kingdom 1 month ago London, England, United Kingdom 2 weeks ago Global Head of Data Engineering - £250k tc London, England, United Kingdom 2 months ago London, England, United Kingdom 4 days ago London, England, United Kingdom 3 days … ago London, England, United Kingdom 3 days ago London, England, United Kingdom 2 weeks ago London, England, United Kingdom 3 days ago London, England, United Kingdom 1 week ago London, England, United Kingdom 3 weeks ago London, England, United Kingdom 3 days ago Greater London, England, United Kingdom 2 weeks ago London, England, United Kingdom 1 week ago More ❯

security posture. Analytical skills to interpret data and provide insights into threats facing the bank. Awareness of common Cyber Incidents and Security breaches (OWASP). Knowledge or experience in SOC2, ISO 27001, PCI DSS, and GDPR. Previous experience working within an organisation's Cyber Incident Response function. Hands-on experience with Information Security tools. Please contact me if you would More ❯

implement fixes, and draft communication of fixes or mitigations, including incident management. Application of regulations and adherence to standards: Ensure compliance with GDPR , HIPAA, GxP, ISO 27001, ISO 27017, SOC 2, EU AI Act and Data Act. It would be a plus if you also possess previous experience in: AWS Security Specialty. Databricks security and compliance configuration. Familiarity More ❯

as office spaces, data centres and cloud. Implement and conclude the security controls maturity assessments against industry standards such as the NIST Cyber Security Framework, ISO27001/2, SOC2, etc. Review and appropriately respond to regulatory and legislative matters and produce and present risks and risk postures/cyber maturity to senior/executive bodies. Build knowledge of business More ❯

and Security Engineering teams. The successful candidate will play a crucial role in continuing to improve organizational maturity in line with our existing ISO27001 and ISO22301 certifications and implementing SOC2 controls. This role demands an experienced, highly skilled, and motivated professional committed to advancing our security strategies to protect critical assets and ensure operational resilience. KEY DUTIES AND RESPONSIBILITIES • Manage … and Vulnerability Management. • Conduct regular 1-2-1s, Performance Reviews, and Personal Development Plans of team members. • Develop and implement security policies, processes, and procedures to comply with SOC2 and ISO27001 standards. • Participate in Steering groups for Identity and Access Management and Data Protection • Setting and aligning team objectives and tasks to help achieve the overall Information Security and … Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials. • Proven experience in managing security operations teams in a similar industry. • Familiarity with SOC2, PCI-DSS, ISO22301 and ISO27001 standards. Desirable Qualifications: • Bachelor’s or masters degree in CyberSecurity, Computer Science, Information Technology, or a related field • Cloud security qualifications such as ISC2 CCSP More ❯

similar to integrate with IAM APIs. Experience implementing IGA solutions , including onboarding/offboarding processes, role modelling, SoD, and recertification. Experience with identity-related regulatory requirements (ISO 27001, GDPR, SOC 2, etc.). Excellent analytical, problem-solving, and communication skills with a collaborative mindset. SPORTRADAR Sportradar is a global leader in understanding and leveraging the power of sports More ❯

to the customer + Identify Data quality issues and have the fixes in place. Technical Skills: Experience and understanding of secure development practices include OWASP guidelines/top 10, SOC 2, and NCSC cloud security principles. Experience in data and orchestration tools including some of dbt, Apache Airflow, Azure Data Factory. Experience in programming languages including some of More ❯

subject area. Previously worked within LSEG. Demonstrable record of people management Strong solid understanding of information security compliance frameworks, standards, and auditing practices, such as ISO 27001, 9001, 22301, SOC 1 or 2, PCI DSS 4.0, NIST, Swift and Cyber Essentials Plus ensuring continued certification and attestation. ABOUT US: LSEG (London Stock Exchange Group) is more than a More ❯

Proficiency in Python, PowerShell, and other scripting languages Experience in a Security Operations role within a complex environment Understanding of cybersecurity standards and frameworks (ISO27001, NIST800-53, CIS, OWASP,SOC2) Equal Opportunity Employer At WTW, we believe difference makes us stronger. We want our workforce to reflect the different and varied markets we operate in and to build a culture More ❯

cloud-first platform for our clients. You'll be the go-to person for everything IT and InfoSec, from laptop imaging and VPN issues to AWS IAM policies and SOC2 audit prep. You'll be empowered to make fast, informed decisions that directly improve how our team works and how our customers stay secure. What You Will Do Run Internal … vendor tools, etc. Everything from config to compliance. Own InfoSec: Be accountable for our cybersecurity posture. Define controls, drive implementation, and respond to incidents. You'll guide us to SOC2 compliance and beyond. Support the Business: Be the hands-on enabler of cross-functional productivity - ensuring engineers, product managers, and business teams can work securely and efficiently. Build + Scale … and cybersecurity, ideally in fast-paced, cloud-native environments. Hands-on expertise in AWS/Azure, IAM, Intune/Autopilot, device security, and endpoint protection. Extensive experience with zscaler SOC2 experience-preparation, execution, audit remediation, and vendor coordination. Comfort with modern security tools: SSO, MDM, EDR, SIEM, password managers, VPN, etc. Ability to prioritize, execute, and deliver without handholding. Willingness More ❯