CrawlJobs Logo
West Midlands Combined Authority Logo West Midlands Combined Authority · IT - Administration

Information Security & Integrity Manager

United Kingdom, Birmingham 62906.00 - 70535.00 GBP / Year · Job Posted May 28, 2026
Apply Position
Job Link Share

Job Description

We are seeking an experienced and forward-thinking Information Security & Integrity Manager for a period of 12 months, to play a critical role in strengthening how the West Midlands Combined Authority (WMCA) protects, governs, and assures the use of its information assets and data. This is a high-profile opportunity to lead the development and continuous improvement of the WMCA's Information Security Management System (ISMS), ensuring the organisation has clear, evidence-based assurance over how information is handled, secured, governed, and retained. Working closely with senior leadership, audit, cyber security, data, and technology teams, you will help shape a robust security and governance framework that supports organisational transformation while ensuring compliance with ISO standards, UK GDPR, and best practice.

Job Responsibility

  • Establish and maintain the organisation's Cyber and Resilience Strategy
  • Translate organisational needs into a coherent data security and lifecycle governance model
  • Define security requirements for Business Continuity and Disaster Recovery
  • Work with data owners and engineering teams to embed a culture of data literacy
  • Ensure CAB/change includes security readiness criteria
  • Maintain evidence packs and ISO/QMS artefacts with the Business Management Unit
  • Maintain visibility of organisational data assets through evidence-based mapping
  • Implement data quality assurance checkpoints in collaboration with Data Engineering
  • Build strong working relationships across Technology and Insight service areas, Corporate PMO, Service Desk, suppliers, and operational teams and technical teams
  • Act as a coordinator for the WMCA's formal liaison with national and regional authorities
  • Drive continuous improvement in operational processes

Requirements

  • Running an ISMS and aligning to ISO 27001 in a complex, multi-supplier environment
  • Establishing policies, MSBs, risk registers, DPIAs, and supplier security
  • CISSP/CISM or ISO 27001 Lead Implementer/Lead Auditor (or equivalent)
  • Training or certification in data governance, data quality management, or metadata management (e.g., DCAM, CDMP, DAMA DMBoK-aligned training)
  • Experience of working in Agile, Lean or DevOps-aligned delivery practices (e.g., Kanban, flow metrics, sprint planning, CI/CD awareness)
  • Experience of working with CABs, release cycles or readiness reviews
  • Experience assuring or governing data pipelines, data flows, integrations or data processing environments
  • Experience implementing or overseeing data lifecycle governance, including classification, retention, minimisation and defensible deletion
  • Experience working with Microsoft Purview, M365 compliance tooling or equivalent enterprise governance platforms
  • Strong knowledge of UK GDPR/DPA 2018, ISO 27001, NCSC guidance
  • Strong risk and assurance capability

What we offer

  • Local Government Pension Scheme
  • Shared Cost Additional Voluntary Contribution scheme
  • 28 days paid annual leave (with an option to purchase more) + Statutory days
  • EV car benefit scheme
  • Healthcare plans
  • Discounted gym membership, will writing, and mortgage advice
  • An option to buy a bicycle, including e-bikes and adapted pedal cycles, at a discounted rate
  • 3 days of paid leave each year to volunteer
  • Interest-free financing through SmartTech to buy the latest technology
  • Discounted shopping with over 2,000 big-name retailers
  • Costco membership
  • Boundless unlocks unlimited entry to top-rated UK attractions
  • Eye Care Scheme, offering a free eye test and a financial contribution towards your glasses
West Midlands Combined Authority - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Information Security & Integrity Manager

