and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯
London, England, United Kingdom Hybrid / WFH Options
Starling Bank
compliance Review and update Vulnerability Management related documentation to align with internal and external compliance requirements, industry best practices and emerging threats (e.g. ISO 27001, PCI DSS/3DS, SOC2and NIST) Help define scanning schedules, thresholds, and automation opportunities Collaborate with DevSecOps/Product Teams to embed security scanning into CI/CD pipelines Assist in … come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team: Stage 1 - 45 mins with BISO Stage 2 - 60 min with Peers Stage 3 - Final with CTO/Deputy CTO Benefits 33 days holiday (including public holidays, which you can take when it works best for you … England, United Kingdom . London, England, United Kingdom 1 week ago London, England, United Kingdom 1 week ago London, England, United Kingdom 1 week ago London, England, United Kingdom 2 weeks ago London, England, United Kingdom 3 days ago London, England, United Kingdom 1 week ago London, England, United Kingdom £35,000.00-£40,000.00 10 hours ago London, England More ❯
improvements highlighted in ISO and client audit reports. Your Part to Play Compliance: Ensure IT environments comply with management and security standards, particularly ISO 14001, 22301, 27001, 27701, andSOC2 Type 2, by implementing and maintaining environmental management systems. Audit Remediation: Address and remediate findings from client audits related to device management and environment security. Application Management: Oversee the More ❯
London, England, United Kingdom Hybrid / WFH Options
Datavant
through research, recommendation and implementing solutions. A technical source of knowledge to continuously review, evaluate and improve systems/processes Expert knowledge of IAM compliance and audit. Knowledge of SOC2, NIST, ISO27001, and other IT security standards. Expertise relating to the design and development of information technology architectures across the organization Show expert-level troubleshooting capabilities. Ability to identify root More ❯
ensuring that they are up-to-date and effective. ️ Is This You? CISSP, CISA, or CISM certification is strongly recommended, but not required. ISO 27001/27701/42001, SOC-2, PCI DSS, and GDPR knowledge, experience, and qualifications are highly desirable. At least 5 years of relevant industry experience in information security, with a focus on security architecture More ❯
and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯
and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯
and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯
and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯
and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯
and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯
Security queries, to a wide variety of customers. You should have an excellent understanding of ISO27001 with knowledge on other Information Security standards and frameworks being advantageous, such as SOC2 or PCI DSS. You should apply if you enjoy working in a fast-paced, innovative business with an exciting brand that has fun and creative ideas andMore ❯
large, complex technology programmes involving multiple concurrent projects with significant experience of delivering through offshore/nearshore strategic vendors. Knowledge of security frameworks & standards (ISO 27001, NIST, CIS, GDPR, SOC2) Be experienced in 'hands on' technology software delivery from initiation to implementation. Have knowledge of programme and project management methodology and managing full lifecycle of programmes from More ❯
security needs of a number of high-growth clients through our consultancy and managed services offerings. You’ll work alongside a skilled team provided by CyPro, including a CISO, SOC Manager, Security Architects, Penetration Testers, and Cloud Security Specialists. Client Delivery: Act as the primary point of contact for clients, fostering strong relationships and providing clear communication. Preparing for … and AI to speed up client delivery. Maintaining a bank of client deliverable templates and assets. People Management: In time, have the appetite and capability of managing small teams (2-3 people). Helping juniors learn and foster a professional growth culture. Supporting learning and performance management for junior team members. Business Development: Support the winning of new work More ❯
Merton, Wisconsin, United States Hybrid / WFH Options
QuadMed
Creating a better way. It's more than just the philosophy we were founded on. It's our purpose. For our employees, it means more time with patients. Unrushed visits to build meaningful relationships. And most importantly, an opportunity to More ❯
scale their AWS infrastructure and security posture across their purchase and insights platforms. You'll step into a hands-on role and help them tackle challenges from PCI/SOC2 compliance to performance optimisation and cost-efficient migrations (including from their London DC to Frankfurt). What you'll do: Design secure, scalable AWS cloud infrastructure Terraform, CI/CD … . Lead on platform security: zero trust, key management, secure SDLC. Drive observability, performance, and reliability across the stack. Champion security and compliance (PCI DSS, SOC2, ISO 27001). Support migrations, decommissioning, and cost/performance projects. What we're looking for: 5+ years in DevOps/SRE roles with a focus on security (AWS, IAC, ECS, CI/CD More ❯
