51 to 75 of 184 SOC 2 Jobs in the UK

fixing, code maintenance. Ensure that our services communicate with each other seamlessly, have minimal downtime, and recover quickly. Make sure we respect any software security norms (Kiln is a SOC 2 Type 1 and Type 2 company). Actively suggest continuous improvement of Kiln's platform and engineering practices. Communicate with other Kiln teams to help them … architectural choices and code, and to share software best practices. Fluent (written and spoken) in both French and English. Nice-to-haves: Previous experience working within a certified environment (SOC2, ISO 27001, PCI DSS, HIPAA ) Genuine interest in Web3, blockchain, cryptocurrency and smart contracts - check our Tech Blog and Open-Source Contribution About Kiln: Kiln is the leading enterprise-grade More ❯

operations. Expereince : Essential Prior experience in cybersecurity, risk management, compliance, or governance. Strong understanding of regulatory requirements, security frameworks, and standards such as ISO 27001, NIST CSF, CIS, and SOC 2. Hands-on experience with ISO 27001 implementation and audit readiness. Experience supporting SOC 2 readiness and evidence collection. Proficient with risk assessment methodologies and control frameworks More ❯

privacy, and compliance. This role is responsible for driving core activities across quality, risk management, Information Security, data protection, and audit readiness to ensure the organization meets ISO, PCI, SOC 2, and other relevant standards. The position helps deliver assurance to stakeholders that PSI prioritizes the security and privacy of its data and systems. This is a full … improvement of GRC processes and tools. Generate and present GRC-related metrics and reports to internal stakeholders and executive leadership. Support and coordinate internal and external audits (e.g., ISO27001, SOC2, etc.), including gathering evidence and managing responses. Assist in third-party and entity-level risk assessments, identifying and mitigating risks through effective controls. Build and maintain cross-functional relationships with More ❯

management, zero-trust security, and vulnerability management Develop secure cloud-native architectures including microservices, containers, and serverless patterns Ensure compliance with industry security and privacy standards ( e.g. ISO 27001, SOC 2, GDPR) Secure containerised environments, including Kubernetes and Docker Collaborate with developers to integrate secure deployment pipelines across the SDLC Support deployments in client environments, including on-prem … the role, and answer any questions you may have about us. We'll be assessing some basic skills for the role and finding out more about your background. Step 2: Meet with our team. You'll meet with key stakeholders to tell us more about your skills and experience for the role. What we offer We believe great work More ❯

secure, scalable cloud infrastructure for our digital health platform. Automate CI/CD pipelines and lead Infrastructure as Code (Terraform, CloudFormation). Implement DevSecOps best practices to meet HIPAA, SOC 2, and ISO 27001 requirements. Monitor system performance and availability using CloudWatch, Prometheus, Grafana, and related tooling. Collaborate with engineering, security, and product teams to drive end to More ❯

Background in DevOps, SRE, or Infrastructure Engineering. Knowledge of monitoring/logging tools (e.g., CloudWatch, Datadog, Prometheus, ELK). Experience with enterprise security and compliance frameworks (e.g., ISO 27001, SOC 2, GDPR). Familiarity with cost modeling and optimization strategies in AWS. More ❯

sector, based in London, on a permanent basis paying up to £65,000 plus great benefits. This role offers hybrid working with an expectation to be in the office 2-3 days per week. You’ll be joining a technical team focused on strengthening cloud security and ensuring compliance across Microsoft Azure environments. This role will involve hands-on … essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working More ❯

sector, based in London, on a permanent basis paying up to £65,000 plus great benefits. This role offers hybrid working with an expectation to be in the office 2–3 days per week. You’ll be joining a technical team focused on strengthening cloud security and ensuring compliance across Microsoft Azure environments. This role will involve hands-on … essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working More ❯

service integration. Experience of test approaches for large-scale system deliveries. Demonstrable architecture skills and experience to an industry benchmarked level. Expertise in compliance standards such as GDPR, HIPAA, SOC2, and ISO 27001. Why Apply? An important and visible technical leadership role with the opportunity to work on national and international-scale solutions. A unique opportunity to work in the More ❯

stakeholders, collaborators and clients, at different levels Preferred Qualifications Highly experience in analytical and problem-solving skills, including a basic understanding of data analysis techniques Good grasp of SOX, SOC2, NIST, PCI, ISO, and other security regulations Experience in the IAM domain in a cloud based infrastructure environment Program and project management skills About Meta Meta builds technologies that help More ❯

including abuse prevention and fraud detection. Governance, Compliance & Best Practices Help define internal standards for security development practices, secrets management, and infrastructure hardening. Maintain compliance with relevant frameworks (e.g., SOC 2, ISO 27001, GDPR), and support any industry-specific due diligence. Cross-Functional Collaboration Partner with engineering, product, and infrastructure teams to embed security best practices into all More ❯

Qualifications Experience working in Agile/Scrum teams or DevOps environments. Familiarity with CI/CD tools like GitHub Actions or Jenkins. Exposure to security frameworks (NIST, ISO 27001, SOC 2). Experience working in SaaS, multi-tenant cloud environments. Knowledge of machine learning security (AI/ML model risks, LLM security best practices). Familiarity with attack More ❯