8 matching positions

Senior Manager IAM Enterprise Security

The IT Sr. Manager, Identity & Access Management is responsible for providing le...
Location
Location
Poland , Krakow
Salary
Salary:
Not provided
genpt.com Logo
Genuine Parts Company
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS/BA degree and specialized information security technical training required
  • A reputable security certification (CISSP, CISSP w/specialization HCISPP, GIAC, CISA, etc.) is required
  • A minimum of 6 years of progressive Information Security experience
  • A minimum of 3+ years of management experience leading information security
  • Identity & Access Management to include governance experience is required
  • In-depth knowledge of the information security industry and regulatory obligations (Sarbanes-Oxley (SOX), HIPAA, GLBA, PCI DSS, HITRUST, NIST Framework, etc.)
  • Working knowledge of Microsoft Active Directory
  • Ability to analyze all layers of the OSI model from the security stance
  • In-depth knowledge of networking technologies and architecture
  • ITIL familiarization - managing incidents, requests, and changes
Job Responsibility
Job Responsibility
  • Serves as an internal information security consultant to the enterprise
  • Include focus and expertise in Privileged Access Management (PAM), Customer Identity Access Management (CIAM), Identity Governance and Administration (IGA) and Employee Identity Access Management (EIAM) to include Single Sign on and Multi-factor authentication
  • Research and recommend solutions that meet security standards while ensuring functionality for business continuity
  • Develop security test scenarios for unit, process, function, integration, and acceptance testing
  • Design integration schema and linkage for multi-platform business and technological solutions
  • Evaluates the security of new technologies and assists with the plan to integrate them into the company environment
  • Help develop the policies and procedures in conjunction with the established IT governance channels to manage the use and operation of these systems
  • Recommend best practices for security controls without hindering functionality
  • Define the minimum access and identity configuration standards for all IT systems
  • Evaluates new and proposed security systems and technologies
What we offer
What we offer
  • We offer comprehensive benefit plans and programs designed to support your health and wellness, provide income protection and build financial security for your retirement
Read More
Arrow Right

Manager, Information Systems Engineering - Identity & Access Management

We are seeking a Manager of Information Systems Engineering, to lead the Identit...
Location
Location
United States , Albuquerque
Salary
Salary:
157100.00 - 267000.00 USD / Year
sandia.gov Logo
Sandia National Laboratories
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree, in a relevant field plus eight (8) years of relevant experience
  • or equivalent combination of relevant education and experience (equal to 16 years of exempt level work)
  • Experience leading or managing programs, projects, services, and/or teams
  • Ability to obtain and maintain an active DOE Q-level security clearance
Job Responsibility
Job Responsibility
  • Provide leadership and oversight for all identity and access services
  • Develop strategy for technology maturation of critical technologies, lead projects and help develop service roadmaps for the team
  • Articulate a clear vision and strategy for the Identity and Access Management team
  • Support full lifecycle management (analysis, design, development, testing, implementation, integration and maintenance) for Enterprise IT solutions, services, and applications
  • Collaborate with customers, vendors, and IT partners across Sandia to provide innovative design solutions
  • Deliver results, effectively manage people, and guide multidisciplinary teams
  • Mentor and lead the organization on department tasks and organizational goals and objects
  • Knowledge of technical business development
  • Organize, prioritize, and follow through to completion on multiple tasks and projects
  • Work with sensitive information and classified matter
What we offer
What we offer
  • Challenging work with amazing impact
  • Extraordinary co-workers
  • Some of the best tools, equipment, and research facilities in the world
  • Career advancement and enrichment opportunities
  • Flexible work arrangements for many positions include 9/80 and 4/10 compressed workweeks, part-time work, and telecommuting
  • Generous vacation, strong medical and other benefits, competitive 401k, learning opportunities, relocation assistance and amenities aimed at creating a solid work/life balance
  • Fulltime
Read More
Arrow Right

