7 of 7 NIST Jobs in the East Midlands

experience in Information Security and/or Information Technology. Professional certification such as CISA, CISM, CISSP, ISO 27001 Lead Auditor, or equivalent. Familiarity with industry standards and frameworks e.g., NIST 800-53, ISO 27001/27002, CIS Controls, COBIT. Experience with control testing methodologies, risk assessments, and auditing tools. Familiarity with IT systems, and cybersecurity practices and domains. Strong analytical More ❯

with policy and standards teams to integrate compliance findings into documentation Qualifications Experience with compliance, audit coordination, or information security Familiarity with ISO 27001/2, SOC, ISAE, PCI, NIST, CIS or similar benchmarks Experience with cloud platforms such as AWS, Azure, or GCP Experience with IT and security operations, including Windows/Linux/Unix systems, authentication, firewalls, and More ❯

experience in technology risk, technology audit, within a financial institution, licensed money transmitter, or payments related e-commerce function. - A good understanding of IT risk and control frameworks: COBIT, NIST, ISO 27001, ITIL or equivalent. - Understanding of SDLC. PREFERRED QUALIFICATIONS - Certified Information Systems Auditor (CISA) or equivalent IT auditing and risk certification. - Certified Information Security Manager (CISM), Certified in Risk More ❯

tools to provide applicable insights to partners and guide data-informed decision-making. Implement and enhance internal metrics, including supporting agreement of policies with global regulations, industry standards (e.g., NIST, ISO). Use data analytics to identify gaps, measure policy adoption, and inform continuous improvement programs. Champion the use of automation across the Information Security team to increase efficiency and More ❯

risks and technologies What you bring: Significant experience in security operations across both cloud and on-premise environments In-depth understanding of security monitoring solutions, frameworks, and standards (e.g., NIST, ISO 27001, CIS) Proficiency with automation and scripting to streamline security processes Background in Infrastructure as Code (ideally Terraform), audit/compliance activities, and securing CI/CD pipelines Strong More ❯

AZ-104) or working towards it Excellent troubleshooting, documentation, and communication skills Bonus Points for: Automation & scripting (PowerShell, BASH) Experience with Patch My PC Implementing security baselines (Microsoft, CIS, NIST) Microsoft 365 Certified: Administrator Expert (MS-102) What can we offer you? Through our one of a kind training programme, the Littlefish Academy, you can increase your earnings by More ❯

reporting, and stakeholder engagement. Develop and map out the IT audit universe and associated risks. Contribute to shaping the in-house IT audit strategy and plan. Support the annual NIST Cyber Security Framework audit. Be involved in investigations and whistleblowing matters relating to IT. This is not a “tick-box” role – it’s a chance to make a real impact … to explain technical findings in a clear, practical way. You’ll bring: A strong grounding in IT audit, including knowledge of IT General Controls and ideally exposure to the NIST Cyber Security Framework. Either a completed CISA qualification or a commitment to completing it (with funding support available). Experience from practice (e.g. risk advisory or IT audit) or from More ❯