176 to 200 of 218 NIST Jobs in England

working closely with Service Desk, Projects, and clients. Maintain robust security reporting and ensure clients understand their risk position. Oversee compliance efforts (ISO 27001, NIST, GDPR) and ensure gaps are addressed. Provide guidance on governance, policies, and technical best practice. Ensure SOC activities are efficient, actioned, and measurable. … security experience. Understanding SOC processes, alert triage, and incident escalation. Solid grasp of vulnerability management (tools, triage, prioritisation , remediation). Familiarity with ISO 27001, NIST CSF, GDPR, Cyber Essentials Plus. Ability to translate technical risk into business-impact language. Strong documentation, reporting, and communication skills. Experience implementing technical controls that ...

and network segmentation strategies Work with clients across critical infrastructure sectors (energy, utilities, transport, etc.) Apply frameworks such as NIS/CAF, IEC 62443, NIST CSF, ISO 27001 Engage with stakeholders from technical teams through to senior leadership What Were Looking For Experience in OT/ICS cyber security ...

cloud provider's data and ML tooling stack well enough to know where common gaps appear. Some exposure to EU AI Act, GDPR, or NIST AI RMF is useful but not essential at Baseline. Governance and policy - you may have written operational policies and procedures that actually got used ...

Contract Business Analyst | Utilities/Power Generation | NIS/NIS2/NIST | IT/OT Security | Security Framework and Operational Procedures | UK Based (can be working remotely) | £650/day Our client is looking for an experienced Utilities/Power Generation Business Analyst with IT/OT knowledge and ...

experience in vulnerability scanning tools, familiar with CVSS scoring and vulnerability prioritisation. This would suit an analyst who is familiar with frameworks such as NIST, Cyber Essentials. Working to understand and interpret findings and communicate to stakeholders, detailed orientated and can work with other cross functional teams and departments. ...

threat assessment, incident response (CIRT). Risk & Compliance: Develop and maintain an industry‐standard Risk Management framework; ensure compliance with PCI‐DSS, GDPR, and NIST frameworks. Governance & Policy: Maintain Information Security policies and conduct regular audits of processes and controls. Technical Oversight: Coordinate vulnerability management, penetration testing, and code reviews … environments. You will bring expert‐level knowledge of perimeter, cloud, network, and data security, alongside a proven track record of embedding industry frameworks like NIST, ISO27001, or CIS into a large‐scale operation. Beyond technical defence, your role requires strong commercial acumen to navigate contract negotiations and vendor management, ensuring ...

related field (or equivalent experience). Relevant professional certifications (e.g., CISSP, CCSP, SABSA, AWS/Azure Security). Deep knowledge of security frameworks (e.g., NIST, ISO 27001), cloud and on-premises security, and secure software development practices. Proven track record in designing and implementing security controls and solutions at scale. … Cybersecurity Architecture: Lead the development and maintenance of secure architecture frameworks for cloud, on-premises, and hybrid environments. Ensure alignment with industry standards (e.g., NIST, ISO 27001) and Clients risk appetite with a particular focus on AI. Technical Engineering Leadership: Oversee the engineering and integration of security controls across platforms ...

industries, frameworks, and environments - ideal if you're looking to broaden your experience. Key Responsibilities: Conduct security audits and assessments against recognised frameworks (ISO27001, NIST, NCSC) Support risk management activities and improve security posture across client environments Assist with information governance processes and reporting Deliver client projects within agreed scope … cyber security/IT security role Experience in security assurance, audits, or compliance-focused work Good understanding of frameworks such as ISO27001, NIST, NCSC Knowledge of risk management and information governance Familiarity with regulations like GDPR/Data Protection Act Strong communication skills - comfortable working with clients and stakeholders Ability ...

knowledge of risk assessment methodologies (e.g. ISO 31000, FAIR, OWASP risk rating). Strong understanding of Gov Assure, CAF, ISO 27001, Cyber Essentials, and NIST frameworks. Experience conducting or supporting security audits and implementing remediation plans. Proficiency in assessing and securing platforms such as Entra ID (Azure AD), Microsoft … design,CAF and GovAssure Conduct internal technical assurance reviews aligned to GovAssure/CAF/ISO27001 domains Maintain traceability of security controls to frameworks (NIST, CE+, NCSC), Evaluate Suppliers against internal and external risk criteria for Assurance. Contribute to the adoption of Zero Trust principles in platform design Provide secure ...

