1 to 25 of 184 ISO/IEC 27001 Jobs in the Midlands

or countermeasures. Contribute to the development and continuous improvement of security policies, standards, and guidelines along with internal processes Implement and document new or enhanced security controls and system / process changes. Advise on and support penetration testing and vulnerability assessments across applications, systems, and networks. Conduct in-depth reviews of legacy systems to identify and remediate security gaps. … with regulatory and compliance frameworks (e.g., ISO 27001, NIST, GDPR). Our benefits Boots Retirement Savings Plan Discretionary annual bonus Generous employee discounts Enhanced maternity / paternity / adoption leave pay and gift card for anyone expecting or adopting a child Flexible benefits scheme including option to buy additional holiday, discounted gym membership, life … assurance, activity passes and much more. Access to free, 24 / 7 counselling and support through TELUS Health, our Employee Assistance Programme. We have a great range of benefits in addition to the above that offer flexibility to suit you - find out more at boots.jobs / rewards. Exclusions may apply, eligible roles only. Please note, any salary estimates More ❯

Social network you want to login / join with: Cybersecurity & Compliance Manager, birmingham col-narrow-left Client: Tosca Location: birmingham, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 06.06.2025 Expiry Date: 21.07.2025 col-wide Job Description: ABOUT TOSCA Tosca is a global leader in reusable packaging and pooling solutions that … time. Responsibilities Implement security protocols and manage information security programs Report performance, exceptions, and outages to all audiences transparently. Align disaster recovery with business continuity plans. Ensure compliance with ISO27001, NIST CFS 2.0, and maintain ISMS. Identify risks, develop a comprehensive security plan. Test cyber-attacks regularly to address vulnerabilities. Monitor security trends, adapt strategies. Oversee incident monitoring, detection, response … capable of working effectively with diverse teams and stakeholders. Ability to stay current with security trends, emerging threats, and best practices in the cybersecurity landscape. Experience of manufacturing and / or supply chain industry is preferred. Able to operate in a multinational corporation with several locations. You have expertise within Customer / Relationship Management. You have excellent communication More ❯

time. Responsibilities Implement security protocols and manage information security programs Report performance, exceptions, and outages to all audiences transparently. Align disaster recovery with business continuity plans. Ensure compliance with ISO27001, NIST CFS 2.0, and maintain ISMS. Identify risks, develop a comprehensive security plan. Test cyber-attacks regularly to address vulnerabilities. Monitor security trends, adapt strategies. Oversee incident monitoring, detection, response … capable of working effectively with diverse teams and stakeholders. Ability to stay current with security trends, emerging threats, and best practices in the cybersecurity landscape. Experience of manufacturing and / or supply chain industry is preferred. Able to operate in a multinational corporation with several locations. Competencies You have expertise within Customer / Relationship Management. You have excellent … or belief, or sexual orientation. With both customers and employees around the world, we are committed to ensuring our team reflects the unique communities around us. External recruitment services / agencies will not be used for this position. More ❯

a security assurance co-ordinator (SAC). An understanding of MOD Secure by Design policy and process. Deep technical expertise in security technologies and solutions, including firewalls, intrusion detection / prevention systems (IDS / IPS), endpoint protection, encryption, identity and access management (IAM), and security information and event management (SIEM) systems. Strong understanding of security frameworks, standards, and … regulations, including ISO 27001, NIST Cybersecurity Framework, GDPR , NCSC Cyber Essentials Plus, with experience in implementing and maintaining compliance with these requirements. Excellent leadership and communication skills, with the ability to effectively communicate security-related concepts and risks to executive leadership, board members, and technical teams, and build consensus around security initiatives. Analytical mindset with strong More ❯

all areas related to Release and Change Management, and support the organization’s information security posture by implementing, maintaining, and monitoring security controls, ensuring compliance with relevant standards (e.g., ISO27001, Cyber Essentials), and contributing to the secure operation of IT systems and services. This role offers hybrid working with a minimum of 3 days based from our Head Office in … statutory holidays. Free Car Parking Pension Cycle to work scheme Option to join our employee benefits scheme The Person Essential Criteria: Bachelor’s degree (minimum 2:1) in Information / Cyber Security from a leading academic institution. Experience working … within an IT security role. Familiarity with MS Operating Systems, M365, and Azure. GCSE or equivalent in Maths and English (Grade C / 4). Experience working in ISO27001, Cyber Security Essentials, or other security framework environments. The role will be offered subject to a satisfactory DBS check. Flexibility to work occasional weekends and out of hours. Desirable Criteria More ❯

