25 of 25 NIST Jobs in the Midlands

Find out more about our commitment to equity, diversity, and inclusion on our website . Unilever's Cyber Security team is a global, product-led function aligned to the NIST Cyber Security Framework. We deliver capabilities across governance, protection, detection, response, and recovery to safeguard our people, operations, and digital assets. Operating alongside our Technology and Data teams, Cyber Security More ❯

from on-prem to cloud solutions. Strong analytical skills for complex technical issues. Proven ability in designing cyber security systems and governance. Familiar with tools and frameworks (e.g. NCSC, NIST, MITRE, GDPR, PCI DSS). Deep understanding of security controls (e.g. firewalls, SIEM, SOC, DLP). Proficient in leading and coordinating incident response. Effective at managing multiple priorities under pressure. More ❯

from on-prem to cloud solutions. Strong analytical skills for complex technical issues. Proven ability in designing cyber security systems and governance. Familiar with tools and frameworks (e.g. NCSC, NIST, MITRE, GDPR, PCI DSS). Deep understanding of security controls (e.g. firewalls, SIEM, SOC, DLP). Proficient in leading and coordinating incident response. Effective at managing multiple priorities under pressure. More ❯

models and maximise billable utilisation. Client Delivery and Governance Define and govern delivery standards across client accounts, ensuring alignment with enterprise security policies, regulatory requirements, and industry frameworks (e.g., NIST, ISO 27001). Lead the strategic integration of security practices into client delivery, embedding security controls and governance into account management workflows. Oversee the implementation and optimisation of security services More ❯

billable utilisation. * Secure Architecture and DevSecOps Integration o Define and govern secure architecture standards across development teams, ensuring alignment with enterprise security policies, regulatory requirements, and industry frameworks (e.g., NIST, OWASP, ISO 27001). o Lead the strategic integration of security into DevOps pipelines, embedding security controls and automated testing into CI/CD workflows to enable secure-by-design More ❯

respond quickly to changing priorities. Able to interpret & present data and information in the appropriate format for different audiences. Knowledge and understanding of Information Security Frameworks and standards (FFIEC, NIST, ISO, DORA etc.) Ability to work as part of a team or solo. Excellent Communication skills, especially written English Strong stakeholder management The ability to foster and grow relationships, constructive More ❯

respond quickly to changing priorities. Able to interpret & present data and information in the appropriate format for different audiences. Knowledge and understanding of Information Security Frameworks and standards (FFIEC, NIST, ISO, DORA etc.) Ability to work as part of a team or solo. Excellent Communication skills, especially written English Strong stakeholder management The ability to foster and grow relationships, constructive More ❯

risk. Demonstrable experience in cyber risk analysis, assessment and mitigation. Experience in a financial or highly regulated environment. A detailed understanding of ISO 27001, ITIL, COBIT, PCI DSS and NIST Cyber Security Frameworks. Working knowledge of GDPR. Relevant security certifications such as CISSP, CISM, CISA, CRISC, ISEB Certificate in Information Security Management Principles. Effective written and verbal communication skills. Capital More ❯

familiarity with industry standards such as ISO 27001-ideally having led certification projects-and an ability to apply structured frameworks for risk assessment across complex organisational landscapes. Exposure to NIST frameworks or certifications such as CISMP/CISSP/CISM/CRISC which would further enhance your suitability for this influential position. five years' experience in Information Security/GRC More ❯

compliance technical assessments of all applicable standards, policies, regulation, and legislation compliance Creation of security standards and requirements documents for projects and activities to be based on ISO 27001, NIST 800-53 and ISO 22301. Review risks, propose mitigation actions and solutions, and assisting ongoing risk treatment activity. Assist the security testing process from scoping, planning and stakeholder management through More ❯

information security . This would suit someone working towards or be qualified in CISSP/CISA/CISM and experience in risk and regulatory frameworks and standards, such as NIST, ISO27001, MOD JSP440, JSP604. Working for a very successful MSP who supports HMG’s security classification system working on defence projects. You must be security cleared or be willing and More ❯

