1 to 25 of 186 NIST Jobs in England

understanding of network protocols, operating systems and enterprise security technologies Experience implementing and managing SIEM and SOAR platforms Knowledge of cybersecurity frameworks such as NIST, ISO27001, CIS benchmarks and Cyber Essentials Experience with threat intelligence frameworks such as MITRE ATT&CK and Cyber Kill Chain Familiarity with Data Loss Prevention ...

strong MOD stakeholder exposure. Experience with Sparx Enterprise Architect, ArchiMate, NAFv4 or similar modelling approaches. Knowledge of Joint Service Publications, NCSC guidance, ISO27001, NIST, CIS or related security frameworks. Experience across IAM, PKI, secure integration, cloud security, data flows and security architecture patterns. Experience reviewing HLDs, LLDs, current-state and ...

threat modeling, and control gap analysis. Experience collaborating with SOC and Incident Response teams during security events. Working knowledge of security frameworks and regulations (NIST, ISO 27001, CIS, GDPR, etc.). Ability to translate technical risk into clear, business‐relevant language. Strong stakeholder management skills with the ability to influence ...

point security tools and data loss prevention controls are highly advantageous Skills and experience Experience working within recognised information security frameworks (e.g. ISO27001, NIST) Proven experience in an information security role, preferably within financial services or e-commerce Strong analytical capability, with the ability to interpret data and support decision ...

experience in Project Management with a background delivering on Cyber Security projects. Strong understanding of cyber security frameworks and standards such as ISO 27001, NIST, CIS Controls, and Cyber Essentials. Experience delivering consultancy engagements directly to clients. Knowledge of risk assessment methodologies and security maturity reviews. Excellent stakeholder management and ...

governance forums such as Audit, Risk, or Information Security Committees. Knowledge & Skills Deep knowledge of cyber security governance frameworks – ISO/IEC 27001:2022, NIST CSF 2.0, CIS Controls – and their practical application in complex enterprise environments. Familiarity with continuous controls monitoring/CAASM tooling (e.g. Axonius, Qualys) and ...

proven experience gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF ...

Lead beneficial MOD/GDS Secure by Design Familiarity with JSP440, JSP604/453, JSP490, Supplier Chain Assurance, GDPR, PCI DSS, ICO, ISO 27001, NIST CSF, CIS Controls v8 Certifications (Desirable) CIISEC UK Cyber Security Council registration (Chartered or Principal) AWS/Azure Security (Professional) CCSP, CISSP, CISM ...

drive cyber security governance, risk management, and compliance activities across the organisation. Maintain and enhance security controls aligned to recognised frameworks including ISO 27001, NIST Cybersecurity Framework, CIS Controls, and other relevant standards. Manage security incidents, major cyber events, and crisis response activities. Build strong relationships with internal stakeholders, ensuring ...

SIEM, EDR/XDR, and incident response workflows Experience with scripting or automation using Python, PowerShell, or similar Knowledge of security frameworks such as NIST, ISO 27001, SOC 2, or CIS Strong problem-solving mindset with the ability to operate across multiple security domains Experience within regulated or financial environments ...

security roadmaps, and modern SASE/SSE environments. Key Responsibilities • Design and implement enterprise Zero Trust architectures aligned to modern security frameworks such as NIST 800-207 and SASE/SSE principles • Deliver secure access solutions using technologies such as Zscaler ZIA, ZPA, and ZDX • Create enterprise-wide security blueprints ...

Microsoft Defender XDR technologies Threat Hunting experience Detection Engineering Security Automation Vulnerability Assessment platforms such as Qualys Knowledge of MITRE ATT&CK Exposure to NIST, ISO27001 or CIS Controls Experience supporting regulated environments Why Apply? This organisation is a recognised international technology and cyber security provider supporting customers globally. ...

Microsoft Defender XDR technologies Threat Hunting experience Detection Engineering Security Automation Vulnerability Assessment platforms such as Qualys Knowledge of MITRE ATT&CK Exposure to NIST, ISO27001 or CIS Controls Experience supporting regulated environments Why Apply? This organisation is a recognised international technology and cyber security provider supporting customers globally. ...

drive cyber security governance, risk management, and compliance activities across the organisation. Maintain and enhance security controls aligned to recognised frameworks including ISO 27001, NIST Cybersecurity Framework, CIS Controls, and other relevant standards. Manage security incidents, major cyber events, and crisis response activities. Build strong relationships with internal stakeholders, ensuring ...

programmes or secure cloud transformation initiatives. Familiarity with NCSC guidance and secure-by-design principles. Knowledge of security frameworks including JSP 440, JSP 604, NIST, ISO27001, or Cyber Assessment Framework (CAF). Relevant certifications such as CISSP, CCSP, GCIH, GCIA, Security+, or similar. We are looking to have someone ...

strategy consultancy (e.g., McKinsey, Bain, BCG, Oliver Wyman). Experience with the application of information security standards and best practices (PCI‐DSS, HIPAA, ISO27001, NIST, CIS, CSA). Understanding of security needs of the payment ecosystem, including traditional financial services customers and related segments such as merchants, SMBs, and governments. ...

with SIEM (e.g., Arctic Wolf), Fortinet firewalls, Nessus, and vulnerability remediation. Experience working with SOC teams and supplier security assessments. Familiarity with CAF, CE+, NIST, CIS Controls, ISO 27001. Understanding of healthcare data protection, ideally NHS/UK standards. Strong incident response, analytical, and problem-solving skills. Knowledge of ...

public sector and Defence clients * Support secure-by-design initiatives and threat modelling activities * Advise on regulatory and compliance frameworks including ISO 27001, NIST, GDPR, and PCI-DSS * Identify vulnerabilities and communicate security risks and mitigation strategies to technical and non-technical stakeholders * Contribute to innovation, research, and continuous improvement ...

with a wide range of information security standards and certifications, understanding their application as well as their relative strengths and weaknesses (ISO 27000 family, NIST CSF, SOC reports, PCI DSS, etc.). Responsibilities Lead security programmes and workstreams spanning risk, compliance and security delivery as part of wider delivery programmes. ...

Awareness of cybersecurity concepts such as phishing, malware, MFA, or vulnerability management Familiarity with Microsoft 365 or Azure environments Understanding of cybersecurity frameworks (e.g. NIST, ISO 27001) Entry-level certifications such as CompTIA ITF+, CompTIA Security+, or Microsoft Fundamentals Entry requirements: An A-Level in ICT OR an International Baccalaureate ...

financial services industry. Experience in developing and implementing information security governance frameworks. Strong understanding of information security standards and frameworks such as ISO 27001, NIST Cybersecurity Framework or CIS Controls . Good knowledge of UK regulatory expectations related to cyber security, operational resilience and outsourcing risk. Understanding of banking ...

Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within ...

methodologies. Knowledge of enterprise IT systems, applications, security practices, security controls and architectures. Familiarity with recognised cyber security frameworks and standards (e.g., ISO 27000, NIST, NIS2, CIS), including their application in audit and risk assessment contexts. Desirable but not essential, familiarity with EASA Part-IS regulation and associated requirements. Ability ...

Microsoft security technologies (Azure, Entra ID, Conditional Access, PIM, Defender, Microsoft 365 security stack) Strong understanding of security governance, risk, and compliance frameworks including NIST and FAIR Experience delivering security architecture within multi-year transformation programmes Strong stakeholder management and executive communication skills If you're looking to join ...

Microsoft security technologies (Azure, Entra ID, Conditional Access, PIM, Defender, Microsoft 365 security stack) Strong understanding of security governance, risk, and compliance frameworks including NIST and FAIR Experience delivering security architecture within multi-year transformation programmes Strong stakeholder management and executive communication skills If you're looking to join ...