24 of 24 Permanent NIST Jobs in the Midlands

from on-prem to cloud solutions. Strong analytical skills for complex technical issues. Proven ability in designing cyber security systems and governance. Familiar with tools and frameworks (e.g. NCSC, NIST, MITRE, GDPR, PCI DSS). Deep understanding of security controls (e.g. firewalls, SIEM, SOC, DLP). Proficient in leading and coordinating incident response. Effective at managing multiple priorities under pressure. More ❯

from on-prem to cloud solutions. Strong analytical skills for complex technical issues. Proven ability in designing cyber security systems and governance. Familiar with tools and frameworks (e.g. NCSC, NIST, MITRE, GDPR, PCI DSS). Deep understanding of security controls (e.g. firewalls, SIEM, SOC, DLP). Proficient in leading and coordinating incident response. Effective at managing multiple priorities under pressure. More ❯

and on-premise environments Proficiency in security monitoring tools (such as SIEM, IDS/IPS) and incident response processes Strong knowledge of security frameworks, standards, and best practices (e.g., NIST, ISO 27001, CIS) Experience with scripting and automation tools for enhancing security processes Excellent communication skills and ability to articulate complex security concepts to various stakeholders Strong analytical and problem More ❯

models and maximise billable utilisation. Client Delivery and Governance Define and govern delivery standards across client accounts, ensuring alignment with enterprise security policies, regulatory requirements, and industry frameworks (e.g., NIST, ISO 27001). Lead the strategic integration of security practices into client delivery, embedding security controls and governance into account management workflows. Oversee the implementation and optimisation of security services More ❯

respond quickly to changing priorities. Able to interpret & present data and information in the appropriate format for different audiences. Knowledge and understanding of Information Security Frameworks and standards (FFIEC, NIST, ISO, DORA etc.) Ability to work as part of a team or solo. Excellent Communication skills, especially written English Strong stakeholder management The ability to foster and grow relationships, constructive More ❯

respond quickly to changing priorities. Able to interpret & present data and information in the appropriate format for different audiences. Knowledge and understanding of Information Security Frameworks and standards (FFIEC, NIST, ISO, DORA etc.) Ability to work as part of a team or solo. Excellent Communication skills, especially written English Strong stakeholder management The ability to foster and grow relationships, constructive More ❯

Ability to lead technical conversations, influence customer decisions, and deliver trusted advisory services Existing SC clearance or eligibility to apply Desirable Skills & Certifications Familiarity with industry security frameworks (e.g., NIST, ISO 27001, CIS Controls) Cloud security experience across major hyperscalers More ❯

familiarity with industry standards such as ISO 27001-ideally having led certification projects-and an ability to apply structured frameworks for risk assessment across complex organisational landscapes. Exposure to NIST frameworks or certifications such as CISMP/CISSP/CISM/CRISC which would further enhance your suitability for this influential position. five years' experience in Information Security/GRC More ❯

information security . This would suit someone working towards or be qualified in CISSP/CISA/CISM and experience in risk and regulatory frameworks and standards, such as NIST, ISO27001, MOD JSP440, JSP604. Working for a very successful MSP who supports HMG’s security classification system working on defence projects. You must be security cleared or be willing and More ❯

Load balancing concepts and technologies including failover strategies and clustering Integration of identity systems such as Azure AD, On-prem AD Experience with security and compliance frameworks (ISO27001 and NIST) Systems Integration knowledge including off-the-shelf systems, APIs and data transformation pipelines. Design and validation of disaster recovery strategies for on-prem and cloud environments Understanding of Information Systems More ❯

cloud providers such as AWS Ability to understand and develop coding languages such as Terraform, Python & KQL (or similar) Recognised cyber security certifications or qualifications (desirable). Experience with NIST (or similar) security framework(s). What we offer: We believe that all the people who work with us should feel valued for the part they play. It's one More ❯

design, development, deployment, and support phases. Qualifications 7+ years in IT security, with a focus on product and cyber security design Strong understanding of industry standards and frameworks (e.g., NIST 800-53, NIST CSF, NIST 800-171, IEC 62443, ISO 27001) Proficiency in network, application, and database security architecture Hands-on experience with vulnerability testing and threat analysis In-depth More ❯

in ISO 27001 implementation as a minimum, but preferably also experience in ISOs 27701/22301/9001 A strong understanding of information security and data privacy frameworks like NIST Cybersecurity Framework (CSF), GDPR, CIS or similar. Experience of certification body audits. Should have good experience and knowledge of Cyber/Information Security Governance, Risk Management, and Compliance. ISO Consultant More ❯

