1 to 25 of 37 Permanent Information Security Jobs in the Midlands

Information Security & Compliance Lead Chesterfield £50,000 to £60,000+ Excellent Benefits Your new company Hays Technology are recruiting for an Information Security & Compliance Lead to join a large public sector organisation based in the Chesterfield area. You will be reporting to the Head of Digital, Data & Technology. This is a new role to establish and … make your own. Your new role In your new role, you will be responsible for ensuring the security and protection of the organisation's information systems, networks, and data, whilst playing a critical role in developing and implementing information security strategies, policies, and procedures to safeguard the organisation's digital assets and mitigating potential risks. You … will oversee information security, compliance, and risk management practices based on industry-accepted information security and risk management frameworks, whilst establishing and maintaining an incident response plan, including incident detection, response, investigation, and resolution, to minimise the impact of security incidents. What you'll need to succeed Demonstrable experience of implementing and maintaining information More ❯

Senior Information Security Officer Our Business Support teams deliver the vital services to ensure the continued success of our business divisions. These services include HR, Finance, Procurement, Marketing, Legal and Commercial, Estates and Facilities, Core Technology, Corporate Security, IT, and Fleet. Every person in every team is contributing the lasting impact our Team makes. Help build and … keep the nation's critical infrastructure connected and protected 24/7. Reporting into the Network Services Business Unit Security Manager, the Senior Information Security officer will ensure security is embedded into all areas of the business and appropriate technical controls are in place throughout our infrastructure. This company facing role will assist new initiatives such … to be in our Warwick a few times per month. What you'll do: Assist on all Governance, Risk and Compliance activities across Network Services Business Unit. Provide specialist security expertise for multiple internal projects across the Network Services business area. Provide guidance in secure software development throughout the lifecycle. Lead on risk and compliance technical assessments of all More ❯

Howdens Joinery have an exciting brand-new opportunity as an Information Security Architect to join our growing Cyber team. Responsible for designing secure, scalable solutions that align with Howdens’ business goals and cyber risk strategy. This role will suit a pro-active individual with an investigative nature who will be our key advisor across IT, Architecture, and Cyber … is a permanent opportunity based from our office in Northampton where you will be required to work onsite 2 days per week. What will I be doing as an InfoSec Architect? Collaborate across business, technical, and service teams to design and deliver security solutions that enhance cybersecurity maturity, reduce risk, and align with broader business objectives and priorities. Engage … with stakeholders to understand and balance competing business needs, technical constraints, and security requirements, ensuring practical and effective outcomes. Lead and contribute to solution design and re-architecture initiatives, assessing technical options in partnership with the Head of Information Security and Enterprise Architecture, and ensuring solutions are secure, maintainable, and scalable. Conduct proactive security architecture reviews More ❯

will: Assess that Cybersecurity is embedded throughout the development lifecycle of Technology Assets by using Deloitte's Secure System Development Lifecyle (SSDLC) to assure paths to production. Oversee that security testing activities like vulnerability scanning, penetration testing, and code reviews are completed to identify weaknesses and potential exploits on the identified security requirements. Identify potential information security … vulnerabilities. These risk assessments will be presented to risk owners who are either Director or Partner level. Ensure that the project adheres to Deloitte's Cybersecurity capability framework, relevant information security regulations and industry standards. Examples include GDPR, EU AI Act, ISO 27001, NIST Cybersecurity Framework, and Cyber Essentials +. Communicate security awareness, concerns, and requirements to … project stakeholders, including developers, project managers, and business leaders, to ensure alignment and buy-in. Maintain documentation related to security assessments, risks, mitigation plans, and compliance status, providing regular reports to relevant stakeholders across waterfall and iterative deployment methodologies. Enable the business by being a trusted partner. This means working with Business Relationship Managers, Business Advisers, and Programme Managers More ❯

