1 to 25 of 32 Permanent Information Security Jobs in the West Midlands

Information Security Analyst Salary: £50,000 An exciting opportunity has arisen for an experienced Information Security Analyst to join a thriving organisation - offering hybrid working. This role is perfect for someone looking to further develop both Governance, Risk and Compliance (GRC) and technical security skills within a business that truly values professional growth. You will … be part of a knowledgeable information security team during a period of significant expansion, with access to comprehensive training, continuous coaching, and clear pathways for career advancement. What you'll do: As an Information Security Analyst, you will play a pivotal role in safeguarding the organisation's digital assets by working collaboratively with colleagues across multiple … preparing insightful metrics for leadership teams. Collaborate with teams across the business to identify, assess, and track risk mitigation activities through to completion. Support the creation and maintenance of information security policies, standards, and procedures aligned with regulatory frameworks and industry best practices. Assist in managing third party risk processes by evaluating external partners' security postures and More ❯

Head of Governance, Risk and Compliance Salary : Competitive Salary plus cash car allowance Location : Remote Keywords : Information Security, ISO 27001, Risk Management, Compliance, Governance, Cyber Security, Team Management, Audit, Stakeholder Engagement, Data Protection A distinguished opportunity has arisen for a Head of Governance, Risk and Compliance to join a highly regarded organisation. This position is integral to … advisor on all matters pertaining to information security governance. Supervise the daily operations of the GRC function Providing guidance to team upholding standards across all facets of Infosec Manage implementation of InfoSec governance throughout group Ensuring adherence to group policies, standards, and recognised best practices Identify principal Information Security risks and issues across group Collaborate closely … with Group CISO Assist in administering the Group's InfoSec Management System (ISMS) Manage ISO 27001 certification and associated compliance activities Engage with IT SecOps teams Participate in security-related exercises Oversee audit processes and client management responsibilities Analyse pertinent security metrics What you bring: Your background should reflect deep familiarity with industry standards such as ISO More ❯

Description Drive Risk Awareness. Strengthen Supply Chain Security. We're looking for an experienced Information Security Risk Management Specialist to help safeguard WTW's global operations by identifying and managing information security risks across our supply chain . In this key role, you'll be responsible for developing and implementing risk management strategies, performing in-depth … supplier security assessments , and ensuring compliance with industry standards, regulatory requirements, and internal WTW policies . You'll play a critical part in enhancing our third-party risk posture by working closely with internal teams and external partners to assess vulnerabilities, mitigate threats, and embed security best practices throughout the supply chain. If you have a strong background … in information security, risk management, and a passion for making businesses more resilient-we'd love to hear from you. The Role This role will support the ongoing operations of WTW Technology and Cyber Risk and Controls & Regulatory engagement function in: Evaluate supplier information security practices, policies and systems or risk exposure. Enhance risk assessment methodologies More ❯

Description Drive Risk Awareness. Strengthen Supply Chain Security. We're looking for an experienced Information Security Risk Management Specialist to help safeguard WTW's global operations by identifying and managing information security risks across our supply chain . In this key role, you'll be responsible for developing and implementing risk management strategies, performing in-depth … supplier security assessments , and ensuring compliance with industry standards, regulatory requirements, and internal WTW policies . You'll play a critical part in enhancing our third-party risk posture by working closely with internal teams and external partners to assess vulnerabilities, mitigate threats, and embed security best practices throughout the supply chain. If you have a strong background … in information security, risk management, and a passion for making businesses more resilient-we'd love to hear from you. The Role This role will support the ongoing operations of WTW Technology and Cyber Risk and Controls & Regulatory engagement function in: Evaluate supplier information security practices, policies and systems or risk exposure. Enhance risk assessment methodologies More ❯

Information Security & Compliance Officer sought to join the IT department of an award-winning, national recruitment agency group as they continue to expand their digital presence across multiple brands. This is a permanent, full-time role based fully onsite at the company’s Meriden office, with occasional travel to other company sites. The Role: As Information Security & Compliance Officer, you will become a key player in safeguarding the organisation's data and ensuring compliance with industry standards and regulations. As a crucial member of the Security and Compliance team, you will play an instrumental role in maintaining and enhancing our security controls across Microsoft Azure, Office 365, and during the migration of our legacy … systems to the Microsoft cloud. Your responsibilities will include: Evaluate and enhance existing IT systems, management procedures, and security protocols to ensure robust protection. Oversee ISO 27001 and other key accreditations by collaborating with internal teams and external auditors. Manage information security requests and compliance reports, ensuring adherence to GDPR and other relevant standards. Lead and coordinate More ❯

