1 to 25 of 27 Permanent ISO/IEC 27001 Jobs in the West Midlands

management, and people leadership. Key responsibilities of the role: Lead and manage support teams, driving a culture of accountability, collaboration, and innovation. Oversee ITIL-based service delivery, ensuring SLA / KPI targets are consistently met. Manage Jira Service Desk operations, incident resolution, and root cause analysis. Build insightful Power BI dashboards to track and report on service performance. Act … as the primary point of contact for service-related issues, managing client relationships and expectations. Ensure compliance with ISO 27001 standards and develop risk mitigation strategies. Drive continuous improvement initiatives to optimise processes and enhance customer satisfaction. Experience required: 5+ years’ experience in service delivery management in SaaS, cloud, or enterprise software environments. Strong expertise in … s on offer: A leadership role with real impact on client satisfaction and operational success. A collaborative and supportive culture where initiative and innovation are valued. Hybrid, (weekly office / home split), working model with regular opportunities to travel and engage with clients. If you are a strategic thinker with a hands-on approach to service delivery and team More ❯

understand technical requirements, present solutions and provide guidance. Produce and maintain technical documentation, including architecture diagrams, procedures, and operational controls. Assist with compliance activities and audits relating to ISO 9001, ISO 27001, and other regulatory frameworks. Support incident response, risk assessments and cybersecurity best practices (Cyber Essentials Plus desirable). Handling Active Directory and … stages of implementation projects to set up the infrastructure requirements. Essential Skills & Experience Proven experience with Microsoft Azure services (IaaS, PaaS, networking, security). Strong understanding of Windows and / or Linux server administration. Experience with Azure Active Directory, Azure Security Centre, and monitoring tools. Knowledge of IT security principles, risk management and compliance. Strong infrastructure background—networking, firewalls … backup and disaster recovery. Excellent communication skills with experience in client-facing roles. Ability to create and maintain clear documentation and operational controls. Desirable Qualifications & Knowledge Experience with ISO 9001 and ISO 27001 standards and audits. Understanding of Cyber Essentials Plus requirements. Familiarity with automation and Infrastructure as Code (e.g., ARM templates, Bicep, Terraform More ❯

working with a leading Systems Integration Consultancy based in Stone, Staffordshire. They're looking for an Operational Technology Cyber Security Engineer with a background in Industrial Control Systems (ICS / SCADA) This is a fantastic opportunity to join a high-performing engineering team working on critical national infrastructure projects across the energy, utilities, water, renewables, and manufacturing sectors. This … Security Clearance. Main Responsibilities: Lead the design and implementation of secure OT network architectures across critical infrastructure environments. Conduct attack path analysis, penetration testing and adversary simulations within ICS / OT environments. Perform cybersecurity risk assessments and technical security audits aligned to recognised industry frameworks. Develop technical design specifications and security documentation including functional and infrastructure specifications. Act as … a technical mentor, guiding and supporting junior engineers within the cyber and OT engineering teams. Required Skills: Proven experience securing ICS / SCADA, PLCs, RTUs and industrial communication protocols (MODBUS, OPC, DNP3, etc.). Strong background in designing and configuring secure networks including switching, routing, and firewalls. Solid knowledge of IT / OT segmentation and secure cross-domain More ❯

junior engineers, collaborating with stakeholders, with occasional travel to client sites and the Stone office. Key Responsibilities of the Senior ICS OT Cyber Security Engineer: Design and secure OT / ICS networks and cross-domain communications. Conduct threat modelling, vulnerability assessments, and red team exercises. Implement cybersecurity solutions, audit systems, and ensure compliance with relevant frameworks. Mentor junior team … relationships. Key Requirements of the Senior ICS OT Cyber Security Engineer: Degree in Computer Science, Systems Engineering, or similar with 5+ years’ relevant experience. 2+ years’ experience in ICS / critical infrastructure cybersecurity. Knowledge of SCADA, PLCs, RTUs, OT protocols (MODBUS, OPC, DNP3). Experience with secure network design (switching, routing, firewalls). Experience conducting audits, risk assessments, and … implementing technical security frameworks (e.g., NIST 800-53 / 82, ISO 27001, IEC 62433). Strong stakeholder management and communication skills. Willingness to travel to client sites across UK. Eligible for SC clearance. To discuss this opportunity in more detail, please APPLY NOW . Alternatively, you can contact Katie Dark directly at . More ❯