Find out more about our commitment to equity, diversity, and inclusion on our website . Unilever's Cyber Security team is a global, product-led function aligned to the NIST Cyber Security Framework. We deliver capabilities across governance, protection, detection, response, and recovery to safeguard our people, operations, and digital assets. Operating alongside our Technology and Data teams, Cyber Security More ❯

security best practice Ensure security is embedded across the product lifecycle You will have; 7+ years IT security experience ideally with product design Strong knowledge of frameworks such as NIST, IEC 62443, ISO 27001 Technical expertise in network, application and cloud security Proven leadership of security focused projects from inception to delivery Be certified Security+, CISSP, CCNA Security or GIAC More ❯

security risk/issue management-related processes and services. Experience in Risk Management aligned to certification requirements (ISO27001, ISO31000 or similar) required Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, CobiT, ) required Experience in service build up a plus Security Governance/Risk Management certification (CISSP, CGEIT, CISM, CRISC ) is a plus Qualified individuals with a disability may More ❯

security best practice ??? Ensure security is embedded across the product lifecycle You will have; ??? 7+ years IT security experience ideally with product design ??? Strong knowledge of frameworks such as NIST, IEC 62443, ISO 27001 ??? Technical expertise in network, application and cloud security ??? Proven leadership of security focused projects from inception to delivery ??? Be certified Security+, CISSP, CCNA Security or GIAC More ❯

in complex systems. Support the secure integration of emerging technologies. Essential Experience 4+ years in a cyber security or information assurance role. Strong understanding of risk assessment methodologies (e.g., NIST, ISO 27005). Experience developing security documentation and mitigation strategies. Excellent communication and technical writing skills. Desirable Experience Familiarity with MOD/HMG security policies (e.g., JSP More ❯

in complex systems. Support the secure integration of emerging technologies. Essential Experience 4+ years in a cyber security or information assurance role. Strong understanding of risk assessment methodologies (e.g., NIST, ISO 27005). Experience developing security documentation and mitigation strategies. Excellent communication and technical writing skills. Desirable Experience Familiarity with MOD/HMG security policies (e.g., JSP More ❯

Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

within a top-tier business. This role emphasizes project-related work, requiring a strong all-round cybersecurity background with experience in delivering standards such as ISO2700x, Cyber Essentials, CIS, NIST , and familiarity with emerging UK government cybersecurity initiatives. Demonstrable knowledge of cybersecurity principles, theories, practices, and techniques, including offensive security is essential. Technical proficiency with Defender, Intune, Azure, and D365 More ❯

full project lifecycle from pre-bid to project hand-over into service. Experience of multi-discipline system integration projects. Basic knowledge of OT cybersecurity (standards such as IEC62443/NIST etc.) and functional safety per IEC 61508 is advantageous. Personal Qualities: Capable of leading technical teams with strong operational rigour. Ability to multi-task on a variety of projects to More ❯

statements to technical and non-technical audiences at various hierarchical levels Deep knowledge of common information security management frameworks and standards, such as ISO/IEC 27001/27002, NIST 800-53, and the NIST Cybersecurity Framework Soft skills: collaboration, teamwork, persuasion, attention to detail, time management, prioritization, resourcefulness Advanced proficiency with MS Office products, primarily MS Word, Excel, PowerPoint More ❯

assets by working collaboratively with colleagues across multiple departments. Your day-to-day responsibilities will include supporting policy development in line with leading frameworks such as ISO 27001 or NIST, overseeing vulnerability management activities alongside IT professionals, conducting architectural reviews for new projects, and helping drive continuous improvement in technical controls. You will also be instrumental in managing third party … proven experience on protecting sensitive data within regulated environments. Your background should include hands-on involvement with risk assessments, policy development aligned with industry standards like ISO 27001 or NIST, vulnerability management activities spanning identification through remediation, and direct participation in incident response processes. Demonstrable experience applying risk assessment methodologies to identify vulnerabilities and recommend effective mitigations is highly valued. … Recognised information security frameworks such as ISO 27001 or NIST ensures you can contribute meaningfully to policy development. A solid understanding of core security technologies-including firewalls, intrusion detection systems, endpoint protection platforms-and their practical application is important. Experience supporting vulnerability management processes from identification through remediation demonstrates your ability to manage risk proactively. Proficiency in evaluating technical controls More ❯