1 to 25 of 29 NIST Jobs in the Midlands

criteria: Experience in designing and implementing security solutions, preferably in a government or public sector environment. Working knowledge of security standards and frameworks, including Secure by Design, ISO 27001, NIST or similar Understanding of security architecture patterns, methodologies, and best practices. Strong analytical and problem-solving skills, with a focus on innovation and efficiency. Strong communication skills, with the ability More ❯

criteria: Experience in designing and implementing security solutions, preferably in a government or public sector environment. Working knowledge of security standards and frameworks, including Secure by Design, ISO 27001, NIST or similar Understanding of security architecture patterns, methodologies, and best practices. Strong analytical and problem-solving skills, with a focus on innovation and efficiency. Strong communication skills, with the ability More ❯

Find out more about our commitment to equity, diversity, and inclusion on our website . Unilever's Cyber Security team is a global, product-led function aligned to the NIST Cyber Security Framework. We deliver capabilities across governance, protection, detection, response, and recovery to safeguard our people, operations, and digital assets. Operating alongside our Technology and Data teams, Cyber Security More ❯

and on-premise environments Proficiency in security monitoring tools (such as SIEM, IDS/IPS) and incident response processes Strong knowledge of security frameworks, standards, and best practices (e.g., NIST, ISO 27001, CIS) Experience with scripting and automation tools for enhancing security processes Excellent communication skills and ability to articulate complex security concepts to various stakeholders Strong analytical and problem More ❯

Kanban) Strong collaboration skills working with development, operations, and infrastructure teams within a security context In-depth working knowledge of security best practices and frameworks (e.g. Mitre ATT&CK, NIST). Even Better If You Have (Desirable Skills): Experience with SIEM tooling and detection development (Google SecOps/Chronicle proficiency is of specific benefit) Background in delivering and/or More ❯

models and maximise billable utilisation. Client Delivery and Governance Define and govern delivery standards across client accounts, ensuring alignment with enterprise security policies, regulatory requirements, and industry frameworks (e.g., NIST, ISO 27001). Lead the strategic integration of security practices into client delivery, embedding security controls and governance into account management workflows. Oversee the implementation and optimisation of security services More ❯

Ability to lead technical conversations, influence customer decisions, and deliver trusted advisory services Existing SC clearance or eligibility to apply Desirable Skills & Certifications Familiarity with industry security frameworks (e.g., NIST, ISO 27001, CIS Controls) Cloud security experience across major hyperscalers More ❯

Ability to lead technical conversations, influence customer decisions, and deliver trusted advisory services Existing SC clearance or eligibility to apply Desirable Skills & Certifications Familiarity with industry security frameworks (e.g., NIST, ISO 27001, CIS Controls) Cloud security experience across major hyperscalers #J-18808-Ljbffr More ❯

familiarity with industry standards such as ISO 27001-ideally having led certification projects-and an ability to apply structured frameworks for risk assessment across complex organisational landscapes. Exposure to NIST frameworks or certifications such as CISMP/CISSP/CISM/CRISC which would further enhance your suitability for this influential position. five years' experience in Information Security/GRC More ❯

cloud providers such as AWS Ability to understand and develop coding languages such as Terraform, Python & KQL (or similar) Recognised cyber security certifications or qualifications (desirable). Experience with NIST (or similar) security framework(s). What we offer: We believe that all the people who work with us should feel valued for the part they play. It's one More ❯

design, development, deployment, and support phases. Qualifications 7+ years in IT security, with a focus on product and cyber security design Strong understanding of industry standards and frameworks (e.g., NIST 800-53, NIST CSF, NIST 800-171, IEC 62443, ISO 27001) Proficiency in network, application, and database security architecture Hands-on experience with vulnerability testing and threat analysis In-depth More ❯

policies, standards, and procedures, etc.).Knowledge and/or experience in applying systems security policies and standards in engineering cyber-physical systems such as the Risk Management Framework (RMF), NIST SP (Apply online only), DO-326, and DoDI 5000.83.Excellent communications skills: able to influence without authority and describe complex ideas simply and succinctly to non-technical people.We are an equal More ❯

in ISO 27001 implementation as a minimum, but preferably also experience in ISOs 27701/22301/9001 A strong understanding of information security and data privacy frameworks like NIST Cybersecurity Framework (CSF), GDPR, CIS or similar. Experience of certification body audits. Should have good experience and knowledge of Cyber/Information Security Governance, Risk Management, and Compliance. ISO Consultant More ❯

and infrastructure. Experience with cloud platforms (AWS, Azure, GCP) and their integration with CyberArk. Knowledge of DevOps and CI/CD pipelines for secrets management. Understanding of cybersecurity frameworks (NIST, ISO 27001). Benefits: Competitive salary, benefits package, training, and development opportunities, including: Contributory pension Extra holiday purchase Life insurance Private medical insurance Equal Opportunities: Wipro promotes diversity and inclusion. More ❯