Director of Information Security

Jeeves is looking for a visionary and hands-on Director of Information Security ...
Location
Location
Mexico , Mexico City
Salary
Salary:
Not provided
tryjeeves.com Logo
Jeeves
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, or a related field
  • Master's degree preferred
  • 10+ years of progressive experience in information security
  • At least 5 years in a leadership or management role, preferably within a B2B SaaS or FinTech environment
  • Proven experience operating in a global organization with a strong understanding of diverse regulatory landscapes across North America, EMEA, and Latin America (Mexico, Colombia, Brazil)
  • Strong understanding of financial industry security regulations and compliance frameworks (e.g., PCI DSS, SOC 2, ISO 27001, NIST Cybersecurity Framework, GDPR, LGPD)
  • Deep technical expertise across a broad range of security domains, including network security, cloud security (AWS, Azure, GCP), application security, data security, identity and access management, and incident response
  • Experience with various security tools and technologies (SIEM, EDR, WAF, DLP, vulnerability scanners, etc.)
  • Excellent communication, interpersonal, and presentation skills, with the ability to articulate complex security concepts to technical and non-technical audiences, including executive leadership
  • Strong analytical and problem-solving skills, with a proactive and pragmatic approach to security
Job Responsibility
Job Responsibility
  • Develop, implement, and maintain a robust global information security strategy aligned with business objectives, regulatory requirements, and industry best practices
  • Lead the evolution of our security roadmap, identifying emerging threats, vulnerabilities, and opportunities for improvement
  • Provide expert guidance and leadership on all aspects of information security to executive management and key stakeholders
  • Oversee the design, implementation, and continuous improvement of security policies, standards, procedures, and guidelines across the organization
  • Manage and mature our security awareness and training programs for all employees
  • Develop and manage the information security budget and resource allocation
  • Establish and maintain an enterprise-wide information security risk management framework, conducting regular risk assessments and managing mitigation plans
  • Ensure compliance with relevant international, regional, and local data privacy and security regulations
  • Lead and coordinate external security audits and assessments
  • Oversee security operations, including vulnerability management, penetration testing, security monitoring, and incident detection and response
  • Fulltime
Read More
Arrow Right

Country Security Lead

The Country Security Lead (CSL) for ASML China acts as the local representative ...
Location
Location
China , Shanghai
Salary
Salary:
Not provided
asml.com Logo
ASML
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 10 years (Information) Security experience
  • Minimum of 8 years experience with physical security
  • Minimum of 5 years IT working experience
  • Able to engage with Senior Leadership in China
  • Ability to build strong, trusting relationships with technical and non-technical user base
  • Highly-motivated, with a strong work ethic and able to work effectively under minimal supervision
  • Excellent verbal and written communication skills in English and Mandarin
  • Excellent multi-tasking skills
  • Enterprise Security risk expertise: Strong understanding of risk frameworks, strategic security risk mgt, policy management, and business continuity management
  • Security Risk mitigation & advisory: Ability to identify, assess, manage and monitor security risk mitigation strategies at a country level
Job Responsibility
Job Responsibility
  • Responsible for managing the China security organization on behalf of the CISO of ASML, driving the development and delivery of security services in China
  • Challenge and verify the adequate performance of security controls in China, against ASML and China risk appetite and as executed by the first line of responsibility in the sectors in China
  • Execute the central security strategy as determined by the CISO and adding country specific aspects to it to improve security maturity
  • Collaboration with the 1st line sector SRMs to identify, assess and mitigate security risks, overseeing and reporting via the China Virtual Security Team (VST)
  • Identify improvement opportunities together with the 1st line sector SRMs’ and the 2nd line team in terms of processes and activities
  • Provide necessary support for improvements and will act in a pivotal role to bring (security) teams together where needed
  • Overseeing the development of country specific response plans, assuring the timely and thorough handling of security indents under coordination of the central Security Operations Centre
  • Ensuring adherence to centrally determined or country specific laws and regulations related to information security
  • Act on behalf of the CISO of ASML and work closely together with the 1st line country SRM’s to define and execute a joined security roadmap for China
  • Assure the capabilities as required by the central Second Line Security, Intelligence Fusion Centre and Security Operations Center teams are developed and maintained, as well as organizing Security activities related to risk culture and awareness initiatives
  • Fulltime
Read More
Arrow Right