internal and customer-facing IT projects. Maintaining infrastructure through patching, upgrades, testing, and proactive monitoring. Implementing IT security policies and VPN solutions in line with compliance standards. Supporting ISO 27001 compliance, risk management, and audit readiness. Assisting with disaster recovery planning and business continuity measures. Overseeing IT asset management, procurement, and vendor relationships. Producing and maintaining … VMware environments. Strong knowledge of Windows and Linux system administration. Familiarity with networking concepts (routing, switching, firewalls, VPNs). Exposure to automation tools such as PowerShell, Ansible, or CI / CD workflows. A solid understanding of IT security best practices and compliance standards. Experience supporting or maintaining ISO 27001 or similar frameworks. Strong communication and More ❯

with the ability to influence technical and non-technical stakeholders. Strong leadership, motivational, and problem-solving abilities. Useful additional expertise (advantageous): Experience with SAN servers, SQL, Microsoft Teams, SCCM / SCOM, RMM / MDM tools. Cybersecurity certifications and knowledge (CE+, ISO 27001, etc.). Advanced networking expertise (QoS, VLANs, MPLS, wireless AP configuration). More ❯

skills with the ability to influence technical and non-technical stakeholders. Strong leadership, motivational, and problem-solving abilities.Useful additional expertise (advantageous): Experience with SAN servers, SQL, Microsoft Teams, SCCM / SCOM, RMM / MDM tools. Cybersecurity certifications and knowledge (CE+, ISO 27001, etc.). Advanced networking expertise (QoS, VLANs, MPLS, wireless AP configuration). More ❯

board Drive security awareness and training programmes for all employees Manage relationships with external auditors, regulators, and security vendors Mentor, hire, and retain high-performing information security talent Experience / Skills Required Managing security for cloud-first environments specifically Microsoft Azure Implementing Security Operations Centres (SOC) and automated security monitoring Collaborate with the third-party risk management and vendor … leadership experience in information security within financial services Deep understanding of regulatory and compliance requirements for banking and finance Strong track record of designing and implementing security frameworks (ISO 27001, NIST) Hands-on experience with SIEM, DLP, IAM, and endpoint security technologies, specifically Microsoft Defender XDR, Purview and Sentinel Excellent risk assessment and incident management skills More ❯

IT, and Fleet. Every person in every team is contributing the lasting impact our Team makes. Help build and keep the nation's critical infrastructure connected and protected 24 / 7. Reporting into the Network Services Business Unit Security Manager, the Senior Information Security officer will ensure security is embedded into all areas of the business and appropriate technical … and compliance technical assessments of all applicable standards, policies, regulation, and legislation compliance Creation of security standards and requirements documents for projects and activities to be based on ISO 27001, NIST 800-53 and ISO 22301. Review risks, propose mitigation actions and solutions, and assisting ongoing risk treatment activity. Assist the security testing process More ❯

scanners Vulnerability Assessments : Help run scans to identify weaknesses in systems and recommend remediation actions Policy and Compliance Support : Assist in ensuring the organisation meets security standards (e.g., ISO 27001, GDPR, Cyber Essentials) Security Awareness : Contribute to internal training and awareness campaigns to improve staff cyber hygiene Incident Investigation : Support in analysing and documenting cyber incidents … related discipline Strong interest in cyber security and desire to build a career in the field Basic understanding of cyber threats, security principles, and best practices Familiarity with Windows / Linux operating systems and networking concepts Strong analytical and problem-solving skills Good communication skills and the ability to explain technical concepts clearly Nice to Have (But Not Required … Excellent Company Benefits We believe in supporting our people from day one. Here’s what we offer: 25+ Days Annual Leave + bank holidays (with the option to buy / sell extra days) Hybrid & Flexible Working – work from home and the office Annual Bonus Scheme based on personal and company performance Professional Certification Support – we’ll cover exam costs More ❯

scanners Vulnerability Assessments : Help run scans to identify weaknesses in systems and recommend remediation actions Policy and Compliance Support : Assist in ensuring the organisation meets security standards (e.g., ISO 27001, GDPR, Cyber Essentials) Security Awareness : Contribute to internal training and awareness campaigns to improve staff cyber hygiene Incident Investigation : Support in analysing and documenting cyber incidents … related discipline Strong interest in cyber security and desire to build a career in the field Basic understanding of cyber threats, security principles, and best practices Familiarity with Windows / Linux operating systems and networking concepts Strong analytical and problem-solving skills Good communication skills and the ability to explain technical concepts clearly Nice to Have (But Not Required … Excellent Company Benefits We believe in supporting our people from day one. Here’s what we offer: 25+ Days Annual Leave + bank holidays (with the option to buy / sell extra days) Hybrid & Flexible Working – work from home and the office Annual Bonus Scheme based on personal and company performance Professional Certification Support – we’ll cover exam costs More ❯

the investigation of incidents and security monitoring approaches What were looking for 3+ years experience in consultancy or complex ICT delivery Knowledge of frameworks such as HMG SPF and ISO27001 Familiarity with identity management, PKI, SIEM, cryptography and firewalls Strong communication skills, able to influence at all levels A STEM degree or relevant security certification (CCP, CISSP, SABSA, TOGAF) desirable More ❯

