76 to 100 of 665 SOC 2 Jobs in the UK

stakeholders, collaborators and clients, at different levels Preferred Qualifications Highly experience in analytical and problem-solving skills, including a basic understanding of data analysis techniques Good grasp of SOX, SOC2, NIST, PCI, ISO, and other security regulations Experience in the IAM domain in a cloud based infrastructure environment Program and project management skills About Meta Meta builds technologies that help More ❯

Platform & Security, you'll take a leading role in evolving and maturing our security and compliance posture while building robust infrastructure for our cell manufacturing platform. Mytos is already SOC 2 Type 2 audited, but as our customers move from research into production of cell therapies, they need our technology to be suitable for GMP environments. In … and on-premise hardware. Represent Mytos to customers' executive, security, and quality teams, effectively communicating our approach to security, compliance and risk management. Own Mytos' information security program (e.g., SOC 2, ISO 27001) and work cross-discipline to bring the business and product into GMP environments. Develop automated testing and validation strategies that build quality into our development … concepts to non-technical stakeholders and interface directly with vendors and customers. At least one of these areas Compliance framework experience : Implementation or maintenance of ISO 27001, ISO 9001, SOC 2, or similar frameworks. Regulated industry background : Experience in healthcare, finance, or other regulated domains that required balancing innovation with compliance. Lifecycle management expertise : Experience designing systems that More ❯

client security teams in implementing and managing security controls. Assist clients with compliance requirements related to various regulations (GDPR, CCPA, HIPAA, PCI DSS, etc.) and standards (e.g., ISO 27001, SOC 2). Manage security risk committees to support client cyber risk management practices. Track and manage remediation of security audit and compliance findings for clients. Review security metrics More ❯

operations. As a Senior Security Engineer , you will play a pivotal role in safeguarding our systems, networks, and data while ensuring compliance with industry-leading security certifications such as SOC 2, HIPAA, and ISO 27001. Your expertise will directly contribute to maintaining trust with our customers and securing their critical information assets. This role sits within the Platform … resolution. Collaborate with cross-functional teams to design, implement, and maintain security controls and configurations across various systems and platforms. Oversight of compliance for regulatory compliance requirements, such as SOC2, HIPAA, ISO 27001, GDPR etc., and ensure our systems adhere to these standards. Stay updated with the latest industry trends, emerging threats, and security technologies to proactively identify and address More ❯

operations. As a Senior Security Engineer , you will play a pivotal role in safeguarding our systems, networks, and data while ensuring compliance with industry-leading security certifications such as SOC 2, HIPAA, and ISO 27001. Your expertise will directly contribute to maintaining trust with our customers and securing their critical information assets. This role sits within the Platform … resolution Collaborate with cross-functional teams to design, implement, and maintain security controls and configurations across various systems and platforms Oversight of compliance for regulatory compliance requirements, such as SOC2, HIPAA, ISO 27001, GDPR etc, and ensure our systems adhere to these standards Stay updated with the latest industry trends, emerging threats, and security technologies to proactively identify and address More ❯

tools such as firewalls, SIEMs, IDS/IPS, endpoint protection, and encryption solutions. Develop and maintain security policies, standards, and procedures. Support compliance with regulatory requirements (e.g., ISO 27001, SOC 2, HIPAA, GDPR). Collaborate with DevOps and IT teams to integrate security into CI/CD pipelines. Research and recommend security enhancements and technologies. Educate staff on More ❯

be a part of a company that simplifies and enhances financial opportunities using state-of-the-art technology. This is a hybrid role (3 days in the office/2 days remote). About your team: Interactive Brokers (IBKR) is seeking a Senior Security Engineer to join our cybersecurity team. In this role, you will be responsible for strengthening … manage cloud security controls in AWS and other cloud environments * Conduct security risk assessments and vulnerability management activities * Ensure compliance with financial industry regulations and frameworks including PCI DSS, SOC 2, and other relevant standards * Develop and maintain security documentation, including policies, procedures, and technical guidelines * Lead security awareness initiatives and provide guidance to technical teams on security More ❯

maintaining security measures to safeguard our information assets. We operate in a highly regulated global SaaS organization that has multiple certifications such as PCI-DSS, ISO/IEC 27001, SOC2 and other standards we adhere to. In addition, we have a large, federated customer base that we strive to embed improvements for. You will collaborate with cross-functional teams to … maintaining security measures to safeguard our information assets. We operate in a highly regulated global SaaS organization that has multiple certifications such as PCI-DSS, ISO/IEC 27001, SOC2 and other standards we adhere to. In addition, we have a large, federated customer base that we strive to embed improvements for. You will collaborate with cross-functional teams to … challenging projects, with multiple security tools. Have a proven track record of successes. Understanding of security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of application security principals, best practices, OWASP/related standards. Knowledge of security frameworks & controls, hardening standards & security best practices. An understanding of network protocols & practices, firewalls More ❯

