1 to 25 of 67 Permanent ISO/IEC 27001 Jobs in the Midlands

organisations build trust, security, and resilience across their digital operations. Their specialist services span AI Governance as a Service (AIGaaS) , Virtual Data Protection Officer (vDPO) support, ISO / TISAX compliance , and digital resilience strategy . To support their next phase of growth, they're seeking a commercially driven Business Development professional to accelerate expansion across the SME … makers. Highly self-motivated with a proactive, start-up mindset. Excellent communication, negotiation, and commercial acumen. Organised approach to pipeline management and CRM usage. Familiarity with AI governance, GDPR / data protection, and cyber risk frameworks . Understanding of ISO / TISAX / ISO 27001 or other compliance standards desirable. More ❯

diverse client base. You'll lead and support security assessments including network, web application, mobile, cloud, wireless, and internal infrastructure testing , alongside Cyber Essentials and Cyber Essentials Plus (CE / CE+) assessments. This role suits someone who enjoys hands-on technical work, clear reporting, and helping clients improve their security posture in practical, measurable ways. This is primarily an … occasional travel to client sites. Key Responsibilities Penetration Testing and Security Assessments: Deliver CREST-aligned penetration tests across external and internal networks, web applications and APIs, mobile applications (iOS / Android), and Cloud environments (Azure, AWS, GCP). Wireless networks and remote working setups. Security configuration and segmentation reviews. Perform vulnerability assessments and risk-based testing using industry best … practices. Validate findings, reproduce issues, and advise on realistic remediation. Support red team / adversarial simulation exercises where appropriate. Cyber Essentials and Cyber Essentials Plus: Conduct Cyber Essentials readiness reviews , gap assessments, and remediation guidance. Lead Cyber Essentials Plus technical audits , including sampling, evidence review, and on-site / remote verification. Help clients interpret requirements and maintain compliance More ❯

security awareness training, security compliance, security accreditation and collaborate with various stakeholders to foster a security-conscious culture. Key Deliverables: Align the business' security stance to comply with ISO 27001 and Cyber Essentials Plus, or in accordance with the Cyber Assessment Framework Improve the Cyber Awareness within the company via communications, Cyber Awareness training and monitoring … business on matters relating to cyber security Skills & Experience: Solid experience working within a similar role within information security management, ideally within an ICT Infrastructure, Managed Service Provider and / or Systems Integrator In-depth knowledge of ISO 27001 standards and best practices, as well as other relevant security frameworks (e.g., NIST, CAF) A regluated … risks Proven experience in developing and implementing information security policies, procedures, and controls. Familiarity with risk assessment methodologies and tools Desirable: Experience of working within Defence, UK government and / or a commercial security supplier Professional certifications in information security, such as CISSP or CISM, ISO 27001 related If your profile demonstrates strong and recent More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

networks stay secure, reliable, and compliant. You’ll manage cyber and data protection risks, oversee our technical infrastructure, and ensure our client meets key security standards such as ISO 27001, Cyber Essentials, PSN, and PCI-DSS. You’ll also manage the client's corporate insurance function, helping ensure the policies and coverage are robust and compliant. … improve the network and server infrastructure (on-premise and cloud). • Promote cyber awareness and best practice across the organisation. • Ensure successful completion of security audits and certifications (ISO 27001, Cyber Essentials, PSN, PCI-DSS). • Manage the corporate insurance service, working with governance officers and external partners. • Build strong working relationships with internal teams, senior … managing risk assessments, incident response, and security operations. • Excellent problem-solving, communication, and leadership skills. Desirable qualifications and experience: • CISM, CISSP, ISO 27001 Lead Implementer / Auditor, or ITIL certification. • Experience with frameworks such as PSN, PCI-DSS, NHS DSP Toolkit, or CAF. • Understanding of insurance laws and governance. Should you have any questions or More ❯

and networks stay secure, reliable, and compliant. You’ll manage cyber and data protection risks, oversee our technical infrastructure, and ensure we meet key security standards such as ISO 27001, Cyber Essentials, PSN, and PCI-DSS. You’ll also manage our client's corporate insurance function, helping ensure our policies and coverage are robust and compliant. … improve the network and server infrastructure (on-premise and cloud). • Promote cyber awareness and best practice across the organisation. • Ensure successful completion of security audits and certifications (ISO 27001, Cyber Essentials, PSN, PCI-DSS). • Manage the corporate insurance service, working with governance officers and external partners. • Build strong working relationships with internal teams, senior … managing risk assessments, incident response, and security operations. • Excellent problem-solving, communication, and leadership skills. Desirable qualifications and experience: • CISM, CISSP, ISO 27001 Lead Implementer / Auditor, or ITIL certification. • Experience with frameworks such as PSN, PCI-DSS, NHS DSP Toolkit, or CAF. • Understanding of insurance laws and governance Should you have any questions or More ❯