Head of Trading Application Support / Head of Service Delivery, Europe – Birmingham Based Leading global FinTech software provider seeks an experienced Head of Trading Support / Head of Service Delivery, Europe to join their growing business, based 3 days per week from their Birmingham HQ. Overview: This is a senior opportunity for an experienced Trading Software Service Delivery … / Application Support Leader to take ownership of support operations across Europe, leading a team of 6 all based from their Birmingham HQ but supporting and managing client relationships across Europe, and driving service excellence across multiple integrated SaaS applications. You’ll be responsible for end-to-end service delivery , managing client SLAs, leading incident & root cause analysis, and … expectations, and ensuring exceptional client satisfaction, as well as acting as a senior manager in their Birmingham HQ. This role is ideal for a proven Head of Application Support / Service Delivery Manager from a SaaS, financial software, or related markets background, looking to step into a high-profile leadership role with visibility across Europe. This role does require More ❯

across key IT projects Act as a trusted advisor on security strategy and technology selection Key Skills and Experience Proven experience designing enterprise-grade security architectures Strong knowledge of ISO27001, CES, and CES+ frameworks Solid understanding of modern infrastructure, cloud, and application security Excellent communication skills — translating technical detail into business insight Strategic mindset with a pragmatic approach to risk More ❯

across key IT projects Act as a trusted advisor on security strategy and technology selection Key Skills and Experience Proven experience designing enterprise-grade security architectures Strong knowledge of ISO27001, CES, and CES+ frameworks Solid understanding of modern infrastructure, cloud, and application security Excellent communication skills - translating technical detail into business insight Strategic mindset with a pragmatic approach to risk More ❯

opportunities and welcome all applications. As a specialist in secure technology solutions, all successful candidates will be subject to pre-employment checks, so we can ensure compliance with our ISO27001 (Information Security) and Cyber Essentials Plus certifications. We are committed to using any personal information you may give us in a secure and proper manner, for more information please see More ❯

Overview Monitor and manage IT security infrastructure Conduct vulnerability assessments and penetration tests Lead incident response and mitigation Implement security policies and procedures Ensure compliance with GDPR, ISO27001 Work with SIEM tools for threat detection Manage access controls and firewalls Oversee employee security awareness programs Respond to emerging cyber threats Document incidents and reports Collaborate with IT teams on security More ❯

Cybersecurity Issue / Risk Service Manager To grow the Cybersecurity team, we are looking for: Global Cybersecurity Risk Service Manager Location: Remote from Poland or UK Responsibilities: Owns the services related to Cybersecurity Risk Management Identify core requirements for Risk Management in cooperation with stakeholders Develop requirements and frameworks for Issue and Risk Management in alignment within the department … Deliver risk management services to Hitachi Energy in cooperation with the team Work closely with stakeholders to prioritize, create reports, and oversee security findings Improve management of security risks / issues and help identify areas of risk Report on the services and their continuous improvement Background: 8+ years of experience in IT / Information Security Governance in large … audit, or industry / operations) Experience in planning and operating security risk / issue management-related processes and services Experience in Risk Management aligned with certification requirements (ISO27001, ISO31000, or similar) Knowledge of relevant security / governance frameworks (NIST CSF, ISO27001, CobiT, etc.) Experience in service build-up is a plus Security Governance / Risk Management More ❯

working model. As an experienced Principal Cyber Security Engineer, you will design, implement and manage security measures to protect the Azure & M365 estates. Principal Cyber Security Engineer: Duties Implement / Manage security measures to protect Azure, M365, Cloud Infrastructure & Data Deep knowledge of Azure & M365 security services Ensure security of cloud infrastructure Identify & implement automation opportunities Coordinate / Manage engineering projects Design / Develop / Maintain security architecture Mentor … the engineering function, provide technical leadership Principal Cyber Security Engineer: Duties Proven experience with Azure & M365 security tools and technologies Deep knowledge of security frameworks and standards (NIST, CIS, ISO27001) Knowledge of scripting & automation tools (PowerShell, Azure CLI, Azure Logic Apps) Principal Cyber Security Engineer: Relevant Certifications Microsoft Cert: Azure Security Engineer Associate Microsoft Cert: Cyber Security Architect Expert certification More ❯

