26 to 50 of 200 SOC 2 Jobs in the UK

provide actionable feedback to internal teams to enhance documentation and control readiness. Perform security due diligence and ongoing monitoring of Web3/blockchain vendors, including assessing control maturity, reviewing SOC reports, and identifying residual risks. Facilitate external audit activities, coordinating walkthroughs, evidence collection, and response tracking. Identify and analyze gaps in current and new processes, developing and tracking remediation … Hardware Security Modules (HSMs), and Key Management Systems (KMS). Solid understanding of cloud and network security architecture and configurations. Demonstrated experience supporting external audits and assessments, such as SOC 1, SOC 2, ISO 27001, or PCI DSS. Hands-on experience with major cloud platforms (AWS, GCP, Azure) and infrastructure-as-code practices. Proficiency in preparing client More ❯

the Way in Cyber Security Assurance? Robert Half are seeking a dynamic, proactive, and experienced Cyber Security Assurance Manager to join a globally-scaled, fast-paced Security Operations Centre (SOC) environment. In this crucial role, you will ensure that the SOC maintains its commitment to best-in-class standards through internationally recognised security certifications and industry-wide assurance … member in Governance, Risk, and Compliance (GRC) , you will lead certification efforts, influence operational processes, and engage directly with customers and auditors to showcase security credentials that differentiate our SOC from the competition. If you're skilled in blending technical insight with customer-focused communication … while driving compliance excellence, this opportunity is for you! What We're Looking For: Qualifications and Experience: Proven experience delivering and managing cybersecurity certifications (e.g., ISO/IEC 27001, SOC2 Type II, Cyber Essentials Plus, CREST). A strong understanding of SOC operations and security assurance frameworks. Experience engaging with customers during audits and RFP/RFI processes, showcasing More ❯

Endpoint, AWS GuardDuty, WAF, SIEM solutions). Detect, investigate, and respond to security incidents, ensuring timely escalation and resolution. Governance, Risk Compliance Support compliance initiatives such as ISO 27001, SOC 2, and Cyber Essentials Plus by maintaining relevant controls and documentation. Assist with audit readiness and evidence gathering. Ensure data protection and encryption mechanisms meet GDPR and other More ❯

Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Operationalize policy enforcement through automated More ❯

Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Implement automated compliance controls and … to your base salary, your total compensation will include a bonus of up to 30% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children Low $10 (USD) copays for trips to More ❯

security posture assessments, governance framework development, and digital transformation security initiatives. Technical Skills: Professional Security Certifications: CISSP, CISM, or equivalent senior security qualifications Security Frameworks: Deep expertise in ISO27001, SOC 2, CE+, NIST, and other governance frameworks Cloud Security: Advanced knowledge of Azure, Microsoft 365, and cloud security architecture Risk Management: Proven experience developing risk management frameworks and … compliance programs Incident Response: Hands-on experience leading security incident response and forensic investigations Enterprise Security: Understanding of managed security services, SIEM/SOC operations, and security tooling integration Compliance: Knowledge of regulatory requirements, including PCI DSS and industry-specific standards Soft Skills: Executive Communication: Outstanding written and verbal communication skills with the ability to present to board-level More ❯

asset inventories and ensure patching and configuration baselines are followed. Security Governance & Compliance Contribute to maintaining security standards and aligning with frameworks such as ISO 27001, NIST, CIS, or SOC 2. Support audits, evidence collection, and compliance reporting (e.g., GDPR, PCI-DSS). Develop and maintain documentation for policies, procedures, architecture, and runbooks. Collaboration & Knowledge Sharing Work with IT More ❯

asset inventories and ensure patching and configuration baselines are followed. Security Governance & Compliance Contribute to maintaining security standards and aligning with frameworks such as ISO 27001, NIST, CIS, or SOC 2. Support audits, evidence collection, and compliance reporting (e.g., GDPR, PCI-DSS). Develop and maintain documentation for policies, procedures, architecture, and runbooks. Collaboration & Knowledge Sharing Work with IT More ❯

asset inventories and ensure patching and configuration baselines are followed. Security Governance & Compliance Contribute to maintaining security standards and aligning with frameworks such as ISO 27001, NIST, CIS, or SOC 2. Support audits, evidence collection, and compliance reporting (e.g., GDPR, PCI-DSS). Develop and maintain documentation for policies, procedures, architecture, and runbooks. Collaboration & Knowledge Sharing Work with IT More ❯

