1 to 25 of 44 ISO/IEC 27001 Jobs in the West Midlands

now on an accelerated journey of innovation and international expansion-a rocket ship we’d love for you to be part of! Joblogic provides an all-in-one SaaS / CRM platform for field service businesses across industries such as HVACR, Plumbing & Heating, and Electrical Contracting & Maintenance. Our world-class software streamlines operations, boosts profitability, ensures compliance, and drives … across global operations, while enabling business growth and innovation. The SISL will build and mature Joblogic’s Information Security Management System (ISMS), maintain certifications such as ISO / IEC 27001:2022 certification and Cyber Essentials Plus, ensure compliance with UK GDPR and international regulations, and strengthen Joblogic’s resilience to cyber threats. Key … strategies. Support Sales and Customer Success in security assurance and due diligence processes for example InfoSec questionnaires. 2. Governance & Compliance Maintain and continually mature Joblogic’s ISO / IEC 27001:2022 certification, ensuring audit readiness. Ensure compliance with UK GDPR, Pakistan’s PECA, Vietnam’s Cybersecurity Law, and other applicable regulations. Lead policy More ❯

Looking for a strong Network Security professional responsible for Designing / Architecting / Implementing / Maintaining enterprise Network Security Infrastructure. Location: Warwick / Wokingham Mode: Hybrid (3-days work from Office) Experience Required: 8–10 Years Must Have / Mandatory Skills Palo Alto Networks – Firewalls (MUST) Network Security Architecture IAM, MFA, AAA, RBAC, Privilege Access … Cloud Security (OCI / Azure / AWS) SIEM / Vulnerability Management / PKI / Cryptography LAN / WAN / DMZ / Routing / Switching / Subnetting Key Responsibilities Design / Architect network security infra solutions like Firewalls, IDPS, Proxy, Load Balancers, VPN, WAF Build and optimize firewall policies + … network access controls Ensure compliance alignment (GDPR / PCI DSS / HIPAA etc.) Perform regular audits + risk assessments, close compliance gaps Evaluate / Recommend new security tools & methodologies Monitor network traffic & identify operational security threats Work closely with Network, Infra, Cloud & Engineering teams Communicate complex technical security topics to non-technical audience Provide guidance / More ❯

Cyber Security Architect £60,000–£70,000 + bonus + excellent pension Hybrid | Coventry (3 days / week on average) We’re partnering with a leading UK utility provider to hire a Cyber Security Architect who’ll set the standard for “secure by design” across major change, safeguarding critical national infrastructure and millions of customers. The impact you’ll … make Lead security architecture across multiple programmes / Agile Release Trains; shape option reviews and high-level designs that deliver proportionate, effective controls. Act as Product Owner for a flagship cyber programme — owning epics / features, prioritisation and roadmaps to outcomes. Govern security by design, ensure compliance (ISO 27001, PCI DSS, GDPR / … and align to enterprise security strategy. Advise senior stakeholders; collaborate across architecture, engineering and suppliers to land pragmatic, secure solutions. What you’ll bring 5–10 years in technical / information security with 3–5 years in security architecture. Strong coverage across IAM / PAM, endpoint / EDR, network, O365 / email, app & cloud (Azure / More ❯

organisations build trust, security, and resilience across their digital operations. Their specialist services span AI Governance as a Service (AIGaaS) , Virtual Data Protection Officer (vDPO) support, ISO / TISAX compliance , and digital resilience strategy . To support their next phase of growth, they're seeking a commercially driven Business Development professional to accelerate expansion across the SME … makers. Highly self-motivated with a proactive, start-up mindset. Excellent communication, negotiation, and commercial acumen. Organised approach to pipeline management and CRM usage. Familiarity with AI governance, GDPR / data protection, and cyber risk frameworks . Understanding of ISO / TISAX / ISO 27001 or other compliance standards desirable. More ❯