one or more vulnerability management tools, such as: Qualys, Rapid7, Tanium, Axonius, Armis, or other. Experience applying the following models to an enterprise security program: CMMI, ISO / IEC 2700, OWASP SAMM, NIST, SMM SANS Security Maturity Model. Experience developing security reports, trends, and metrics analysis. Experience with the application of some of the following … ISO 27001, MITRE ATT&CK, PCI, HIPAA, GDPR or similar. Experience with cloud security practices Experience with business and technical requirements analysis, business process modeling / mapping, methodology development, and data mapping Additional Information Benefits package includes: Great compensation package and discretionary bonus plan Core benefits include pension, bupa healthcare, sharesave scheme and more More ❯

security awareness training, security compliance, security accreditation and collaborate with various stakeholders to foster a security-conscious culture. Key Deliverables: Align the business' security stance to comply with ISO 27001and Cyber Essentials Plus, or in accordance with the Cyber Assessment Framework Improve the Cyber Awareness within the company via communications, Cyber Awareness training and monitoring of Staff compliance … business on matters relating to cyber security Skills & Experience: Solid experience working within a similar role within information security management, ideally within an ICT Infrastructure, Managed Service Provider and / or Systems Integrator In-depth knowledge of ISO 27001 standards and best practices, as well as other relevant security frameworks (e.g., NIST, CAF) Strong technical … investigations Excellent communication and interpersonal skills, with the ability to effectively collaborate with stakeholders at all levels of the organisation Desirable: Experience of working within Defence, UK government and / or a commercial security supplier Professional certifications in information security, such as CISSP or CISM, ISO 27001 related If your profile demonstrates strong and recent More ❯

stay ahead of evolving threats. Youll be part of a collaborative, award-winning team that blends deep technical knowledge with commercial insight , supporting global organisations with frameworks including ISO 27001, SOC 2, PCI-DSS, GDPR, DORA, and NIS2 . The Role: Lead and deliver GRC engagements for large enterprise clients , including readiness assessments, internal audits, and … autonomously while helping refine and enhance consultancy methodologies. Desired Experience: Proven experience in GRC consulting, audit, or information security management within large or regulated organisations. Strong knowledge of ISO 27001 and SOC 2 (experience with PCI-DSS, NIST, DORA, or NIS2 advantageous). Excellent communication and presentation skills, confident in C-level workshops and stakeholder management … . Organised, self-motivated, and experienced managing multiple enterprise projects simultaneously. Certifications such as CISM, CISA, CISSP, or ISO Lead Auditor desirable. Why Join: Work with some of the most recognised enterprise clients across multiple sectors. Join a supportive, people-first culture that values innovation, autonomy, and collaboration. Annual training & certification budget to invest in your development. EMI More ❯

internal and customer-facing IT projects. Maintaining infrastructure through patching, upgrades, testing, and proactive monitoring. Implementing IT security policies and VPN solutions in line with compliance standards. Supporting ISO 27001 compliance, risk management, and audit readiness. Assisting with disaster recovery planning and business continuity measures. Overseeing IT asset management, procurement, and vendor relationships. Producing and maintaining … VMware environments. Strong knowledge of Windows and Linux system administration. Familiarity with networking concepts (routing, switching, firewalls, VPNs). Exposure to automation tools such as PowerShell, Ansible, or CI / CD workflows. A solid understanding of IT security best practices and compliance standards. Experience supporting or maintaining ISO 27001 or similar frameworks. Strong communication and More ❯

architecture and secure design Strong knowledge of security frameworks (ISO 27001, NIST, GDPR, OWASP, PCI) Experience in application, infrastructure, or enterprise architecture Familiarity with CI / CD and Continuous Security practices Solid understanding of network, web app, and cryptographic security Proven ability to coach and develop others Excellent communication and stakeholder engagement skills Eligibility Requirement … right next step for you, we'd love to hear from you. Please reach out to discuss the role in more detail or to express your interest. Reference: AMC / CLI / SARC #coli More ❯

and responding to their needs because they are our priority. Care for Our Colleagues: We support each other to foster a workplace where everyone can thrive. Protect Our Pounds / Euros: We are committed to cost-efficiency and value, ensuring every penny counts. We reserve the right to close this vacancy early if we receive a high volume of … Educate and mentor staff on security best practices, common threats, and misconceptions. Prepare reports on security posture, maturity, and compliance. Support governance, risk, and compliance initiatives. Participate in and / or manage security-related projects as required. Stay current with emerging threats, technologies, and industry trends. Skills and Knowledge A minimum of 10 years experience in IT. Hands-on … Expertise in vulnerability management and patch management (Qualys or similar platforms). Understanding of Email Security platforms (e.g., Darktrace) and Security Awareness & Training platforms. Knowledge of security frameworks (ISO 27001, NIST, GDPR, etc.). Familiarity with SIEM, security system administration, and incident response. Understanding of SOC operations and monitoring. No formal qualifications required, although a security More ❯