Senior Information Security Engineer

Serve as a technical leader in our Security team reporting to our Information Se...
Location
Location
United States , Boston
Salary
Salary:
150000.00 - 190000.00 USD / Year
whoop.com Logo
Whoop
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, or a related technical field and/or advanced certifications (CISSP, CISM, AWS Security Specialty, SANS, etc.)
  • 8+ years of hands-on experience in Information Security, IT Security, or a related role, including at least 2 years in a senior or lead capacity
  • Proven track record implementing and managing advanced security technologies (e.g., CASB, CNAPP, CSPM, SIEM, SOAR, DLP, SWG)
  • Experience securing AI/ML systems or APIs, including governance of third-party AI integrations and organizational use of AI tools
  • Strong understanding of modern cloud security architecture (AWS, Azure, GCP) and experience performing threat modeling and risk assessments on cloud-based systems
  • Hands-on experience with application security tooling (SAST, SCA, DAST) and embedding secure development practices
  • Demonstrated leadership in security incident response, investigations, and root cause analysis
  • Effective communicator with the ability to influence stakeholders and explain security concepts to technical and non-technical audiences
  • Strong project management skills and the ability to drive initiatives to completion in a fast-paced environment
  • Experience mentoring engineers and setting operational standards
Job Responsibility
Job Responsibility
  • Implement and enhance security controls by leading the deployment, integration, and tuning of solutions such as CNAPP, SIEM, CASB, EDR, DLP, and MDM to maximize effectiveness
  • Support security design decisions by providing subject matter expertise on cloud and SaaS security best practices while influencing architecture led by the Security Architect role
  • Lead incident response and investigations by guiding containment, remediation, root cause analysis, and post-incident improvements
  • Strengthen application security by overseeing secure development practices and managing SAST, SCA, and DAST tooling
  • Advance identity and access management by supporting IAM policy enforcement, SSO, MFA, SCIM, RBAC, and user lifecycle governance
  • Secure AI systems and integrations by assessing and protecting embedded APIs and organizational AI tool usage to ensure resilience, privacy, and compliance
  • Collaborate cross-functionally by working with Engineering, IT, and GRC teams to embed security into systems and workflows
  • Mentor and influence by providing technical guidance, reviewing work, and promoting security-first thinking across the organization
  • Stay ahead of threats and regulations by tracking emerging risks, technologies, and compliance requirements to inform forward-looking strategies
  • Participate in and help improve the on-call rotation by providing guidance, escalation support, and driving improvements in response processes
What we offer
What we offer
  • competitive base salaries
  • meaningful equity
  • generous equity package
  • Fulltime
Read More
Arrow Right

Risk & Information Security Associate Analyst

We are looking for a highly organized, detail-oriented Risk & Information Securi...
Location
Location
Cyprus , Nicosia
Salary
Salary:
Not provided
www-ap.albourne.com Logo
Albourne
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2–3 years of professional experience
  • Excellent organizational skills with the ability to manage multiple workstreams and meet deadlines in a dynamic environment
  • Strong written and verbal communication skills, including the ability to prepare concise, well-structured documents and interact professionally across all levels of the business
  • Meticulous attention to detail, particularly in preparing audit materials, compliance documentation, and reviewing access controls
  • Proactive and self-motivated, able to work independently and across time zones without direct daily supervision
  • Comfortable handling sensitive and confidential information with discretion
  • Interest in technology, cybersecurity, and enterprise risk
  • Basic understanding of information security principles and frameworks (e.g., ISO 27001, NIST)
  • Ability to interpret and work with structured information (e.g., policies, risk registers, audit plans)
  • Capable of coordinating inputs from multiple stakeholders and compiling them into coherent outputs (e.g., committee papers, training summaries, client DDQs)
Job Responsibility
Job Responsibility
  • Monitor and report on the effectiveness of information security controls
  • Support the identification, tracking, and resolution of security incidents or weaknesses
  • Assist in maintaining security metrics and dashboards for internal reporting
  • Contribute to the assessment of operational, technology, and third-party risks
  • Assist in evaluating controls and proposing mitigation strategies aligned with risk appetite
  • Participate in internal audits and control testing, ensuring timely remediation of findings
  • Help maintain and enforce security and risk management policies and procedures
  • Support compliance with relevant data protection, privacy, and information security regulations
  • Coordinate periodic user access reviews and assist with awareness initiatives
  • Work across departments to gather risk-related information and support secure business operations
What we offer
What we offer
  • Support for professional qualifications (such as CFA and CAIA)
  • Career growth and tools for ongoing learning and development
  • Medical insurance for you and your dependents
  • Provident fund
  • Yearly bonus dependent upon performance and company growth
  • Opportunity for international travel (i.e., short periods of secondment to other Albourne offices)
  • 5 additional service recognition holidays in surplus to standard annual leave
  • Albourne Training Days (minimum of 40 hours per year)
  • Free office parking
  • A supportive, diverse, and multi-cultural work environment
  • Fulltime
Read More
Arrow Right