a fantastic opportunity for someone passionate about driving service excellence, modernisation, and customer success in a dynamic managed services environment. 🔑 Key Responsibilities Provide leadership and governance for the 2nd / 3rd Line Infrastructure Team, ensuring high performance, training, and engagement. Act as a senior escalation point for complex technical issues, ensuring rapid and effective resolution. Drive service improvement by … services are stable, secure, and aligned with our customer’s strategic goals. Build strong relationships with our customer’s IT leadership team, becoming their trusted technical advisor. Oversee SLA / OLA performance, ensuring all KPIs and contractual obligations are met. Support and mentor team members, fostering technical excellence, collaboration, and career growth. Ensure compliance with policies, regulatory requirements, and … ISO standards (ISO 27001, ISO 9001). Collaborate with Service Delivery, Transition, and Technical Account Management to ensure seamless onboarding and lifecycle management. Produce service performance reports and lead technical service reviews with our customer. 📌 What You’ll Be Doing Own the technical relationship with our customer for Infrastructure Services. Provide expert More ❯

Job Title: Senior Information Security Analyst – Remote / Home-Based Location: Remote / Home-Based (Hybrid as required) Type: Initially 3 months - potential to extend Salary: 34.50 UMB per hour (£26 PAYE)On behalf of our client, We are seeking an experienced Senior Information Security Analyst to provide immediate support to their Information Security team. This hybrid role … assess risks, review supplier and project security documentation, respond to security questionnaires and tenders, support incident investigations, and help ensure compliance with relevant standards, including Cyber Essentials Plus, ISO 27001, DSPT, GDPR, and NCSC guidelines. This is a hands-on delivery role requiring someone who can work independently, make sound judgments, and communicate effectively with both … tender submissions. Support and track remediation actions arising from risk assessments, audits, or incidents. Assist with maintaining the Information Security Risk Register and associated controls. Support compliance with ISO 27001, Cyber Essentials Plus, and DSPT. Provide input to security policies, standards, and process improvements. Technical Security Oversight Collaborate with IT and Security partners to review alerts More ❯

manage risk, protect information assets, and uphold the highest standards of governance and assurance. The Role This is an exciting opportunity to lead and manage the SRA's ISO:27001 certified Information Security Management System (ISMS). As Information Security Manager, you'll be a subject matter expert, providing strategic advice and operational support to ensure … compliance with PCI DSS, and manage external certification processes. This role is ideal for someone with strong analytical skills, excellent stakeholder engagement experience, and a deep understanding of ISO:27001 and information security frameworks. What's in it for you Lead the development and implementation of a certified ISMS Collaborate with senior stakeholders across the organisation … Be part of a forward-thinking team focused on continuous improvement Influence strategic decisions and drive security awareness What we're looking for Essential: Strong knowledge of ISO:27001 and experience managing an ISMS Recognised security qualification (e.g. CISM) Experience in risk assessment, incident management, and internal auditing Ability to interpret vulnerability scans, penetration tests, and More ❯

Benefits: Professional development, and a collaborative culture Our client, a leading technology services provider, is seeking an IT Security Analyst to strengthen its information security framework and support ISO 27001 compliance activities. This role is ideal for someone with a strong understanding of security standards who enjoys embedding best practice across the business. What you’ll … do Support and maintain compliance with ISO 27001 standards Conduct and coordinate internal audits, risk assessments, and remediation activities Develop and update security policies, procedures, and documentation Work closely with technical teams to ensure security controls are implemented effectively Monitor and report on security metrics and compliance performance You’ll work closely with IT, compliance, and … leadership teams to maintain a strong security posture and drive continuous improvement across the organisation. What we’re looking for Experience working with ISO 27001 frameworks and audits Knowledge of IT security controls, governance, and risk management Strong analytical and documentation skills Excellent communication and stakeholder engagement abilities A proactive mindset with attention to detail and More ❯