asset inventories and ensure patching and configuration baselines are followed. Security Governance & Compliance Contribute to maintaining security standards and aligning with frameworks such as ISO 27001, NIST, CIS, or SOC 2. Support audits, evidence collection, and compliance reporting (e.g., GDPR, PCI-DSS). Develop and maintain documentation for policies, procedures, architecture, and runbooks. Collaboration & Knowledge Sharing Work with IT More ❯

asset inventories and ensure patching and configuration baselines are followed. Security Governance & Compliance Contribute to maintaining security standards and aligning with frameworks such as ISO 27001, NIST, CIS, or SOC 2. Support audits, evidence collection, and compliance reporting (e.g., GDPR, PCI-DSS). Develop and maintain documentation for policies, procedures, architecture, and runbooks. Collaboration & Knowledge Sharing Work with IT More ❯

asset inventories and ensure patching and configuration baselines are followed. Security Governance & Compliance Contribute to maintaining security standards and aligning with frameworks such as ISO 27001, NIST, CIS, or SOC 2. Support audits, evidence collection, and compliance reporting (e.g., GDPR, PCI-DSS). Develop and maintain documentation for policies, procedures, architecture, and runbooks. Collaboration & Knowledge Sharing Work with IT More ❯

Mortgage origination and servicing, Payments, core banking, or lending domain expertise. Production experience with Kubernetes, IaC (Terraform), service meshes, and GitOps (Argo CD/Flux). Navigated PCI DSS, SOC 2, ISO 27001, GDPR; partnered with Risk/Compliance and auditors and delivered audit-ready evidence. Privacy engineering (GDPR, data residency) Experience leading across multiple geographies/time More ❯

Mortgage origination and servicing, Payments, core banking, or lending domain expertise. Production experience with Kubernetes, IaC (Terraform), service meshes, and GitOps (Argo CD/Flux). Navigated PCI DSS, SOC 2, ISO 27001, GDPR; partnered with Risk/Compliance and auditors and delivered audit-ready evidence. Privacy engineering (GDPR, data residency) Experience leading across multiple geographies/time More ❯

Mortgage origination and servicing, Payments, core banking, or lending domain expertise. Production experience with Kubernetes, IaC (Terraform), service meshes, and GitOps (Argo CD/Flux). Navigated PCI DSS, SOC 2, ISO 27001, GDPR; partnered with Risk/Compliance and auditors and delivered audit-ready evidence. Privacy engineering (GDPR, data residency) Experience leading across multiple geographies/time More ❯

and data integration, Knowledge of data lakes, warehouses, and streaming platforms. Security & Compliance: Identity and access management (IAM), Secure design principles, awareness of regulatory frameworks (e.g., GDPR, HIPAA, SOX, SOC2) Tools & Platforms : Familiarity with enterprise platforms, monitoring and observability tools, API gateways and service meshes.Location:COL Work-at-HomeLanguage Requirements:English (Required)Time Type:Full time2025-10-31 If you More ❯

risks and deploy effective remediation measures. Monitor systems, networks, and logs then Investigate security breaches, incidents, and other cybersecurity events. Oversight of compliance for regulatory compliance requirements, such as SOC2, HIPAA, ISO 27001, GDPR etc, and ensure our systems adhere to these standards Conduct security awareness training sessions, enabling the business. Who you are Cloud security enthusiast - You're comfortable More ❯

. Knowledge of container security and cloud compliance best practices. Experience with scripting languages (e.g., Python, Bash, PowerShell). Understanding of security certifications or industry compliance (e.g., ISO 27001, SOC 2) is a plus. Experience with Kubernetes or OpenShift for container orchestration. Familiarity with CI/CD pipelines and automation tools (e.g., GitHub Actions, Jenkins). Exposure to More ❯