security risk/issue management-related processes and services. Experience in Risk Management aligned to certification requirements (ISO27001, ISO31000 or similar) required Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, CobiT, ) required Experience in service build up a plus Security Governance/Risk Management certification (CISSP, CGEIT, CISM, CRISC ) is a plus Qualified individuals with a disability may More ❯

efforts. Perform threat hunting and behavioural analysis using threat intelligence and analytics tools. Maintain and tune security tools, detection rules, and automation scripts. Support compliance initiatives (e.g., ISO 27001, NIST, GDPR). Document incidents, procedures, and technical findings clearly and accurately. Ensure timely management and resolution of tickets, both internal/partner and third-party suppliers. Remain up to date … services (e.g., Active Directory, Azure AD). Log Analysis &Forensics: Ability to analyse logs and artifacts from Windows, Linux, and cloud environments. Security Frameworks: Familiarity with MITRE ATT&CK, NIST CSF, CIS Controls. Preferred Qualifications: Industry certifications such as CompTIA CySA+, SSCP,CEH, GCIA, or equivalent. Experience with DevSecOps practices and CI/CD pipeline security. Microsoft SC-900, AZ More ❯

in complex systems. Support the secure integration of emerging technologies. Essential Experience 4+ years in a cyber security or information assurance role. Strong understanding of risk assessment methodologies (e.g., NIST, ISO 27005). Experience developing security documentation and mitigation strategies. Excellent communication and technical writing skills. Desirable Experience Familiarity with MOD/HMG security policies (e.g., JSP More ❯

in complex systems. Support the secure integration of emerging technologies. Essential Experience 4+ years in a cyber security or information assurance role. Strong understanding of risk assessment methodologies (e.g., NIST, ISO 27005). Experience developing security documentation and mitigation strategies. Excellent communication and technical writing skills. Desirable Experience Familiarity with MOD/HMG security policies (e.g., JSP More ❯

related Recognised Industry Security Qualifications eg CCP, CISSP, CISM or similar (or able to achieve Proven experience of assessing and managing information risk in line with industry good practice (NIST, ISO 27001) Experience managing a team and working with customers ideally within a complex engineering or industrial setting Benefits: As well as a competitive pension scheme, BAE Systems also offers More ❯

related Recognised Industry Security Qualifications eg CCP, CISSP, CISM or similar (or able to achieve Proven experience of assessing and managing information risk in line with industry good practice (NIST, ISO 27001) Experience managing a team and working with customers ideally within a complex engineering or industrial setting Benefits: As well as a competitive pension scheme, BAE Systems also offers More ❯

our office in Dudley (UK), we are currently recruiting a driven Cybersecurity & Compliance Manager. Position purpose The Cybersecurity & Compliance Manager will lead Tosca’s efforts to ensure adherence to NIST CFS 2.0, ISO 27001, and other standards. This role focuses on developing security protocols, maintaining documentation, conducting risk assessments, and ensuring regulatory compliance. Responsibilities include managing security infrastructure, incident response … and promoting cybersecurity awareness. The position requires collaboration with Global IT, cross-functional teams, and third-party partners. Key qualifications include experience in cybersecurity and compliance, strong knowledge of NIST and ISO standards, risk management expertise, and effective communication skills. This is a full-time role based in Dudley, UK, with travel up to 30% of the time. Responsibilities Implement … security protocols and manage information security programs Report performance, exceptions, and outages to all audiences transparently. Align disaster recovery with business continuity plans. Ensure compliance with ISO27001, NIST CFS 2.0, and maintain ISMS. Identify risks, develop a comprehensive security plan. Test cyber-attacks regularly to address vulnerabilities. Monitor security trends, adapt strategies. Oversee incident monitoring, detection, response via SOC and More ❯

Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

within a top-tier business. This role emphasizes project-related work, requiring a strong all-round cybersecurity background with experience in delivering standards such as ISO2700x, Cyber Essentials, CIS, NIST , and familiarity with emerging UK government cybersecurity initiatives. Demonstrable knowledge of cybersecurity principles, theories, practices, and techniques, including offensive security is essential. Technical proficiency with Defender, Intune, Azure, and D365 More ❯

someone that has a strong all round Cyber security background with an emphasis on experience with the delivery of one or more of the following ISO2700x, Cyber Essentials, CIS, NIST , and emerging UK government cybersecurity initiatives. Demonstrable knowledge of cybersecurity principles, theories, practices, and techniques, including offensive security . Technical knowledge and proficiency (operational and security) with Defender, Intune, Azure More ❯