1 to 25 of 66 Permanent ISO/IEC 27001 Jobs in the Midlands

time. Responsibilities Implement security protocols and manage information security programs Report performance, exceptions, and outages to all audiences transparently. Align disaster recovery with business continuity plans. Ensure compliance with ISO27001, NIST CFS 2.0, and maintain ISMS. Identify risks, develop a comprehensive security plan. Test cyber-attacks regularly to address vulnerabilities. Monitor security trends, adapt strategies. Oversee incident monitoring, detection, response … capable of working effectively with diverse teams and stakeholders. Ability to stay current with security trends, emerging threats, and best practices in the cybersecurity landscape. Experience of manufacturing and / or supply chain industry is preferred. Able to operate in a multinational corporation with several locations. Competencies You have expertise within Customer / Relationship Management. You have excellent … or belief, or sexual orientation. With both customers and employees around the world, we are committed to ensuring our team reflects the unique communities around us. External recruitment services / agencies will not be used for this position. More ❯

time. Responsibilities Implement security protocols and manage information security programs Report performance, exceptions, and outages to all audiences transparently. Align disaster recovery with business continuity plans. Ensure compliance with ISO27001, NIST CFS 2.0, and maintain ISMS. Identify risks, develop a comprehensive security plan. Test cyber-attacks regularly to address vulnerabilities. Monitor security trends, adapt strategies. Oversee incident monitoring, detection, response … capable of working effectively with diverse teams and stakeholders. Ability to stay current with security trends, emerging threats, and best practices in the cybersecurity landscape. Experience of manufacturing and / or supply chain industry is preferred. Able to operate in a multinational corporation with several locations. Competencies You have expertise within Customer / Relationship Management. You have excellent … or belief, or sexual orientation. With both customers and employees around the world, we are committed to ensuring our team reflects the unique communities around us. External recruitment services / agencies will not be used for this position. More ❯

a security assurance co-ordinator (SAC). An understanding of MOD Secure by Design policy and process. Deep technical expertise in security technologies and solutions, including firewalls, intrusion detection / prevention systems (IDS / IPS), endpoint protection, encryption, identity and access management (IAM), and security information and event management (SIEM) systems. Strong understanding of security frameworks, standards, and … regulations, including ISO 27001, NIST Cybersecurity Framework, GDPR , NCSC Cyber Essentials Plus, with experience in implementing and maintaining compliance with these requirements. Excellent leadership and communication skills, with the ability to effectively communicate security-related concepts and risks to executive leadership, board members, and technical teams, and build consensus around security initiatives. Analytical mindset with strong More ❯

control testing. Knowledge of internal audit methodologies, including risk assessment, execution, and reporting. Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO 27001 / 27002). Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws. Experience with sector-specific frameworks (e.g., HIPAA, PCI). Technical Skills Proficiency with security tools (SailPoint … we value yours. Experian's culture, people, and environments are main differentiators. We take our people's agenda very seriously. We focus on what matters; diversity and inclusion, work / life balance, flexible work, development, engagement, collaboration, wellness, rewards & recognitions, volunteering the list goes on! Our benefits include: Medical, life and dental insurance, Asociacion Solidarista, International Share Save Plan … Flex Work / Work from home, Paid time off, Annual Performance Bonus, Education Reimbursement, Family Bonding, Bereavement Leave, Referral Program, and more. Experian Careers - Creating a better tomorrow together Find out what its like to work for Experian by clicking here Experian is proud to be an Equal Opportunity and Affirmative Action employer. Our goal is to create a More ❯

the response to cyber security incidents, ensuring timely resolution and root cause analysis. * Oversee the development and implementation of information security compliance and assurance programmes. * Ensure alignment with ISO 27001, NIST, and other relevant security frameworks. * Collaborate with the SOC to monitor, detect, and respond to cyber threats. * Manage governance, risk, and compliance (GRC) activities, including … threats, technologies, and regulatory changes. * Support internal and external audits and regulatory inspections. ________________________________________ Essential Skills & Experience: * Proven experience in cyber security operations and incident management. * Strong knowledge of ISO 27001, NIST, and related frameworks. * Experience with GRC processes and tools. * Familiarity with SOC operations and threat detection technologies. * Excellent understanding of the cyber threat landscape and … and communication skills. * Relevant certifications such as: * CISSP (Certified Information Systems Security Professional) * CISM (Certified Information Security Manager) * GSLC (GIAC Security Leadership Certification) * CCP (Certified Cyber Professional - ISSM) * ISO 27001 Lead Implementer or Auditor * GIS (GIAC Information Security) or equivalent * Experience in the defence sector or with government clients is highly desirable. * Must be a British More ❯