working with a leading Systems Integration Consultancy based in Stone, Staffordshire. They're looking for an Operational Technology Cyber Security Engineer with a background in Industrial Control Systems (ICS / SCADA) This is a fantastic opportunity to join a high-performing engineering team working on critical national infrastructure projects across the energy, utilities, water, renewables, and manufacturing sectors. This … Security Clearance. Main Responsibilities: Lead the design and implementation of secure OT network architectures across critical infrastructure environments. Conduct attack path analysis, penetration testing and adversary simulations within ICS / OT environments. Perform cybersecurity risk assessments and technical security audits aligned to recognised industry frameworks. Develop technical design specifications and security documentation including functional and infrastructure specifications. Act as … a technical mentor, guiding and supporting junior engineers within the cyber and OT engineering teams. Required Skills: Proven experience securing ICS / SCADA, PLCs, RTUs and industrial communication protocols (MODBUS, OPC, DNP3, etc.). Strong background in designing and configuring secure networks including switching, routing, and firewalls. Solid knowledge of IT / OT segmentation and secure cross-domain More ❯

support project management and business development activities. The position requires travel to the office and customer sites across the UK. Essential Experience: Education & Experience : Bachelor's degree in computer / system science and 5+ years in cybersecurity, with 2+ years in critical infrastructure / ICS environments (e.g., SCADA, PLCs, RTUs). Industry Knowledge : Ability to work across sectors … such as chemical, water, oil & gas, and energy. Technical Skills : Securing ICS communications protocols (e.g., MODBUS, OPC, DNP3). Designing / configuring secure networks (switching, routing, firewalls). Securing IT / OT communications and real-time / performance-sensitive systems. Documentation : Experience creating Functional Design and Cyber Security Specifications. Security Standards : Familiarity with frameworks such as NIST … / 800-82, ISO 27001, IEC 62433, NIS-R, etc. Stakeholder Management : Proven ability to manage relationships at all levels. Customer Focus : Commitment to customer service and performance culture. Clearance : Must be eligible for SC (Security Check) clearance. Desirable Experience: Experience in both engineering and non-engineering environments. Familiarity with customer satisfaction and More ❯

mapping adversary tactics and techniques to industrial environments and developing tailored mitigation strategies. You'll lead and execute advanced penetration testing, red teaming, and adversary simulation exercises within OT / ICS environments, leveraging frameworks such as MITRE ATT&CK for ICS and modelling using Bow-Tie Analysis to proactively identify and exploit vulnerabilities. You'll conduct vulnerability assessments and … including Chemical, Water, Oil and Gas, Energy. What you'll need: You'll have 5+ years' experience with cyber security technologies with at least 2 years serving critical infrastructure / industrial control systems, including SCADA, PLCs, RTUs, etc. Experience with securing systems running ICS-related communications protocols (e.g., MODBUS, OPC, DNP3, etc.). Experience securing cross-domain IT / OT communications and interfaces. Experience designing & configuring secure networks (Switching, Routing, Firewalls). Experience engineering security solutions for real-time and / or performance-sensitive systems. Experience creating Functional Design Specifications and Detailed Infrastructure, Network and Cyber Security Specifications. Demonstrated experience conducting system assessments and security audits in alignment with technical security frameworks, including NIST 800-53 / More ❯

security awareness training, security compliance, security accreditation and collaborate with various stakeholders to foster a security-conscious culture. Key Deliverables: Align the business' security stance to comply with ISO 27001and Cyber Essentials Plus, or in accordance with the Cyber Assessment Framework Improve the Cyber Awareness within the company via communications, Cyber Awareness training and monitoring of Staff compliance … business on matters relating to cyber security Skills & Experience: Solid experience working within a similar role within information security management, ideally within an ICT Infrastructure, Managed Service Provider and / or Systems Integrator In-depth knowledge of ISO 27001 standards and best practices, as well as other relevant security frameworks (e.g., NIST, CAF) Strong technical … investigations Excellent communication and interpersonal skills, with the ability to effectively collaborate with stakeholders at all levels of the organisation Desirable: Experience of working within Defence, UK government and / or a commercial security supplier Professional certifications in information security, such as CISSP or CISM, ISO 27001 related If your profile demonstrates strong and recent More ❯