control testing. Knowledge of internal audit methodologies, including risk assessment, execution, and reporting. Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO 27001 / 27002). Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws. Experience with sector-specific frameworks (e.g., HIPAA, PCI). Technical Skills Proficiency with security tools (SailPoint … we value yours. Experian's culture, people, and environments are main differentiators. We take our people's agenda very seriously. We focus on what matters; diversity and inclusion, work / life balance, flexible work, development, engagement, collaboration, wellness, rewards & recognitions, volunteering the list goes on! Our benefits include: Medical, life and dental insurance, Asociacion Solidarista, International Share Save Plan … Flex Work / Work from home, Paid time off, Annual Performance Bonus, Education Reimbursement, Family Bonding, Bereavement Leave, Referral Program, and more. Experian Careers - Creating a better tomorrow together Find out what its like to work for Experian by clicking here Experian is proud to be an Equal Opportunity and Affirmative Action employer. Our goal is to create a More ❯

while reducing false positives and enhancing actionable insights Conduct regular vulnerability assessments, interpret scan results, and coordinate remediation efforts Investigate suspicious files and behaviors for malware; collaborate with vendors / internal teams to mitigate and prevent future infections Respond swiftly to potential threats by isolating affected systems, applying containment measures, and supporting recovery efforts to minimize business disruption Provide … something!” A multi-award-winning wellbeing offering to support your physical, mental, spiritual, and financial health Volunteering opportunities to work closer with local communities and charities Cooper Parry social / sports clubs Feeling supported and welcomed is such a big part of bringing your whole self to work. As an equal opportunities employer, we’ll work with you to … have everything you need to develop your skills and achieve your best. Get in touch if you have any questions about our commitment to Diversity & Inclusion or about accessibility / accommodations during your application process. For the attention of agencies - unsolicited CVs will not be honoured. We will only accept CV submissions for roles briefed to you by our More ❯

with at least 5 years as a security assurance coordinator. Understanding of MOD Secure by Design policies and processes. Deep technical knowledge of security technologies such as firewalls, IDS / IPS, endpoint protection, encryption, IAM, and SIEM systems. Strong understanding of security frameworks and standards, including ISO 27001, NIST, GDPR, and NCSC Cyber Essentials Plus More ❯

Social network you want to login / join with: Information & Cyber Security Executive, lincoln col-narrow-left Client: McCabe & Barton Location: lincoln, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 7 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Location: Remote with occasional travel Employment Type: Full-Time Reports To: Information … and other benefits. Working remotely with occasional be in office in Essex. What You’ll Do Assess compliance with internal security policies and industry standards (e.g., ISO / IEC 27001 / 2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience … clear, business-friendly advice. Stay on-call during scheduled weeks for incident support and response. Requirements Solid understanding of cyber security, governance, and risk management principles. Experience with risk / vulnerability assessments and incident management. Experience first and second line support Strong analytical thinking and attention to detail. Familiarity with compliance frameworks like ISO 27001 More ❯

Social network you want to login / join with: Information & Cyber Security Executive, telford col-narrow-left Client: McCabe & Barton Location: telford, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 6 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Location: Remote with occasional travel Employment Type: Full-Time Reports To: Information … and other benefits. Working remotely with occasional be in office in Essex. What You’ll Do Assess compliance with internal security policies and industry standards (e.g., ISO / IEC 27001 / 2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience … clear, business-friendly advice. Stay on-call during scheduled weeks for incident support and response. Requirements Solid understanding of cyber security, governance, and risk management principles. Experience with risk / vulnerability assessments and incident management. Experience first and second line support Strong analytical thinking and attention to detail. Familiarity with compliance frameworks like ISO 27001 More ❯

Social network you want to login / join with: Information & Cyber Security Executive, northampton col-narrow-left Client: McCabe & Barton Location: northampton, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 5 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Location: Remote with occasional travel Employment Type: Full-Time Reports To: Information … and other benefits. Working remotely with occasional be in office in Essex. What You’ll Do Assess compliance with internal security policies and industry standards (e.g., ISO / IEC 27001 / 2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience … clear, business-friendly advice. Stay on-call during scheduled weeks for incident support and response. Requirements Solid understanding of cyber security, governance, and risk management principles. Experience with risk / vulnerability assessments and incident management. Experience first and second line support Strong analytical thinking and attention to detail. Familiarity with compliance frameworks like ISO 27001 More ❯

