22 of 22 Remote/Hybrid SOC 2 Jobs

Contract Auditor/Assurance Consultant SOC 2/ISO 27001 6-Month Contract £400-£500 per day UK-based | Remote first with travel to Bristol & west midlands offices We’re supporting a growing Engineering-led organisation seeking an experienced Auditor/Assurance Consultant to support a 6-month … contract focused on SOC 2 and ISO 27001 compliance. This is a hands-on role suited to someone who enjoys working closely with internal teams, bringing structure to compliance programmes, and helping organisations prepare confidently for audit. The Role You’ll play a key role in supporting SOC ...

data loss. Develop automated workflows for vulnerability management, incident detection, and response. Align security measures with financial regulations such as PCI DSS, ISO 27001, SOC 2, and GDPR. Support Atom’s AI team with AI and Automation specific infrastructure security needs. Partner with DevOps and engineering teams … Docker environments. Advanced scripting and automation skills (Python, PowerShell, Bash, etc.) Demonstrated ability to navigate and implement compliance frameworks such as PCI DSS, GDPR, SOC 2, and ISO 27001. Familiarity with financial industry-specific security and privacy standards. Relevant Security certifications (e.g. CISSP, SSCP, CCSM, CISM, etc.) Relevant ...

licence reviews, container/image policies, and supply-chain controls. Evaluate logging, monitoring, and observability practices. Map findings to compliance frameworks (e.g., ISO 27001, SOC 2, or NHS DSPT where applicable). Produce a comprehensive gap analysis, risk register (with severity and likelihood ratings), and prioritised remediation backlog. … promotion criteria). Deliverables (by end of audit) DevOps Audit Report (executive summary + detailed findings). Compliance mapping (ISO 27001 Annex A/SOC 2 trust principles) with gap list. Risk register including mitigations, effort, and impact estimates. Prioritised remediation backlog and proposed guardrails for Phase 2. ...

will lead the delivery of ISO 27001 certification within the next 12 months . The GRC Analyst will focus on maintaining current ISO and SOC 2 standards within the business. Technical understanding would be beneficial but not essential. Knowledge of the requirements of the above standards in relation … risk, or compliance role Certifications for ISO 27001 (Lead Implementer/Auditor) , would be required Strong knowledge of frameworks such as ISO 27001, NIST, SOC 2, CIS , and data protection standards Onboarding/vendor risk management experience Hands-on experience supporting or leading ISO 27001 certification activities Solid ...

will lead the delivery of ISO 27001 certification within the next 12 months . The GRC Analyst will focus on maintaining current ISO and SOC 2 standards within the business. Technical understanding would be beneficial but not essential. Knowledge of the requirements of the above standards in relation … risk, or compliance role Certifications for ISO 27001 (Lead Implementer/Auditor) , would be required Strong knowledge of frameworks such as ISO 27001, NIST, SOC 2, CIS , and data protection standards Onboarding/vendor risk management experience Hands-on experience supporting or leading ISO 27001 certification activities Solid ...

City of London - Hybrid Working Responsibilities: - Plan, lead, and deliver a diverse portfolio of IT Assurance and Consulting engagements, including IT External Audit Support, SOC 1 & SOC 2 Attestations, IT Internal Audit Reviews, Regulatory Compliance Assessments, and Operational Resilience evaluations, ensuring quality delivery within scope, time, and … actionable recommendations for management and governance stakeholders. Required Skills/Experience: - Strong understanding of ISA 315/330/402 - Experience delivering IT Assurance, SOC 1 & 2, and IT Internal Audit engagements. - Proficient in testing ITGCs, ITACs, and IPEs across varied system environments. - Sound knowledge of ERP systems ...

Gateway). Experience with cost optimisation and monitoring tools in AWS (e.g., Trusted Advisor, Cost Explorer). Knowledge of compliance frameworks (ISO 27001, SOC2, GDPR) and applying them to cloud environments. Experience integrating security scanning tools (Snyk, SonarQube, AWS Inspector) into CI/CD pipelines. Familiarity with site reliability engineering ...

across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. ...

City of London - Hybrid Working Responsibilities: - Plan, lead, and deliver a diverse portfolio of IT Assurance and Consulting engagements, including IT External Audit Support, SOC 1 & SOC 2 Attestations, IT Internal Audit Reviews, Regulatory Compliance Assessments, and Operational Resilience evaluations, ensuring quality delivery within scope, time, and ...

City of London - Hybrid Working Responsibilities: - Plan, lead, and deliver a diverse portfolio of IT Assurance and Consulting engagements, including IT External Audit Support, SOC 1 & SOC 2 Attestations, IT Internal Audit Reviews, Regulatory Compliance Assessments, and Operational Resilience xxuwjjq evaluations, ensuring quality delivery within scope, time ...

Serverless and event-driven architectures (Functions, Logic Apps, Event Grid). Experience in regulated industries (e.g., Financial Services) and with compliance standards (ISO 27001, SOC 2). Knowledge of FinOps principles and cost governance on Azure. Interview process Stage 1 (remote): competency and technical interview including discussion … prior platform/DevOps work and scenario-based problem solving. Stage 2 (on-site/remote): practical exercise (e.g., pipeline/IaC/Kubernetes task) and a short design presentation to a panel. Working schedule This role is permanent, full time, 37.5 hours per week, Monday to Friday. ...