Security Assurance Coordinator/SAC Looking for an experienced Security Assurance Coordinator/SAC to be responsible for the co-ordination of security assurance. Working in information assurance and information security . This would suit someone working towards or be qualified in CISSP/CISA/CISM and experience in risk and regulatory frameworks … and standards, such as NIST, ISO27001, MOD JSP440, JSP604. Working for a very successful MSP who supports HMG’s security classification system working on defence projects. You must be security cleared or be willing and able to go through the vetting procedure to gain security clearance. As the SAC your role will encompass two key areas of … Information Assurance and Information Security. Implementing measures focused on protection and safeguarding of the critical information and relevant information systems, assuring the integrity, availability, authentication, confidentiality, and non-repudiation. As well as the protection of information and information systems from illegitimate access, usage, revelation, alteration, disruption, and destruction to achieve the objectives of data More ❯

Information Security & Compliance Officer sought to join the IT department of an award-winning, national recruitment agency group as they continue to expand their digital presence across multiple brands. This is a permanent, full-time role based fully onsite at the company's Meriden office, with occasional travel to other company sites. The Role: As Information Security & Compliance Officer, you will become a key player in safeguarding the organisation's data and ensuring compliance with industry standards and regulations. As a crucial member of the Security and Compliance team, you will play an instrumental role in maintaining and enhancing our security controls across Microsoft Azure, Office 365, and during the migration of our legacy … systems to the Microsoft cloud. Your responsibilities will include: Evaluate and enhance existing IT systems, management procedures, and security protocols to ensure robust protection. Oversee ISO 27001 and other key accreditations by collaborating with internal teams and external auditors. Manage information security requests and compliance reports, ensuring adherence to GDPR and other relevant standards. Lead and coordinate More ❯

Manager. Position purpose The Cybersecurity & Compliance Manager will lead Tosca’s efforts to ensure adherence to NIST CFS 2.0, ISO 27001, and other standards. This role focuses on developing security protocols, maintaining documentation, conducting risk assessments, and ensuring regulatory compliance. Responsibilities include managing security infrastructure, incident response, and promoting cybersecurity awareness. The position requires collaboration with Global IT … ISO standards, risk management expertise, and effective communication skills. This is a full-time role based in Dudley, UK, with travel up to 30% of the time. Responsibilities Implement security protocols and manage information security programs Report performance, exceptions, and outages to all audiences transparently. Align disaster recovery with business continuity plans. Ensure compliance with ISO27001, NIST … CFS 2.0, and maintain ISMS. Identify risks, develop a comprehensive security plan. Test cyber-attacks regularly to address vulnerabilities. Monitor security trends, adapt strategies. Oversee incident monitoring, detection, response via SOC and MSSPs. Manage security tools like SIEM and endpoint protection. Lead incident response and post-incident analysis. Enforce policies for data privacy (GDPR & NIST). Conduct More ❯

who are one of a major driving forces behind Innovative Development of Enterprise-Led Internet Technology. Role Overview: As a Vulnerability Management/SOCAnalyst you will focus on Technical Information Security within the Security Function , within a major part of the Organisation's Vulnerability Management Team . You will work closely within the Security Department covering … Tools Scheduling of Scanning across Business, ensuring Reporting Requirements are met whilst Minimising Operational Impacts to Endpoints Scheduling Internal & External Resources to Ensure Targets are Met Work across Full Information Security Project Lifecycle Ensure Compliance with Security Policies & Procedures Act as an Escalation Point & Coordinate with other Teams when required Key Skills & Experience Required for SOC Analyst … role will include: Strong Understanding of Information/Cyber Security Principles & Technologies. Experience of Security Related Technical Investigations Hands-On Technical Experience of Conducting Vulnerability Scanning & Evaluating Results Commercial Awareness & (Ideally) Experience of PCI DSS (Current Version) Experience with Incident Response Procedures & Investigations Strong Verbal & Written Communication Skills High Attention to Detail Strong Team Player Searches: SOC More ❯