Type: PermanentLocation: Hybrid (West Midlands)Overview:We are looking for a detail-oriented and proactive Information Security Compliance Analyst to join our team on a permanent basis. This role is pivotal in supporting the development and continuous improvement of our global information security compliance program.You will be responsible for ensuring that all corporate and subsidiary operations … comply with internal security policies, regulatory requirements, and internationally recognised frameworks such as ISO27001, NIST, SOX, GDPR, CMMC, amongst others.Key Responsibilities: Support the execution and enhancement of the global information security compliance program. Conduct internal audits, third-party risk assessments, and due diligence reviews. Ensure alignment with regulatory and industry standards including ISO27001, NIST, SOX, GDPR, SOC … HIPAA, CCPA, LGPD. Collaborate with cross-functional teams across multiple jurisdictions to drive compliance initiatives. Identify gaps in security controls and recommend corrective actions. Maintain and update security policies, procedures, and documentation. Monitor changes in global regulations and assess their impact on business operations. Minimum of 3 years experience.Skills Required: Proven experience in information security compliance More ❯

deliver the vital services to ensure the continued success of our business divisions. These services include HR, Finance, Procurement, Marketing, Legal and Commercial, Estates and Facilities, Core Technology, Corporate Security, IT, and Fleet. Every person in every team is contributing the lasting impact our Team makes. Help build and keep the nation's critical infrastructure connected and protected …/7. Reporting into the Network Services Business Unit Security Manager, the Senior Information Security officer will ensure security is embedded into all areas of the business and appropriate technical controls are in place throughout our infrastructure. This company facing role will assist new initiatives such as Threat Modelling and assist projects through the tender process. … to be in our Warwick a few times per month. What you'll do: Assist on all Governance, Risk and Compliance activities across Network Services Business Unit. Provide specialist security expertise for multiple internal projects across the Network Services business area. Provide guidance in secure software development throughout the lifecycle. Lead on risk and compliance technical assessments of all More ❯

associated skills, previous experience, and any qualifications that applicants are expected to have. These services include HR, Finance, Procurement, Marketing, Legal and Commercial, Estates and Facilities, Core Technology, Corporate Security, IT, and Fleet. Every person in every team is contributing the lasting impact our Team makes. Help build and keep the nation's critical infrastructure connected and protected …/7. Reporting into the Network Services Business Unit Security Manager, the Senior Information Security officer will ensure security is embedded into all areas of the business and appropriate technical controls are in place throughout our infrastructure. This company facing role will assist new initiatives such as Threat Modelling and assist projects through the tender process. … to be in our Warwick a few times per month. What you'll do: Assist on all Governance, Risk and Compliance activities across Network Services Business Unit. Provide specialist security expertise for multiple internal projects across the Network Services business area. Provide guidance in secure software development throughout the lifecycle. Lead on risk and compliance technical assessments of all More ❯

Job Role: Head of Security GRC Salary: £100,000 + bonus Location: Birmingham, Hybrid Role The Head of Security Governance, Risk and Compliance (GRC) plays a key leadership role in safeguarding the customers, assets, and reputation. This role is responsible for embedding effective security governance, risk management, and compliance practices, ensuring that security and regulatory obligations … are met while enabling the ability to operate with confidence and integrity. The postholder will establish and maintain proportionate security frameworks, policies, and processes. They will work closely with colleagues at all levels to strengthen security risk awareness, integrate risk-based decision-making, and promote a culture of accountability and resilience. Key Responsibilities Leadership of the Security GRC function. Governance & Policy – Define, implement, and continuously improve the governance frameworks, policies, and standards for information security, risk, and compliance. Risk Management – Lead enterprise-wide security risk management activities, including risk identification, third party risk management, assessment, control evaluation, and mitigation planning. Regulatory & Standards Compliance – Ensure adherence to relevant regulatory requirements (e.g. PRA, FCA, GDPR More ❯