working closely with the Technology, Digital and Data management team. Ensuring the organisation is focused with adequate levels of patching, firewall configuration reviews and SIEM alerting. Hold our partners / suppliers to account for spend, performance and behaviour, including diversity within their teams. Maintain and input to the risk register in the technology service, documenting details of any or … all risks and their progress to remediation or mitigation. Manage staff performance appropriately by providing constructive feedback and take action where performance falls below the expected standard. Participate / work with external groups and stakeholders for the organisation such as NCSC, EMGWARP, auditors and accreditors as required. Person Specification Technical knowledge and experience Expert knowledge and understanding of security … practice; industry trends and risks Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP) certified. A good working knowledge of information security including ISO / IEC 27001 Information Security Management Standard and Cyber essentials. A deep applied knowledge of agile ways of working Experience of working across multiple channels (some More ❯

finances, business operations, or global investments. What you will do: Drive the company's information security strategy, ensuring alignment with GDPR, ISO 27001, DORA, PSD2 / 3, and other relevant regulations Identify and address local and entity-specific security requirements to maintain rigorous standards Conduct regular risk identification and develop mitigation strategies across systems, processes … and vendors Develop and maintain security policies, standards, and incident response protocols Support business continuity and disaster recovery planning for seamless resilience Lead and oversee internal / external security audits to ensure transparency and accountability Partner with engineering and ICT teams to embed secure-by-design principles in products and infrastructure Conduct security awareness training and foster a culture … GDPR, EU NIS2, and familiarity with ISO 27001, NIST, and cybersecurity best practices Risk & Governance : Skilled in conducting risk assessments, defining mitigation strategies, and creating / enforcing security policies Good technical understanding of IT infrastructure, software development, hardware, data flows, change management, and BC / DR-and how they shape security and resilience Fluent More ❯

Recognised, current security certifications (e.g., CISSP, CISM). Experience managing operational security activities, including governance and compliance. Strong understanding of regulatory and compliance frameworks such as NIST CSF, ISO 27001, and GDPR. Demonstrated ability to advise on secure software development practices. Demonstrable experience with security technologies and architectures. Hands-on experience with MS Azure cloud security More ❯

of our legacy systems to the Microsoft cloud. Your responsibilities will include: Evaluate and enhance existing IT systems, management procedures, and security protocols to ensure robust protection. Oversee ISO 27001 and other key accreditations by collaborating with internal teams and external auditors. Manage information security requests and compliance reports, ensuring adherence to GDPR and other relevant … have the opportunity to leverage your existing skills while developing new ones, contributing to the strategic security objectives of the Company and ensuring adherence to critical accreditations, including ISO 27001, GDPR, Cyber Essentials, and PCI DSS. The successful candidate will demonstrate: Strong analytical skills with a meticulous approach to identifying and resolving security issues. Excellent verbal … attitude towards learning and developing expertise in information security. Happy to travel occasionally to other sites as required. Desirable Experience: Demonstrable expertise in external audit, compliance, and security processes (ISO27001, GDPR, Cyber Essentials and PCI DSS). Microsoft accreditation or other recognised certifications (e.g. Microsoft Learning, CISA, CISM, CRISC, CCSP) would be very beneficial. Benefits: £25,000 - £35,000 salary More ❯

managing IT service delivery or infrastructure projects in a managed services environment. Hands-on expertise with Microsoft 365, Intune, and Azure. Familiarity with ITSM platforms (e.g., Halo) and network / security practices. Strong understanding of ITIL, SLAs, and service desk operations. Commercial awareness with experience in ROI, business cases, and benefit realisation. Excellent communication and stakeholder engagement skills. Competencies … opportunities and welcome all applications. As a specialist in secure technology solutions, all successful candidates will be subject to pre-employment checks, so we can ensure compliance with our ISO27001 (Information Security) and Cyber Essentials Plus certifications. We are committed to using any personal information you may give us in a secure and proper manner, for more information please see More ❯

