5 of 5 NIST Jobs in Glasgow

Fractional heads and virtual support • NCSC Assurance service provider for Cyber Essentials and a Certifying Body • Security auditing across varying standards such as ISO27001, NIST, PCI DSS and Cyber Essentials • Training and awareness If you’re a proven Penetration Testing Team Leader with CHECK TL status, a passion for advancing ...

Fractional heads and virtual support • NCSC Assurance service provider for Cyber Essentials and a Certifying Body • Security auditing across varying standards such as ISO27001, NIST, PCI DSS and Cyber Essentials • Training and awareness If you're a proven Penetration Testing Team Leader with CHECK TL status, a passion for advancing ...

experience in cyber security governance or enterprise security risk leadership within a complex environment. ** Strong knowledge of recognised frameworks such as ISO 2700 and NIST CSF ** Ability to engage and influence senior global stakeholders, translating technical risk into business-relevant insight. ** Experience assessing emerging risks, ideally including exposure ...

Glasgow. Key Responsibilities: * Establish, implement, and maintain cyber security governance frameworks, policies, and controls aligned with recognised international standards, including ISO 27001 and the NIST Cybersecurity Framework. * Own and evolve the cyber security risk management strategy to enable proactive identification, assessment, and mitigation of cyber risks. * Lead cyber security risk … assessment activities, applying the Enterprise Risk Management Framework, Information Security Management System (ISMS), and NIST risk management practices. * Partner with senior leaders and cross-functional teams to embed cyber security considerations into business processes and decision-making. * Work closely with procurement teams to identify, assess, and manage cyber security risks ...

Advanced specialist knowledge of vulnerabilities identified against infrastructure, web applications or code, how to apply this knowledge to vulnerability scoring and risk frameworks (CVSS, NIST) and have a proven ability to communicate vulnerabilities and risk in plain language to stakeholders, including escalations for critical or high-risk findings. A track … and provide accurate risk & environmental context. Understanding of patching cycles, route to live, secure configuration, and system hardening to industry standards (CIS, STIG, DISA, NIST) ensuring policy compliance and benchmarked builds. Ability to identify improvements (scanning, reporting, dashboards, workflows and tooling) and have a strong curiosity about emerging vulnerabilities, threat ...