22 of 22 Permanent NIST Jobs in the Midlands

focusing on high-level incident response and the triaging of complex security issues.• Governance & Risk: Define and maintain security policies in alignment with NCSC, NIST, MITRE, and GDPR frameworks. • Team Development: Mentor junior staff and share technical knowledge to strengthen the team’s overall security posture. • Process Improvement: Drive automation ...

and network issues and participate in change management processes Ensure continuous compliance with industry standards and regulations, including ISO 27001, ISA/IEC 62443, NIST, and GDPR, as well as internal corporate policies Translate global cybersecurity policies into practical local procedures tailored to OT constraints such as safety and uptime ...

CASP) or equivalent Experience within a SOC environment would be highly advantageous Knowledge and understanding of commonplace information security frameworks and standards, e.g. CAF, NIST, NIS2, ISO27001 and preferably experience of implementing policies and tooling in support of these frameworks A background in IT, be it: infrastructure, networks, software ...

of threat vectors, security controls and modern IT architectures. Risk Framework Knowledge: Practical experience using recognised information security and risk management methodologies such as NIST, COBIT and ISO27001. Broader Risk Awareness: Understanding of wider risk management systems and methodologies beyond cyber and technology. Insightful Reporting: Ability to design and produce ...

Incident Management: Manage and track security incidents and breaches, ensuring appropriate mitigation and response strategies.About you: Information Security Frameworks: Familiarity with frameworks such as NIST, ISO 27001, SOC 2, and GDPR. Financial Sector Requirements: Knowledge of specific information security needs for financial institutions and building societies. Security Controls and Risk ...

and resource management. Problem-Solving Skills: Proven ability to troubleshoot complex issues and apply effective solutions promptly. Security Frameworks: Familiarity with compliance standards (ISO27001, NIST, GDPR) and best practices for large-scale infrastructure security. Monitoring Tools: Proficiency with tools like Splunk, Grafana, and the ELK stack. Communication Skills: Strong interpersonal ...

Cloud (multi-cloud preferred) Infrastructure & networking Platforms & applications Identity & Access Management APIs and integrations Strong experience designing systems aligned with recognised frameworks such as NIST, ISO 27001, CIS, and regulatory standards (e.g., GDPR). Ability to influence stakeholders and clearly communicate complex security concepts to technical and non-technical audiences. ...

other by conducting other relevant Internal/External Audits. Strong grasp of industry standards and regulations related to IT and Cyber. For example, NIST, PCI DSS, DORA, COBIT, ISO 27001 etc. Knowledge of a wide range of IG (Internal Audit) principles, processes, regulations and legislation appropriate for the IT team ...

bring Were looking for someone with: Experience of working within a cyber security function. Awareness of cyber security frameworks and best practices such as NIST, CAF and OWASP. Experience providing deep technical insight to IT projects and improving cyber security posture. Experience of analysing and reviewing security requirements and recommending ...

across: Networking, Infrastructure, Platform, Cloud, Identity & Access Management (IAM), and Application/API. Experience with designing systems inline with security frameworks including: ISO, GDPR, NIST/CIS. Able to communicate at a high level to non-technical audiences. Some experience within regulated environments would be beneficial. Certifications like CISSP, CISM ...

procedures, etc.). Knowledge and/or experience in applying Systems Security policies and standards to the engineering of cyber-physical systems such as NIST SP (Apply online only), DO-326, UK Secure By Design, IEC 62443, the Risk Management Framework (RMF), and DoDI 5000.83. Excellent communications skills: able ...

external regulations. Assist in the development of the IT annual audit plans and strategy, acting as a key stakeholder in its formulation Work on NIST & cybersecurity reviews for the organisation, with lots of stakeholder management exposure Evaluate the effectiveness of IT controls and recommend improvements. Collaborate with the technology department ...

mindset with strong organisational skills A proactive, resilient and collaborative approach Desirable: Previous hands on knowledge of IT security and infrastructure Familiarity with the NIST Cybersecurity Framework and COBIT Experience providing assurance over major transformation programmes Working towards or holding a relevant qualification such as; Certified Information Systems Auditor (CISA ...

dynamic team of technical experts, fostering a culture of delivery excellence You will act as the primary bridge between deep technical control assessments (NIST, CIS, ISO) and the client’s C-Suite, providing the clarity they need to make strategic risk decisions The Ideal Profile We are looking ...

security and data security Have led senior, multi-disciplinary delivery teams within complex enterprise environme Bring strong knowledge of recognised cyber security frameworks (e.g., NIST) Demonstrate exceptional communication and senior stakeholder management capability Are available to start immediately Please apply for more information. ...

design and architecture. You will lead and support IT security projects, ensuring secure, timely, and effective project delivery. The client would like someone with NIST and Cyber Essentials. Strong knowledge of network security, endpoint protection, and threat detection/protection. Always staying one step ahead, investigating cybersecurity tools to ensure ...

and ensure recommendations are followed for continuous improvement Strong Incident Response Management skills including threat and vulnerability analysis Understanding of security frameworks such as NIST, and Cyber Essentials As the analyst you will work with the security manager and engineer the day-to-day running and monitoring of Information Security ...

skills for engaging all levels of management and technical staff. Experience in refining, pipelines, terminals, or midstream industry operations. Familiarity with OT industry standards (NIST SP (Apply online only), CIS Controls V8, NIST CFS v7.1, CERT RMM, NIST SP 800-53). Familiar with IEC62443, NCSC CAF and HSE OG86. ...

skills for engaging all levels of management and technical staff. Experience in refining, pipelines, terminals, or midstream industry operations. Familiarity with OT industry standards (NIST SP (Apply online only), CIS Controls V8, NIST CFS v7.1, CERT RMM, NIST SP 800-53). Familiar with IEC62443, NCSC CAF and HSE OG86. ...

within regulatory deadlines. Regulatory Compliance Oversight: Ensure adherence to UK GDPR, DPA 2018, PECR and relevant global frameworks such as CCPA, HIPAA, ISO 27001, NIST, PCI‐DSS and SOX. Audits & Assessments: Conduct data protection and information governance audits, gap analyses, and assessments to identify risks and improvement opportunities. Third‐Party … protection requirements and industry best practices. Technical & GRC Skills: Background in information security, GRC, risk management and working with frameworks such as ISO 27001, NIST, CIS and COBIT. Communication Skills: Ability to explain complex technical concepts clearly to non‐technical stakeholders. Stakeholder Influence: Proven experience influencing and engaging stakeholders ...

governance, MDM, security, and enterprise knowledge architecture. Lead AI FinOps: cost controls, usage telemetry, optimisation, and ROI analysis. Implement governance aligned to CRH standards, NIST, Cyber Essentials, SOx, ISO/IEC 42001 and data protection requirements. Ensure safe, transparent, explainable AI with robust controls for agentic systems. Scale Capability & Adoption … leading AI solutions from concept to production and BAU. A developed understanding of AI platforms, LLMOps/GenAIOps, governance, cyber security, and regulatory requirements (NIST, Cyber Essentials, SOx). To be skilled in data governance, enterprise AI platforms, and scaling innovation into operational services. Demonstrated ability to lead blended teams ...

Ideas | People | Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's ...