JUser: :_load: Unable to load user with ID: 994 Job Summary Infrastructure Architect / Permanent / Worcestershire Country: United Kingdom Location: Malvern Sector: Architect Job Type: Permanent Technologies: infrastructure architecture Cyber Security Windows Servers 2012 Microsoft Active Directory LAN WAN office365 VPN Security Cleared Infrastructure Architect / Permanent / Worcestershire Infrastructure Architect / Permanent / … security clearance. • Infrastructure auditing and record keeping. • Design and implementation of ISO 27001 policies and procedures. • Experience of IASME Cyber Essentials. • Evaluation of candidate hardware / software solutions in a formal manner, involving requirements definition, evaluation, and presentation of recommendations. • Cloud technology including AWS and Azure. • Microsoft SharePoint and Dynamics CRM. • Docker or other lightweight More ❯

colleagues, generates £315m in revenue, and supports more than 60,000 clients across a diverse range of sectors and markets. Role Purpose: An Information Security Officer (ISO) is required to support LRQA's global operations, to develop, improve and maintain the organisation's Information Security capability. Working closely with the Global CISO, the role will support the creation … identify information security deficiencies or opportunities for improvement and facilitate development of pragmatic solutions. Work with the DPO to ensure appropriate security is applied to data and provide reports / subject access requests. Design and deliver continual education and training to our colleagues to support them in identifying risks in their day-to-day operations, using Phishing Simulations and … in a global, multi-business environment is a plus. Technical / Professional Qualification requirements: Proven experience in Information Security Management and IT risk management. In-depth knowledge of ISO27001 to Lead Auditor standard. Knowledge of relevant regulations (Data Protection, DORA, NIS2). Knowledge of Three Lines of Defence Model and its application. Knowledge of vulnerability management and Identity and More ❯

IT Security Engineer - £45,000 / £50,000 per annum - Scunthorpe Principal IT are working with a leading steel manufacturer that are looking for an IT security engineer to join their team. In this role you will play a vital part in supporting their future strategy. They are looking for someone who is passionate about continuous professional development and … encryption and certificates as used within IT systems. Experience of security patching and their management systems. Familiarity with Windows Server, Red Hat, and Debian Linux environments. Understanding of OT / ICS security and legacy system constraints. Familiarity of auditing systems for vulnerabilities with tools like Nessus Ability to analyse logs, detect anomalies, and respond to threats. Desirable: Certifications such … as CompTIA Security+, CISSP, CEH, or GIAC. Experience with SIEM tools, network monitoring, or threat intelligence platforms. Knowledge of NIST(2), Cyber Assessment Framework, Cyber essentials(+), ISO 27001, or IEC 62443 standards. Scripting skills and data manipulation The Package: If successful our client is offering a salary between £45,000 - £50,000 per More ❯

sites supporting all departments and users, you will report to the head of department and provide support for systems and infrastructure. You will be responsible for effective provisioning, installation / configuration, operation, and maintenance of systems hardware and software and related infrastructure. This role requires the individual to participate in technical research and development to enable continuing innovation within … involvement in new project work, where a hardware or software solution is needed to deliver the project, this may include suggestions for solution delivery both in terms of hardware / software and appropriate proof of concept work and testing. The role requires the creation and maintenance of suitable documentation including network infrastructure and operating processes and procedures. The Senior … attention. In line with good security principles, the Senior SA will consider the Confidentiality, Integrity and Availability of all systems and wherever new requirements or changes are being requested / evaluated. The role requires the provisioning and maintenance of the Disaster Recovery (DR) solution for the business with regards to computer infrastructure, hardware, and software. Technologies Windows Server More ❯

at UKI.recruitment@tcs.com or call TCS London Office number 02031552100 with the subject line: “Application Support Request”. Role: Lead Security Architect (OT) network Job Type: Permanent Location: Leamington / Gaydon, UK Work mode: Hybrid Number of hours: 40 hours per week – full time Are you looking to take on a role in Security Architecture? We have an exciting … data and industry drivers associated with the service or application. Establish and deliver methods and tools which provide value for the organization by reducing risk. Your Profile Essential skills / knowledge / experience: Good experience in Network Security Architecture (or similar) within a large scale, high critical environment. Deep technical understanding of Enterprise Network Architecture, in both corporate … Good Knowledge of information security principles and best practices and experience in managing information security risk. Familiar with information security frameworks such as NIST, SANS Top 20 CSC, OWASP, ISO27001, CyberEssentials or other similar frameworks. Good knowledge of industry IT compliance standards, particularly in design and implementation. Good Understanding of Operational Technology and the challenges involved in securing access. Knowledge More ❯