emerging threats, and evolving security best practices. Secure SaaS applications and infrastructure by implementing security best practices, access controls, and continuous monitoring. Ensure compliance with security frameworks (ISO 27001, SOC 2, PCI-DSS) by developing governance, implementing necessary controls, and securing business processes. Collaborate with both non-engineering teams and IT to drive improvements by providing consultative expertise … in Computer Science, Information Technology, or a related field. You’re an accomplished Security Operations Engineer with a track record of threat detection engineering within a security operations center (SOC) or similar environment. You bring hands-on experience with SIEM solutions, EDR, intrusion detection/prevention systems, and other security tools. You're proficient in scripting languages (e.g. Python … new Security Engineer jobs in London Area, United Kingdom . London, England, United Kingdom 1 week ago London, England, United Kingdom 1 month ago Greater London, England, United Kingdom 2 weeks ago London, England, United Kingdom 1 week ago London, England, United Kingdom 1 month ago London, England, United Kingdom 1 month ago Chelmsford, England, United Kingdom 1 month More ❯

maintaining security measures to safeguard our information assets. We operate in a highly regulated global SaaS organization that has multiple certifications such as PCI-DSS, ISO/IEC 27001, SOC2 and other standards we adhere to. In addition, we have a large, federated customer base that we strive to embed improvements for. You will collaborate with cross-functional teams to … challenging projects, with multiple security tools. Have a proven track record of successes. Understanding of security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST. An understanding of application security principals, best practices, OWASP/related standards. Knowledge of security frameworks & controls, hardening standards & security best practices. An understanding of network protocols & practices, firewalls More ❯

disaster recovery, and compliance with internal policies. Security & Compliance : Implement security best practices, such as identity and access management (IAM), network security, encryption, and compliance with industry regulations (GDPR, SOC 2, HIPAA). Perform regular security assessments, audits, and vulnerability assessments for cloud infrastructure. Infrastructure Automation & DevOps : Develop Infrastructure as Code (IaC) using tools to automate infrastructure provisioning More ❯

disaster recovery, and compliance with internal policies. Security & Compliance : Implement security best practices, such as identity and access management (IAM), network security, encryption, and compliance with industry regulations (GDPR, SOC 2, HIPAA). Perform regular security assessments, audits, and vulnerability assessments for cloud infrastructure. Infrastructure Automation & DevOps : Develop Infrastructure as Code (IaC) using tools to automate infrastructure provisioning More ❯

disaster recovery, and compliance with internal policies. Security & Compliance : Implement security best practices, such as identity and access management (IAM), network security, encryption, and compliance with industry regulations (GDPR, SOC 2, HIPAA). Perform regular security assessments, audits, and vulnerability assessments for cloud infrastructure. Infrastructure Automation & DevOps : Develop Infrastructure as Code (IaC) using tools to automate infrastructure provisioning More ❯

cloud usage policies, tagging standards, and security baselines across multi-project/multi-subscription environments. Collaborate with compliance, risk and audit teams to team to translate regulatory requirements (e.g. SOC2, ISO 27001, HIPPA, GDPR, PCI DSS) into technical controls in the cloud. Adherence and experience of compliance frameworks (e.g. CIS Benchmarks, NIST 800-53). Building or maintaining automated continuous … Scotland, United Kingdom 15 hours ago Dundee, Scotland, United Kingdom 1 day ago Dundee, Scotland, United Kingdom 1 week ago Principal Cloud Security Engineer (1615) Dundee, Scotland, United Kingdom 2 days ago Senior Solutions Architect (Hybrid), eero Angus, Scotland, United Kingdom 1 week ago Dundee, Scotland, United Kingdom 1 week ago Site Reliability Engineer - Automation and Tooling (Scotland Remote More ❯

secure Azure infrastructure using Terraform. Design and optimize Azure DevOps pipelines with embedded security. Leverage Azure Security Centre, Microsoft Defender, and Sentinel for security monitoring. Oversee SOAR solutions including SOC Prime. Manage Web Application Firewalls (WAF) and Intrusion Prevention Systems (IPS). Conduct vulnerability assessments and penetration testing. Ensure PCI DSS compliance through audits and risk assessments. Implement DNS … and ability to work onsite daily. Preferred Qualifications Certifications such as Azure Security Engineer, CISSP, OSCP, CCSP. Experience with container security (Docker, Kubernetes). Knowledge of NIST, ISO 27001, SOC 2, and Zero Trust principles. Additional Notes Please only apply if you are able to work from their Debden offices Monday-Friday. No hybrid or remote options available. More ❯

trends, emerging technologies, and best practices; drive adoption of new technologies and methodologies where appropriate. Governance & Compliance: Ensure solutions meet regulatory, security, and compliance requirements (e.g., FedRAMP, HIPAA, ISO, SOC2). Cross-Functional Collaboration: Work across multiple teams and domains to drive consistency, reduce redundancy, and ensure cohesive architecture across the organization. Customer Advocacy: Represent the voice of the customer More ❯