Load balancing concepts and technologies including failover strategies and clustering Integration of identity systems such as Azure AD, On-prem AD Experience with security and compliance frameworks (ISO27001 and NIST) Systems Integration knowledge including off-the-shelf systems, APIs and data transformation pipelines. Design and validation of disaster recovery strategies for on-prem and cloud environments Understanding of Information Systems More ❯

cloud providers such as AWS Ability to understand and develop coding languages such as Terraform, Python & KQL (or similar) Recognised cyber security certifications or qualifications (desirable). Experience with NIST (or similar) security framework(s). What we offer: We believe that all the people who work with us should feel valued for the part they play. It's one More ❯

collaboratively and communicate effectively within a team environment. Bonus points for: Any exposure to cloud environments. An interest in automation or scripting. Familiarity with auditing frameworks such as ISO, NIST, or GDPR. Relevant IT or Security certifications (e.g., CompTIA Security+, CySA+, CCNA). We're seeking someone who is enthusiastic, curious, and ready to enhance their career in cybersecurity. If More ❯

collaboratively and communicate effectively within a team environment. Bonus points for: Any exposure to cloud environments. An interest in automation or scripting. Familiarity with auditing frameworks such as ISO, NIST, or GDPR. Relevant IT or Security certifications (e.g., CompTIA Security+, CySA+, CCNA). We're seeking someone who is enthusiastic, curious, and ready to enhance their career in cybersecurity. If More ❯

design, development, deployment, and support phases. Qualifications 7+ years in IT security, with a focus on product and cyber security design Strong understanding of industry standards and frameworks (e.g., NIST 800-53, NIST CSF, NIST 800-171, IEC 62443, ISO 27001) Proficiency in network, application, and database security architecture Hands-on experience with vulnerability testing and threat analysis In-depth More ❯

in ISO 27001 implementation as a minimum, but preferably also experience in ISOs 27701/22301/9001 A strong understanding of information security and data privacy frameworks like NIST Cybersecurity Framework (CSF), GDPR, CIS or similar. Experience of certification body audits. Should have good experience and knowledge of Cyber/Information Security Governance, Risk Management, and Compliance. ISO Consultant More ❯

security best practice Ensure security is embedded across the product lifecycle You will have; 7+ years IT security experience ideally with product design Strong knowledge of frameworks such as NIST, IEC 62443, ISO 27001 Technical expertise in network, application and cloud security Proven leadership of security focused projects from inception to delivery Be certified Security+, CISSP, CCNA Security or GIAC More ❯

security risk/issue management-related processes and services. Experience in Risk Management aligned to certification requirements (ISO27001, ISO31000 or similar) required Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, CobiT, ) required Experience in service build up a plus Security Governance/Risk Management certification (CISSP, CGEIT, CISM, CRISC ) is a plus Qualified individuals with a disability may More ❯

security best practice ??? Ensure security is embedded across the product lifecycle You will have; ??? 7+ years IT security experience ideally with product design ??? Strong knowledge of frameworks such as NIST, IEC 62443, ISO 27001 ??? Technical expertise in network, application and cloud security ??? Proven leadership of security focused projects from inception to delivery ??? Be certified Security+, CISSP, CCNA Security or GIAC More ❯

in complex systems. Support the secure integration of emerging technologies. Essential Experience 4+ years in a cyber security or information assurance role. Strong understanding of risk assessment methodologies (e.g., NIST, ISO 27005). Experience developing security documentation and mitigation strategies. Excellent communication and technical writing skills. Desirable Experience Familiarity with MOD/HMG security policies (e.g., JSP More ❯

Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

security best practice ️ Ensure security is embedded across the product lifecycle You will have; ️ 7+ years IT security experience ideally with product design ️ Strong knowledge of frameworks such as NIST, IEC 62443, ISO 27001 ️ Technical expertise in network, application and cloud security ️ Proven leadership of security focused projects from inception to delivery Apply now or contact me for a confidential More ❯

statements to technical and non-technical audiences at various hierarchical levels Deep knowledge of common information security management frameworks and standards, such as ISO/IEC 27001/27002, NIST 800-53, and the NIST Cybersecurity Framework Soft skills: collaboration, teamwork, persuasion, attention to detail, time management, prioritization, resourcefulness Advanced proficiency with MS Office products, primarily MS Word, Excel, PowerPoint More ❯

assets by working collaboratively with colleagues across multiple departments. Your day-to-day responsibilities will include supporting policy development in line with leading frameworks such as ISO 27001 or NIST, overseeing vulnerability management activities alongside IT professionals, conducting architectural reviews for new projects, and helping drive continuous improvement in technical controls. You will also be instrumental in managing third party … proven experience on protecting sensitive data within regulated environments. Your background should include hands-on involvement with risk assessments, policy development aligned with industry standards like ISO 27001 or NIST, vulnerability management activities spanning identification through remediation, and direct participation in incident response processes. Demonstrable experience applying risk assessment methodologies to identify vulnerabilities and recommend effective mitigations is highly valued. … Recognised information security frameworks such as ISO 27001 or NIST ensures you can contribute meaningfully to policy development. A solid understanding of core security technologies-including firewalls, intrusion detection systems, endpoint protection platforms-and their practical application is important. Experience supporting vulnerability management processes from identification through remediation demonstrates your ability to manage risk proactively. Proficiency in evaluating technical controls More ❯