to asset management systems. Assist in developing, documenting, and managing processes for supporting the IT environment holistically, including but not limited to: workstation deployment, system access management, software patching / upgrades, and management of cloud services. Help manage service accounts and vendor contracts (e.g. internet, phone, printer). Contribute to maintaining documentation of the company’s technology architecture. Research … and suggest service enhancements to improve efficiency and user experience. Support the implementation and maintenance of the company’s ISO 27001 Information Security Management System and ISO 27701 Privacy Information Management System. Assist with cyber security initiatives such as endpoint management, access control, and awareness activities. Assist with privacy and cyber client engagements as … projects, or work experience. Awareness of macOS, Windows, or Google Workspace environments. Familiarity with basic networking concepts (IP, DNS, VPN). Interest in cyber security and privacy frameworks (ISO 27001, GDPR). Entry requirements: 3 GCSEs (or equivalent) at grades 4+ (A-C) in any subject GCSE Maths and English (or equivalents) at grades 3+ (D More ❯

toolsets across cloud, infrastructure, and application domains (e.g. SIEM, IAM, PAM, DLP, endpoint protection). Provide security assurance and governance across projects, ensuring alignment with frameworks such as ISO 27001, NIST, GDPR, and PCI DSS. Collaborate with enterprise, technology, and business stakeholders to deliver practical, innovative, and cost-effective security solutions. What we’re looking for … 27001, NIST, COBIT, ITIL). Experience with cloud environments (Azure, AWS, O365). Certifications such as CISSP, CISM, CISA, CRISC or equivalent. Experience in Agile / SAFe delivery environments and comfort acting as a Product Owner or similar. Why join You’ll be part of a collaborative architecture team working on high-impact security initiatives More ❯

to-end solution integrity. Prepare network capacity and resilience plans. Document network topology, standards, and procedures. Skills, Experience, and Abilities Required: Technical Requirements: Expert knowledge of IP networking (IPv4 / IPv6, routing, switching, subnetting, VLANs, NAT, QoS). Deep understanding of protocols (BGP, OSPF, EIGRP, MPLS, STP, VXLAN, DNS / DHCP). Familiarity with SDN and SD-WAN … Security integration: Zero Trust, segmentation, NAC; familiarity with ISO 27001, NIST, PCI-DSS, GDPR. Cloud & Virtualisation: AWS, Azure, or GCP networking services; understanding of hybrid / multi-cloud; automation tools (Terraform, Ansible, Python). Monitoring & Management: Network management systems (SolarWinds, Cisco DNA Center); performance monitoring, logging, incident response. Experience Requirements: 7 10+ years in network … engineering, with 3 5 years in architecture / design roles. Proven experience in large-scale or complex enterprise environments. Architectural artefact production (HLDs, LLDs, diagrams, standards). Leading technical design workshops and influencing senior stakeholders. Vendor selection and cost optimisation experience. Educational & Certification Requirements: Bachelor's degree (or higher) in Computer Science, Information Technology, or related field. Preferred certifications More ❯

access to systems and data across academic, student and administrative communities The post will be working within the Portfolio Delivery team and will utilise knowledge of Agile methodologies (Scrum / Kanban) to facilitate successful execution of project goals / objectives. As a Delivery Manager, you will play a crucial role in stakeholder engagement, liaising with senior business, faculty … and responsibilities Project Delivery & Product Release Management Lead the planning, scheduling, implementation and tracking of project activities to ensure timely delivery of project and product milestones. This includes managing / leading Scrum activities and holding agile ceremonies. Monitor and manage project delivery success, facilitating retrospectives, and interpreting outcomes to identify and implement continuous improvement opportunities. Evaluate projects, and releases … to ensure relevancy, benefits realisation, and compliance. Identifying and actively managing risks, issues, and blockers across the project / product Management of project budgets, ensuring accurate forecasting & financial compliance Collaborate with Product Manager, Procurement & Product teams and external contractors on project spend, ensuring effective cost control. Identify resource requirements and manage resources effectively to ensure teams have the necessary More ❯