Social network you want to login / join with: Information & Cyber Security Executive, Worcester col-narrow-left Client: McCabe & Barton Location: Worcester, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 6 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Location: Remote with occasional travel Employment Type: Full-Time Reports To: Information … The position is remote with occasional travel to the office in Essex. What You’ll Do Assess compliance with internal security policies and industry standards (e.g., ISO / IEC 27001 / 2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience … into clear, business-friendly advice. Stay on-call during scheduled weeks for incident support and response. Requirements Solid understanding of cybersecurity, governance, and risk management principles. Experience with risk / vulnerability assessments and incident management. Experience with first and second line support. Strong analytical thinking and attention to detail. Familiarity with compliance frameworks like ISO 27001 More ❯

Social network you want to login / join with: Information & Cyber Security Executive, chesterfield col-narrow-left Client: McCabe & Barton Location: chesterfield, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 5 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Location: Remote with occasional travel Employment Type: Full-Time Reports To: Information … and other benefits. Working remotely with occasional be in office in Essex. What You’ll Do Assess compliance with internal security policies and industry standards (e.g., ISO / IEC 27001 / 2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience … clear, business-friendly advice. Stay on-call during scheduled weeks for incident support and response. Requirements Solid understanding of cyber security, governance, and risk management principles. Experience with risk / vulnerability assessments and incident management. Experience first and second line support Strong analytical thinking and attention to detail. Familiarity with compliance frameworks like ISO 27001 More ❯

Social network you want to login / join with: Information & Cyber Security Executive, shrewsbury col-narrow-left Client: McCabe & Barton Location: shrewsbury, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 5 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Location: Remote with occasional travel Employment Type: Full-Time Reports To: Information … and other benefits. Working remotely with occasional be in office in Essex. What You’ll Do Assess compliance with internal security policies and industry standards (e.g., ISO / IEC 27001 / 2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience … clear, business-friendly advice. Stay on-call during scheduled weeks for incident support and response. Requirements Solid understanding of cyber security, governance, and risk management principles. Experience with risk / vulnerability assessments and incident management. Experience first and second line support Strong analytical thinking and attention to detail. Familiarity with compliance frameworks like ISO 27001 More ❯

Social network you want to login / join with: Information & Cyber Security Executive, wolverhampton col-narrow-left Client: McCabe & Barton Location: Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 5 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Location: Remote with occasional travel Employment Type: Full-Time Reports To: Information Security Manager Join … and other benefits. Working remotely with occasional be in office in Essex. What You’ll Do Assess compliance with internal security policies and industry standards (e.g., ISO / IEC 27001 / 2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience … clear, business-friendly advice. Stay on-call during scheduled weeks for incident support and response. Requirements Solid understanding of cyber security, governance, and risk management principles. Experience with risk / vulnerability assessments and incident management. Experience first and second line support Strong analytical thinking and attention to detail. Familiarity with compliance frameworks like ISO 27001 More ❯

posture and create technical and procedural documentation to guide remediation efforts and improve security protocols. The office is based in Barton-Upon-Humber . There are opportunities for hybrid / remote work, but applicants must be able to reliably commute to the office when required. Main responsibilities: Monitor and analyse security alerts using various tools and technologies. Experience with … using multiple information sources. Enhance the security posture of UK and US operations, recommending and implementing security measures. Ensure compliance with relevant security policies and regulations. Familiarity with ISO and NIST frameworks is advantageous. Prepare and present security reports regularly. Coordinate with infrastructure and development teams for threat remediation. Stay updated on cybersecurity trends and threats, engaging in … attacks. Scripting experience in languages like PowerShell, C, C#, VB, Python, Perl, Ruby, and .NET. Strong multitasking, communication, and project management skills. Knowledge of security frameworks such as ISO 27001 and NIST CSF. Cybersecurity certifications like Security+, CSA, SC-900, CC, CySA+, GSEC are beneficial but not mandatory. Familiarity with tools like Zscaler, Mimecast, CrowdStrike, SIEM More ❯

