1 to 25 of 43 NIST Jobs in the West Midlands

Key Responsibilities Security Governance & Compliance Develop, implement, and maintain information security policies, standards, and procedures. Ensure compliance with relevant security frameworks (e.g., ISO 27001, NIST, CIS, GDPR). Conduct security risk assessments and audits to identify vulnerabilities. Provide security guidance for regulatory and legal compliance initiatives. Risk Management & Incident Response More ❯

in IT Security roles, including people management. Successful track record implementing security-first cultures in 1500+ user environments. Experience with ISO27001, GDPR, HIPAA, and NIST frameworks. Strong technical background in IT systems and security tools. Skilled at building relationships across all organisational levels. Skills & Competencies Strong leadership and technical team More ❯

of MITRE ATT&CK framework, Zero Trust, and cloud security best practices. * Knowledge of Azure, AWS, M365, hybrid environments, and cloud security frameworks (CIS, NIST, ISO 27001, etc.). * Experience with scripting and automation (PowerShell, Python, KQL, or similar languages) to enhance security operations. * Excellent problem-solving, analytical, and communication More ❯

of MITRE ATT&CK framework, Zero Trust, and cloud security best practices. * Knowledge of Azure, AWS, M365, hybrid environments, and cloud security frameworks (CIS, NIST, ISO 27001, etc.). * Experience with scripting and automation (PowerShell, Python, KQL, or similar languages) to enhance security operations. * Excellent problem-solving, analytical, and communication More ❯

network security, firewalls, IAM, cloud security (AWS, Azure), and endpoint protection. Experience managing BAU security operations. Good understanding of security frameworks and regulations (e.g., NIST CSF, ISO 27001, GDPR, CIS controls). Familiarity with security technologies such as SIEM, endpoint security, intrusion detection, and secure coding practices. Excellent problem-solving More ❯

network security, firewalls, IAM, cloud security (AWS, Azure), and endpoint protection. Experience managing BAU security operations. Good understanding of security frameworks and regulations (e.g., NIST CSF, ISO 27001, GDPR, CIS controls). Familiarity with security technologies such as SIEM, endpoint security, intrusion detection, and secure coding practices. Excellent problem-solving More ❯

and conduct risk assessments Monitor emerging threats and implement proactive security measures Key Skills & Experience Strong knowledge of cybersecurity frameworks such as ISO 27001, NIST, CIS, and Cyber Essentials Experience with cloud security solutions, particularly Azure and Zscaler Proven track record in security leadership and risk management Ability to communicate More ❯

and conduct risk assessments Monitor emerging threats and implement proactive security measures Key Skills & Experience Strong knowledge of cybersecurity frameworks such as ISO 27001, NIST, CIS, and Cyber Essentials Experience with cloud security solutions, particularly Azure and Zscaler Proven track record in security leadership and risk management Ability to communicate More ❯

with proven Second Line of Defense responsibilities in InfoSec and IT Compliance & Frameworks : Demonstrated success meeting GDPR, EU NIS2, and familiarity with ISO 27001, NIST, and cybersecurity best practices Risk & Governance : Skilled in conducting risk assessments, defining mitigation strategies, and creating/enforcing security policies Good technical understanding of IT More ❯

security certifications (e.g., CISSP, CISM). Experience managing operational security activities, including governance and compliance. Strong understanding of regulatory and compliance frameworks such as NIST CSF, ISO 27001, and GDPR. Demonstrated ability to advise on secure software development practices. Demonstrable experience with security technologies and architectures. Hands-on experience with More ❯

endpoints Administration of Networking, and/or Linux & Windows environments would be advantageous Experience with Microsoft Azure Security Tools would be beneficial Knowledge of NIST 2.0 CSF would be beneficial What CRH Offers You A culture that values opportunity for growth, development, and internal promotion Highly competitive salary package Comprehensive More ❯

management of application and firmware releases in line with best practices. Conduct penetration testing, vulnerability assessments, and security audits, ensuring compliance with GIRR/NIST/SyAP. Work closely with DDaT and Information Security (InfoSec) teams to integrate security measures across all technology platforms. Essential Qualifications: Degree in Computer Science More ❯

Can work effectively and efficiently with internal and external SME’s/Partner organisations Experience with frameworks such as ISO 27001/2, SOC, NIST, or COBIT About You Skills Has a formally recognised leading Security qualification or is working towards - i.e. CiSP, CompTIA Ideally Microsoft Azure accreditation such as More ❯

