19 of 19 Permanent ISO/IEC 27001 Jobs in the West Midlands

organisations build trust, security, and resilience across their digital operations. Their specialist services span AI Governance as a Service (AIGaaS) , Virtual Data Protection Officer (vDPO) support, ISO / TISAX compliance , and digital resilience strategy . To support their next phase of growth, they're seeking a commercially driven Business Development professional to accelerate expansion across the SME … makers. Highly self-motivated with a proactive, start-up mindset. Excellent communication, negotiation, and commercial acumen. Organised approach to pipeline management and CRM usage. Familiarity with AI governance, GDPR / data protection, and cyber risk frameworks . Understanding of ISO / TISAX / ISO 27001 or other compliance standards desirable. More ❯

security awareness training, security compliance, security accreditation and collaborate with various stakeholders to foster a security-conscious culture. Key Deliverables: Align the business' security stance to comply with ISO 27001and Cyber Essentials Plus, or in accordance with the Cyber Assessment Framework Improve the Cyber Awareness within the company via communications, Cyber Awareness training and monitoring of Staff compliance … business on matters relating to cyber security Skills & Experience: Solid experience working within a similar role within information security management, ideally within an ICT Infrastructure, Managed Service Provider and / or Systems Integrator In-depth knowledge of ISO 27001 standards and best practices, as well as other relevant security frameworks (e.g., NIST, CAF) Strong technical … investigations Excellent communication and interpersonal skills, with the ability to effectively collaborate with stakeholders at all levels of the organisation Desirable: Experience of working within Defence, UK government and / or a commercial security supplier Professional certifications in information security, such as CISSP or CISM, ISO 27001 related If your profile demonstrates strong and recent More ❯

stay ahead of evolving threats. Youll be part of a collaborative, award-winning team that blends deep technical knowledge with commercial insight , supporting global organisations with frameworks including ISO 27001, SOC 2, PCI-DSS, GDPR, DORA, and NIS2 . The Role: Lead and deliver GRC engagements for large enterprise clients , including readiness assessments, internal audits, and … autonomously while helping refine and enhance consultancy methodologies. Desired Experience: Proven experience in GRC consulting, audit, or information security management within large or regulated organisations. Strong knowledge of ISO 27001 and SOC 2 (experience with PCI-DSS, NIST, DORA, or NIS2 advantageous). Excellent communication and presentation skills, confident in C-level workshops and stakeholder management … . Organised, self-motivated, and experienced managing multiple enterprise projects simultaneously. Certifications such as CISM, CISA, CISSP, or ISO Lead Auditor desirable. Why Join: Work with some of the most recognised enterprise clients across multiple sectors. Join a supportive, people-first culture that values innovation, autonomy, and collaboration. Annual training & certification budget to invest in your development. EMI More ❯

internal and customer-facing IT projects. Maintaining infrastructure through patching, upgrades, testing, and proactive monitoring. Implementing IT security policies and VPN solutions in line with compliance standards. Supporting ISO 27001 compliance, risk management, and audit readiness. Assisting with disaster recovery planning and business continuity measures. Overseeing IT asset management, procurement, and vendor relationships. Producing and maintaining … VMware environments. Strong knowledge of Windows and Linux system administration. Familiarity with networking concepts (routing, switching, firewalls, VPNs). Exposure to automation tools such as PowerShell, Ansible, or CI / CD workflows. A solid understanding of IT security best practices and compliance standards. Experience supporting or maintaining ISO 27001 or similar frameworks. Strong communication and More ❯

architecture and secure design Strong knowledge of security frameworks (ISO 27001, NIST, GDPR, OWASP, PCI) Experience in application, infrastructure, or enterprise architecture Familiarity with CI / CD and Continuous Security practices Solid understanding of network, web app, and cryptographic security Proven ability to coach and develop others Excellent communication and stakeholder engagement skills Eligibility Requirement … right next step for you, we'd love to hear from you. Please reach out to discuss the role in more detail or to express your interest. Reference: AMC / CLI / SARC #coli More ❯

with regulatory frameworks. In addition, you will lead a strategic vision with hands-on expertise across critical systems. Information Security Manager: Duties Experience of business acquisitions - Highly desirable Develop / Maintain enterprise InfoSec strategy aligned business goals Oversee security architecture, vulnerability management, incident response and threat intelligence Lead security risk assessments and manage remediation plans for gaps Financial regulation … security for cloud-first environments - AWS, Azure, Google Cloud Implement SOC & Automated security monitoring Lead third-party risk management & vendor security programmes Experience of DevSecOps practises and SDLC Design / Implement security frameworks - ISO 27001, NIST Hands-on experience of SIEM, DLP, IAM, Endpoint Technology The permanent opportunity for a Information Security Manager, will pay … opportunity to join an industry market leader, that has grown year on year, for further information, please apply with an updated CV and reach out to Ajay Hayre on / Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates More ❯