the response to cyber security incidents, ensuring timely resolution and root cause analysis. * Oversee the development and implementation of information security compliance and assurance programmes. * Ensure alignment with ISO 27001, NIST, and other relevant security frameworks. * Collaborate with the SOC to monitor, detect, and respond to cyber threats. * Manage governance, risk, and compliance (GRC) activities, including … threats, technologies, and regulatory changes. * Support internal and external audits and regulatory inspections. ________________________________________ Essential Skills & Experience: * Proven experience in cyber security operations and incident management. * Strong knowledge of ISO 27001, NIST, and related frameworks. * Experience with GRC processes and tools. * Familiarity with SOC operations and threat detection technologies. * Excellent understanding of the cyber threat landscape and … and communication skills. * Relevant certifications such as: * CISSP (Certified Information Systems Security Professional) * CISM (Certified Information Security Manager) * GSLC (GIAC Security Leadership Certification) * CCP (Certified Cyber Professional - ISSM) * ISO 27001 Lead Implementer or Auditor * GIS (GIAC Information Security) or equivalent * Experience in the defence sector or with government clients is highly desirable. * Must be a British More ❯

to protect the firm's digital assets. Compliance: Ensure compliance with relevant laws, regulations, and industry standards, including GDPR and other data protection regulations. This will include ensuring ongoing ISO27001 and CE+ accreditation. Incident Response: Lead the firm's response to security incidents and breaches, ensuring timely and effective resolution. Develop and maintain incident response plans. Security Governance: Review, evolve … any emerging threats. What you will need: Previously led teams of Information Security professionals. Depth of knowledge of Information Security standards, tools and processes. Good understanding of GDPR, COBIT, ISO27001, PCI DSS, Cyber Essentials (including Plus) and risk management frameworks. Familiarity with industry leading security products and solutions. Practical, real-life and hands-on experience of security technologies. Knowledge and … real crisis. Member of Institute of Information Security Professionals (M.IISP) or have the qualification, skills and experience to become a member. Certification(s) in one or more of CISSP, ISO27001 Lead Auditor, CISM, CISA is expected. Organised with a proven ability to prioritise workload, meet deadlines, and utilise time effectively Strong working knowledge of risk management and previous experience working More ❯

and delivery strategy. Strong ability to work under pressure in a changing environment Qualification Broad technical knowledge of cyber security controls demonstrated by attainment of appropriate qualifications e.g. CISSP, ISO27001 Lead Implementor or relevant SANS GIAC or equivalent Knowledge of the NIST framework, PCI DSS, GDPR and NIS as well as NCSC cyber guidance. Experience working in an agile delivery … United Kingdom 1 day ago Cyber Security Consultant - (Remote - UK) Manchester, England, United Kingdom 1 month ago Senior Security Consultant, Digital Forensics & Incident Response Senior Cyber Security Consultant - Defence / Gov Manchester Area, United Kingdom 4 days ago Identity Security Consultant - CyberArk Exp Principal Security Architect – Sentinel, Defender, Purview Manchester, England, United Kingdom 1 month ago Manchester Area, United More ❯

working closely with the Technology, Digital and Data management team. Ensuring the organisation is focused with adequate levels of patching, firewall configuration reviews and SIEM alerting. Hold our partners / suppliers to account for spend, performance and behaviour, including diversity within their teams. Maintain and input to the risk register in the technology service, documenting details of any or … all risks and their progress to remediation or mitigation. Manage staff performance appropriately by providing constructive feedback and take action where performance falls below the expected standard. Participate / work with external groups and stakeholders for the organisation such as NCSC, EMGWARP, auditors and accreditors as required. Person Specification Technical knowledge and experience Expert knowledge and understanding of security … practice; industry trends and risks Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP) certified. A good working knowledge of information security including ISO / IEC 27001 Information Security Management Standard and Cyber essentials. A deep applied knowledge of agile ways of working Experience of working across multiple channels (some More ❯

finances, business operations, or global investments. What you will do: Drive the company's information security strategy, ensuring alignment with GDPR, ISO 27001, DORA, PSD2 / 3, and other relevant regulations Identify and address local and entity-specific security requirements to maintain rigorous standards Conduct regular risk identification and develop mitigation strategies across systems, processes … and vendors Develop and maintain security policies, standards, and incident response protocols Support business continuity and disaster recovery planning for seamless resilience Lead and oversee internal / external security audits to ensure transparency and accountability Partner with engineering and ICT teams to embed secure-by-design principles in products and infrastructure Conduct security awareness training and foster a culture … GDPR, EU NIS2, and familiarity with ISO 27001, NIST, and cybersecurity best practices Risk & Governance : Skilled in conducting risk assessments, defining mitigation strategies, and creating / enforcing security policies Good technical understanding of IT infrastructure, software development, hardware, data flows, change management, and BC / DR-and how they shape security and resilience Fluent More ❯