IT Security Engineer/Cyber Security Engineer Amazing opportunity for growth and success to join an experienced Information Security team. You will be responsible for ensuring the correct level of security integrity to protect systems, information, personal data and people from cyber-attacks and unauthorised access! The role is a real mix of exciting … can make the role your own. Someone who is proactive, likes to get stuck in and likes to see things to completion. Previous end to end experience in cyber security would be preferred. A good all-rounder who has now specialised in IT and Cyber security. Hands on Cyber Security ensuring the security and resilience of IT … wider business to support existing and new projects for infrastructure, application, and operations teams to ensure existing systems are improved and new systems are implemented to continuously improve our security posture. Working on design and architecture. You will lead and support IT security projects, ensuring secure, timely, and effective project delivery. The client would like someone with NIST More ❯

limited to, Energy, Utilities, Financial Services and Media. They offer collaborative solutions to their clients, across strategy, delivery of complex programmes and risk management. They are expanding their cyber security offering and will appoint an experienced Cyber Defence Manager to join their UK cyber team. This role will pay a range of £70,000 to … plus bonus and will offer a home-based working model. As an experienced Cyber Defence Manager, you will work with a team on daily operational monitoring and escalation of InfoSec events and functions, whilst analysing intrusions and security events for risks. Cyber Defence Manager - Duties Analytical skills to assess, remediate incidents across networks Mentor security analysts whilst developing … blue team skillsets Develop operating procedures and use cases Triage of security events and third-party SOC management Monitor/Collate data from endpoints across estate OSINT experience for threat hunting, prepare reports Cyber Defence Manager - Experience Incident response, security engineering, intrusion detection Experience of SOC or Incident Response Team Analyse End Point, Network, Application Logs Security More ❯

Information Security Assurance Compliance Analyst – Staffordshire Experienced Information Assurance Analyst to join a small, dedicated, experienced growing team in Staffordshire. If you want to make a real impact by strengthening security, protecting data, and driving compliance across an organisation, this role is for you. You’ll be the go-to person for audits, assessments, and compliance … is essential, along with a sharp eye for detail and the confidence to influence change across teams. This is a brilliant opportunity to join a business that truly values security and compliance. Your work will directly shape how the company protects its systems, people, and data — and you’ll be part of a team where your expertise makes a More ❯

Information Security Assurance Compliance Analyst – Staffordshire Experienced Information Assurance Analyst to join a small, dedicated, experienced growing team in Staffordshire. If you want to make a real impact by strengthening security, protecting data, and driving compliance across an organisation, this role is for you. You’ll be the go-to person for audits, assessments, and compliance … is essential, along with a sharp eye for detail and the confidence to influence change across teams. This is a brilliant opportunity to join a business that truly values security and compliance. Your work will directly shape how the company protects its systems, people, and data — and you’ll be part of a team where your expertise makes a More ❯

Provides technical evaluation and analysis in a specific Security area. Supports activities, process, and tools needed to improve overall security posture of the organization. Primary responsibilities do not include Architect or Engineering responsibilities. Applies security concepts, reviews information, executes defined tasks, analyzes requirements, reviews logs, and creates documentation. Performs investigation and data loss prevention, data manipulation … and coordination of activities. Performs actions to address or mitigate risks and vulnerabilities. Reviews and defines controls. Advises on more complex security procedures and products for clients, security administrators and network operations. Participates in enforcement of control security risks and threats; potential of one more controls subject to manager discretion. Shares knowledge with staff. Conducts security assessments and other information security routines consistently. Investigates and recommends corrective actions for data security related to established guidelines. Develops policies and procedures to standardize security functions and eliminate potential vulnerabilities and threats. Oversees that business needs are being met during development.PNC's total rewards package includes things like time off, benefits, learning and career More ❯