and responding to their needs because they are our priority. Care for Our Colleagues: We support each other to foster a workplace where everyone can thrive. Protect Our Pounds / Euros: We are committed to cost-efficiency and value, ensuring every penny counts. We reserve the right to close this vacancy early if we receive a high volume of … Educate and mentor staff on security best practices, common threats, and misconceptions. Prepare reports on security posture, maturity, and compliance. Support governance, risk, and compliance initiatives. Participate in and / or manage security-related projects as required. Stay current with emerging threats, technologies, and industry trends. Skills and Knowledge A minimum of 10 years experience in IT. Hands-on … Expertise in vulnerability management and patch management (Qualys or similar platforms). Understanding of Email Security platforms (e.g., Darktrace) and Security Awareness & Training platforms. Knowledge of security frameworks (ISO 27001, NIST, GDPR, etc.). Familiarity with SIEM, security system administration, and incident response. Understanding of SOC operations and monitoring. No formal qualifications required, although a security More ❯

to asset management systems. Assist in developing, documenting, and managing processes for supporting the IT environment holistically, including but not limited to: workstation deployment, system access management, software patching / upgrades, and management of cloud services. Help manage service accounts and vendor contracts (e.g. internet, phone, printer). Contribute to maintaining documentation of the company’s technology architecture. Research … and suggest service enhancements to improve efficiency and user experience. Support the implementation and maintenance of the company’s ISO 27001 Information Security Management System and ISO 27701 Privacy Information Management System. Assist with cyber security initiatives such as endpoint management, access control, and awareness activities. Assist with privacy and cyber client engagements as … pension scheme to which SPS contributes 3% of your salary. Credentity protection - Eclipse Digital Protection by Concentric. Free access to our Risk Intelligence Dashboard and GEAR App. Providing 24 / 7 access to trusted risk intelligence and remote support, helping you stay informed, prepared, and protected wherever you operate. Dedicated security and intelligence training programs for professional development. Coaching More ❯

project reviews. Desirable Skills and Experience Prior experience in Defence, Government, or Critical National Infrastructure environments. Familiarity with security frameworks such as MITRE ATT&CK, NIST CSF, or ISO … 27001 including how to map TTP's to Rule coverage. Experience with SOAR or SIEM enrichment tools (e.g., TheHive, MISP, Cortex). Knowledge of additional log forwarding / processing tools (e.g. Elastic Agent, Fluentd). Exposure to vulnerability management and threat intelligence platforms such as OpenCTI. Qualifications: Expert knowledge of Azure & Sentinel Proven experience as a Cyber … as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or Elastic Certified Engineer (ECE) are a plus. This role will require you to hold active SC and / or DV - If DV isn't held, then you will have to be eligible for DV. Benefits More ❯

Job Title: Access Management Technical Specialist Location: Coventry / Birmingham, UK (Hybrid) Contract role under Inside IR35 Working Mode: Hybrid (3 days onsite / week Job description: Key Responsibilities: • IAM Strategy & Roadmap: o Develop, implement, and maintain a comprehensive IAM strategy and roadmap, with a focus on Microsoft technologies (Active Directory, Entra, Azure, Microsoft Defender, MS Office … Strong understanding of security principles, including role-based access control (RBAC), multi-factor authentication (MFA), and least privilege access policies. • Familiarity with industry regulations and standards, including GDPR, ISO 27001, NIST, and others. • Proven ability to design, build, and maintain scalable IAM solutions that align with business needs and security requirements. • Strong problem-solving skills and More ❯

ISO 27001 and Cyber Essentials Plus. Skills & Experience: Advanced Microsoft 365 expertise (Exchange Online, Intune, SharePoint, Teams). Strong networking knowledge (Wi-Fi, VPN, LAN / WAN). Experience with endpoint management and cloud security tools. Excellent communication and problem-solving skills. Microsoft certifications preferred; Cisco Meraki experience desirable. If this sounds like the role More ❯

improvements to existing setups * Supporting compliance with frameworks such as ISO 27001, Cyber Essentials Plus and CAF Requirements: * A solid background in IT infrastructure and / or network engineering * Some exposure to, or a growing focus on, cybersecurity and vulnerability management * Understanding of network devices, configurations and security principles * Familiarity with common tools and concepts … Certifications such as CISSP, SC-200, or AZ-500 would be great to see, but aren't essential Competitive salary and a range of excellent benefits on offer; free / heavily discounted travel, an industry leading pension scheme, 25 days holiday plus much more. More ❯