segmentation project in AWS, separating production and non-production environments. Key Responsibilities: Design, implement, and support enterprise network infrastructure across Cisco and Palo Alto on-premises environments, and Azure / AWS cloud platforms. Lead deployment and optimisation of SD-WAN and SASE / SSE technologies (e.g., Netskope, Zscaler, Cisco Umbrella). Manage and maintain secure network architectures including … root cause analysis, and ongoing improvements. Required Skills & Experience: Extensive experience executing network refresh projects. Strong expertise with Cisco, Palo Alto, HAProxy, and Azure networking. Solid understanding of TCP / IP, DNS, DHCP, VPNs, VLANs, firewall policies, and routing protocols (BGP, OSPF). Proven track record with SD-WAN deployments. Practical knowledge of SSE / SASE platforms (e.g. … Netskope, Zscaler, Prisma Access). Experience with AWS and / or Azure networking (VPC / VNet, transit gateways, peering, VPNs). Proficiency with monitoring and troubleshooting tools (NetFlow, Wireshark, CloudWatch, Grafana). Strong communication, documentation, and collaboration skills. Preferred Certifications: Cisco: CCNP, CCIE AWS: Advanced Networking, Solutions Architect Microsoft: Azure Network Engineer Associate, Azure Solutions Architect Expert Palo More ❯

Role: Head of IT Operations (IT Ops, Services, Cyber) Location: Stratford Upon Avon / Cotswolds Salary: Strong Base Salary + Benefits Role: This is a newly created Head of Technology role reporting into board level for an ambitious B2C led organisation that have a superb brand in the market. Physical business, multi-site with award winning services. The organisation … has recently received significant investment, are acquisitive by nature and are looking for a Head of Technology / Head of IT Operations to lead them through their next phase of growth. This role will lead, develop and implement a comprehensive IT strategy and also own BAU related run activities. Broad role, responsible for IT Infrastructure, Operations, Service Management and … plan to ensure the security of our systems and data. Work to ensure systems are secure and compliant with relevant regulations and standards (e.g., GDPR, PCI DSS, Cyber Essentials / +, ISO 27001). Oversee the design, implementation, and maintenance of IT infrastructure (on-premises and cloud). Ensure high availability, performance, and scalability of More ❯

with regulatory frameworks. In addition, you will lead a strategic vision with hands-on expertise across critical systems. Information Security Manager: Duties Experience of business acquisitions - Highly desirable Develop / Maintain enterprise InfoSec strategy aligned business goals Oversee security architecture, vulnerability management, incident response and threat intelligence Lead security risk assessments and manage remediation plans for gaps Financial regulation … security for cloud-first environments - AWS, Azure, Google Cloud Implement SOC & Automated security monitoring Lead third-party risk management & vendor security programmes Experience of DevSecOps practises and SDLC Design / Implement security frameworks - ISO 27001, NIST Hands-on experience of SIEM, DLP, IAM, Endpoint Technology The permanent opportunity for a Information Security Manager, will pay … opportunity to join an industry market leader, that has grown year on year, for further information, please apply with an updated CV and reach out to Ajay Hayre on / Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates More ❯

Information Cyber Security Engineer (ISO 27001, NIST, Cyber Essentials Plus) Cyber Security Engineer to join a growing team, a leading global organisation. In this hands-on role, you’ll be at the heart of the company’s security operations driving innovation, leading key initiatives, and shaping the future of their cybersecurity landscape. Working closely with infrastructure … security tools to strengthening defences across on-premises, cloud, and SaaS environments, you’ll play a vital role in safeguarding critical systems and data. The environment is - Mimecast, Antivirus / EDR, CrowdStrike, Security Awareness Platform, KnowBe4, O365, Web Proxy / proxies, Phishing, Policies, AD / Active Directory. However the client is happy to welcome candidates with other … business on security implications of new technologies and contribute to strategic decisions that define the company’s long-term roadmap. You’ll also champion compliance with frameworks such as ISO27001, NIST, and Cyber Essentials Plus. This opportunity is perfect for someone who is proactive, forward-thinking, and passionate about cybersecurity excellence. You’ll bring strong technical expertise, a deep understanding More ❯