Job ID: Amazon Ireland Support Services Limited This is a mid-level position ideal for candidates looking to grow their career in IT Risk Management. Are you an Information Technology (IT) Risk Manager ready for a step-up role with within Amazon's unique IT environment? We are looking for an experienced IT Risk Manager within the First Line … transmitter, or payments related e-commerce function. - A good understanding of IT risk and control frameworks: COBIT, NIST, ISO 27001, ITIL or equivalent. - Understanding of SDLC. PREFERRED QUALIFICATIONS - Certified Information Systems Auditor (CISA) or equivalent IT auditing and risk certification. - Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Security Professional (CISSP) or equivalent IT Risk, Governance, Security Strategy certification. - Digital transformations experience to drive process improvements. - A good understanding of regulatory landscape (CSSF, DORA, EBA, NIS2, SOC 2) - Experience with cloud platforms risk management, cloud security, and compliance, including IAM, cloud incident response, and resilience testing. - Master's degree or equivalent. Amazon is More ❯

meets business needs and supports organisational goals. Key Responsibilities as a Dynamics 365 Administrator: Manage the day-to-day administration of the Dynamics 365 environment: Including user account management, security roles, and permissions. Configure and customise Dynamics 365: To meet business needs, including creating and modifying entities, forms, workflows, and reports. Monitor system performance and troubleshoot issues: Ensure optimal … Create and maintain comprehensive documentation :For system configurations, processes, and procedures. Ensure compliance: That the Dynamics 365 environment complies with organisational policies and industry standards, including data privacy and security regulations. Stay updated with the latest features and best practices for Dynamics 365 :Apply this knowledge to improve system functionality and user experience. Key Skills and Experience for a … Administrator: Essential: 3+ Years of experience in administration and development in Dynamics 365 CRM Modules Sales, Customer Service, Project Operations. Proficiency in Dynamics 365 administration, including user management, security roles, and system configuration. Knowledge of Power Platform tools (Power Apps, Power Automate, Power BI). Significant prior experience in data management including imports, exports, and regular data audits. Knowledge More ❯

Industrial Cyber Security Manager We're seeking an Industrial Cyber Security Manager to play a pivotal role in protecting and enhancing the cyber resilience of our manufacturing and industrial operations across our sites in the UK & Ireland. This is a highly visible role reporting directly to the CISO, working across the business and in collaboration with senior leaders … to ensure our industrial control systems (ICS), SCADA, and PLC environments are safeguarded to the highest standards. Key Responsibilities Leadership & Strategy Develop and deliver a comprehensive industrial cyber security strategy aligned with Group, Business objectives and global policies. Provide leadership and direction to a small but growing team (currently 1-2 direct reports), while collaborating with security contacts … across all sites. Partner with regional and Group leaders to embed best-in-class practices across industrial operations. Security Operations Maintain and oversee the cyber security framework for industrial and operational technology (OT) environments. Lead audits, vulnerability assessments, and improvement programmes to continuously strengthen our cyber security and resilience posture. Support programme initiatives to ensure secure operations More ❯

procedures Supervises a team of specialists Deliver risk management services to Hitachi Energy in cooperation with the team Work closely with the stakeholders to prioritize, create reporting, and oversee security findings Improve management of security risks/issues and help identify areas of risk Reporting on the services, and their continuous improvement Background 8+ years of experience in … IT/Information Security Governance in large, global organizations (consulting, audit or industry/operations) Experience in planning and operating security risk/issue management-related processes and services Experience in Risk Management aligned to certification requirements (ISO27001, ISO31000 or similar) required Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, CobiT, ) required Experience in … service build up a plus Security Governance/Risk Management certification (CISSP, CGEIT, CISM, CRISC ) is a plus Accommodations Qualified individuals with a disability may request a reasonable accommodation if you are unable or limited in your ability to use or access the Hitachi Energy career site as a result of your disability. You may request reasonable accommodations by More ❯

the area Supervise a team of specialists Deliver risk management services to Hitachi Energy in cooperation with the team Work closely with stakeholders to prioritize, create reports, and oversee security findings Improve management of security risks/issues and help identify areas of risk Report on the services and their continuous improvement Background: 8+ years of experience in … IT/Information Security Governance in large, global organizations (consulting, audit, or industry/operations) Experience in planning and operating security risk/issue management-related processes and services Experience in Risk Management aligned with certification requirements (ISO27001, ISO31000, or similar) Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, CobiT, etc.) Experience in service … build-up is a plus Security Governance/Risk Management certification (CISSP, CGEIT, CISM, CRISC, etc.) is a plus Hitachi Energy is a global technology leader advancing a sustainable energy future for all. We serve customers in utility, industry, and infrastructure sectors with innovative solutions and services across the value chain. We pioneer technologies and enable digital transformation to More ❯

