1 to 25 of 55 NIST Jobs in the Midlands

Key Responsibilities Security Governance & Compliance Develop, implement, and maintain information security policies, standards, and procedures. Ensure compliance with relevant security frameworks (e.g., ISO 27001, NIST, CIS, GDPR). Conduct security risk assessments and audits to identify vulnerabilities. Provide security guidance for regulatory and legal compliance initiatives. Risk Management & Incident Response More ❯

management processes. Technical Knowledge: Solid grasp of networking, system administration, and secure configurations. Standards Familiarity: Familiarity with standards and frameworks such as ISO 27001, NIST CSF, and Cyber Essentials. Communication Skills: Clear and confident communicator with excellent analytical and documentation skills. Experience: 3-5 years of experience in cybersecurity or More ❯

leadership role. Strong understanding of operating systems (Windows, macOS) and productivity tools (Google Workspace, Microsoft 365). Experience in security frameworks and compliance standards (NIST, ISO 27001, SOC 2, GDPR, PCI DSS). Experience in DevOps with a solid grasp of infrastructure automation, CI/CD, cloud infrastructure, and SRE More ❯

in IT Security roles, including people management. Successful track record implementing security-first cultures in 1500+ user environments. Experience with ISO27001, GDPR, HIPAA, and NIST frameworks. Strong technical background in IT systems and security tools. Skilled at building relationships across all organisational levels. Skills & Competencies Strong leadership and technical team More ❯

of MITRE ATT&CK framework, Zero Trust, and cloud security best practices. * Knowledge of Azure, AWS, M365, hybrid environments, and cloud security frameworks (CIS, NIST, ISO 27001, etc.). * Experience with scripting and automation (PowerShell, Python, KQL, or similar languages) to enhance security operations. * Excellent problem-solving, analytical, and communication More ❯

of MITRE ATT&CK framework, Zero Trust, and cloud security best practices. * Knowledge of Azure, AWS, M365, hybrid environments, and cloud security frameworks (CIS, NIST, ISO 27001, etc.). * Experience with scripting and automation (PowerShell, Python, KQL, or similar languages) to enhance security operations. * Excellent problem-solving, analytical, and communication More ❯

network security, firewalls, IAM, cloud security (AWS, Azure), and endpoint protection. Experience managing BAU security operations. Good understanding of security frameworks and regulations (e.g., NIST CSF, ISO 27001, GDPR, CIS controls). Familiarity with security technologies such as SIEM, endpoint security, intrusion detection, and secure coding practices. Excellent problem-solving More ❯

network security, firewalls, IAM, cloud security (AWS, Azure), and endpoint protection. Experience managing BAU security operations. Good understanding of security frameworks and regulations (e.g., NIST CSF, ISO 27001, GDPR, CIS controls). Familiarity with security technologies such as SIEM, endpoint security, intrusion detection, and secure coding practices. Excellent problem-solving More ❯

and conduct risk assessments Monitor emerging threats and implement proactive security measures Key Skills & Experience Strong knowledge of cybersecurity frameworks such as ISO 27001, NIST, CIS, and Cyber Essentials Experience with cloud security solutions, particularly Azure and Zscaler Proven track record in security leadership and risk management Ability to communicate More ❯

and conduct risk assessments Monitor emerging threats and implement proactive security measures Key Skills & Experience Strong knowledge of cybersecurity frameworks such as ISO 27001, NIST, CIS, and Cyber Essentials Experience with cloud security solutions, particularly Azure and Zscaler Proven track record in security leadership and risk management Ability to communicate More ❯

cloud security controls. Professional certification such as CISA, CISM, CISSP, ISO 27001 Lead Auditor, or equivalent. Knowledge of industry standards and frameworks such as NIST 800-53, ISO 27001/27002, CIS Controls, COBIT. Experience with current automated and manual industry methods for evaluating security controls on prem and in More ❯

with proven Second Line of Defense responsibilities in InfoSec and IT Compliance & Frameworks : Demonstrated success meeting GDPR, EU NIS2, and familiarity with ISO 27001, NIST, and cybersecurity best practices Risk & Governance : Skilled in conducting risk assessments, defining mitigation strategies, and creating/enforcing security policies Good technical understanding of IT More ❯