. Experience in secure solutions delivery, large IT services organizations, and architecture methods, tools, and frameworks. Expertise in cloud-based solutions, biometric processing systems, and compliance standards (GDPR, HIPAA, SOC2, ISO 27001). Preferred Extras: Experience with large-scale distributed systems and various architectural disciplines (business, data, performance, infrastructure, security). Proven success in solution service integration and test approaches More ❯

Maintain robust CI/CD pipelines, collaborating closely with development teams to streamline deployment processes. Maintain and enhance our security posture, ensuring compliance with industry standards and frameworks (e.g., SOC-2, ISO 27001). Diagnose and resolve infrastructure outages and incidents, ensuring timely resolution and root cause analysis. Documentation & Best Practices: Ensure comprehensive documentation of infrastructure, systems, and processes More ❯

detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. Oversee endpoint security, cloud network and API security for robust protection across all assets Define … Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response More ❯

posture assessments, governance framework development, and digital transformation security initiatives. Requirements Technical Skills: Professional Security Certifications: CISSP, CISM, or equivalent senior security qualifications Security Frameworks: Deep expertise in ISO27001, SOC 2, CE+, NIST, and other governance frameworks Cloud Security: Advanced knowledge of Azure, Microsoft 365, and cloud security architecture Risk Management: Proven experience developing risk management frameworks and … compliance programs Incident Response: Hands-on experience leading security incident response and forensic investigations Enterprise Security: Understanding of managed security services, SIEM/SOC operations, and security tooling integration Compliance: Knowledge of regulatory requirements, including PCI DSS and industry-specific standards Soft Skills: Executive Communication: Outstanding written and verbal communication skills with the ability to present to board-level More ❯

in communication skills - both writing and speaking, interpersonal skills, and experienced in working cross-functionally with various teams Preferred Qualifications Program and project management skills Good grasp of SOX, SOC2, NIST, PCI, ISO, and other security regulations Practical experience of analytical and problem-solving skills, including a basic understanding of data analysis techniques About Meta Meta builds technologies that help More ❯

Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Operationalize policy enforcement through automated More ❯

practical experience in information security best practices and application in an enterprise cloud SaaS environment. The ideal candidate will have a strong background in AWS, experience with ISO 27001, SOC 2, and the ability to communicate the importance of information security across all business levels. Who are we and what we do Autologyx is a leading enterprise in … ensure compliance with internal and external standards. Serve as the company’s Data Protection Officer, ensuring compliance with relevant data protection regulations. Compliance Management: Manage and maintain compliance with SOC 2 standards. Experience with HIPAA and similar standards is a bonus but not required. Customer Information Security Requests: Respond to customer information security requests, providing accurate and comprehensive … with a focus on AWS services and enterprise cloud environments. Proven track record of migrating from ISO 27001:2013 to ISO 27001:2017 standards. Hands-on practical experience with SOC 2 standards. Experience with HIPAA or similar standards is a bonus but not required. Certifications: Systems Security Certified Practitioner (SSCP) - (ISC)2 Certified DevSecOps Professional (CDP) - Practical More ❯

strong track record of operating in regulated sectors. They must demonstrate a deep understanding of IT operations, including cybersecurity, operational resilience, and compliance with frameworks such as ISO 27001, SOC 2, or PCI DSS. Success in this role requires resilience and self-management, with the ability to remain focused and effective under pressure while managing multiple competing priorities. … cloud-native, DevOps-driven environments (AWS, GCP, Azure). Extensive experience in regulated industries (e.g., fintech, payments, healthcare, or critical infrastructure). Deep, expert-level knowledge of ISO 27001, SOC 2, or PCI DSS, including designing and operating security and IT controls beyond audit readiness. Strong technical background in IT infrastructure, endpoint security, networking, and cloud operations. Demonstrated … LinkedIn Profile Website Do you have the right to work in the UK and not require sponsorship in the future? * Select... Do you have experience with either ISO 27001, SOC 2, or PCI DSS? #J-18808-Ljbffr More ❯

Information Security -Excellent interpersonal, written and oral communication skills, and ability to assimilate easily into teams -Strong technical skills and a working knowledge of SOX IT General Controls, COSO, SOC 1, and SOC 2 -Awareness of ISO 27001, GDPR, and other relevant standards -Effective analytical and critical thinking abilities -Entrepreneurial nature, self-motivated, ethical, and dependable #J More ❯