1 to 25 of 31 SOC 2 Jobs in the UK excluding London

policies, covering endpoint security, access management, and controls suited to a remote, globally distributed workforce Maintain and build upon our existing certifications (ISO 27001, SOC 2 Type II), and drive expansion of SOC 2 coverage across our full product portfolio Ensure compliance with GDPR and applicable … SaaS or technology environment Strong understanding of application security and secure software development Strong working knowledge of compliance frameworks including ISO 27001 and SOC 2, with hands‐on experience managing or achieving these certifications; solid understanding of GDPR compliance across multiple jurisdictions Strong communication skills with the ability ...

while helping to strengthen overall security posture. Key Responsibilities Certification & Compliance Lead the delivery and maintenance of key certifications including ISO/IEC 27001, SOC 2 Type II, SOC 3, Cyber Essentials Plus, and CREST Oversee additional frameworks such as PCI DSS and NCSC standards (CIR/… commercial teams Deliver training and promote best practices across the organisation What We're Looking For Experience Proven experience managing cybersecurity certifications (ISO 27001, SOC 2, Cyber Essentials Plus, CREST) Strong understanding of Security Operations (SOC) environments Experience supporting audits, RFPs, and customer assurance activities Knowledge ...

program.- Conduct internal audits, third-party risk assessments, and due diligence reviews.- Ensure alignment with regulatory and industry standards including ISO27001, NIST, SOX, GDPR, SOC 2, HIPAA, CCPA, LGPD.- Collaborate with cross-functional teams across multiple jurisdictions to drive compliance initiatives.- Identify gaps in security controls and recommend … and audit.- Strong understanding of international regulatory frameworks and standards.- Hands-on experience with:- ISO27001 audits and implementation- GDPR compliance- NIST cybersecurity framework- SOX, SOC 2, HIPAA, CCPA, LGPD- Ability to interpret complex regulatory requirements and translate them into actionable controls.- Excellent communication and stakeholder engagement skills.- Strong ...

Aurora’s security controls are effective, proportionate and aligned to business, customer and regulatory requirements Lead security assurance and certification activities, including ISO 27001, SOC 2, and related audit readiness, while contributing to the continued evolution of Aurora’s wider security and compliance operating model Partner with Legal … structured, risk‐based way Significant experience managing external audits, customer assurance and recognised security standards/certifications such as ISO 27001 and SOC 2 Experience influencing senior stakeholders and communicating clearly at executive level, including the ability to translate technical risk into clear business decisions and trade‐offs ...

multi-tenant data isolation and least-privilege principles Support audit readiness against NCSC Cyber Assessment Framework (CAF), CSA CAIQ, NIST, and our roadmap towards SOC 2 Establish and track quantifiable technical baselines - encryption coverage, log retention, API compliance (OWASP) and source-code analysis checks Verify data input/… Broad exposure to IT operations, DevOps principles, or a related technical discipline. Familiarity with one or more governance frameworks (ISO 27001, NCSC CAF, NIST, SOC 2 or similar) - you do not need to be an expert in all of them Process-driven mindset - able to translate policy into ...

Terraform or CloudFormation.Preferred Background & Additional Capabilities* Knowledge of securing containerised environments and orchestration platforms.* Experience working within assurance-focused frameworks including ISO 27001, SOC 2, or NIST.* Familiarity with automated governance and policy-driven cloud controls.* Exposure to investigative, detection, or security operations workflows.Qualifications That Would Be Beneficial ...

and container security (AKS). Integrate SAST/DAST/SCA tools into CI/CD pipelines and collaborate on compliance (NIST, ISO 27001, SOC 2, GDPR). Qualifications: 5+ years of hands-on cloud security experience with Azure. Proven expertise in secure architecture design and DevOps integration. ...

and bot management in a production e-commerce context. Familiarity with SIEM, SOAR or security automation tooling. Exposure to ISO 27001 implementation or SOC 2 readiness programmes. Experience with multi-cloud security across Azure and GCP. Background in e-commerce, retail or DTC brands. What Success Looks Like ...

adhering to best practices in data protection and cloud security, in line with Cyber Essentials Plus and ISO27001, and implement compliance measures (e.g., GDPR, SOC 2). Analyse performance metrics and make data-driven decisions to improve platform performance, stability, and cost-efficiency. Engage with stakeholders (internal and ...

Hands-on with IaC (Terraform), CSPM tools, and SIEM platforms - Strong scripting skills (Python, Go) and security automation experience - Working knowledge of compliance frameworks (SOC 2, ISO 27001, HIPAA, PCI) - Industry certifications (CISSP, AWS Security, GCP Security) are a plus What You'll Bring - Curiosity to dig into ...