4. Quality Assurance and Compliance: - Implement rigorous quality assurance processes to validate the functionality, performance, and usability of security systems. - Ensure compliance with industry standards and regulations, including ISO 27001, by implementing appropriate security measures and controls. - Communicate effectively with stakeholders from various departments, including IT, security, and business units, to gather requirements and address concerns. More ❯

opportunities and welcome all applications. As a specialist in secure technology solutions, all successful candidates will be subject to pre-employment checks, so we can ensure compliance with our ISO27001 (Information Security) and Cyber Essentials Plus certifications. We are committed to using any personal information you may give us in a secure and proper manner, for more information please see More ❯

as a subject matter expert, raising awareness of compliance requirements and promoting a culture of accountability. Develop, update, and maintain policies and procedures to support industry certifications such as ISO27001 and Cyber Essentials+. Ensure documentation is clear, accessible, and regularly reviewed. Collaborate with teams across the business to understand their data needs, streamline processes, and introduce improvements that enhance efficiency More ❯

relates to all technology, to include: workstations, servers, printers, networks, vendor specific hardware and software, Office 365, SharePoint and with a view to gradually move into an IT Security / CyberSec focused position within the company. Key Duties / Responsibilities IT Support relating to technical issues involving Microsoft’s core business applications and operating systems. Technical support at … Azure Active Directory Microsoft Intune Microsoft Teams Windows Server(s), 2019, 2016, 2012, 2008 Active Directory Google Workspace Administration Google Workspace Apps (very similar to Microsoft suite) User Creation / management AD Permissions management Group Policy Understanding of network concepts Antivirus and vulnerability monitoring System … Patching Desirable Background CompTIA Security+ or similar IT Security certifications Keen interest in cyber security and understanding of key concepts and protocols. Understanding and exposure of the Cyber Essentials, ISO27001, and NIST frameworks. Previous experience within a SOC environment. Experience within IT Security, inc. patching, vulnerability Experience with SIEM or Service Desk toolsets. Essential Requirement for the role Access to More ❯

Job Title: Senior Application Security Engineer Salary: £70,000 Location: Reading / remote About the Organisation Join a fast-growing UK technology and consulting firm that's investing heavily in cutting-edge cyber security. With a strong focus on innovation, collaboration, and professional development, this company empowers its people to shape the future of secure digital transformation across a … Engineer will play a key role in protecting the organisation's infrastructure, cloud platforms, and applications. Working within a highly technical and collaborative cyber team - supported by a 24 / 7 external SOC - you'll research, test, and implement next-generation security solutions to safeguard data and systems. This role offers the chance to lead on application and cloud … security. Relevant certifications such as CISSP, CompTIA Security+, GIAC, or equivalent. Excellent documentation, communication, and stakeholder collaboration skills. Desirable Background in threat modelling or secure software design. Knowledge of ISO27001, Cyber Essentials Plus, or cloud security certifications. Experience in large-scale or regulated environments. What's on Offer Competitive salary with annual bonus potential. 25 days holiday (plus flexible bank More ❯

Enterprise Architect (Remote / Home Based) - Retail business - Permanent full time position - Salary up to £75k plus bonus, healthcare and more! - Remote / home-based role A successful retail brand is looking for an experienced Enterprise Architect to join their growing IT function on a permanent basis. This role will focus on technology solutions across business, data, applications … A strong background in IT architecture across business, data, applications and infrastructure - Experience within the retail sector - Good understanding of cloud technologies (AWS, Azure, GCP) - Understanding of security frameworks (ISO27001) - A background in delivering on modernisation / transformation programmes - Strong communication skills and ability to present at senior level More ❯

Implement robust data and cyber risk frameworks aligned with FCA expectations · Represent technology and innovation strategy to investors and the Board Technology Background of the CTO: · Languages: Python, TypeScript / JavaScript (Node.js), Dart (Flutter), SQL / MySQL, JSON, REST, GraphQL · Cloud and … Data: Google Cloud Platform (BigQuery, Cloud Run, Firestore, Pub / Sub) · DevOps and Tooling: GitHub, GitHub Actions, Terraform, Docker, Kubernetes · Monitoring: Stackdriver, Grafana, Prometheus · Security: OAuth2, SSO, IAM, ISO27001 alignment, penetration testing · Analytics and Integrations: ThoughtSpot, Provenir, LTi, HubSpot, Creditsafe, Experian, Wiserfunding, Hometrack, Infosys or TCS BaNCS Requirements The Essential Skills of the CTO: · CTO with a proven track … can translate tech strategy into board-level insight Benefits The Desirable Skills of the CTO: · Experience working towards a banking licence or launching consumer credit products · Familiarity with AI / ML, Open Banking, and embedded finance · SMF24 Certified Join a high-growth company where you can lead from the front and build technology that genuinely makes credit better for More ❯