21 of 21 Permanent NIST Jobs in Birmingham

our office in Dudley (UK), we are currently recruiting a driven Cybersecurity & Compliance Manager. Position purpose The Cybersecurity & Compliance Manager will lead Tosca’s efforts to ensure adherence to NIST CFS 2.0, ISO 27001, and other standards. This role focuses on developing security protocols, maintaining documentation, conducting risk assessments, and ensuring regulatory compliance. Responsibilities include managing security infrastructure, incident response … and promoting cybersecurity awareness. The position requires collaboration with Global IT, cross-functional teams, and third-party partners. Key qualifications include experience in cybersecurity and compliance, strong knowledge of NIST and ISO standards, risk management expertise, and effective communication skills. This is a full-time role based in Dudley, UK, with travel up to 30% of the time. Responsibilities Implement … security protocols and manage information security programs Report performance, exceptions, and outages to all audiences transparently. Align disaster recovery with business continuity plans. Ensure compliance with ISO27001, NIST CFS 2.0, and maintain ISMS. Identify risks, develop a comprehensive security plan. Test cyber-attacks regularly to address vulnerabilities. Monitor security trends, adapt strategies. Oversee incident monitoring, detection, response via SOC and More ❯

models and maximise billable utilisation. Client Delivery and Governance Define and govern delivery standards across client accounts, ensuring alignment with enterprise security policies, regulatory requirements, and industry frameworks (e.g., NIST, ISO 27001). Lead the strategic integration of security practices into client delivery, embedding security controls and governance into account management workflows. Oversee the implementation and optimisation of security services More ❯

on security best practice and control implementation What We’re Looking For Hands-on experience with security tooling (EDR, vulnerability scanning, access control) Familiarity with Security frameworks such as NIST, PCI-DSS, and GDPR Experience working with Microsoft environments (O365, Azure) Clear communicator, able to engage with both IT and non-technical teams Full UK driving licence required due to More ❯

SPECIFICATION Knowledge: A Levels or equivalent. Recognised qualification in information security, data protection, or risk (e.g. CISM, CISSP, CRISC, BCS DPO, etc.). In-depth understanding of ISO 27001, NIST, or other relevant security frameworks. Up-to-date knowledge of data protection legislation and associated best practices. Understanding of cross-functional areas affecting security (e.g. HR, procurement, tech infrastructure). More ❯

vectors, and mitigation strategies. Ability to analyse and interpret security logs, events, and alerts to detect and respond to security incidents effectively. Familiarity with security frameworks and standards (e.g., NIST Cybersecurity Framework, CyberEssentials and CyberEssentials Plus, NCSC). Strong communication and interpersonal skills, with the ability to convey complex security concepts to non-technical stakeholders. #4685066 - Harry Taylor #J More ❯

Ability to lead technical conversations, influence customer decisions, and deliver trusted advisory services Existing SC clearance or eligibility to apply Desirable Skills & Certifications Familiarity with industry security frameworks (e.g., NIST, ISO 27001, CIS Controls) Cloud security experience across major hyperscalers More ❯

Ability to lead technical conversations, influence customer decisions, and deliver trusted advisory services Existing SC clearance or eligibility to apply Desirable Skills & Certifications Familiarity with industry security frameworks (e.g., NIST, ISO 27001, CIS Controls) Cloud security experience across major hyperscalers #J-18808-Ljbffr More ❯

Participate in on-call and security support responsibilities Collaborate with Engineering, Platform and Development teams to address security issues and implement best practices Develop and maintain security documentation; ISO, NIST and CIS. Stay updated on the latest security trends, vulnerabilities, and technologies to ensure robust protection against evolving threats What You'll Bring: Design and implementation experience with AWS security More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

within scope. Strong understanding of IAM principles, including authentication, authorization, role-based access control (RBAC), and identity governance. Experience in system security, risk management, and compliance frameworks (e.g., GDPR, NIST, ISO 27001). Excellent problem-solving skills and the ability to manage complex technical issues under pressure. Strong communication skills, with the ability to explain complex IAM concepts to both More ❯

a working knowledge and understanding of networking technologies Experience of implementing standards & frameworks including EU NIS Directive, ISA/IEC 62443 Series/ISO 27000 Series, MITRE ATT&CK, NIST Cyber Security Framework (CSF), Technical Assessment Guides and supplementary guidance Our culture Our values stand on a foundation of safety, integrity, inclusion and diversity. We put people at the heart More ❯

security risk/issue management-related processes and services. Experience in Risk Management aligned with certification requirements (ISO27001, ISO31000, or similar). Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, CobiT, etc.). Security Governance/Risk Management certification (CISSP, CGEIT, CISM, CRISC) is a plus. About Hitachi Energy: Hitachi Energy is a global technology leader advancing a More ❯

security risk/issue management-related processes and services. Experience in Risk Management aligned to certification requirements (ISO27001, ISO31000 or similar) required Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, CobiT, ) required Experience in service build up a plus Security Governance/Risk Management certification (CISSP, CGEIT, CISM, CRISC ) is a plus Qualified individuals with a disability may More ❯

maintain compliance. To be considered for this role, you should have Proven experience in a senior Information Security leadership role. Strong knowledge of security frameworks such as ISO 27001, NIST, GDPR, and other compliance standards. Expertise in risk management, governance, and security architecture. Hands-on experience in designing and implementing security policies and strategies. Strong stakeholder management and the ability More ❯

must have worked within a leadership position previously. Broad understanding of IT security for a FTSE 100 Strong understanding of regulatory requirements and industry standards (e.g., GDPR, ISO 27001, NIST). Excellent analytical and problem-solving skills. Proven ability to lead and manage cross-functional teams. Strong communication and presentation skills. Ability to handle sensitive information with confidentiality and integrity. More ❯

Skills and Experience Minimum 6 years of experience in supporting and implementing Security & Incident Recovery solutions Experience with maintaining hardware, software, and network firewalls and encryption protocols Experience of NIST CSF Respond and Recover domains Deep understanding of Resilience and Recovery Components e.g., Veritas, Dell, Rubrik Experience working with Hyperscalers e.g. AWS, Azure or GCP Preferred Skills and Experience Bachelor More ❯

certifications or experience Extensive experience in technology and operations, preferably within the financial services or banking industry. Good understanding of security protocols and compliance standards (e.g., PCI-DSS, CIS, NIST). Experience in a Data Centre Operations or other similar critical operations role. Strong and demonstrable process management and development experience in a live operational environment. Extensive real time Incident More ❯

Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

non-technical teams, translating complex concepts into actionable plans. What You’ll Need: Experience delivering cyber security in OT environments (e.g., SCADA, ICS, DCS). Knowledge of frameworks like NIST, CAF, and NCSC guidelines. Excellent communication skills, with the ability to bridge the gap between technical and business stakeholders. This is a unique opportunity to step into a senior, impactful More ❯

Senior Cloud and Data Centre Manager £80,000 - £100,000 + car allowance + bonus + extensive benefits Full Time/Permanent Remote with regular travel Birmingham head office and other European offices The Role I am looking for an More ❯

in penetration testing and red teaming (internal, external, app, cloud, etc.) Strong understanding of attacker TTPs and detection evasion Familiarity with frameworks such as OWASP , MITRE ATT&CK , and NIST Experience with C2 frameworks (e.g., Cobalt Strike, PoshC2, Sliver) Certifications such as OSCP, CRTO, OSEP, or CREST CRT preferred (but not required) Please note that if you are NOT a More ❯