1 to 25 of 258 NIST Jobs in England

strong MOD stakeholder exposure. Experience with Sparx Enterprise Architect, ArchiMate, NAFv4 or similar modelling approaches. Knowledge of Joint Service Publications, NCSC guidance, ISO27001, NIST, CIS or related security frameworks. Experience across IAM, PKI, secure integration, cloud security, data flows and security architecture patterns. Experience reviewing HLDs, LLDs, current-state and ...

point security tools and data loss prevention controls are highly advantageous Skills and experience Experience working within recognised information security frameworks (e.g. ISO27001, NIST) Proven experience in an information security role, preferably within financial services or e-commerce Strong analytical capability, with the ability to interpret data and support decision ...

and security gap analyses across infrastructure and application layers Define and enforce security standards, reference architectures, and policy controls aligned with frameworks such as NIST, ISO/IEC 27001, and CIS Evaluate, select, and integrate security technologies including: Identity and Access Management (IAM) Security Information and Event Management (SIEM) Endpoint ...

risk assessments, and security gap analyses across infrastructure and application layers Define security standards, reference architectures, and policy controls based on industry frameworks (e.g., NIST, ISO/IEC 27001, CIS) Evaluate and integrate security technologies, including IAM, SIEM, EDR, DLP, WAF, and encryption solutions Collaborate with engineering, DevOps, and ...

lead architecture roles Proven ownership of enterprise security strategy and transformation programmes Experience designing security across multi-cloud environments Strong experience in governance frameworks (NIST, ISO 27001, SOC2), policy and controls design at enterprise level Ability to operate at executive and board level Nice to Have Certifications CISSP/CISM ...

clients’ security posture, identify risks and gaps, and recommend practical remediation strategies Design security architectures aligned with standards and frameworks such as ISO 27001, NIST, GDPR, and PCI Act as a subject matter expert across security domains including network security, cloud security, IAM, cryptography, and secure application development Collaborate with ...

Lead experience MOD/GDS Secure by Design Familiarity with: JSP440, JSP604/453, JSP490 Supplier Chain Assurance GDPR, PCI DSS, ICO ISO 27001, NIST CSF, CIS Controls v8 Skills in: Threat modelling (kill chain, attack trees, etc.) Cloud security (AWS, Azure), containerisation, firewalls Secure SDLC HLD/LLD review ...

Lead experience MOD/GDS Secure by Design Familiarity with: JSP440, JSP604/453, JSP490 Supplier Chain Assurance GDPR, PCI DSS, ICO ISO 27001, NIST CSF, CIS Controls v8 Skills in: Threat modelling (kill chain, attack trees, etc.) Cloud security (AWS, Azure), containerisation, firewalls Secure SDLC HLD/LLD review ...

hybrid cloud environments Experience operating security tooling (EDR, SIEM, firewalls, identity platforms) at scale Solid understanding of frameworks such as ISO 27001, NCSC guidance, NIST CSF, MITRE ATT&CK Experience managing suppliers, SOC providers, and technical teams Desirable: Relevant certifications (e.g. CISSP, CISM, AZ-500, SC-200) [Cyber Secu...ty Manager ...

hybrid cloud environments Experience operating security tooling (EDR, SIEM, firewalls, identity platforms) at scale Solid understanding of frameworks such as ISO 27001, NCSC guidance, NIST CSF, MITRE ATT&CK Experience managing suppliers, SOC providers, and technical teams Desirable: Relevant certifications (e.g. CISSP, CISM, AZ-500, SC-200) [Cyber Secu...ty Manager ...

strong professional development opportunities. Skills Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and ...

teams in remote environments Desirable Experience Experience supporting government or critical national infrastructure environments Knowledge of NCSC guidance, Secure by Design principles, ISO 27001, NIST or JSP standards Experience delivering maturity assessments or audit activities Professional certifications such as CISSP, CISM, ISO 27001 Lead Auditor, CCP or equivalent SC clearance ...

protect network integrity. Enforce robust security policies to maintain system security standards. Compliance and Audit Support Ensure adherence to compliance standards including ISO27001, NIST, and GDPR through regular audits and risk assessments. Support audit processes by providing necessary documentation and evidence of compliance. Security Awareness and Training Conduct regular training ...

Logic Apps or similar technologies. Knowledge of cloud security principles across Azure and ideally AWS or Google Cloud. Familiarity with industry frameworks such as NIST and ISO 27001. Personal Attributes We are particularly interested in individuals who demonstrate: Calmness under pressure Strong ownership and accountability Excellent communication and stakeholder management ...

of Operating System security and system hardening concepts such as CIS Benchmarks. Experience in working with information security frameworks and regulatory requirements including ISO27001, NIST, PCI DSS, GDPR, Cyber Essentials. Experience of general IT Audit processes and conducting risk assessments. You will be a proactive self starter with strong communication ...

and the wider estate are sufficiently tested for signs of vulnerability. Governance, Risk & Compliance (GRC) Ensure audit readiness, control effectiveness (key SOX/ITGC, NIST/ISO mappings), and remediation governance; lead policy lifecycle and attestations. Oversee the enterprise risk process (RCSA, KRIs), executive reporting, and board risk briefings. Improve ...

Lead beneficial MOD/GDS Secure by Design Familiarity with JSP440, JSP604/453, JSP490, Supplier Chain Assurance, GDPR, PCI DSS, ICO, ISO 27001, NIST CSF, CIS Controls v8 Certifications (Desirable) CIISEC UK Cyber Security Council registration (Chartered or Principal) AWS/Azure Security (Professional) CCSP, CISSP, CISM ...

public sector and Defence clients * Support secure-by-design initiatives and threat modelling activities * Advise on regulatory and compliance frameworks including ISO 27001, NIST, GDPR, and PCI-DSS * Identify vulnerabilities and communicate security risks and mitigation strategies to technical and non-technical stakeholders * Contribute to innovation, research, and continuous improvement ...

emerging threats, regulatory changes, and risk posture Cybersecurity Governance & Risk Management Own the information security risk framework and ensure alignment with ISO 27001, NIST, and relevant market standards Oversee cyber risk assessments across manufacturing plants, logistics partners, third‐party suppliers, and commercial functions Drive compliance with data protection legislation (e.g. ...

operations automation. Awareness of emerging AI-driven attack techniques, including adversarial AI and automated exploitation methods. Familiarity with security frameworks and standards such as NIST, CIS, ISO 27001, and GDPR. Strong analytical thinking with a structured, risk-based approach. Excellent communication skills with the ability to translate technical and ...

operations automation. Awareness of emerging AI-driven attack techniques, including adversarial AI and automated exploitation methods. Familiarity with security frameworks and standards such as NIST, CIS, ISO 27001, and GDPR. Strong analytical thinking with a structured, risk-based approach. Excellent communication skills with the ability to translate technical and ...

Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within ...

financial services industry. Experience in developing and implementing information security governance frameworks. Strong understanding of information security standards and frameworks such as ISO 27001, NIST Cybersecurity Framework or CIS Controls . Good knowledge of UK regulatory expectations related to cyber security, operational resilience and outsourcing risk. Understanding of banking ...

Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within ...

with container security and cloud-native security patterns ✔️ Experience using: 🛡️ Microsoft Defender for Cloud 🛡️ Palo Alto Prisma Cloud ✔️ Strong understanding of compliance frameworks including: 📘 NIST 📘 ISO 27001 📘 SOC 2 📘 GDPR ✔️ Relevant certifications such as: 🎓 AZ-500 🎓 CCSP 🎓 Azure Solutions Architect Expert (Desirable) ⭐ Preferred Experience ➕ Experience working within regulated industries such ...