Hands-on knowledge of DevSecOps, IaC (Terraform), CI/CD pipelines, and tools like Veracode, Trivy, and Checkov. Familiarity with standards such as CIS, NIST, GDPR, ISO and frameworks like MITRE ATT&CK. Strong programming/scripting skills (Python, Go, Groovy) with a clean, secure coding ethos. Ideal Candidate Profile More ❯

Hands-on knowledge of DevSecOps, IaC (Terraform), CI/CD pipelines, and tools like Veracode, Trivy, and Checkov. Familiarity with standards such as CIS, NIST, GDPR, ISO and frameworks like MITRE ATT&CK. Strong programming/scripting skills (Python, Go, Groovy) with a clean, secure coding ethos. Ideal Candidate Profile More ❯

to troubleshoot complex system issues, perform root cause analysis, and apply solutions in a timely manner. Expertise in security frameworks, compliance standards (e.g., ISO27001, NIST, GDPR), and best practices for securing large-scale infrastructure. Proficiency with monitoring and logging tools (e.g., Splunk, Grafana, ELK stack). Strong interpersonal and communication More ❯

technical security, including architecture and tool implementation. Understanding of network security, firewalls, IAM, cloud platforms (AWS, Azure), and endpoint protection. Familiarity with standards including NIST CSF & ISO 27001. Knowledge of SIEM, intrusion detection, endpoint security, and secure coding. This role is onsite 2 days per week No sponsorship is available More ❯

assurance frameworks. Excellent audit management capability, with an ability to quality check auditors. Solid working knowledge of ISO27001, Cyber Essentials/Cyber Essentials Plus, NIST Cybersecurity Framework, CIS, SOC2, Data Protection (UK GDPR, DPA, PECR) and experience of operational implementation. Good understanding of ancillary frameworks (EU AI Act, UK AI More ❯

IaaS, PaaS, IAM technologies, and networking components. Proven experience working within highly secure environments and within structured security frameworks including ISO27001:2022, Cyber Essentials+, NIST CSF, and NCSC CAF. Strong working knowledge of Linux (RHEL, Ubuntu) administration and scripting (Bash, PowerShell, Python). Working knowledge of RH OpenShift technologies. Experience More ❯

Engage with stakeholders, including C-level executives , to align technology with business goals. Ensure compliance with security standards, such as ISO27001, Cyber Essentials+, and NIST CSF . What We're Looking For: 5+ years of experience in cloud architecture, with hands-on expertise in AWS and Azure . Strong knowledge More ❯

culture Requirements: Experience working in a Public Sector Setting preferably Local Government Proven experience in cybersecurity leadership Strong knowledge of security frameworks (ISO 27001, NIST, etc.) Hands-on experience with firewalls, SIEM, threat detection, and incident response Ability to communicate complex security issues to technical & non-technical stakeholders Relevant certifications More ❯

and stakeholder engagement skills. A degree in an IT-related field (or equivalent experience). Nice to have: Familiarity with UK GOV Cyber Essentials, NIST, and ISO27001. Experience of working in regulated industries. Passion for innovation, mentoring and continuous improvement. What makes you stand out: You're a critical thinker More ❯

communication and stakeholder engagement skills A degree in an IT-related field (or equivalent experience) Nice to have: Familiarity with UK GOV Cyber Essentials, NIST, and ISO27001 Experience of working in regulated industries Passion for innovation, mentoring and continuous improvement What makes you stand out: You're a critical thinker More ❯

environments. Background across: Azure IaaS/PaaS, Microsoft 365 Security, Intune, CoPilot Networking (segmentation, firewalls, NAC, remote access) Security operations and compliance frameworks (ISO27001, NIST, Cyber Essentials+) Windows 10/11 enterprise rollout Experienced in writing and delivering architectural documentation (HLDs, LLDs, runbooks, policy documents). Track record of engagement More ❯

environments. Background across: Azure IaaS/PaaS, Microsoft 365 Security, Intune, CoPilot Networking (segmentation, firewalls, NAC, remote access) Security operations and compliance frameworks (ISO27001, NIST, Cyber Essentials+) Windows 10/11 enterprise rollout Experienced in writing and delivering architectural documentation (HLDs, LLDs, runbooks, policy documents). Track record of engagement More ❯