1 to 25 of 180 NIST Jobs in England

Security experience (required) Security-related certification e.g. CompTIA Security+, GSEC, CISSP, CISA, CCSP (preferred). Good understanding of security frameworks such as ISO 27001, NIST, Mitre (preferred) Experience of introducing Information Security improvement through effective deployment of technology and/or processes to move to a proactive footing in security ...

Lead experience MOD/GDS Secure by Design Familiarity with: JSP440, JSP604/453, JSP490 Supplier Chain Assurance GDPR, PCI DSS, ICO ISO 27001, NIST CSF, CIS Controls v8 Skills in: Threat modelling (kill chain, attack trees, etc.) Cloud security (AWS, Azure), containerisation, firewalls Secure SDLC HLD/LLD review ...

analysis tools. Familiarity with scripting languages (Python, Bash, PowerShell). Experience with cloud security monitoring (AWS, Azure, GCP). Knowledge of frameworks such as NIST and MITRE ATT&CK. Qualifications Bachelor’s degree in Cyber Security, IT, or related field. 3–5 years in SOC operations, incident response, or threat ...

proven experience gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF ...

proven experience gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF ...

security project delivery, PowerShell automation skills, and familiarity with IR frameworks. Consulting-style experience providing advisory support to IT/Digital teams. Knowledge of NIST, CIS, ISO, COBIT, OWASP, and willingness to work out of hours/travel when needed. Desirable: Experience in MxDR/SOC support, security technologies ...

cloud infrastructure teams to implement IAM and AI security design patterns. Ensure AI security controls are appropriately implemented in our environment and align with NIST and CIS benchmarks. Validate effectiveness of implemented security controls through technical analysis. Perform residual IAM risk assessments and document acceptance/rejection rationale. Scope and ...

of DNS, DMARC/DKIM/SPF, networking fundamentals and TCP/IP. Familiarity with frameworks such as MITRE ATT&CK, ISO27001, CIS benchmarks, NIST, Cyber Essentials. Ability to explain technical concepts to non-technical audiences. Strong documentation, analysis and problem-solving skills. Experience in security auditing, PCI DSS, CSIRT ...

focusing on high-level incident response and the triaging of complex security issues.• Governance & Risk: Define and maintain security policies in alignment with NCSC, NIST, MITRE, and GDPR frameworks. • Team Development: Mentor junior staff and share technical knowledge to strengthen the team’s overall security posture. • Process Improvement: Drive automation ...

clients What would be desirable? * Experience working in a managed services or MSP environment* Exposure to compliance frameworks such as GDPR, ISO 27001, or NIST* Vulnerability assessment or penetration testing experience* SOC or security operations experience* Mentoring or leadership exposure within technical teams The Package * 40-hour working week (Monday ...

application and API design Logging, monitoring and SIEM Infrastructure, platform and endpoint security Experience working with security and compliance frameworks such as ISO27001, GDPR, NIST or CIS Excellent stakeholder engagement skills, able to communicate with both technical and non-technical audiences Pragmatic, risk-based approach with strong analytical skills Experience ...

protect network integrity. Enforce robust security policies to maintain system security standards. Compliance and Audit Support Ensure adherence to compliance standards including ISO27001, NIST, and GDPR through regular audits and risk assessments. Support audit processes by providing necessary documentation and evidence of compliance. Security Awareness and Training Conduct regular training ...

Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within ...

landscape and emerging security risks What you’ll bring Strong experience in an information security leadership role Excellent knowledge of security frameworks (ISO 27001, NIST, Cyber Essentials, OWASP) Good understanding of GDPR and regulatory compliance requirements Hands-on experience with core security technologies (SIEM, IAM, firewalls, endpoint security, vulnerability management ...

Microsoft Sentinel. A passion for developing teams — coaching analysts and building collaborative, high-performing cultures. Strong understanding of frameworks and standards such as NIST, MITRE ATT&CK, ISO 27001, CREST, and ITIL. Excellent communication skills, with the ability to translate technical risks into clear business impacts. Desirable Vendor certifications such ...

rules, analytics, baselines and security automation Run vulnerability scanning using tools like Tenable, Pentera, Varonis, Secure Score Support compliance work (ISO 27001, Cyber Essentials, NIST, SOC2) Contribute to threat hunting, threat intelligence application and proactive monitoring Support operational resilience: scenario testing, DR exercises, post-incident reviews Assist with security tooling ...

through structured governance forums. Deliver written and verbal updates on cyber risks and strategic priorities to senior stakeholders. Assure evidence and control effectiveness against NIST CSF and ISO 27001. Conduct cybersecurity risk assessments and develop mitigation plans aligned to business objectives. Develop and report cybersecurity performance metrics for senior management. ...

strong professional development opportunities. Skills Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and ...

and network issues and participate in change management processes Ensure continuous compliance with industry standards and regulations, including ISO 27001, ISA/IEC 62443, NIST, and GDPR, as well as internal corporate policies Translate global cybersecurity policies into practical local procedures tailored to OT constraints such as safety and uptime ...

SIEM, DLP) **YOU'LL BRING** - 10+ years enterprise security architecture (IAM, cloud security, GDPR) - Deep frameworks knowledge (TOGAF, SABSA, CISSP/CISM, ISO 27001, NIST) - Proven stakeholder influence with senior business/technology leaders - Cloud expertise (Azure/AWS/GCP) + network, encryption, incident response **PACKAGE** Competitive salary + ...

of cybersecurity controls is demonstrated by attainment of appropriate qualifications, e.g. CISSP, ISO27001 Lead Implementor or relevant SANS GIAC or equivalent. Knowledge of the NIST framework, PCI DSS, GDPR and NIS as well as NCSC cyber guidance. Experience working in an agile delivery environment would be highly advantageous. Specific cyber ...

party security controls into vendor governance processes, working closely with Procurement, Legal, Technology, and Risk. Monitor compliance with industry frameworks such as CIS Controls, NIST, GDPR, and sector-specific guidance. Support contract reviews and provide expert input on security clauses, ensuring risk-based decisions are supported by strong security requirements. ...

Lead Implementer/Auditor Professional skills/experience Demonstrate a good understanding of information security frameworks, standards and security best practice (ISO27001, NIST CSF, Cyber Essentials, OWASP). Knowledge and adherence to data protection legislation and regulatory requirements (e.g. GDPR, FCA SYSC, PCI DSS). Extensive experience and understanding of ...

cybersecurity or information security • Strong expertise across cybersecurity, information security and data protection within a regulated environment • In-depth knowledge of security frameworks including NIST 800, ISO 27001 and Cyber Essentials • Strong understanding of UK regulatory expectations, including PRA, FCA, ICO and GDPR • Proven experience with SIEM-led monitoring, threat ...

architectural assessment using tools like IriusRisk Strong knowledge of compliance benchmarks (e.g., CIS, GDPR, PCI-DSS, ISO standards) and industry cloud security standards (e.g., NIST, CSA) Proficiency in coding and workload languages (e.g., Python, Java, .NET) and practical understanding of various cloud models (IaaS, PaaS, SaaS) Excellent documentation, presentation, and ...