Security Architect/Consultant Utilities Predominantly remote: 1 day onsite in Warwick per month 6 months+ £650 per day In short: We’re seeking a mid-level Security Architect/Consultant to support the business with a number of broad cyber initiatives. We’re looking for a generic IT Cyber Architect/Consultant – nothing niche. In full: Job … Purpose: The Security Consultant will support the Senior Security Architect, Lead Security Architect and Senior Security Officer to define security requirements and connect the business and IT programmes into the wider security organisation. Primary Roles & Responsibilities: Providing a security consultancy steer to programmes and projects, on security related matters. This includes formal … input to projects during the start-up, requirements, and design stages to ensure that security has been considered and is appropriate. Security review and design of application and technology architectures. Coordination of technical design/review activities with various segments within the Security team. Evaluation of systems and procedures to safeguard internal information systems and databases. More ❯

on a permanent basis working with a wide range of public and private sector clients from all sectors on exciting projects. The successful candidate will have significant experience in Information Security and ISO 27001 and be willing to attain further qualifications and experience with other ISO Standards. Ideal candidates will also be able to ensure clients achieve and … implement corrective actions effectively. Create management system-related Documents/Checklists/Policies/SOPs, and drive related activities throughout all locations. Adhere to strict ethical standards and organisational information security practices when handling client data. Requirements: Valid SC Clearance ISO 27001 Lead Auditor/Implementer Significant experience in ISO 27001 implementation as a minimum, but preferably also … experience in ISOs 27701/22301/9001 A strong understanding of information security and data privacy frameworks like NIST Cybersecurity Framework (CSF), GDPR, CIS or similar. Experience of certification body audits. Should have good experience and knowledge of Cyber/Information Security Governance, Risk Management, and Compliance. ISO Consultant – SC Cleared - £50,000 to More ❯

as assigned by the MD in the following areas: strategy, finance, human resources, portfolio and project management, asset and vendor management, and compliance with state and federal privacy and security laws. The DMD is also responsible for ensuring a strong, functional internal and external client satisfaction program, oversight of the organization's incident response program, and ensuring business continuity … while driving key projects and managing staff. A key aspect of this role is coordinating with internal and external partners, including UMass Chan IT and Information Security, as well as managing relationships with development partners. The DMD covers for the MD in their absence. Responsibilities Operational Oversight: Lead and support the day-to-day operations of the Digital … Cross-Department Liaison: Serve as the key liaison between Digital Solutions key business units and external clients to address operations needs and issues. Liaison with UMass Chan IT/Infosec: Act as the primary liaison between the Digital Solutions department and UMass Chan IT and Information Security teams to ensure alignment on technical strategies, cybersecurity protocols, and compliance More ❯

Information Security Specialist Hybrid working in Birmingham My client is an international Financial Services business, looking for a skilled and driven Information Security Specialist to join our dynamic, fast-growing team. What You'll Do: Leverage your expertise in Azure Sentinel and related security platforms to monitor, detect, and respond to security incidents. Lead … and participate in incident management , ensuring swift identification, investigation, and resolution of security threats using modern toolsets. Who You Are: Experienced with Azure Sentinel , SIEM, and other security monitoring/incident management tools. Adept at i ncident management, risk assessment, and operational security for enterprise systems. Passionate about automation, innovation, and continuous improvement in security. DCS Recruitment More ❯

IT Compliance Analyst Salary : £30,000 to £35,000 Location : Birmingham Keywords : Governance, Risk and Compliance, ISO 27001, Cyber Essentials Plus, Security Questionnaires, Audit Support, Data Protection, Security Governance, Team Collaboration, Process Improvement An exciting opportunity has arisen for an IT Compliance Analyst to join a globally recognised business in Birmingham. You will play a pivotal role in … ensuring the organisation's compliance with key security frameworks, supporting both internal and external audits, and collaborating closely with stakeholders across the business. If you are passionate about governance, risk, and compliance this role provides the perfect platform for your career progression. Benefit from ongoing training opportunities and exposure to industry-leading frameworks such as ISO 27001 and Cyber … heart of the organisation's efforts to maintain robust governance, risk management, and compliance standards. Your day-to-day activities will involve managing client audit inboxes, responding promptly to information requests, completing detailed questionnaires, and ensuring all documentation is up-to-date. You will work closely with colleagues across departments to gather necessary evidence for audits while supporting both More ❯

is a well-established manufacturer with a large IT estate, investing heavily in modernising their infrastructure across multiple UK sites. You'll be joining a collaborative team that values security, reliability, and continuous improvement. In this varied role, you'll lead infrastructure projects, provide 3rd line support, and take ownership of core systems including Windows Server, Azure, virtualisation, networking … deliver upgrades, improvements, and support across the estate. The ideal candidate will have strong experience in 3rd line positions, with good Microsoft infrastructure knowledge, solid networking skills, and a security-conscious mindset. Experience with information security best practices and secure system design is essential. This is a fantastic opportunity to join a stable, growing organisation where you … ll play a key part in shaping the future of their infrastructure and security landscape. The Role: *Deliver and lead IT infrastructure projects across a multi-site environment *Provide 3rd line support across Windows Server, O365, Azure, and virtualisation *Manage networks, firewalls, backups, and enterprise storage *Ensure secure, reliable systems and liaise with 3rd parties as needed *Site based More ❯