Ping Identity) Exposure to Kubernetes (GKE, workload identity, RBAC) Experience with secrets management tools (Vault, Secret Manager) Familiarity with compliance frameworks such as SOC2, ISO 27001, or PCI Why Apply? Contract through to year-end with extension potential Hybrid working from Sheffield Inside IR35 engagement Opportunity to work on large ...

Senior Security Risk Specialist – Contract Location - London (Hybrid – 2 days onsite in Bank) Term: 6 months Rate: £650 per day (Inside iR35) We’re looking for a Senior Security Risk Specialist to support a technology company’s Security Risk Management function. Reporting to the Head of Security Risk & Assurance … background in security risk management within tech or regulated environments Cloud security risk assessment experience (AWS experience a must) Familiarity with ISO 27001, NIST, SOC 2, PCI-DSS Comfortable engaging technical and non-technical stakeholders GRC tooling experience, consulting background, CISM/CRISC/CISSP This ...

integration, and network security. Hands-on experience with Azure Policy, RBAC, and resource governance. Knowledge of Azure Security practices, tools, and compliance standards (e.g., SOC 2, ISO, etc.). Familiarity with Azure Cost Management, tagging strategies, and budget controls. Extensive experience managing Databricks as a platform, including Unity ...

security architecture. * Expertise across cloud platforms: Microsoft Azure, AWS, GCP. * Experience with hybrid and on-premise security models. * Understanding of ISO 27001, NIST, SOC 2, CIS Controls. Cloud Security Technologies & Platforms * Microsoft Defender for Cloud, AWS Security Hub, GuardDuty, GCP Security Command Center. * Microsoft Sentinel, AWS CloudTrail, Config ...

experience closing compliance gaps Proven track record in enterprise-wide IT initiatives (e.g., identity management, network segmentation, EDR deployments) Familiarity with ISO 27001 or SOC2 standards Certifications such as CISSP, CISM, PMP, PRINCE2 Practitioner, or Agile credentials highly desirable Strong understanding of IT service lifecycle and collaboration with architecture and ...

fullstack context): React, TypeScript, Vite, Next.js Bonus familiarity: Graph databases and GraphML for relationship modelling .NET for legacy integration or specific tooling Cyber Security SOC2/CE+/Regulatory experience What Success Looks Like (First 12 Months) Core backend services and infrastructure are more scalable, reliable and observable Clear architectural ...

DERMS or other OT/IT grid management platforms Knowledge of GridOS ecosystem and DERMS integration Exposure to cybersecurity standards (NERC CIP, ISO 27001, SOC2) Cloud/hybrid environments (Azure, AWS) Certifications: ITIL, Security+, or utility-specific systems training Scripting/automation: Python, Bash, PowerShell Key Responsibilities L2/ ...

compliance requirements across the organisation. Is this role for you: • Familiarity with auditing standards and security frameworks (e.g., ISO/IEC 27001, CMMC, SOC 2). • Working knowledge of global data privacy and protection laws (e.g., GDPR, PIPL, CCPA, DPDP). • Experience conducting or supporting security audits and ...

incident response within cloud environments. Help mature vulnerability management processes and security playbooks. Compliance & Risk Ensure cloud services align with recognised frameworks (e.g. ISO27001, SOC2, PCI, GDPR). Assist with risk assessments for new systems, cloud services, and third-party integrations. Cross-Team Collaboration Act as the bridge between … role is perfect for someone who: Comes from a Platform Engineering , Cloud Engineering , or DevOps background. Enjoys security but doesn't want a pure SOC/blue-team role. Wants to work on new AI initiatives and become the security SME for AI within the company. Likes hybrid working ...

infrastructure and products, embedding secure-by-design principles throughout the SDLC. Ensure Regulatory and Audit Readiness : Maintain alignment with relevant frameworks (e.g., DORA, ISO27001, SOC2, NIST, CIS) and support audits and compliance activities. Define key metrics to assess maturity and performance across all domains, and communicate progress to executive leadership. … cloud-first technology environments. Deep understanding of cloud, product, and operational security, combined with familiarity in risk management and compliance frameworks (DORA, ISO27001, SOC2, NIST). Excellent communication, stakeholder management, and decision-making skills - capable of influencing both technical and executive audiences. Strategic mindset with a bias for action, balancing ...

Financial Accountant – Growing SaaS Business (Private Equity Backed) Location: Central London (Hybrid – 2–3 days office)Salary: Circa £75k + benefits Job Type: Full-time, Permanent The role:An exciting opportunity has arisen for a Financial Accountant to join a high growth, PE-backed SaaS company headquartered in London … consumption tax reconciliations Support EU invoicing and VAT queries Work on R&D tax credits and transfer pricing Manage various finance admin tasks (e.g. SOC2 compliance, insurance, ONS surveys) Act as a point of contact for Private Equity stakeholder reporting About You: ACA/ACCA qualified, ideally qualified in practice ...