16 of 16 Permanent NIST Jobs in the Midlands

during client interactions and project reviews. Desirable Skills and Experience Prior experience in Defence, Government, or Critical National Infrastructure environments. Familiarity with security frameworks such as MITRE ATT&CK, NIST CSF, or ISO 27001 including how to map TTP's to Rule coverage. Experience with SOAR or SIEM enrichment tools (e.g., TheHive, MISP, Cortex). Knowledge of additional log forwarding More ❯

in vulnerability management and patch management (Qualys or similar platforms). Understanding of Email Security platforms (e.g., Darktrace) and Security Awareness & Training platforms. Knowledge of security frameworks (ISO 27001, NIST, GDPR, etc.). Familiarity with SIEM, security system administration, and incident response. Understanding of SOC operations and monitoring. No formal qualifications required, although a security or IT-related certification (e.g. More ❯

Azure, Google Cloud Implement SOC & Automated security monitoring Lead third-party risk management & vendor security programmes Experience of DevSecOps practises and SDLC Design/Implement security frameworks - ISO 27001, NIST Hands-on experience of SIEM, DLP, IAM, Endpoint Technology The permanent opportunity for a Information Security Manager, will pay a salary up to £85,000 with bonus, based out of More ❯

skills, and a passion for emerging tech. The following would also be of interest: Certifications in automation/cloud (Azure Solutions Architect, Terraform, GIAC), vulnerability management (Qualys, ISO 27001, NIST). Experience with SOAR, SIEM, XDR, and cloud-native security (especially Azure). Pre-sales or solution architecture exposure. What can we offer you? Through our one of a kind More ❯

Desired Experience: Proven experience in GRC consulting, audit, or information security management within large or regulated organisations. Strong knowledge of ISO 27001 and SOC 2 (experience with PCI-DSS, NIST, DORA, or NIS2 advantageous). Excellent communication and presentation skills, confident in C-level workshops and stakeholder management . Organised, self-motivated, and experienced managing multiple enterprise projects simultaneously. Certifications More ❯

Background CompTIA Security+ or similar IT Security certifications Keen interest in cyber security and understanding of key concepts and protocols. Understanding and exposure of the Cyber Essentials, ISO27001, and NIST frameworks. Previous experience within a SOC environment. Experience within IT Security, inc. patching, vulnerability Experience with SIEM or Service Desk toolsets. Essential Requirement for the role Access to your vehicle More ❯

an ICT Infrastructure, Managed Service Provider and/or Systems Integrator In-depth knowledge of ISO 27001 standards and best practices, as well as other relevant security frameworks (e.g., NIST, CAF) Strong technical understanding of modern IT and cloud environments, including the ability to assess third-party platforms, suppliers, and software for security risks Proven experience in developing and implementing More ❯

diverse stakeholders Stay ahead of emerging threats, tools, and frameworks What You'll Bring Expertise in cloud security architecture and secure design Strong knowledge of security frameworks (ISO 27001, NIST, GDPR, OWASP, PCI) Experience in application, infrastructure, or enterprise architecture Familiarity with CI/CD and Continuous Security practices Solid understanding of network, web app, and cryptographic security Proven ability More ❯

understanding of security principles, including role-based access control (RBAC), multi-factor authentication (MFA), and least privilege access policies. • Familiarity with industry regulations and standards, including GDPR, ISO 27001, NIST, and others. • Proven ability to design, build, and maintain scalable IAM solutions that align with business needs and security requirements. • Strong problem-solving skills and the ability to troubleshoot complex More ❯

maximise billable utilisation. Secure Architecture and DevSecOps Integration Define and govern secure architecture standards across development teams, ensuring alignment with enterprise security policies, regulatory requirements, and industry frameworks (e.g., NIST, OWASP, ISO Lead the strategic integration of security into DevOps pipelines, embedding security controls and automated testing into CI/CD workflows to enable secure-by-design delivery. Oversee the More ❯

/Entra Active Directory Group Policy Highly desired: Keen interest in cyber security and understanding of key concepts and protocols. Understanding and exposure of the Cyber Essentials, ISO27001, and NIST frameworks. Previous experience within a SOC environment. Experience with Microsoft Defender XDR. In-depth hands on experience with Microsoft Sentinel SIEM. Certifications such as CompTIA Security+, ITIL and SSCP or More ❯

SIEM Hands-on exposure to Microsoft Defender XDR Windows, Microsoft 365 and Linux security monitoring/tooling knowledge Vulnerability, phishing, and alert analysis experience Exposure or understanding of ISO27001, NIST, or Cyber Essentials frameworks Security process automation mindset Benefits Support and sponsorship for future security certifications Clear progression towards Senior Analyst/Security Engineer pathways Join during active initiatives: Cyber More ❯

our security posture. Working on design and architecture. You will lead and support IT security projects, ensuring secure, timely, and effective project delivery. The client would like someone with NIST and Cyber Essentials. Strong knowledge of network security, endpoint protection, and threat detection/protection. Always staying one step ahead, investigating cybersecurity tools to ensure strong, up-to-date defences More ❯

the whole organisation. We’re looking for someone with strong experience in assurance, compliance, or audit, strong knowledge of UK data protection including GDPR, and familiarity with frameworks like NIST or Cyber Essentials. You’ll need a sharp eye for detail and the confidence to influence change across teams. This is your chance to shape the role globally, implement meaningful More ❯

CK for ICS Performing vulnerability assessments, threat modelling and attack path analysis to identify and address security weaknesses Supporting risk assessments and compliance against standards such as IEC 62443, NIST SP800-82 and NIS-R Helping deploy, configure and maintain OT cybersecurity and security monitoring solutions Contributing to crisis simulations, incident response plans and cybersecurity awareness training Preparing reports, documenting … network security principles (switching, routing, firewalls) Experience deploying or supporting OT cybersecurity solutions and monitoring tools Ability to develop attack scenarios and validate security posture against recognised frameworks (e.g. NIST 800-53/82, IEC 62443) Exposure to incident response, including testing and improving detection and response capabilities Strong communication and stakeholder engagement skills, comfortable with both technical and non More ❯

risk across the business Monitor and review technology control effectiveness and follow up on remediation actions Evaluate compliance against internal standards, regulatory expectations and recognised industry frameworks (such as NIST and ISO) Assist with supplier due diligence and third-party technology risk assessments Support elements of the operational resilience programme and technology incident review activity Prepare clear, concise reporting and … and hands on technical teams Naturally inquisitive with the ability to break down detail and provide clear conclusions Comfortable working across several workstreams at once Knowledge of ISO 27002, NIST, PCI DSS, UK GDPR or cloud environments (such as Azure) would be advantageous This role would suit someone who enjoys detail, enjoys engaging with people and wants to work in More ❯