CISM, CISSP, ISO 27001 Lead Auditor, or equivalent. Knowledge of industry standards and frameworks such as NIST 800-53, ISO 27001 / 27002, CIS Controls, COBIT. Experience with current automated and manual industry methods for evaluating security controls on Perm and in cloud environments. Capable of communicating complex information in an … Ability to apply security governance, risk, and control principles. Proficiency in automation and data analytics tools (e.g., Excel, Tableau, Alteryx, and Power-BI). Ability to apply critical reading / thinking skills to identify systemic issues from analysing testing data. Ability to facilitate small to medium sized group meetings and communicate complex ideas. Agile working methodology experience. GCS is More ❯

process automation, system optimisation, and ensuring solutions are secure and scalable to meet customer requirements. Job Role Responsibilities Design and deploy hybrid infrastructure solutions both on-premises and Private / Public cloud. Ensuring proposed solutions meet the required demands for today with scalability for future needs. Develop and enforce security best practices across all infrastructure layers, including network, storage … years) as a Hybrid Solutions Engineer or similar role, with hands-on experience in designing, implementing, and managing both on-premises and cloud solutions. In-depth knowledge of Azure / M365 services (IaaS, PaaS, SaaS), including Virtual Machines, Azure App Services, Azure Networking, Storage Accounts, Security Center, Azure AD and M365 environments. In-depth knowledge of on-premises infrastructure … Recovery, SAN storage solutions Hands-on experience with security frameworks like NIST, ISO 27001, or CIS Controls Familiarity with DevOps practices and experience with CI / CD pipelines for Azure-based deployments. Proficiency in scripting and automation using PowerShell, Azure CLI, BASH or other relevant tools. Solid understanding of networking concepts, TCP / IP More ❯

forefront of ARAG UK’s security strategy, ensuring the confidentiality, integrity and availability of ARAG’s information and information systems. The successful candidate will hold accountability for ensuring our ISO27001 accreditation is adhered to and successfully renewed, as well as assessing the information risk and facilitate remediation of identified vulnerabilities within the company’s network, systems and applications. In addition … improvements in the response process and standardisation. About You We are keen to hear from candidates with a good understanding of information security frameworks, standards and security best practice (ISO27001, NIST CSF, Cyber Essentials, OWASP). You’ll have demonstrable knowledge and adherence to data protection legislation and regulatory requirements (e.g. GDPR, FCA SYSC, PCI DSS), as well as extensive … experience and understanding of security analysis tools, defensive technologies and other security technologies (e.g. SIEM, VAS, IDS / IPS, Firewalls, IAM, NAC, patch management, anti-malware). In addition, the ideal candidate will have: • Solid understanding of security incident management and incident response processes and activities. • Strong working knowledge of authentication technologies (e.g. two-factor, multifactor). • Good knowledge More ❯

with exploring ambiguity with a business outcome mindset while applying business analysis and softer skills as a key delivery contributor, a subject matter expert (SME) in the team and / or manager of a workstream of consultants and client staff. Our Managing Consultants are mentors in the business and key points of contact for our clients. We're looking … at the Managing Consultant and Senior Consultant grades with those who have demonstrated expertise and experience in either one (or both) of the following domains: Operational Resilience - Shaping and / or transforming client operational resilience capabilities in compliance with leading regulatory standards (e.g., DORA, Bank of England, FCA, NIST, etc.). Cybersecurity Operating Model Transformation - Assessing, designing and implementing … Desired Cybersecurity experience includes: Working with SOC teams, OT Security, Security Op Model Transformation projects and Cybersecurity Assessments. Familiarity with core Cybersecurity frameworks and industry regulations (e.g., NIST CSF, ISO27001, CIS Critical Controls, NIS2, DORA, FCA, Bank of England). Relevant Cybersecurity qualifications such as CISSP / CISM / CompTIA Security+ preferred. Currently working in an established Consulting More ❯