people across the UK. They are passionate about creating safe, nurturing environments that transform lives. As part of their digital evolution, they are seeking a skilled Information Security Engineer / Analyst to help strengthen their cyber security posture and safeguard our systems and data. Reporting directly to the Head of IT this is a hands-on technical role focused … Support secure software development lifecycle (SDLC) processes and promote secure coding standards Identify and remediate vulnerabilities using industry-standard tools Administer and configure security technologies (e.g., firewalls, SIEM, IDS / IPS, endpoint protection) Oversee access controls and identity management systems Conduct penetration testing and routine vulnerability scans Monitor networks and systems for threats; lead incident response efforts Perform root … NIST, ISO 27001, Cyber Essentials+ Hands-on experience with tools like Nessus, Qualys, SIEM, EDR, DLP, VPNs, and firewalls Strong understanding of network protocols (TCP / IP, DNS, HTTP, SSH) and segmentation Knowledge of Zero Trust architecture and cloud-native security practices Proficiency in identity and access management (Azure AD, MFA, SSO, RBAC) Skilled in More ❯

Birmingham, West Midlands Full time Permanent £50,000 - £55,000 Per Annum, Plus Benefis Package Our leading services client in Birmingham is seeking a highly skilled Information Security Engineer / Analyst on a full time basis, to help strengthen their Cyber Security posture and safeguard their systems and data. Reporting directly to the Head of IT this is a … Support secure software development lifecycle (SDLC) processes and promote secure coding standards Identify and remediate vulnerabilities using industry-standard tools Administer and configure security technologies (e.g., firewalls, SIEM, IDS / IPS, endpoint protection) Oversee access controls and identity management systems Conduct penetration testing and routine vulnerability scans Monitor networks and systems for threats; lead incident response efforts Perform root … NIST, ISO 27001, Cyber Essentials+ Hands-on experience with tools like Nessus, Qualys, SIEM, EDR, DLP, VPNs, and firewalls Strong understanding of network protocols (TCP / IP, DNS, HTTP, SSH) and segmentation Knowledge of Zero Trust architecture and cloud-native security practices Proficiency in identity and access management (Azure AD, MFA, SSO, RBAC) Skilled in More ❯

Plus Benefits Package Location: Central Birmingham, West Midlands (Hybrid Working - 2 days per week onsite) Our leading services client in Birmingham is seeking a highly skilled Information Security Engineer / Analyst on a full time basis, to help strengthen their Cyber Security posture and safeguard their systems and data. Reporting directly to the Head of IT this is a … Support secure software development lifecycle (SDLC) processes and promote secure coding standards Identify and remediate vulnerabilities using industry-standard tools Administer and configure security technologies (e.g., firewalls, SIEM, IDS / IPS, endpoint protection) Oversee access controls and identity management systems Conduct penetration testing and routine vulnerability scans Monitor networks and systems for threats; lead incident response efforts Perform root … NIST, ISO 27001, Cyber Essentials+ Hands-on experience with tools like Nessus, Qualys, SIEM, EDR, DLP, VPNs, and firewalls Strong understanding of network protocols (TCP / IP, DNS, HTTP, SSH) and segmentation Knowledge of Zero Trust architecture and cloud-native security practices Proficiency in identity and access management (Azure AD, MFA, SSO, RBAC) Skilled in More ❯

and financial reporting activities, supporting key initiatives across the business. What youll be doing IT Governance & Risk Management Support control design, risk assessments, and compliance monitoring (e.g., GDPR, ISO 27001). Financial Planning & Analysis Assist in budgeting, forecasting, and ROI modelling for technology investments. Automation & Insight Generation Apply tools and techniques to streamline control testing and … to IT risk assessments and maintain the IT risk register. Participate in assurance reviews and control maturity assessments. Monitor compliance with relevant regulatory requirements, such as GDPR and ISO 27001. Collaborate with IT, Cybersecurity, and Business Operations teams to promote awareness of control frameworks. Assist in the development of dashboards and reports for control and assurance metrics. Finance More ❯

the investigation of incidents and security monitoring approaches What were looking for 3+ years experience in consultancy or complex ICT delivery Knowledge of frameworks such as HMG SPF and ISO27001 Familiarity with identity management, PKI, SIEM, cryptography and firewalls Strong communication skills, able to influence at all levels A STEM degree or relevant security certification (CCP, CISSP, SABSA, TOGAF) desirable More ❯