is a well-established manufacturer with a large IT estate, investing heavily in modernising their infrastructure across multiple UK sites. You'll be joining a collaborative team that values security, reliability, and continuous improvement. In this varied role, you'll lead infrastructure projects, provide 3rd line support, and take ownership of core systems including Windows Server, Azure, virtualisation, networking … deliver upgrades, improvements, and support across the estate. The ideal candidate will have strong experience in 3rd line positions, with good Microsoft infrastructure knowledge, solid networking skills, and a security-conscious mindset. Experience with information security best practices and secure system design is essential. This is a fantastic opportunity to join a stable, growing organisation where you … ll play a key part in shaping the future of their infrastructure and security landscape. The Role: *Deliver and lead IT infrastructure projects across a multi-site environment *Provide 3rd line support across Windows Server, O365, Azure, and virtualisation *Manage networks, firewalls, backups, and enterprise storage *Ensure secure, reliable systems and liaise with 3rd parties as needed *Site based More ❯

Cyber Security Engineer Are you hungry for real impact in cyber? Do you want to work on big security challenges with cloud tech and industry innovators around the globe? Step up and become our next Information Security Specialist -where your ideas, energy, and skills will power the secure digital world of tomorrow! Why This Role Rocks … High-impact mission: Protect global systems, build smarter defenses, and make a difference. Cutting-edge playground: Work hands-on with advanced Azure cloud solutions, automation, and modern security tech. No two days the same: You'll troubleshoot, innovate, automate, and drive exciting security projects. Empowered autonomy: Take ownership, collaborate remotely, and influence our security direction. What You … ll Do (and Own) Be the go-to expert for complex security challenges-leading investigations, guiding junior analysts, and keeping threats at bay. Engineer and manage robust security platforms in the Azure cloud. Kickstart automation-unleash your inner builder to streamline and strengthen how security gets done. Respond to incidents with confidence, contribute to security audits More ❯

on secure software development, you will follow best practices to ensure that both new and existing code is secure and maintainable, following best practices for secure design, secure coding, security testing, and vulnerability management. Key skills a successful applicant must demonstrate A deep understanding and knowledge of WordPress from theme and plugin development Core skill set of PHP, HTML … track record of systems delivery in this stack. Comfortable using version control (git) collaboratively, following branch strategies and pull-request based change management workflows. Understanding of the importance of Information Security and best practices for developing secure applications and websites. Familiarity with Scrum, Agile and Waterfall development methodologies. Sub-set of skills and appreciation for JQuery and Ajax. … that deadlines must be met. Experience of working in a fast paced digital agency environment servicing multiple clients and working to tight deadlines. Excellent problem solving skills to analyse information appropriately and find best solutions taking a balanced view to reach logical conclusions and make relevant decisions. Ability to work on multiple development work streams concurrently both under your More ❯

meets business needs and supports organisational goals. Key Responsibilities as a Dynamics 365 Administrator: Manage the day-to-day administration of the Dynamics 365 environment: Including user account management, security roles, and permissions. Configure and customise Dynamics 365: To meet business needs, including creating and modifying entities, forms, workflows, and reports. Monitor system performance and troubleshoot issues: Ensure optimal … Create and maintain comprehensive documentation :For system configurations, processes, and procedures. Ensure compliance: That the Dynamics 365 environment complies with organisational policies and industry standards, including data privacy and security regulations. Stay updated with the latest features and best practices for Dynamics 365 :Apply this knowledge to improve system functionality and user experience. Key Skills and Experience for a … Administrator: Essential: 3+ Years of experience in administration and development in Dynamics 365 CRM Modules Sales, Customer Service, Project Operations. Proficiency in Dynamics 365 administration, including user management, security roles, and system configuration. Knowledge of Power Platform tools (Power Apps, Power Automate, Power BI). Significant prior experience in data management including imports, exports, and regular data audits. Knowledge More ❯