scale their AWS infrastructure and security posture across their purchase and insights platforms. You'll step into a hands-on role and help them tackle challenges from PCI/SOC2 compliance to performance optimisation and cost-efficient migrations (including from their London DC to Frankfurt). What you'll do: Design secure, scalable AWS cloud infrastructure Terraform, CI/CD … . Lead on platform security: zero trust, key management, secure SDLC. Drive observability, performance, and reliability across the stack. Champion security and compliance (PCI DSS, SOC2, ISO 27001). Support migrations, decommissioning, and cost/performance projects. What we're looking for: 5+ years in DevOps/SRE roles with a focus on security (AWS, IAC, ECS, CI/CD More ❯
London, England, United Kingdom Hybrid / WFH Options
Ripjar
around the world. As Chief Information Security Officer (CISO), you will be responsible for developing and executing our cyber risk strategy, driving alignment with international frameworks such as ISO27001, SOC2, DORA and regional frameworks like Cyber Essentials, and leading executive team engagement on security governance, regulatory readiness, and organisational resilience. You will be responsible for monitoring and improving the information … security and compliance posture to support international expansion and customer growth. Manage and own the Information Security budget, investments, and ROI. Governance, Risk, and Compliance Maintain compliance with ISO27001, SOC2, Cyber Essentials and evolving DORA regulations. Lead internal risk assessments, security audits, and regulatory readiness efforts. Oversee third-party and supply chain security due diligence and assurance processes. Operational Security … approach to information security and its practical application to our organisation as it scales. Ideally, You Will Have Proven leadership in high-growth scale-up environments. Expertise in ISO27001, SOC2, NIST CSF, Cyber Essentials, and DORA. Experience with modern cloud infrastructure and security (AWS, Azure, GCP, PaaS/IaaS/SaaS). Familiarity with IAM, DLP, and Linux-based environments. More ❯
Cheltenham, England, United Kingdom Hybrid / WFH Options
Ripjar
around the world. As Chief Information Security Officer (CISO), you will be responsible for developing and executing our cyber risk strategy, driving alignment with international frameworks such as ISO27001, SOC2, DORA and regional frameworks like Cyber Essentials, and leading executive team engagement on security governance, regulatory readiness, and organisational resilience. You will be responsible for monitoring and improving the information … security and compliance posture to support international expansion and customer growth. Manage and own the Information Security budget, investments, and ROI. Governance, Risk, and Compliance Maintain compliance with ISO27001, SOC2, Cyber Essentials and evolving DORA regulations. Lead internal risk assessments, security audits, and regulatory readiness efforts. Oversee third-party and supply chain security due diligence and assurance processes. Operational Security … approach to information security and its practical application to our organisation as it scales. Ideally, you will have: Proven leadership in high-growth scale-up environments. Expertise in ISO27001, SOC2, NIST CSF, Cyber Essentials, and DORA. Experience with modern cloud infrastructure and security (AWS, Azure, GCP, PaaS/IaaS/SaaS). Familiarity with IAM, DLP, and Linux-based environments. More ❯
IE Terraform or similar) 💡 Experience deploying and scaling PHP/Laravel applications 💡 Familiar with Docker, Kubernetes, ECS or EKS 💡 Proficient in Scripting languages like Python and Bash 💡 Understanding of SOC2and DevSecOps Interested? Reach out to Billy @ Loop for more info More ❯
London, England, United Kingdom Hybrid / WFH Options
Loop Recruitment
IE Terraform or similar) Experience deploying and scaling PHP/Laravel applications Familiar with Docker, Kubernetes, ECS or EKS Proficient in Scripting languages like Python and Bash Understanding of SOC2and DevSecOps Interested? Reach out to Billy @ Loop for more info More ❯
services. Ability to work autonomously and as part of a team. Analytical skills to interpret data and threats. Awareness of common cyber incidents and breaches (OWASP). Knowledge of SOC2, ISO 27K, PCI DSS, GDPR. Experience in Cyber Incident Response. Hands-on experience with security tools. Please contact me to discuss the role. [emailprotected] or 0207 337 0045 #J More ❯
Direct message the job poster from Lorien Sourcing Consultant at Lorien: Empowering Businesses with Strategic Procurement Solutions Job Posting: L3 Insider Threat Engineering Lead - DLP Location: Remote UK Job Type: Contract About the Role We are seeking a highly skilled More ❯
would also want good knowledge of: Cloud (AWS, OnPrem) Microservices (K8s, Kafka) IaC (Terraform) CI/CD (GitOps, Github Actions, ArgoCD) Monitoring (OpenTelemetry, Prometheus, Grafana) Security (Vault, IAM, OPA, SOC2, GDPR) What’s in it for you? Annual bonus Share Options L&D Fund Private Medical Hybrid/Flexi Working The chance to build & own the SRE function for a More ❯
would also want good knowledge of: Cloud (AWS, OnPrem) Microservices (K8s, Kafka) IaC (Terraform) CI/CD (GitOps, Github Actions, ArgoCD) Monitoring (OpenTelemetry, Prometheus, Grafana) Security (Vault, IAM, OPA, SOC2, GDPR) What’s in it for you? Annual bonus Share Options L&D Fund Private Medical Hybrid/Flexi Working The chance to build & own the SRE function for a More ❯
