🛠 Tech Stack

💼 About This Role

You'll respond to due diligence questionnaires and conduct policy reviews to ensure adherence to ISO 27001 and SOC2 controls. Your work will directly protect global financial services clients. This role offers hybrid flexibility in York, England.

🎯 What You'll Do

• Respond to due diligence questionnaires from clients and partners.
• Conduct reviews of security policies and procedures.
• Ensure alignment with ISO 27001 and SOC2 controls.
• Assist in developing new security policies and artifacts.
• Monitor compliance status and report progress.

📋 Requirements

• Bachelor's degree in Information Security or related field.
• 3-5 years experience in security compliance or GRC.
• Strong understanding of ISO 27001 and SOC2 frameworks.
• Relevant certification (e.g., CISA, CISM, ISO 27001 Lead Auditor).

✨ Nice to Have

• Experience using Jira, Confluence, and SharePoint.
• Experience with EDR and SIEM tools.
• Knowledge of NIST standards.

🎁 Benefits & Perks

• 🏖️ Hybrid work in York, England
• 📚 Training and support on compliance matters
• 🛡️ Security newsletter and yearly awareness training

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Screen· 30 min
2. 2Technical Interview· 45 min
3. 3Hiring Manager Interview· 45 min