Cyber Security Lead Oxfordshire - Hybrid - 2 days per week (Flexible) £50k - £60k plus Benefits Our Client are an award-winning leading IT company offering complete outsourced IT solutions to organisations across the UK and Europe. Based in Oxfordshire they provide a comprehensive range of support services, software and hardware solutions to major blue-chip clients and their technicians are … Act as the strategic security escalation point for clients when risks require senior involvement. Internal MSP Security Own the MSP's internal security frameworks and certifications (e.g., CE+, ISO, SOC 2). Oversee patching, vulnerability, and risk management of MSP-owned infrastructure and tools. Ensure MSP's technology stack (RMM, XDR, PSA, backup, etc.) is securely deployed and … Secure Score, M365 compliance dashboards). Drive continuous posture improvement across client environments. Team Leadership & Growth Mentor and develop Security Analysts. Ensure team certifications remain up to date (minimum 2 per year per Analyst). Lead internal knowledge-sharing sessions to keep the team and wider MSP relevant against new threats and frameworks. Champion automation (RPA/AI) in More ❯

days onsite per week Employment Type: Permanent Job Summary: Our client, a leading IT services and consulting firm, is seeking a Cyber Security Assurance Manager to ensure their SOC meets and maintains … top security certifications and assurance standards. As part of the GRC function, you ll lead customer assurance activities, manage external audits, and oversee key certifications such as ISO 27001, SOC2 Type II, Cyber Essentials Plus, and CREST SOC accreditation. Ensure continuous monitoring, evidence collection, and audit readiness for internal and external assessments Monitor developments in global cybersecurity regulations and … frameworks (NIST CSF, UK NCSC guidance, EU NIS2, GDPR) Provide expert advice to leadership on regulatory changes impacting SOC assurance strategy Drive continuous improvement in assurance processes and evidence collection efficiency Produce regular reports and dashboards on certification status, audit outcomes, and assurance performance Collaborate with SOC operations, Information Security, Risk & Compliance, and Commercial teams Proven experience delivering More ❯

key customers. Lead and mentor cross-functional security teams (Enterprise IT SecOps, Cloud Security, Network Security, Compliance, Identity). Oversee global security policies, risk management, and regulatory alignment (ISO27001, SOC2, GDPR, NIS2/DORA, Telecom-specific regulations). Ensure security is embedded in product/service lifecycles (Internet access, SD-WAN, SASE, NaaS) and that they are secure by design … with credibility at executive, technical, and regulatory levels; with customer-focused mindset with emphasis on trust, resilience, and service assurance. Information Security & Compliance Expertise : Deep knowledge of ISO 27001, SOC 2 Type II, NIS2, and DORA regulations, with experience leading audits and closing compliance gaps. Security Architecture & Engineering : Proficiency in secure SDLC practices, application security tooling (SAST/ More ❯

of suppliers. Management of key stakeholders at all levels in a typical corporate environment. Desirable: Experience working within or implementing industry standard security and compliance standards, e.g. ISO 27001, SOC2, Cyber Essentials Plus Experience working with outsourced providers for engineering & technical resources as well as systems/services. Experience working in a regulated industry, e.g. telecoms, financial services, utilities. Experience More ❯

identify and mitigate risks. Work closely with the security team to integrate best practices into new and existing features. Ensure compliance with security standards and regulations (e.g., ISO 27001, SOC 2). Implement monitoring solutions to detect and respond to real-time security incidents. Troubleshoot infrastructure and security issues, performing root cause analysis in production. Mentor junior engineers More ❯

Maintain robust CI/CD pipelines, collaborating closely with development teams to streamline deployment processes. Maintain and enhance our security posture, ensuring compliance with industry standards and frameworks (e.g., SOC-2, ISO 27001). Diagnose and resolve infrastructure outages and incidents, ensuring timely resolution and root cause analysis. Documentation & Best Practices: Ensure comprehensive documentation of infrastructure, systems, and processes More ❯

and introduce new DevOps tools, technologies, and processes that align with business goals. Required Skills & Experience 5+ years in DevOps, Platform, or Site Reliability Engineering roles, with at least 2 years in a senior or lead capacity. Advanced hands-on experience with AWS (e.g., EC2, ECS/EKS, VPC, IAM, RDS, Lambda, CloudWatch, S3). Strong expertise in Kubernetes … services or FinTech environments. Knowledge of service mesh, secrets management, and policy governance tools (e.g., Istio, Vault, OPA). Exposure to cost optimisation strategies and FinOps principles. Experience with SOC 2, ISO27001, or PCI-DSS compliance frameworks. Whats In It For You 100,000 salary + benefits package Fully remote role collaborate with a highly skilled engineering team More ❯