19 of 19 NIST Jobs in Lancashire

CISSP, CIPM, or equivalent preferred. Strong knowledge of global data protection laws (e.g., GDPR, CCPA) and IT compliance frameworks (e.g., ISO 27001, SOC 2, NIST). Proven experience in IT compliance, risk management, or data governance roles. Excellent understanding of IT infrastructure, cyber security principles, and data life-cycle management. ...

and change environments Ability to translate security risks into clear, business-focused language Strong stakeholder and vendor management skills Desirable Experience with ISO 27001, NIST, or similar frameworks Knowledge of cloud security (AWS, Azure, or GCP) Relevant certifications (e.g. CISSP, CISM, ISO 27001 Lead Implementer ...

cybersecurity, risk management, GRC (governance, risk & compliance) or supply-chain risk management. Familiarity with third-party/vendor risk management platforms and frameworks (e.g., NIST, ISO 27001, SOC2, supply-chain risk standards). Understanding of machine-learning/AI concepts (e.g., risk-scoring models, graph analytics, anomaly detection). Experience ...

detection and response for network and perimeter security incidents and perform continuous review of exposure. Ensure alignment with regulatory and security frameworks (ISO 27001, NIST, FCA/PRA) and maintain architecture documentation and runbooks. Qualifications What we’d love you to bring: Strong hands-on experience with AWS and Azure ...

Support security risk assessments, threat modelling, and mitigation planning Ensure compliance with MOD security policies and frameworks including JSP 440, JSP 604, ISO 27001, NIST Contribute to accreditation and assurance activities, including security documentation and evidence packs Review system designs, architectures, and operational processes from an information security perspective Work ...

system designs, solutions, and integrations Conduct threat modelling, risk assessments, and security design reviews Ensure compliance with relevant frameworks including JSP 440, JSP 604, NIST, ISO 27001, and MOD security policies Work closely with enterprise architects, solution architects, and engineering teams Support accreditation and assurance activities, including engagement with ...

holding Active MOD DV clearance (must be current) Desirable (Not Essential) Experience supporting security accreditation or assurance activities Familiarity with MOD standards (e.g. JSPs, NIST, ISO 27001) PRINCE2/Agile/MSP (useful but not mandatory) Technical background in cyber, infrastructure, or secure systems Additional Notes No remote working - onsite ...

vulnerabilities. Work with auditors to and supply evidence as required. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Mentoring and support for other members of … Azure AD, GSuite etc.) Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have a good understanding of Access Controls and Identity Lifecycle ...

vulnerabilities. Work with auditors to and supply evidence as required. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Mentoring and support for other members of … Azure AD, GSuite etc.) Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have a good understanding of Access Controls and Identity Lifecycle ...

vulnerabilities. Work with auditors to and supply evidence as required. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Mentoring and support for other members of … Azure AD, GSuite etc.) Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have a good understanding of Access Controls and Identity Lifecycle ...

vulnerabilities. Work with auditors to and supply evidence as required. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Mentoring and support for other members of … Azure AD, GSuite etc.) Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have a good understanding of Access Controls and Identity Lifecycle ...

vulnerabilities. Work with auditors to and supply evidence as required. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Mentoring and support for other members of … Azure AD, GSuite etc.) Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have a good understanding of Access Controls and Identity Lifecycle ...

vulnerabilities. Work with auditors to and supply evidence as required. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Mentoring and support for other members of … Azure AD, GSuite etc.) Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have a good understanding of Access Controls and Identity Lifecycle ...

vulnerabilities. Work with auditors to and supply evidence as required. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Mentoring and support for other members of … Azure AD, GSuite etc.) Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have a good understanding of Access Controls and Identity Lifecycle ...

vulnerabilities. Work with auditors to and supply evidence as required. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Mentoring and support for other members of … Azure AD, GSuite etc.) Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have a good understanding of Access Controls and Identity Lifecycle ...

vulnerabilities. Work with auditors to and supply evidence as required. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Mentoring and support for other members of … Azure AD, GSuite etc.) Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have a good understanding of Access Controls and Identity Lifecycle ...

vulnerabilities. Work with auditors to and supply evidence as required. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Mentoring and support for other members of … Azure AD, GSuite etc.) Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have a good understanding of Access Controls and Identity Lifecycle ...

responsible for shaping and enhancing IT and infosec risk and control frameworks , working with standards such as ISO 27001, ITIL, ISO 22301 and NIST to ensure alignment with regulatory expectations and business priorities. The role also includes ownership of IT Risk & Control Matrices (RCMs) , ensuring they remain robust … programmes Proven experience leading IT risk or audit initiatives, managing deliverables and influencing outcomes Strong understanding of recognised frameworks and regulations, including ISO 27001, NIST, CIS Controls and GDPR Confident stakeholder manager, able to build credibility and challenge effectively across IT, security and the wider business This is a hybrid ...

Azure Security Engineer responsible for designing and deploying secure, compliant Azure platforms in highly regulated environments, aligned to NIST 800-53 or similar standards. The role focuses on security-by-design implementation across core Azure services, networking, identity, and automation using Terraform and CI/CD pipelines A fast-growing … highly regulated, mission critical environments.? Why this role You will own the secure design and deployment of Azure services in environments governed by NIST 800-53 (or ISO 27001, MITRE, SOC2 similar standards), embedding "security by design" into everything you deliver. Partnering closely with engineering, security, and compliance teams ...