threat models, risk assessments, architecture blueprints, and high/low-level design documentation Advising clients on implementing security controls aligned with frameworks such as NIST, CIS, ISO 27001, Cyber Essentials and NCSC CAF Supporting complex transformation programmes , working alongside programme and project teams Conducting cyber assessments and consultancy engagements either … exposure to AWS also beneficial Experience producing architecture artefacts such as threat modelling, risk assessments and design documentation Knowledge of major security frameworks including NIST, CIS, ISO 27001, Cyber Essentials or NCSC CAF Experience working within consulting, advisory, or client-facing roles Ability to communicate complex security concepts to technical ...

using the Purdue Model. · Strong familiarity with major OT/ICS vendors (Siemens, ABB, GE, Schneider Electric). · Experience applying frameworks such as IEC62443, NIST CSF, NIST 800‐82, NCSC CAF. · Senior-level stakeholder management experience. Certifications – Highly Desirable · OT/ICS Security/Safety Certifications · ISA/ ...

Experience with NAC platforms (Forescout, Cisco ISE, Aruba ClearPass). Understanding of 802.1X, RADIUS, certificates, and device profiling. Exposure to security frameworks (Zero Trust, NIST). Experience working in regulated environments. All profiles will be reviewed against the required skills and experience. Due to the high number of applications ...

and strong stakeholder skills, including: CISM qualification (or equivalent) Strong knowledge of ISO 27001, ideally as a Lead Auditor or Auditor Working knowledge of NIST CSF and NIST SP 800-53 Excellent understanding of relevant legal, regulatory and compliance requirements Proven experience implementing and operating security management in line with ...

Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, and NIST Confidence when speaking with stakeholders and clients Ideally, some relevant cybersecurity certifications - CISSP, CCSP, CISM etc Key Responsibilities: Lead the design and implementation of … modelling to proactively identify vulnerabilities and develop effective mitigation strategies Develop and maintain security policies and frameworks that adhere to industry standards such as NIST, ISO 27001, and CIS Controls The client is looking to pay a starting salary of around £75,000, depending on experience. ...

responsible for ensuring that all corporate and subsidiary operations comply with internal security policies, regulatory requirements, and internationally recognised frameworks such as ISO27001, NIST, SOX, GDPR, CMMC, and others.Key Responsibilities- Support the execution and enhancement of the global information security compliance program.- Conduct internal audits, third-party risk assessments, and … diligence reviews.- Ensure alignment with regulatory and industry standards including ISO27001, NIST, SOX, GDPR, SOC 2, HIPAA, CCPA, LGPD.- Collaborate with cross-functional teams across multiple jurisdictions to drive compliance initiatives.- Identify gaps in security controls and recommend corrective actions.- Maintain and update security policies, procedures, and documentation.- Monitor changes ...

resilience maturity assessments and tabletop exercises; identify and prioritise gaps in recovery capabilities. Design recovery playbooks: Create actionable recovery and communication plans aligned with NIST, ISO 22301, and industry best practice. Test and validate: Lead scenario‐based simulations and recovery testing to validate processes, people, and technology readiness. Integrate with … complex enterprise environments. Practical understanding of incident response , crisis management , and cyber recovery operations . Familiarity with frameworks and standards such as ISO 22301 , NIST CSF , NIST SP 800-34 , and BS 65000 . Proven ability to engage at all levels — from technical recovery teams to C‐suite executives. Experience ...

techniques Experience of security governance and compliance, ideally gained in financial services organisations Demonstrable understanding of Information Security control standards and frameworks e.g. ISO27001, NIST, PCI DSS Awareness and understanding of the Information Security threat landscape Deep understanding of Information Security solutions and controls Experience of Cloud security solutions and … standards is highly advantageous Competence, knowledge, and skills Competence Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. 5 years experience in an Information Security role gained in a financial services or e-commerce environment is preferred Knowledge & Skills Excellent communicator, able to translate ...

reviews and compliance assessments, becoming a fully rounded consultant in this field. Support security maturity & gap assessments across frameworks including: PCI DSS, ISO 27001, NIST CSF, CIS Controls, SCF, NCSC CAF, TISAX, SWIFT CSP, DORA, GDPR Contribute to vCISO engagements, including governance, policy development, and exec‐level reporting Perform reviews … and templates What You’ll Bring Experience Minimum 2+ years delivering Cyber Essentials Plus engagements Strong understanding of security frameworks such as: ISO 27001, NIST CSF, CIS Controls, PCI DSS Qualifications Required: IASME Lead Assessor for Cyber Essentials & Cyber Essentials Plus Desirable: One or more of: PCI QSA, CISA, CISM ...