security certifications (e.g., CISSP, CISM). Experience managing operational security activities, including governance and compliance. Strong understanding of regulatory and compliance frameworks such as NIST CSF, ISO 27001, and GDPR. Demonstrated ability to advise on secure software development practices. Demonstrable experience with security technologies and architectures. Hands-on experience with More ❯

endpoints Administration of Networking, and/or Linux & Windows environments would be advantageous Experience with Microsoft Azure Security Tools would be beneficial Knowledge of NIST 2.0 CSF would be beneficial What CRH Offers You A culture that values opportunity for growth, development, and internal promotion Highly competitive salary package Comprehensive More ❯

management of application and firmware releases in line with best practices. Conduct penetration testing, vulnerability assessments, and security audits, ensuring compliance with GIRR/NIST/SyAP. Work closely with DDaT and Information Security (InfoSec) teams to integrate security measures across all technology platforms. Essential Qualifications: Degree in Computer Science More ❯

Can work effectively and efficiently with internal and external SME’s/Partner organisations Experience with frameworks such as ISO 27001/2, SOC, NIST, or COBIT About You Skills Has a formally recognised leading Security qualification or is working towards - i.e. CiSP, CompTIA Ideally Microsoft Azure accreditation such as More ❯

Hands-on knowledge of DevSecOps, IaC (Terraform), CI/CD pipelines, and tools like Veracode, Trivy, and Checkov. Familiarity with standards such as CIS, NIST, GDPR, ISO and frameworks like MITRE ATT&CK. Strong programming/scripting skills (Python, Go, Groovy) with a clean, secure coding ethos. Ideal Candidate Profile More ❯

Hands-on knowledge of DevSecOps, IaC (Terraform), CI/CD pipelines, and tools like Veracode, Trivy, and Checkov. Familiarity with standards such as CIS, NIST, GDPR, ISO and frameworks like MITRE ATT&CK. Strong programming/scripting skills (Python, Go, Groovy) with a clean, secure coding ethos. Ideal Candidate Profile More ❯

and technical security controls. Skills Knowledge & Experience Cyber Security Knowledge - You'll have a sound understanding of cyber and information security, including frameworks like NIST and ISO IEC 27002:202. It will be great if you also know about PCI-DSS V4.0 as well. Clear Communication - You'll be able More ❯

to troubleshoot complex system issues, perform root cause analysis, and apply solutions in a timely manner. Expertise in security frameworks, compliance standards (e.g., ISO27001, NIST, GDPR), and best practices for securing large-scale infrastructure. Proficiency with monitoring and logging tools (e.g., Splunk, Grafana, ELK stack). Strong interpersonal and communication More ❯

technical security, including architecture and tool implementation. Understanding of network security, firewalls, IAM, cloud platforms (AWS, Azure), and endpoint protection. Familiarity with standards including NIST CSF & ISO 27001. Knowledge of SIEM, intrusion detection, endpoint security, and secure coding. This role is onsite 2 days per week No sponsorship is available More ❯

assurance frameworks. Excellent audit management capability, with an ability to quality check auditors. Solid working knowledge of ISO27001, Cyber Essentials/Cyber Essentials Plus, NIST Cybersecurity Framework, CIS, SOC2, Data Protection (UK GDPR, DPA, PECR) and experience of operational implementation. Good understanding of ancillary frameworks (EU AI Act, UK AI More ❯

IaaS, PaaS, IAM technologies, and networking components. Proven experience working within highly secure environments and within structured security frameworks including ISO27001:2022, Cyber Essentials+, NIST CSF, and NCSC CAF. Strong working knowledge of Linux (RHEL, Ubuntu) administration and scripting (Bash, PowerShell, Python). Working knowledge of RH OpenShift technologies. Experience More ❯

risk management practices into technology transformation programs and major IT change programs. Regulatory & Compliance Focus : Ensure compliance with key regulatory frameworks such as GDPR, NIST, and ISO 27001. Emerging Risk & Industry Trends : Provide insights on AI, machine learning, and automation risks, collaborating with IT teams to implement the best risk More ❯

Engage with stakeholders, including C-level executives , to align technology with business goals. Ensure compliance with security standards, such as ISO27001, Cyber Essentials+, and NIST CSF . What We're Looking For: 5+ years of experience in cloud architecture, with hands-on expertise in AWS and Azure . Strong knowledge More ❯