24 of 24 NIST Jobs in the West Midlands

from on-prem to cloud solutions. Strong analytical skills for complex technical issues. Proven ability in designing cyber security systems and governance. Familiar with tools and frameworks (e.g. NCSC, NIST, MITRE, GDPR, PCI DSS). Deep understanding of security controls (e.g. firewalls, SIEM, SOC, DLP). Proficient in leading and coordinating incident response. Effective at managing multiple priorities under pressure. More ❯

from on-prem to cloud solutions. Strong analytical skills for complex technical issues. Proven ability in designing cyber security systems and governance. Familiar with tools and frameworks (e.g. NCSC, NIST, MITRE, GDPR, PCI DSS). Deep understanding of security controls (e.g. firewalls, SIEM, SOC, DLP). Proficient in leading and coordinating incident response. Effective at managing multiple priorities under pressure. More ❯

DLP, IDS/IPS, SIEM and Wireless security. Knowledge of information security principles and best practices. Experience in managing information security risk. Familiar with information security frameworks such as NIST, SANS Top 20 CSC, OWASP, ISO27001, and CyberEssentials. Proven working knowledge of industry IT compliance standards, particularly in design and implementation. Understanding of Operational Technology and the challenges involved in More ❯

DLP, IDS/IPS, SIEM and Wireless security. Knowledge of information security principles and best practices. Experience in managing information security risk. Familiar with information security frameworks such as NIST, SANS Top 20 CSC, OWASP, ISO27001, and CyberEssentials. Proven working knowledge of industry IT compliance standards, particularly in design and implementation. Understanding of Operational Technology and the challenges involved in More ❯

models and maximise billable utilisation. Client Delivery and Governance Define and govern delivery standards across client accounts, ensuring alignment with enterprise security policies, regulatory requirements, and industry frameworks (e.g., NIST, ISO 27001). Lead the strategic integration of security practices into client delivery, embedding security controls and governance into account management workflows. Oversee the implementation and optimisation of security services More ❯

billable utilisation. * Secure Architecture and DevSecOps Integration o Define and govern secure architecture standards across development teams, ensuring alignment with enterprise security policies, regulatory requirements, and industry frameworks (e.g., NIST, OWASP, ISO 27001). o Lead the strategic integration of security into DevOps pipelines, embedding security controls and automated testing into CI/CD workflows to enable secure-by-design More ❯

respond quickly to changing priorities. Able to interpret & present data and information in the appropriate format for different audiences. Knowledge and understanding of Information Security Frameworks and standards (FFIEC, NIST, ISO, DORA etc.) Ability to work as part of a team or solo. Excellent Communication skills, especially written English Strong stakeholder management The ability to foster and grow relationships, constructive More ❯

respond quickly to changing priorities. Able to interpret & present data and information in the appropriate format for different audiences. Knowledge and understanding of Information Security Frameworks and standards (FFIEC, NIST, ISO, DORA etc.) Ability to work as part of a team or solo. Excellent Communication skills, especially written English Strong stakeholder management The ability to foster and grow relationships, constructive More ❯

familiarity with industry standards such as ISO 27001-ideally having led certification projects-and an ability to apply structured frameworks for risk assessment across complex organisational landscapes. Exposure to NIST frameworks or certifications such as CISMP/CISSP/CISM/CRISC which would further enhance your suitability for this influential position. five years' experience in Information Security/GRC More ❯

compliance technical assessments of all applicable standards, policies, regulation, and legislation compliance Creation of security standards and requirements documents for projects and activities to be based on ISO 27001, NIST 800-53 and ISO 22301. Review risks, propose mitigation actions and solutions, and assisting ongoing risk treatment activity. Assist the security testing process from scoping, planning and stakeholder management through More ❯

information security . This would suit someone working towards or be qualified in CISSP/CISA/CISM and experience in risk and regulatory frameworks and standards, such as NIST, ISO27001, MOD JSP440, JSP604. Working for a very successful MSP who supports HMG’s security classification system working on defence projects. You must be security cleared or be willing and More ❯

cloud providers such as AWS Ability to understand and develop coding languages such as Terraform, Python & KQL (or similar) Recognised cyber security certifications or qualifications (desirable). Experience with NIST (or similar) security framework(s). What we offer: We believe that all the people who work with us should feel valued for the part they play. It's one More ❯

collaboratively and communicate effectively within a team environment. Bonus points for: Any exposure to cloud environments. An interest in automation or scripting. Familiarity with auditing frameworks such as ISO, NIST, or GDPR. Relevant IT or Security certifications (e.g., CompTIA Security+, CySA+, CCNA). We're seeking someone who is enthusiastic, curious, and ready to enhance their career in cybersecurity. If More ❯

