17 of 17 Permanent NIST Jobs in the West Midlands

compliance standards and regulations (e.g., GDPR, HIPAA, PCI DSS). Conduct regular security audits and assessments to identify and address compliance gaps. Familiarity with industry standards and frameworks like NIST Cybersecurity Framework, ISO 27001, and CIS Critical Security Controls. Familiarity with the use of standard security technology solutions and processes such as user provisioning, directory, SIEM, vulnerability management, Cloud Security More ❯

prepare reports Cyber Defence Manager - Experience Incident response, security engineering, intrusion detection Experience of SOC or Incident Response Team Analyse End Point, Network, Application Logs Security frameworks/Standards (NIST, CIS, ISO27001) Scripting & Automation (PowerShell, Azure CLI, Azure Logic Apps) MITRE ATT&CK, Threat Modelling Knowledge of CVEs and security vulnerabilities SIEM Tools, Cyber Hunting Techniques Operational threat intelligence and More ❯

risk identification, third party risk management, assessment, control evaluation, and mitigation planning. Regulatory & Standards Compliance – Ensure adherence to relevant regulatory requirements (e.g. PRA, FCA, GDPR) and security standards (e.g. NIST CSF), maintaining readiness for internal and external audits. Communications, Awareness & Training – Oversee security and compliance awareness initiatives, ensuring effective staff training and customer-focused communication. Continuous Improvement – Monitor and review More ❯

compliance technical assessments of all applicable standards, policies, regulation, and legislation compliance Creation of security standards and requirements documents for projects and activities to be based on ISO 27001, NIST 800-53 and ISO 22301. Review risks, propose mitigation actions and solutions, and assisting ongoing risk treatment activity. Assist the security testing process from scoping, planning and stakeholder management through More ❯

the ability to articulate and drive a clear vision for information security across the university. Demonstrable expertise in implementing and maintaining formal compliance or certification programmes, such as ISO27001, NIST, COBIT or Cyber Essentials. Experience in assessing, managing, and quantifying information security risks, including the development of metrics and tracking mechanisms. Experience working with senior stakeholders, earning trust and influencing More ❯

the ability to articulate and drive a clear vision for information security across the university. Demonstrable expertise in implementing and maintaining formal compliance or certification programmes, such as ISO27001, NIST, COBIT or Cyber Essentials. Experience in assessing, managing, and quantifying information security risks, including the development of metrics and tracking mechanisms. Experience working with senior stakeholders, earning trust and influencing More ❯

operating security risk/issue management-related processes and services Experience in Risk Management aligned with certification requirements (ISO27001, ISO31000, or similar) Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, CobiT, etc.) Experience in service build-up is a plus Security Governance/Risk Management certification (CISSP, CGEIT, CISM, CRISC, etc.) is a plus Hitachi Energy is a More ❯

our security posture. Working on design and architecture. You will lead and support IT security projects, ensuring secure, timely, and effective project delivery. The client would like someone with NIST and Cyber Essentials. Strong knowledge of network security, endpoint protection, and threat detection/protection. Always staying one step ahead, investigating cybersecurity tools to ensure strong, up-to-date defences More ❯

security risk/issue management-related processes and services Experience in Risk Management aligned to certification requirements (ISO27001, ISO31000 or similar) required Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, CobiT, ) required Experience in service build up a plus Security Governance/Risk Management certification (CISSP, CGEIT, CISM, CRISC ) is a plus Accommodations Qualified individuals with a disability More ❯

Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

teams to manage and evidence ITGC (IT General Controls) in Technology systems, processes, and projects. Undertake and evidence testing of Technology, Change and Cyber controls aligned with frameworks including NIST, SOX, and PCI DSS. Maintain an up-to-date record of Technology, Change and Cyber controls, including process flow diagrams, risk matrices, and control narratives to demonstrate adherence to regulatory More ❯

OT and Cloud platforms. We’re looking for someone with solid experience in assurance, compliance, or audit, with strong knowledge of UK data protection including GDPR. Familiarity with frameworks NIST or Cyber Essentials is essential, along with a sharp eye for detail and the confidence to influence change across teams. This is a brilliant opportunity to join a business that More ❯

cyber security controls, designing solutions that enable defence in depth and services with security controls embedded. Significant experience of implementing enterprise security tooling and platforms in line with the NIST cyber security framework or equivalent, and CIS security controls. Influential and able to lead investigative work into problems and opportunities in existing processes, driving the collection of information and creation More ❯

cyber security controls, designing solutions that enable defence in depth and services with security controls embedded. Significant experience of implementing enterprise security tooling and platforms in line with the NIST cyber security framework or equivalent, and CIS security controls. Influential and able to lead investigative work into problems and opportunities in existing processes, driving the collection of information and creation More ❯

fulfilled. OT/IOT Security SME Role: 10+ years of experience in Cyber security Designing & implementation on ICS/OT network Architectures, Cybersecurity frameworks for ICS/OT environments NIST SP 800-82 and c, OT Network Communication Protocols (e.g., Ethernet, Modbus, OPC, IEC-101/104 etc.), Information Event Management (SIEM). Key Responsibilities: Designing and implementing technical solutions More ❯

information security compliance program.You will be responsible for ensuring that all corporate and subsidiary operations comply with internal security policies, regulatory requirements, and internationally recognised frameworks such as ISO27001, NIST, SOX, GDPR, CMMC, amongst others.Key Responsibilities: Support the execution and enhancement of the global information security compliance program. Conduct internal audits, third-party risk assessments, and due diligence reviews. Ensure … alignment with regulatory and industry standards including ISO27001, NIST, SOX, GDPR, SOC 2, HIPAA, CCPA, LGPD. Collaborate with cross-functional teams across multiple jurisdictions to drive compliance initiatives. Identify gaps in security controls and recommend corrective actions. Maintain and update security policies, procedures, and documentation. Monitor changes in global regulations and assess their impact on business operations. Minimum of … Required: Proven experience in information security compliance, risk management, and audit. Strong understanding of international regulatory frameworks and standards. Hands-on experience with: ISO27001 audits and implementation GDPR compliance NIST cybersecurity framework SOX, SOC 2, HIPAA, CCPA, LGPD Ability to interpret complex regulatory requirements and translate them into actionable controls. Excellent communication and stakeholder engagement skills. Strong analytical and problem More ❯

Sky's privileged security baseline. Be familiar designing and implementing closed loop credential management workflows. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Design, implement, and manage the PAM system to ensure the confidentiality, integrity, and … Expertise in cross platform scripting (Powershell, bash etc.). Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have experience with threat modelling methodologies e.g., STRIDE. Have a good understanding of Access Controls More ❯