PERSON SPECIFICATION Knowledge: A Levels or equivalent. Recognised qualification in information security, data protection, or risk (e.g. CISM, CISSP, CRISC, BCS DPO, etc.). In-depth understanding of ISO 27001, NIST, or other relevant security frameworks. Up-to-date knowledge of data protection legislation and associated best practices. Understanding of cross-functional areas affecting security (e.g. More ❯

PERSON SPECIFICATION Knowledge: A Levels or equivalent. Recognised qualification in information security, data protection, or risk (e.g. CISM, CISSP, CRISC, BCS DPO, etc.). In-depth understanding of ISO 27001, NIST, or other relevant security frameworks. Up-to-date knowledge of data protection legislation and associated best practices. Understanding of cross-functional areas affecting security (e.g. More ❯

contact you as soon as possible. Open Jobs Jun ID Job Title Job Description Cyber Security Architect Yakshna Solutions, Inc ., (YSI) is a CMMI Level 3 assessed, ISO 9001, 20000:1, 27001 certified, woman-owned small business enterprises, headquartered in Herndon, Virginia, USA. YSI provides professional IT solutions and services to business corporations and government … includes the following: 401(k), health, dental, and vision insurance, Life insurance, short-term and long-term disability insurance, paid time off, training and professional development assistance. Job Responsibilities / Required Skills: Responsible for the overall maintenance of the government's information technology security systems and protocols. Design and implement security measures for hardware, software, and network platforms to … and network infrastructure. Assess existing cybersecurity systems and protocols and design and implement upgrades to existing measures and implement new procedures. Provides timely detection, identification, and alerting possible attacks / intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from begin activities. Use cyber defense tools for continual monitoring and analysis of system activity to identify More ❯

Participate in knowledge sharing and capability development activities within the Cybersecurity Practice, contributing insights from the client engagement. Qualifications A degree (or equivalent experience) in Cybersecurity, Systems Engineering, Electrical / Electronic Engineering, or a related technical discipline. Recognised cybersecurity certifications: CISSP, CISM, CISA, GICSP, SABSA, or equivalent. Technical certifications or training aligned to OT security: IEC 62443, GIAC GRID / GICSP, SCADA / ICS security, or vendor-specific OT platforms. Familiarity with rail sector security and safety standards is highly desirable. Understanding of relevant UK regulatory frameworks, including NIS / NIS2 Regulations and UK CNI expectations. Additional certifications or practical experience in Secure by Design, systems assurance, or control systems architecture … cybersecurity principles for critical infrastructure, including threat modelling, risk analysis, defence-in-depth, and zero-trust architectures. Demonstrated ability to define, implement, and assure security controls across complex OT / IT systems within large engineering or infrastructure programmes. Experience integrating cybersecurity into engineering lifecycles, including Secure by Design practices, requirements definition, and traceability to technical controls. Practical understanding of More ❯

Participate in knowledge sharing and capability development activities within the Cybersecurity Practice, contributing insights from the client engagement. Qualifications A degree (or equivalent experience) in Cybersecurity, Systems Engineering, Electrical / Electronic Engineering, or a related technical discipline. Recognised cybersecurity certifications: CISSP, CISM, CISA, GICSP, SABSA, or equivalent. Technical certifications or training aligned to OT security: IEC 62443, GIAC GRID / GICSP, SCADA / ICS security, or vendor-specific OT platforms. Familiarity with rail sector security and safety standards is highly desirable. Understanding of relevant UK regulatory frameworks, including NIS / NIS2 Regulations and UK CNI expectations. Additional certifications or practical experience in Secure by Design, systems assurance, or control systems architecture … cybersecurity principles for critical infrastructure, including threat modelling, risk analysis, defence-in-depth, and zero-trust architectures. Demonstrated ability to define, implement, and assure security controls across complex OT / IT systems within large engineering or infrastructure programmes. Experience integrating cybersecurity into engineering lifecycles, including Secure by Design practices, requirements definition, and traceability to technical controls. Practical understanding of More ❯

IT Infrastructure Security technologies, IT general computer controls, industry frameworks (e.g. NIST) and will bring strong information technology audit or security consulting experience to the programme. Location United Kingdom / Europe Main responsibilities The Senior Associate will support with the implementation of the cybersecurity compliance programme, including: Collaboration with IT assurance engagement teams across the GT network Review of … qualifications Bachelor’s degree in IT / Computer Science desirable One of or similar to the following is desirable: CompTIA Security+ or CASP+ Associate of (ISC)2 ISO27001 Practitioner Experience – Essential Demonstrable experience in a similar role. Prior experience within a security compliance assurance or auditing position. Understanding of relevant regulatory requirements and assurance processes, including various auditing … standards such as NIST and ISO27001 Analytical skills to collect, analyse and interpret information and / or data into useful insight Excellent communication skills, both verbal and written, with the ability to initiate and lead conversations with senior stakeholders Ability to prioritise and manage a varying workload Experience - Desirable Experience with using GRC solutions as part of a risk More ❯