Recommend suitable technology stacks for new projects or modernisation efforts. 5. Security & Compliance Assess application security risks and provide remediation strategies. Ensure compliance with industry standards (ISO 27001, GDPR, SOC 2, etc.). Implement best practices for secure software development (OWASP, encryption, IAM, etc.). 6. Performance Optimisation & Scaling Analyse system bottlenecks and recommend performance tuning strategies. Support More ❯

identify and mitigate risks. Work closely with the security team to integrate best practices into new and existing features. Ensure compliance with security standards and regulations (e.g., ISO 27001, SOC 2). Implement monitoring solutions to detect and respond to real-time security incidents. Troubleshoot infrastructure and security issues, performing root cause analysis in production. Mentor junior engineers More ❯

with basic incident response workflows. •Comfort representing engineering in external calls with auditors, pentesters and security vendors; able to explain infrastructure decisions in security terms. •Familiarity with compliance standards (SOC 2, ISO 27001, etc) and cloud security postures in AWS, Azure or GCP would be preferable but not essential. Salary & Benefits •Competitive salary and equity grants •Employer pension More ❯

Microsoft Purview, Compliance Manager and related compliance tools - essential Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working More ❯

trends, emerging technologies, and best practices; drive adoption of new technologies and methodologies where appropriate. Governance & Compliance: Ensure solutions meet regulatory, security, and compliance requirements (e.g., FedRAMP, HIPAA, ISO, SOC2). Cross-Functional Collaboration: Work across multiple teams and domains to drive consistency, reduce redundancy, and ensure cohesive architecture across the organization. Customer Advocacy: Represent the voice of the customer More ❯

large, complex technology programmes involving multiple concurrent projects with significant experience of delivering through offshore/nearshore strategic vendors. Knowledge of security frameworks & standards (ISO 27001, NIST, CIS, GDPR, SOC 2) Be experienced in 'hands on' technology software delivery from initiation to implementation. Have knowledge of programme and project management methodology and managing full lifecycle of programmes from More ❯

partners to enhance incident response and cyber resilience. Candidates will have; • Experience in a cyber security risk management role. • Strong understanding of cyber security frameworks and standards (ISO 27001, SOC2, NIST, GDPR). • Excellent analytical, communication, and stakeholder engagement skills. • Proficient in risk assessment tools and methodologies. • Professional certifications such as CRISC, CISM or CISSP are desirable. Bright Purple is More ❯

partners to enhance incident response and cyber resilience. Candidates will have; Experience in a cyber security risk management role. Strong understanding of cyber security frameworks and standards (ISO 27001, SOC2, NIST, GDPR). Excellent analytical, communication, and stakeholder engagement skills. Proficient in risk assessment tools and methodologies. Professional certifications such as CRISC, CISM or CISSP are desirable. Bright Purple is More ❯

and scaling strategies. Train and mentor junior team members and client staff on Splunk usage and management. Assist with security monitoring, incident detection, and compliance initiatives (eg, PCI, HIPAA, SOC2). Required Skills and Experience: Minimum 10 years of total IT experience with 7+ years dedicated to Splunk . Splunk Consultant-level certification (eg, Splunk Certified Consultant I/II More ❯

risks and deploy effective remediation measures. Monitor systems, networks, and logs then Investigate security breaches, incidents, and other cybersecurity events. Oversight of compliance for regulatory compliance requirements, such as SOC2, HIPAA, ISO 27001, GDPR etc, and ensure our systems adhere to these standards Conduct security awareness training sessions, enabling the business. Who you are Cloud security enthusiast - You're comfortable More ❯

procedures or guidelines acrossthe organisation. • Development of new organizational processes within the organization. • Ensure the organization's internal regulatory compliance. • Monitor compliance with regulations such as ISO27001, NIST, NIS2, SOC2, ENS, or ANSSI. • Maintenance of Information Security KPIs for the maintenance of existing certifications. • Analysis and management of the authorization of HR, IT, TECH and business processes. • Identify and manage … French (B2). Ability to speak Spanish to C1 level desired. Ability to communicate clearly with technical and non-technical stakeholders at all levels of the business. Experience supporting SOC 2,NIS2, ISO 27001, or GDPR compliance programs. Knowledge of SaaS architecture and cloud platforms (e.g., AWS, Azure, GCP). Familiarity with penetration testing methodologies and remediation workflows. More ❯

security requirements in digital health, life sciences, or FDA-regulated software environments Proven track record managing security and compliance under HIPAA, FDA, and NIST Knowledge of GDPR, ISO 27001, SOC 2 and international security standards Experience with cloud-native environments (e.g., AWS), data encryption, identity management, and secure software development practices Strong communicator who can translate security priorities More ❯

distributed systems. Experience with security best practices: Strong understanding of security considerations in large-scale applications, including secure coding practices, data protection, and compliance with industry standards (e.g., GDPR, SOC 2). Experience with data engineering: Familiarity with big data architectures, streaming technologies (Kafka, Spark), or large-scale data processing pipelines. Cross-functional collaboration: Experience working with product More ❯