collaboratively and communicate effectively within a team environment. Bonus points for: Any exposure to cloud environments. An interest in automation or scripting. Familiarity with auditing frameworks such as ISO, NIST, or GDPR. Relevant IT or Security certifications (e.g., CompTIA Security+, CySA+, CCNA). We're seeking someone who is enthusiastic, curious, and ready to enhance their career in cybersecurity. If More ❯

design, development, deployment, and support phases. Qualifications 7+ years in IT security, with a focus on product and cyber security design Strong understanding of industry standards and frameworks (e.g., NIST 800-53, NIST CSF, NIST 800-171, IEC 62443, ISO 27001) Proficiency in network, application, and database security architecture Hands-on experience with vulnerability testing and threat analysis In-depth More ❯

in ISO 27001 implementation as a minimum, but preferably also experience in ISOs 27701/22301/9001 A strong understanding of information security and data privacy frameworks like NIST Cybersecurity Framework (CSF), GDPR, CIS or similar. Experience of certification body audits. Should have good experience and knowledge of Cyber/Information Security Governance, Risk Management, and Compliance. ISO Consultant More ❯

security best practice Ensure security is embedded across the product lifecycle You will have; 7+ years IT security experience ideally with product design Strong knowledge of frameworks such as NIST, IEC 62443, ISO 27001 Technical expertise in network, application and cloud security Proven leadership of security focused projects from inception to delivery Be certified Security+, CISSP, CCNA Security or GIAC More ❯

security risk/issue management-related processes and services. Experience in Risk Management aligned to certification requirements (ISO27001, ISO31000 or similar) required Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, CobiT, ) required Experience in service build up a plus Security Governance/Risk Management certification (CISSP, CGEIT, CISM, CRISC ) is a plus Qualified individuals with a disability may More ❯

security best practice ??? Ensure security is embedded across the product lifecycle You will have; ??? 7+ years IT security experience ideally with product design ??? Strong knowledge of frameworks such as NIST, IEC 62443, ISO 27001 ??? Technical expertise in network, application and cloud security ??? Proven leadership of security focused projects from inception to delivery ??? Be certified Security+, CISSP, CCNA Security or GIAC More ❯

Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

security best practice ️ Ensure security is embedded across the product lifecycle You will have; ️ 7+ years IT security experience ideally with product design ️ Strong knowledge of frameworks such as NIST, IEC 62443, ISO 27001 ️ Technical expertise in network, application and cloud security ️ Proven leadership of security focused projects from inception to delivery Apply now or contact me for a confidential More ❯

fulfilled. OT/IOT Security SME Role: 10+ years of experience in Cyber security Designing & implementation on ICS/OT network Architectures, Cybersecurity frameworks for ICS/OT environments NIST SP 800-82 and c, OT Network Communication Protocols (e.g., Ethernet, Modbus, OPC, IEC-101/104 etc.), Information Event Management (SIEM). Key Responsibilities: Designing and implementing technical solutions More ❯

statements to technical and non-technical audiences at various hierarchical levels Deep knowledge of common information security management frameworks and standards, such as ISO/IEC 27001/27002, NIST 800-53, and the NIST Cybersecurity Framework Soft skills: collaboration, teamwork, persuasion, attention to detail, time management, prioritization, resourcefulness Advanced proficiency with MS Office products, primarily MS Word, Excel, PowerPoint More ❯

assets by working collaboratively with colleagues across multiple departments. Your day-to-day responsibilities will include supporting policy development in line with leading frameworks such as ISO 27001 or NIST, overseeing vulnerability management activities alongside IT professionals, conducting architectural reviews for new projects, and helping drive continuous improvement in technical controls. You will also be instrumental in managing third party … proven experience on protecting sensitive data within regulated environments. Your background should include hands-on involvement with risk assessments, policy development aligned with industry standards like ISO 27001 or NIST, vulnerability management activities spanning identification through remediation, and direct participation in incident response processes. Demonstrable experience applying risk assessment methodologies to identify vulnerabilities and recommend effective mitigations is highly valued. … Recognised information security frameworks such as ISO 27001 or NIST ensures you can contribute meaningfully to policy development. A solid understanding of core security technologies-including firewalls, intrusion detection systems, endpoint protection platforms-and their practical application is important. Experience supporting vulnerability management processes from identification through remediation demonstrates your ability to manage risk proactively. Proficiency in evaluating technical controls More ❯