5 of 5 NIST Jobs in the East Midlands

Technology 3+ years' experience performing IT Audit or security control testing. Knowledge of internal audit methodologies, including risk assessment, execution, and reporting. Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO 27001/27002). Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws. Experience with sector-specific frameworks (e.g., HIPAA, PCI). Technical Skills Proficiency More ❯

with specific experience in testing cloud security controls. Professional certification such as CISA, CISM, CISSP, ISO 27001 Lead Auditor, or equivalent. Knowledge of industry standards and frameworks such as NIST 800-53, ISO 27001/27002, CIS Controls, COBIT. Experience with current automated and manual industry methods for evaluating security controls on Perm and in cloud environments. Capable of communicating More ❯

breaches and collaborate with SecOps for investigations and control changes. -Contribute to the creation and maintenance of security policies, standards, procedures, and documentation. -Support the maintenance of the companies NIST capability maturity. What do you need to be successful? -Experience as a Security Engineer or in a similar role with a strong background in IT Security/IT Operations. -Demonstrable … expertise in security controls and architecture. -Proficiency in security frameworks such as ISO, NIST, and OWASP. -Knowledge of Cloud infrastructure (e.g., Azure). -Experience with security technologies (e.g., SIEM, EDR, IPS, web and email gateways). -Qualifications (desirable): CISSP or similar certification, TOGAF or similar architectural framework certification, Vendor technology training/certifications (e.g., SIEM, EDR, IPS), Experience in security More ❯

Fraud Detection: Familiarity with fraud detection systems, including rules engines, threat modelling, and risk assessment. Knowledge of emerging cybersecurity threats and vulnerabilities, as well as industry standards like FIDO, NIST 800-63, or ISO 27001. Understanding of Agile and Scrum methodologies, including backlog management, sprint planning, and iterative development. Familiarity with cloud platforms like AWS and Azure, and their respective More ❯

Deep hands-on experience with Microsoft Security technologies. Proven track record in automation, Gen AI, or vulnerability management (especially Qualys). Strong grasp of security frameworks (MITRE ATT&CK, NIST, ISO 27001). Strategic mindset with the ability to communicate clearly across technical and non-technical audiences. A passion for innovation, mentoring, and staying ahead of the curve. What can More ❯