IT Infrastructure Security technologies, IT general computer controls, industry frameworks (e.g. NIST) and will bring strong information technology audit or security consulting experience to the programme. Location United Kingdom / Europe Main responsibilities The Senior Associate will support with the implementation of the cybersecurity compliance programme, including: Collaboration with IT assurance engagement teams across the GT network Review of … qualifications Bachelor’s degree in IT / Computer Science desirable One of or similar to the following is desirable: CompTIA Security+ or CASP+ Associate of (ISC)2 ISO27001 Practitioner Experience – Essential Demonstrable experience in a similar role. Prior experience within a security compliance assurance or auditing position. Understanding of relevant regulatory requirements and assurance processes, including various auditing … standards such as NIST and ISO27001 Analytical skills to collect, analyse and interpret information and / or data into useful insight Excellent communication skills, both verbal and written, with the ability to initiate and lead conversations with senior stakeholders Ability to prioritise and manage a varying workload Experience - Desirable Experience with using GRC solutions as part of a risk More ❯

IT Infrastructure Security technologies, IT general computer controls, industry frameworks (e.g. NIST) and will bring strong information technology audit or security consulting experience to the programme. Location United Kingdom / Europe Main responsibilities The Senior Associate will support with the implementation of the cybersecurity compliance programme, including: Collaboration with IT assurance engagement teams across the GT network Review of … qualifications Bachelor’s degree in IT / Computer Science desirable One of or similar to the following is desirable: CompTIA Security+ or CASP+ Associate of (ISC)2 ISO27001 Practitioner Experience – Essential Demonstrable experience in a similar role. Prior experience within a security compliance assurance or auditing position. Understanding of relevant regulatory requirements and assurance processes, including various auditing … standards such as NIST and ISO27001 Analytical skills to collect, analyse and interpret information and / or data into useful insight Excellent communication skills, both verbal and written, with the ability to initiate and lead conversations with senior stakeholders Ability to prioritise and manage a varying workload Experience - Desirable Experience with using GRC solutions as part of a risk More ❯

IT Infrastructure Security technologies, IT general computer controls, industry frameworks (e.g. NIST) and will bring strong information technology audit or security consulting experience to the programme. Location United Kingdom / Europe Main responsibilities The Senior Associate will support with the implementation of the cybersecurity compliance programme, including: Collaboration with IT assurance engagement teams across the GT network Review of … qualifications Bachelor’s degree in IT / Computer Science desirable One of or similar to the following is desirable: CompTIA Security+ or CASP+ Associate of (ISC)2 ISO27001 Practitioner Experience – Essential Demonstrable experience in a similar role. Prior experience within a security compliance assurance or auditing position. Understanding of relevant regulatory requirements and assurance processes, including various auditing … standards such as NIST and ISO27001 Analytical skills to collect, analyse and interpret information and / or data into useful insight Excellent communication skills, both verbal and written, with the ability to initiate and lead conversations with senior stakeholders Ability to prioritise and manage a varying workload Experience - Desirable Experience with using GRC solutions as part of a risk More ❯

IT Infrastructure Security technologies, IT general computer controls, industry frameworks (e.g. NIST) and will bring strong information technology audit or security consulting experience to the programme. Location United Kingdom / Europe Main responsibilities The Senior Associate will support with the implementation of the cybersecurity compliance programme, including: Collaboration with IT assurance engagement teams across the GT network Review of … qualifications Bachelor’s degree in IT / Computer Science desirable One of or similar to the following is desirable: CompTIA Security+ or CASP+ Associate of (ISC)2 ISO27001 Practitioner Experience – Essential Demonstrable experience in a similar role. Prior experience within a security compliance assurance or auditing position. Understanding of relevant regulatory requirements and assurance processes, including various auditing … standards such as NIST and ISO27001 Analytical skills to collect, analyse and interpret information and / or data into useful insight Excellent communication skills, both verbal and written, with the ability to initiate and lead conversations with senior stakeholders Ability to prioritise and manage a varying workload Experience - Desirable Experience with using GRC solutions as part of a risk More ❯