Operations & System Health Design and test robust backup and disaster recovery strategies. Perform patching, upgrades, and maintenance to ensure availability and compliance. Monitor system health, capacity, and performance trends. Security & Governance Review and harden database security configurations. Manage access controls and support compliance with Cyber Essentials and data protection standards. Documentation & Collaboration Maintain clear documentation of system architecture … tuning, and T-SQL. Proven experience conducting architectural reviews and producing actionable improvement plans. Strong analytical and documentation skills. Experience with backup/recovery, capacity planning, and SQL Server security best practices. Excellent communication and stakeholder engagement skills. Desirable Skills Experience with business-critical platforms (e.g., CRM, ERP, Portals). Familiarity with MySQL or other RDBMS. Knowledge of SSIS … and welcome all applications. As a specialist in secure technology solutions, all successful candidates will be subject to pre-employment checks, so we can ensure compliance with our ISO27001 (Information Security) and Cyber Essentials Plus certifications. We are committed to using any personal information you may give us in a secure and proper manner, for more information More ❯

SpecFlow/TestComplete/Selenium/Jira/Jenkins/SQL/XML/Web Services/Relational Databases/Software Testing/Computer Science/Software Engineering/Information Security/IT Security More ❯

and welcome all applications. As a specialist in secure technology solutions, all successful candidates will be subject to pre-employment checks, so we can ensure compliance with our ISO27001 (Information Security) and Cyber Essentials Plus certifications. We are committed to using any personal information you may give us in a secure and proper manner, for more information More ❯

HSCN* with third-party suppliers. Support and update organisational websites, intranet, and communication platforms. Lead on developing and maintaining Digital & IT work schedules and business continuity processes. Undertake scheduled security audits, monitoring tasks, and risk incident reporting. Administer and support building management systems *CCTV, access control, and related infrastructure*. Support projects, IT upgrades, and digital programme delivery across … IT requirements within the staff induction process Proactively forward plan and manage office systems and communicate effectively to coordinate a range of functions. Support and manage the Digital programmes information management systems to maintain all relevant documentation. When needed, use the internal CRM to update our websites and other communication platforms including TeamNet Provide cover for other team members … access for corporate and clinical systems, including business continuity infrastructure Manage, update and report on organizational D&IT risk incidents through associated recording platform Undertake and report on scheduled security audit and monitoring tasks in line with the information security policy and associated policies Advise, support and implement specific areas of work within a project workstream across More ❯

and cross sale opportunities to underpin the ongoing growth and development of Intercity. All members of the sales team are responsible for selling Intercitys complete range of Communications, Cloud & Security and Managed Services solutions within their assigned accounts whilst ensuring the successful retention of existing services. The sales team is results driven, with individuals responsible for achieving their own … and welcome all applications. As a specialist in secure technology solutions, all successful candidates will be subject to pre-employment checks, so we can ensure compliance with our ISO27001 (Information Security) and Cyber Essentials Plus certifications. We are committed to using any personal information you may give us in a secure and proper manner, for more information More ❯

provide evidence of, exposure to business assurance, compliance, audit, or risk-related activities, whether through previous roles, internships, or academic projects. Ideally, this experience should include working with technical information systems, IT compliance, or IT audit. Exposure to regulatory frameworks, information security standards (such as ISO27001, SOC2, or GDPR), or technology-driven controls is highly desirable. This More ❯

provide evidence of, exposure to business assurance, compliance, audit, or risk-related activities, whether through previous roles, internships, or academic projects. Ideally, this experience should include working with technical information systems, IT compliance, or IT audit. Exposure to regulatory frameworks, information security standards (such as ISO27001, SOC2, or GDPR), or technology-driven controls is highly desirable. This More ❯