14 of 14 Remote/Hybrid SOC 2 Jobs in the UK excluding London

data loss. Develop automated workflows for vulnerability management, incident detection, and response. Align security measures with financial regulations such as PCI DSS, ISO 27001, SOC 2, and GDPR. Support Atom’s AI team with AI and Automation specific infrastructure security needs. Partner with DevOps and engineering teams … Docker environments. Advanced scripting and automation skills (Python, PowerShell, Bash, etc.) Demonstrated ability to navigate and implement compliance frameworks such as PCI DSS, GDPR, SOC 2, and ISO 27001. Familiarity with financial industry-specific security and privacy standards. Relevant Security certifications (e.g. CISSP, SSCP, CCSM, CISM, etc.) Relevant ...

licence reviews, container/image policies, and supply-chain controls. Evaluate logging, monitoring, and observability practices. Map findings to compliance frameworks (e.g., ISO 27001, SOC 2, or NHS DSPT where applicable). Produce a comprehensive gap analysis, risk register (with severity and likelihood ratings), and prioritised remediation backlog. … promotion criteria). Deliverables (by end of audit) DevOps Audit Report (executive summary + detailed findings). Compliance mapping (ISO 27001 Annex A/SOC 2 trust principles) with gap list. Risk register including mitigations, effort, and impact estimates. Prioritised remediation backlog and proposed guardrails for Phase 2. ...

will lead the delivery of ISO 27001 certification within the next 12 months . The GRC Analyst will focus on maintaining current ISO and SOC 2 standards within the business. Technical understanding would be beneficial but not essential. Knowledge of the requirements of the above standards in relation … risk, or compliance role Certifications for ISO 27001 (Lead Implementer/Auditor) , would be required Strong knowledge of frameworks such as ISO 27001, NIST, SOC 2, CIS , and data protection standards Onboarding/vendor risk management experience Hands-on experience supporting or leading ISO 27001 certification activities Solid ...

Serverless and event-driven architectures (Functions, Logic Apps, Event Grid). Experience in regulated industries (e.g., Financial Services) and with compliance standards (ISO 27001, SOC 2). Knowledge of FinOps principles and cost governance on Azure. Interview process Stage 1 (remote): competency and technical interview including discussion … prior platform/DevOps work and scenario-based problem solving. Stage 2 (on-site/remote): practical exercise (e.g., pipeline/IaC/Kubernetes task) and a short design presentation to a panel. Working schedule This role is permanent, full time, 37.5 hours per week, Monday to Friday. ...

Ping Identity) Exposure to Kubernetes (GKE, workload identity, RBAC) Experience with secrets management tools (Vault, Secret Manager) Familiarity with compliance frameworks such as SOC2, ISO 27001, or PCI Why Apply? Contract through to year-end with extension potential Hybrid working from Sheffield Inside IR35 engagement Opportunity to work on large ...

security Infrastructure-as-code mindset and strong automation skills Comfortable working cross-functionally and owning shared platforms Nice to Have Experience with compliance frameworks (SOC 2, ISO 27001, etc.) Familiarity with SRE principles and reliability engineering Security certifications or deep interest in cloud security About ...

experience closing compliance gaps Proven track record in enterprise-wide IT initiatives (e.g., identity management, network segmentation, EDR deployments) Familiarity with ISO 27001 or SOC2 standards Certifications such as CISSP, CISM, PMP, PRINCE2 Practitioner, or Agile credentials highly desirable Strong understanding of IT service lifecycle and collaboration with architecture and ...

DERMS or other OT/IT grid management platforms Knowledge of GridOS ecosystem and DERMS integration Exposure to cybersecurity standards (NERC CIP, ISO 27001, SOC2) Cloud/hybrid environments (Azure, AWS) Certifications: ITIL, Security+, or utility-specific systems training Scripting/automation: Python, Bash, PowerShell Key Responsibilities L2/ ...

desk triage and out-of-hours support coverage. Partner with key stakeholders across Product, Engineering, and Compliance to support audit readiness (ISO 27001/SOC 2). What you'll need: 5+ years' experience in IT service management, ITSM, ITIL, including awareness of Devops/Strong understanding ...

compliance requirements across the organisation. Is this role for you: • Familiarity with auditing standards and security frameworks (e.g., ISO/IEC 27001, CMMC, SOC 2). • Working knowledge of global data privacy and protection laws (e.g., GDPR, PIPL, CCPA, DPDP). • Experience conducting or supporting security audits and ...

engineering and non-technical roles Familiarity with security standards and frameworks such as PCI-DSS, NIST SP 800-53, NIST CSF, ISO 27001, and SOC 2 Practical experience using Large Language Models (LLMs) in day-to-day security risk management activities, including: Accelerating risk analysis and documentation Supporting ...

production support rotation Manage internal IT systems, access control, and organisational security posture Contribute to compliance and audit documentation and evidence generation Essential Experience 2–3+ years' experience in DevSecOps, Cloud Security, DevOps, or Platform Engineering Hands-on experience with at least one major cloud provider … Infrastructure as Code (Terraform) Experience automating security, compliance, or operational workflows Comfortable working in technical English Nice to Have Exposure to ISO 27001 or SOC2 Understanding of network security fundamentals Experience securing and operating databases (backup, restore, monitoring) Experience with vulnerability management and penetration testing findings Familiarity with monitoring and ...

incident response within cloud environments. Help mature vulnerability management processes and security playbooks. Compliance & Risk Ensure cloud services align with recognised frameworks (e.g. ISO27001, SOC2, PCI, GDPR). Assist with risk assessments for new systems, cloud services, and third-party integrations. Cross-Team Collaboration Act as the bridge between … role is perfect for someone who: Comes from a Platform Engineering , Cloud Engineering , or DevOps background. Enjoys security but doesn't want a pure SOC/blue-team role. Wants to work on new AI initiatives and become the security SME for AI within the company. Likes hybrid working ...

RealVNC is the remote access platform for engineers looking for the most reliable and the most secure solution built by the creators of VNC technology. Over the last 25 years, as the inventors of VNC ...