Cyber Security Manager in Birmingham

West Midlands Combined Authority (WMCA) is seeking a Cyber Security Manager to lead and strengthen operational cyber security across a complex, multi‑supplier environment. This 12‑month fixed‑term contract will involve day‑to‑day security operations, incident response, vulnerability management, identity security and oversight of a specialist team and key security suppliers.

Responsibilities

• Operate security controls to defined Minimum Security Baselines and policies; meet SLA/SLOs for patching, vulnerability Mean Time To Remediate, identity hygiene and change success.
• Lead technical incident response (contain–eradicate–recover) and support ISIM with incident governance and reporting.
• Lead the technical Disaster Recovery posture for cyber incidents (runbooks, rehearsal/exercises, recovery validation), aligning with ISIM’s BCP/DR requirements.
• Maintain security tooling (EPP/EDR, firewalls, email/web filtering, SIEM inputs, identity protections, posture/ASR rules) and ensure robust monitoring/alerting.
• Own technical enforcement of Identity & Access Management (e.g., conditional access, privileged access hygiene, risky‑user reduction), maintain IAM hygiene KPIs, and implement ISIM’s policy requirements in identity platforms.
• Provide and manage the technical control evidence for CE+ and PCI DSS, and deliver remediation of audit/assessment findings to agreed SLAs.
• Provide operational evidence (metrics, logs, runbooks) into CAB and Business Management Unit assurance packs.
• Commission and technically coordinate penetration testing; own remediation.
• Manage a security engineering team and suppliers; build skills, SOPs and reusable patterns.
• Contribute technical content to awareness and training led by ISIM.

Essential skills and experience

• Proficiency with reporting and visualisation tools (e.g., Power BI, Excel, dashboarding platforms).
• Experience working in or alongside portfolio‑led environments with multiple concurrent projects or product teams.
• Aligning to ISO 27001 in complex, multi‑supplier environments.
• Leading technical incident response and remediation.
• Hybrid cloud security in Microsoft 365 / Azure.
• Operating security controls at scale (firewalls, endpoint, identity, email/web, vulnerability/patch).
• Establishing policies, MSBs, risk registers, DPIAs, and supplier security.
• Commissioning pen tests and driving remediation.
• Managing technical teams and suppliers.
• Experience working with operational, service, delivery or technology‑related data.
• Experience producing dashboards, reports or analytics for senior stakeholders.
• Experience supporting continuous improvement or lessons‑learned processes.

Location

16 Summer Lane, Birmingham, B19 3SD. You will spend 2–3 days per week in the office and join an on‑call rota for critical incident response.

Benefits

• Salary range advertised at the lower end of the band; potential progression.
• Benefits include:
• Local Government Pension Scheme
• Additional voluntary contribution scheme
• 28 days paid annual leave (plus option to purchase more)
• EV car benefit scheme
• Healthcare plans
• Gym membership discount, will‑writing and mortgage advice
• Discounted bicycle purchase
• 3 days paid leave to volunteer
• Interest‑free financing through SmartTech
• Discount shopping for over 2000 retailers and Costco membership through WMCA
• Boundless unmatched UK attraction access
• Eye Care Scheme

Equal Opportunity Statement

WMCA is an equal opportunity employer. We celebrate diversity and welcome applicants from all backgrounds.