Information Security Engineer

Responsible for maintaining the integrity and security of enterprise-wide cyber ...
Location
Location
United States , Reston
Salary
Salary:
Not provided
ltconsultingllc.net Logo
LT Consulting
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active TS/SCI clearance
  • Bachelor’s degree in Computer Science, Engineering or a related field
Job Responsibility
Job Responsibility
  • Maintaining the integrity and security of enterprise-wide cyber systems and networks
  • Supporting cyber security initiatives through both predictive and reactive analysis, articulating emerging trends to leadership and staff
  • Coordinating resources during enterprise incident response efforts, driving incidents to timely and complete resolution
  • Employing advanced forensic tools and techniques for attack reconstruction, including dead system analysis and volatile data collection and analysis
  • Supporting internal HR/Legal/Ethics investigations as forensic subject matter expert
  • Performing network traffic analysis utilizing raw packet data, net flow, IDS, and custom sensor output as it pertains to the cyber security of communications networks
  • Reviewing threat data from various sources and develops custom signatures for Open Source IDS or other custom detection capabilities
  • Correlating actionable security events from various sources including Security Information Management System (SIMS) data and develops unique correlation techniques
  • Utilizing understanding of attack signatures, tactics, techniques and procedures associated with advanced threats
  • Developing analytical products fusing enterprise and all-source intelligence
Read More
Arrow Right

Senior Information System Security Officer

We are seeking a highly skilled and mission-driven Senior Information Systems Se...
Location
Location
United States , Clarksburg
Salary
Salary:
Not provided
imts.us Logo
Innovative Management & Technology Services
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or a related field (or equivalent combination of education and experience)
  • 8+ years of progressive experience in information systems security, with at least 3 years in a senior-level or lead ISSO role supporting federal or state government agencies
  • Strong working knowledge of: NIST 800-53, RMF, FISMA, OWASP Top 10, and SANS Institute standards
  • SAFe Agile environments and integrating security in Agile workflows
  • Networking, Linux/Windows system administration, and secure software development practices
  • Cloud platforms (AWS, Azure, GCP) and related security tools (e.g., AWS Security Hub, Azure Defender)
  • Experience in managing security documentation, participating in audits, and working with compliance frameworks
  • Relevant certifications such as CISSP, CISM, Security+, CEH, or equivalent
  • Active Top Secret clearance is required
  • U.S. Citizenship is required
Job Responsibility
Job Responsibility
  • Lead the implementation and maintenance of system security controls in compliance with federal cybersecurity frameworks, including NIST SP 800-53, RMF, OWASP, DISA STIGs, and Common Criteria
  • Oversee the full lifecycle of Authorization to Operate (ATO) processes, including preparation of System Security Plans (SSPs), Security Assessment Reports (SARs), POA&Ms, and risk assessments
  • Serve as a senior security advisor and liaison to system owners, developers, DevOps engineers, and government stakeholders
  • Participate in technical reviews of system architecture and ensure secure design of virtualized and software-defined infrastructures
  • Support integration of security controls into CI/CD pipelines using DevSecOps principles and tools (e.g., Jenkins, GitLab CI, SonarQube, Snyk)
  • Provide security engineering support for modern cloud environments, including AWS, Azure, or Google Cloud Platform, and assess cloud-native security capabilities
  • Conduct vulnerability assessments, interpret scan results from tools like Tenable, Nessus, Splunk, or Qualys, and lead remediation efforts
  • Mentor junior ISSOs and analysts on security policies, best practices, and tool usage
  • Ensure continuous monitoring activities are aligned with organizational risk tolerance and compliance goals
What we offer
What we offer
  • competitive compensation
  • excellent benefits including tuition reimbursement and employer-contributed 401K
  • referral bonuses
  • Fulltime
Read More
Arrow Right