global information security compliance program.You will be responsible for ensuring that all corporate and subsidiary operations comply with internal security policies, regulatory requirements, and internationally recognised frameworks such as ISO27001, NIST, SOX, GDPR, CMMC, amongst others.Key Responsibilities: Support the execution and enhancement of the global information security compliance program. Conduct internal audits, third-party risk assessments, and due diligence reviews. … Ensure alignment with regulatory and industry standards including ISO27001, NIST, SOX, GDPR, SOC 2, HIPAA, CCPA, LGPD. Collaborate with cross-functional teams across multiple jurisdictions to drive compliance initiatives. Identify gaps in security controls and recommend corrective actions. Maintain and update security policies, procedures, and documentation. Monitor changes in global regulations and assess their impact on business operations. Minimum of … years experience.Skills Required: Proven experience in information security compliance, risk management, and audit. Strong understanding of international regulatory frameworks and standards. Hands-on experience with: ISO27001 audits and implementation GDPR compliance NIST cybersecurity framework SOX, SOC 2, HIPAA, CCPA, LGPD Ability to interpret complex regulatory requirements and translate them into actionable controls. Excellent communication and stakeholder engagement skills. Strong analytical More ❯

assess, remediate incidents across networks Mentor security analysts whilst developing blue team skillsets Develop operating procedures and use cases Triage of security events and third-party SOC management Monitor / Collate data from endpoints across estate OSINT experience for threat hunting, prepare reports Cyber … Defence Manager - Experience Incident response, security engineering, intrusion detection Experience of SOC or Incident Response Team Analyse End Point, Network, Application Logs Security frameworks / Standards (NIST, CIS, ISO27001) Scripting & Automation (PowerShell, Azure CLI, Azure Logic Apps) MITRE ATT&CK, Threat Modelling Knowledge of CVEs and security vulnerabilities SIEM Tools, Cyber Hunting Techniques Operational threat intelligence and common attack … to join a global market leader, that has undergone significant investment across Cyber and Technology. For further information, please apply with an updated CV and contact Ajay Hayre on / Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates More ❯

effective solutions. Benefits include: 401(k), health, dental, vision insurance, life insurance, disability coverage, paid time off, and professional development support. Job Responsibilities: Develop data warehousing blueprints, evaluate hardware / software platforms, and integrate systems. Assess reusability of current data for analysis. Design data warehouses, including data design, database architecture, and metadata management. Build relational databases, perform data access … analysis, and design archive / recovery processes. Review and develop object / data models and metadata repositories for better data management. Knowledge of cybersecurity, privacy principles, networking, protocols, and risk management is required. Maintain databases and optimize performance. Understand database management systems, query languages, and data warehousing principles. Manage physical and virtual data storage media. Communicate effectively with … team members and stakeholders. Required Skills: MS / MA in Computer Science with 10 years' experience or BA / BS with 12 years' experience in data management, programming, and architecture. Eligibility for Top Secret clearance with completed T5 investigation. Must hold four Microsoft Certifications from specified options, including Azure and Security certifications. Alternatively, at least one role-based More ❯

city for over 100 years and is proud to be recognised as a world-class Russell Group institution. It supports the growth and development of its staff via work / life balance-orientated hybrid and flexible working schemes, and initiatives such as the sector-leading Birmingham Professional programme, offering career development opportunities to help individuals reach their full potential. … with the ability to articulate and drive a clear vision for information security across the university. Demonstrable expertise in implementing and maintaining formal compliance or certification programmes, such as ISO27001, NIST, COBIT or Cyber Essentials. Experience in assessing, managing, and quantifying information security risks, including the development of metrics and tracking mechanisms. Experience working with senior stakeholders, earning trust and More ❯

city for over 100 years and is proud to be recognised as a world-class Russell Group institution. It supports the growth and development of its staff via work / life balance-orientated hybrid and flexible working schemes, and initiatives such as the sector-leading Birmingham Professional programme, offering career development opportunities to help individuals reach their full potential. … with the ability to articulate and drive a clear vision for information security across the university. Demonstrable expertise in implementing and maintaining formal compliance or certification programmes, such as ISO27001, NIST, COBIT or Cyber Essentials. Experience in assessing, managing, and quantifying information security risks, including the development of metrics and tracking mechanisms. Experience working with senior stakeholders, earning trust and More ❯

practices. The Successful Applicant Proven experience in cyber security operations including threats hunting, detection and response, vulnerabilities assessment remediation Familiarity with data protection regulations and compliance requirements such as ISO27001, GDPR Solid experience in SIEM tools, preferably Microsoft Sentinel Relevant certifications are desirable. Excellent stakeholder management skill with ability to communicate technical concepts clearly to non-technical stakeholders. What's More ❯