Be the Backbone of Secure IT Operations as a Linux Security Engineer! Intercity Technology is on the lookout for a driven and detail-oriented Linux Security Engineer to play a pivotal role in delivering secure, compliant, and high-performing IT services at a major customer site in Nuneaton . This is more than just a support role it … s your opportunity to be at the heart of technical operations, project delivery, and IT compliance, working closely with a high-performing team and a security-conscious client. If you're passionate about IT infrastructure, thrive in customer-facing environments, and love solving complex problems with precision and discretion, this is your chance to make a real impact. What … Youll Be Doing as a Linux Security Engineer: Technical Support & Compliance Deliver hands-on support for Linux and Windows environments. Maintain a compliant, secure network infrastructure. Troubleshoot and resolve support tickets while meeting SLAs. Keep helpdesk systems updated in real time with meaningful insights. Project Delivery & Stakeholder Engagement Lead IT projects from planning to execution. Configure, install, and test More ❯

procedures Supervises a team of specialists, Deliver risk management services to Hitachi Energy in cooperation with the te Work closely with the stakeholders to prioritize, create reporting, and oversee security findings. Improve management of security risks/issues and help identify areas of risk Reporting on the services, and their continuous improvement. Background: 8+ years of experience in … IT/Information Security Governance in large, global organizations (consulting, audit or industry/operations Experience in planning and operating security risk/issue management-related processes and services. Experience in Risk Management aligned to certification requirements (ISO27001, ISO31000 or similar) required Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, CobiT, ) required Experience in … service build up a plus Security Governance/Risk Management certification (CISSP, CGEIT, CISM, CRISC ) is a plus Qualified individuals with a disability may request a reasonable accommodation if you are unable or limited in your ability to use or access the Hitachi Energy career site as a result of your disability. You may request reasonable accommodations by completing More ❯

Operations & System Health Design and test robust backup and disaster recovery strategies. Perform patching, upgrades, and maintenance to ensure availability and compliance. Monitor system health, capacity, and performance trends. Security & Governance Review and harden database security configurations. Manage access controls and support compliance with Cyber Essentials and data protection standards. Documentation & Collaboration Maintain clear documentation of system architecture … tuning, and T-SQL. Proven experience conducting architectural reviews and producing actionable improvement plans. Strong analytical and documentation skills. Experience with backup/recovery, capacity planning, and SQL Server security best practices. Excellent communication and stakeholder engagement skills. Desirable Skills Experience with business-critical platforms (e.g., CRM, ERP, Portals). Familiarity with MySQL or other RDBMS. Knowledge of SSIS … and welcome all applications. As a specialist in secure technology solutions, all successful candidates will be subject to pre-employment checks, so we can ensure compliance with our ISO27001 (Information Security) and Cyber Essentials Plus certifications. We are committed to using any personal information you may give us in a secure and proper manner, for more information More ❯

permanent basis. The role As a Data Protection Officer, you will play an integral role in supporting the Director of Legal and Governance in delivering compliant Data Protection, and Information Governance services within the organisation. You will keep up to date with relevant legislation and guidance and ensure these are communicated and understood across the Group. Your main responsibilities … of business continuity processes Experience in a role requiring collaboration with a wide variety of colleagues, contact with customers, and working to deadlines Ability to work with sensitive personal information, including medical and criminal offence data, and maintain strict confidentiality Experience in a role requiring collaboration with a wide variety of colleagues, contact with customers, and working to deadlines … Experience in the use of a wide range of ICT systems both internal to the group and from external stakeholders, inputting information, producing reports and administering other users as required Ability to champion good practice in regard to information governance, data protection, and information security We can offer you We offer a comprehensive induction programme and More ❯

Oversee the sunsetting and retirement of outdated products. Ensure technical, sales, and commercial readiness across the portfolio. Operational Excellence Define service architecture including APIs, SLAs, and technical documentation. Ensure security, sustainability, and compliance standards are met. Support training, onboarding, and enablement across teams. Performance & Optimisation Monitor KPIs including revenue, margin, pipeline growth, and roadmap delivery. Use data-driven insights … business goals. What Were Looking For: Essential Experience & Skills 4+ years in a product management role, ideally in mobile or telecoms. Deep understanding of UK business mobile, cloud, and security markets. Proven success in vendor management and go-to-market execution. Strong commercial acumen and strategic thinking. Excellent communication and cross-functional collaboration skills. Desirable Experience Experience with public … and welcome all applications. As a specialist in secure technology solutions, all successful candidates will be subject to pre-employment checks, so we can ensure compliance with our ISO27001 (Information Security) and Cyber Essentials Plus certifications. We are committed to using any personal information you may give us in a secure and proper manner, for more information More ❯

looking to add a Junior GRC Analyst to their well-established team. This is a fantastic opportunity for someone new to the compliance space to get into a dedicated InfoSec GRC role This position offers broad exposure across the full spectrum of Governance, Risk, and Compliance, making it ideal for someone with a genuine passion for learning and a desire … to grow within a supportive culture. What They're Looking For: Demonstrable experience of information governance, data protection, or information security and compliance. Experience in audits or working with compliance frameworks like ISO27001 or Cyber Essentials Plus. Familiarity with policy documentation and data protection principles. A curious mindset with a keen desire to learn and grow Key More ❯