Strong knowledge of information security risk management techniques Experience of governance, risk and compliance, ideally in financial services Knowledge of frameworks such as ISO27001, NIST, PCI DSS Awareness of the threat landscape and modern security controls Strong understanding of cloud security solutions and standards Skills and experience Experience working within … recognised security frameworks (e.g. ISO27001, NIST) Ideally 5+ years’ experience in an information security role within financial services or e-commerce Strong understanding of core IT and networking concepts Excellent communication skills, with the ability to translate technical topics for non-technical audiences High attention to detail and strong ownership ...

guidance to ensure security risks are understood, managed and remediated in line with organisational risk appetite and recognised best practice frameworks (e.g. ISO 27001, NIST, CIS Controls). Key Responsibilities Deliver security risk identification, assessment, analysis and logging activities, ensuring risks are clearly articulated, consistently scored and recorded in approved … and non-technical audiences. Experience working collaboratively with multidisciplinary teams across business and technology functions. Familiarity with recognised security frameworks and standards (ISO 27001, NIST, CIS Controls). Highly organised with strong attention to detail and a commitment to high-quality, auditable documentation. Candidates must hold government security vetting ...

cyber security audits, ensuring compliance with regulatory and industry standards. Develop and maintain risk management frameworks, aligning with best practices such as ISO 27001, NIST, and GDPR. Collaborate with stakeholders to identify and mitigate cyber risks across digital and operational infrastructures. Provide expert guidance on cyber risk governance, resilience, and … Other essential skills Proven experience in cyber security risk management and audit, ideally within regulated industries Strong knowledge of security frameworks, including ISO 27001, NIST, CIS Controls, and GDPR compliance Ability to conduct security assessments, risk analyses, and internal audits Familiarity with security tooling and governance platforms (e.g., SIEM ...

more IAM/IAG platforms. Working knowledge of information security and risk management frameworks, such as ISO/IEC 27001, COBIT, and NIST (including NIST 800-53 and the Cybersecurity Framework). Experience with Power BI, Active Directory, and related identity infrastructure. Experience onboarding cloud platforms and accounts into ...

policies and standards Establish governance processes aligned to enterprise security frameworks Conduct OT risk assessments and gap analyses against recognised standards (e.g. IEC 62443, NIST CSF, CAF) Identify and oversee implementation of security controls across OT environments Provide technical oversight when working with managed service providers and third-party vendors … critical infrastructure environments Strong background in defining and implementing OT security strategies, policies, and standards Deep understanding of OT security frameworks (IEC 62443, NIST CSF, CAF, ISO 27001) Experience conducting OT risk assessments, gap analysis, and remediation planning Knowledge of OT networks, segmentation, and industrial protocols Experience working closely with ...

scheme Broad familiarity with UK Government physical and personnel security such as NPSA and UKSV Risk assessment using recognised standards such as IS1 and NIST SP800-30 Able to express yourself effectively, with a high degree of clarity, in English, especially when justifying and explaining required security measures Able … prioritise and manage your time to achieve multiple different tasks (Desirable) Familiarity with broader international security standards such as ISO27001, CMMC, and the NIST Cyber Security Framework (especially SP800-30 and SP800-53) (Desirable) Familiarity with UK nuclear regulations such as the ONR SyAPs (Desirable) Familiarity with the AtkinsRéalis corporate ...

with senior decision-makers A robust understanding of modern cyber threats and the application of recognised security standards and best-practice controls - ISO 27001, NIST CSF, CIS Controls, GDPR etc Hands-on exposure to risks arising from cloud adoption, digital platforms and the protection of identities and sensitive data Awareness … better way for us to communicate, please do let us know. Security, Cyber, Risk, Compliance, Governance, Advisory, Consulting, Consultant, Roadmaps, Incidents, 27001, NIST CSF, PCI DSS, GDPR, SOC2, CIS, CISSP, CISM, Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus ...