1 to 25 of 187 NIST Jobs in England

and SOX requirements. Experience with critical production server support, application upgrades and project lifecycle/SDLC processes. Good knowledge of control frameworks such as NIST, CRI, DORA, SOX. Excellent written and verbal communication skills. Preferred: Knowledge of Privileged Access Management principles, process and tools. Experience applying AI agents ...

understanding of network protocols, operating systems and enterprise security technologies Experience implementing and managing SIEM and SOAR platforms Knowledge of cybersecurity frameworks such as NIST, ISO27001, CIS benchmarks and Cyber Essentials Experience with threat intelligence frameworks such as MITRE ATT&CK and Cyber Kill Chain Familiarity with Data Loss Prevention ...

lifecycle Ensure alignment with Security by Design principles, frameworks, and organisational security policies Assess compliance against relevant standards and regulatory requirements, including ISO 44001, NIST 800-53, NIST 800-171, NIST 800-172, NIS2, DEFSTAN, JSPs, and other applicable frameworks Collaborate with development, engineering, and security teams to embed security … such as defence, aerospace, government, critical infrastructure, or enterprise IT. Strong knowledge and practical application of IT assurance frameworks and standards, including: ISO 144001, NIST 800-53, NIST 800-171, NIST 800-172, NIS2, DEFSTAN and JPS. Proven experience implementing and assuring Security by Design across the full technology lifecycle. ...

policies, and best practices Oversee day-to-day security operations (SIEM, EDR, incident response, vulnerability management) Ensure compliance with frameworks such as ISO 27001, NIST, CIS Controls and GDPR Manage risk assessments, remediation planning, and continuous improvement initiatives Secure cloud and hybrid environments ( Azure/AWS ) Act as the escalation ...

manage multiple priorities effectively. Desirable Experience within banking, financial services, or another regulated environment. Familiarity with industry standards and frameworks such as ISO 27001, NIST, COBIT, or CIS Controls. Exposure to vulnerability management, penetration testing, incident management, or third-party risk assessments. Relevant security certifications such as Security+ ...

strong MOD stakeholder exposure. Experience with Sparx Enterprise Architect, ArchiMate, NAFv4 or similar modelling approaches. Knowledge of Joint Service Publications, NCSC guidance, ISO27001, NIST, CIS or related security frameworks. Experience across IAM, PKI, secure integration, cloud security, data flows and security architecture patterns. Experience reviewing HLDs, LLDs, current-state and ...

implementing security controls in cloud environments such as AWS, Azure, or Google Cloud Platform. Knowledge of industry security frameworks and standards, including ISO 27001, NIST, CIS Controls, and OWASP. Experience conducting security architecture reviews, threat modelling, and risk assessments. Strong understanding of identity and access management, network security, encryption, vulnerability ...

point security tools and data loss prevention controls are highly advantageous Skills and experience Experience working within recognised information security frameworks (e.g. ISO27001, NIST) Proven experience in an information security role, preferably within financial services or e-commerce Strong analytical capability, with the ability to interpret data and support decision ...

experience in Project Management with a background delivering on Cyber Security projects. Strong understanding of cyber security frameworks and standards such as ISO 27001, NIST, CIS Controls, and Cyber Essentials. Experience delivering consultancy engagements directly to clients. Knowledge of risk assessment methodologies and security maturity reviews. Excellent stakeholder management and ...

governance forums such as Audit, Risk, or Information Security Committees. Knowledge & Skills Deep knowledge of cyber security governance frameworks – ISO/IEC 27001:2022, NIST CSF 2.0, CIS Controls – and their practical application in complex enterprise environments. Familiarity with continuous controls monitoring/CAASM tooling (e.g. Axonius, Qualys) and ...

proven experience gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF ...