Hands-on with IaC (Terraform), CSPM tools, and SIEM platforms - Strong scripting skills (Python, Go) and security automation experience - Working knowledge of compliance frameworks (SOC 2, ISO 27001, HIPAA, PCI) - Industry certifications (CISSP, AWS Security, GCP Security) are a plus What You'll Bring - Curiosity to dig into ...

rapid product growth. Own DevOps and platform engineering practices, enabling teams to deploy quickly and safely. Prepare and maintain audit-ready infrastructure aligned with SOC 2 and ISO 27001 expectations. Build and evolve CI/CD pipelines across backend, frontend, and data services. Implement observability across logging, metrics ...

SDLC, and assurance processes. Experience delivering "secure by design" in regulated sectors (e.g., finance, healthcare, critical infrastructure), including Azure compliance certifications like ISO 27001, SOC 2, and GDPR. Proficiency in cloud security architecture, including zero-trust models, container security (e.g., AKS), and multi-cloud/hybrid strategies. Whilst ...

providing authoritative data sets. Data Integrity & Assurance Ensure engineering data platforms remains accurate, complete, secure, fit for purpose and align with regulatory frameworks e.g., SOC2, ISO 27001, HIPAA. Perform regular data quality assessments and audits to identify discrepancies or integrity risks. Drive continuous improvement initiatives to reduce data errors, rework ...

Strong executive communication and stakeholder management skills Experience leading and scaling teams within a consulting environment Knowledge of security frameworks (e.g. GDPR, NIST, ISO27001, SOC2) You will gain exposure with: Enterprise-scale Microsoft Security transformation programmes Strategic collaboration across global Microsoft-focused teams Design and delivery of managed security services ...

Strong executive communication and stakeholder management skills Experience leading and scaling teams within a consulting environment Knowledge of security frameworks (e.g. GDPR, NIST, ISO27001, SOC2) You will gain exposure with: Enterprise-scale Microsoft Security transformation programmes Strategic collaboration across global Microsoft-focused teams Design and delivery of managed security services ...

Strong executive communication and stakeholder management skills Experience leading and scaling teams within a consulting environment Knowledge of security frameworks (e.g. GDPR, NIST, ISO27001, SOC2) You will gain exposure with: Enterprise-scale Microsoft Security transformation programmes Strategic collaboration across global Microsoft-focused teams Design and delivery of managed security services ...

Strong executive communication and stakeholder management skills Experience leading and scaling teams within a consulting environment Knowledge of security frameworks (e.g. GDPR, NIST, ISO27001, SOC2) You will gain exposure with: Enterprise-scale Microsoft Security transformation programmes Strategic collaboration across global Microsoft-focused teams Design and delivery of managed security services ...

Cyber Security Manager Manchester - 2-3 days per week in the office £70,000 - £75,000 per annum Our client is seeking an experienced and forward thinking Cyber Security Manager to guide and strengthen their Cyber Security function. This position plays a key role in protecting their systems, data … working with Artificial Intelligence Strong technical knowledge of security tools (e.g. CrowdStrike, Sentinel, Purview, iBoss) Solid understanding of security frameworks (ISO 27001, PCI DSS, SOC 2) Experience in risk assessment, incident management and vulnerability testing Excellent communication skills across technical and non-technical audiences Strong analytical mindset with ...

and container security (AKS). Integrate SAST/DAST/SCA tools into CI/CD pipelines and collaborate on compliance (NIST, ISO 27001, SOC 2, GDPR). Relevant certifications: AZ-500, AZ-400, CCSP (preferred) Unfortunately no sponsership is offered for this contract Azure DevSecOps Consultant ...

Experience implementing MFA, SSO, IGA and PAM solutions. Delivery across global organisations. Knowledge of security frameworks and standards (ISO 27001, NIST CSF, CIS, GDPR, SOC 2, IEC62443). Strong governance, risk and stakeholder management capability. Core Skills Programme leadership with strong commercial and budget oversight. Ability to influence ...

presence and stakeholder management skills Microsoft certifications (e.g. SC-100, SC-200, SC-401) preferred Understanding of frameworks such as ISO 27001, NIST, GDPR, SOC 2 Why join Work on some of the largest Security programmes using Microsoft technologies Shape next-generation Microsoft Security offerings and capability High ...

/ITSM processes Desirable Experience with Okta Workflows or Privileged Access Exposure to AWS SSO/Identity Center Knowledge of compliance frameworks: ISO 27001 SOC 2 GDPR Experience with endpoint management tools (Intune, Jamf) Why Join? Opportunity to own and shape IAM strategy within a global organisation Work ...

stay current with changes across the threat and compliance landscape. Desirable Skills & Experience • Exposure to additional frameworks such as NIST, NCSC CAF, or SOC 2. • Previous background in IT support, infrastructure, systems administration, or IT management before moving into cybersecurity. • Industry-recognised certifications in cyber security or information security. ...

Desirable) Experience in a high-growth or scaling environment Exposure to AI or emerging technologies Knowledge of regulatory and security frameworks such as SOC2 or ISO Background in fintech, SaaS or enterprise platforms Package Competitive base salary and performance-related bonus Equity participation aligned with seniority, Clear progression to Deputy ...