/XDR solutions, firewalls, IDS/IPS. Strong knowledge of Microsoft Azure cloud security technologies and concepts. Familiar with cybersecurity frameworks such as NIST CSF, ISO27001, CIS Controls. Strong analytical, and problem-solving skills. Good understanding of best practice security operations and architectures. Knowledgeable on security and data protection legislations ...

drive cyber security governance, risk management, and compliance activities across the organisation. Maintain and enhance security controls aligned to recognised frameworks including ISO 27001, NIST Cybersecurity Framework, CIS Controls, and other relevant standards. Manage security incidents, major cyber events, and crisis response activities. Build strong relationships with internal stakeholders, ensuring ...

Logic Apps or similar technologies. Knowledge of cloud security principles across Azure and ideally AWS or Google Cloud. Familiarity with industry frameworks such as NIST and ISO 27001. Personal Attributes We are particularly interested in individuals who demonstrate: Calmness under pressure Strong ownership and accountability Excellent communication and stakeholder management ...

security roadmaps, and modern SASE/SSE environments. Key Responsibilities • Design and implement enterprise Zero Trust architectures aligned to modern security frameworks such as NIST 800-207 and SASE/SSE principles • Deliver secure access solutions using technologies such as Zscaler ZIA, ZPA, and ZDX • Create enterprise-wide security blueprints ...

Microsoft Defender XDR technologies Threat Hunting experience Detection Engineering Security Automation Vulnerability Assessment platforms such as Qualys Knowledge of MITRE ATT&CK Exposure to NIST, ISO27001 or CIS Controls Experience supporting regulated environments Why Apply? This organisation is a recognised international technology and cyber security provider supporting customers globally. ...

Microsoft Defender XDR technologies Threat Hunting experience Detection Engineering Security Automation Vulnerability Assessment platforms such as Qualys Knowledge of MITRE ATT&CK Exposure to NIST, ISO27001 or CIS Controls Experience supporting regulated environments Why Apply? This organisation is a recognised international technology and cyber security provider supporting customers globally. ...

drive cyber security governance, risk management, and compliance activities across the organisation. Maintain and enhance security controls aligned to recognised frameworks including ISO 27001, NIST Cybersecurity Framework, CIS Controls, and other relevant standards. Manage security incidents, major cyber events, and crisis response activities. Build strong relationships with internal stakeholders, ensuring ...

programmes or secure cloud transformation initiatives. Familiarity with NCSC guidance and secure-by-design principles. Knowledge of security frameworks including JSP 440, JSP 604, NIST, ISO27001, or Cyber Assessment Framework (CAF). Relevant certifications such as CISSP, CCSP, GCIH, GCIA, Security+, or similar. We are looking to have someone ...

with SIEM (e.g., Arctic Wolf), Fortinet firewalls, Nessus, and vulnerability remediation. Experience working with SOC teams and supplier security assessments. Familiarity with CAF, CE+, NIST, CIS Controls, ISO 27001. Understanding of healthcare data protection, ideally NHS/UK standards. Strong incident response, analytical, and problem-solving skills. Knowledge of ...

public sector and Defence clients * Support secure-by-design initiatives and threat modelling activities * Advise on regulatory and compliance frameworks including ISO 27001, NIST, GDPR, and PCI-DSS * Identify vulnerabilities and communicate security risks and mitigation strategies to technical and non-technical stakeholders * Contribute to innovation, research, and continuous improvement ...

with a wide range of information security standards and certifications, understanding their application as well as their relative strengths and weaknesses (ISO 27000 family, NIST CSF, SOC reports, PCI DSS, etc.). Responsibilities Lead security programmes and workstreams spanning risk, compliance and security delivery as part of wider delivery programmes. ...

financial services industry. Experience in developing and implementing information security governance frameworks. Strong understanding of information security standards and frameworks such as ISO 27001, NIST Cybersecurity Framework or CIS Controls . Good knowledge of UK regulatory expectations related to cyber security, operational resilience and outsourcing risk. Understanding of banking ...

Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within ...

Qualifications & Certifications CISSP, CISM, GIAC, GCIH, GCIA, or equivalent security certifications. Experience within regulated or critical service environments. Knowledge of security frameworks such as NIST CSF, ISO 27001, CIS Controls, or MITRE ATT&CK. Experience managing third-party SOC or security service providers. ...