12 of 12 NIST Jobs in Nottinghamshire

credentials (e.g., AWS Security, Microsoft SC-200). Experience with security tools and platforms (e.g., SIEM, DLP, vulnerability scanners). Familiarity with regulatory and compliance frameworks (e.g., ISO 27001, NIST, GDPR). Our benefits Boots Retirement Savings Plan Discretionary annual bonus Generous employee discounts Enhanced maternity/paternity/adoption leave pay and gift card for anyone expecting or adopting More ❯

knowledge of security technologies, risk assessment, and vulnerability management. Hands-on experience with security monitoring tools and incident response. Familiarity with compliance standards such as ISO 27001, GDPR, and NIST frameworks. Strong analytical skills with meticulous attention to detail. Excellent communication skills, with an ability to explain technical matters to non-technical stakeholders. #J-18808-Ljbffr More ❯

with specific experience in testing cloud security controls. Professional certification such as CISA, CISM, CISSP, ISO 27001 Lead Auditor, or equivalent. Knowledge of industry standards and frameworks such as NIST 800-53, ISO 27001/27002, CIS Controls, COBIT. Experience with current automated and manual industry methods for evaluating security controls on Perm and in cloud environments. Capable of communicating More ❯

or both) of the following domains: Operational Resilience - Shaping and/or transforming client operational resilience capabilities in compliance with leading regulatory standards (e.g., DORA, Bank of England, FCA, NIST, etc.). Cybersecurity Operating Model Transformation - Assessing, designing and implementing effective and outcome-oriented security operating models. Key expectations from this role include: Engaging in projects for our clients which … Security). Desired Cybersecurity experience includes: Working with SOC teams, OT Security, Security Op Model Transformation projects and Cybersecurity Assessments. Familiarity with core Cybersecurity frameworks and industry regulations (e.g., NIST CSF, ISO27001, CIS Critical Controls, NIS2, DORA, FCA, Bank of England). Relevant Cybersecurity qualifications such as CISSP/CISM/CompTIA Security+ preferred. Currently working in an established Consulting More ❯

ISAE 3000 frameworks within a Global Company. Strong solid understanding of information security compliance frameworks, standards, such as ISO 27001, 9001, 22301, SOC 1 or 2, PCI DSS 4.0, NIST, Swift and Cyber Essentials Plus ensuring continued certification and attestation. Superb communication, analytical, and problem-solving skills. High attention to detail and accuracy. Ability to work independently and cross-functionally More ❯

call and overtime if there are very serious cyber attacks. Location in the UK is flexible. Responsibilities: Help build Element’s IR capability. Implement best practice in line with NIST, SANS and other industry frameworks Govern and coordinate cyber incidents. Act as the lead incident manager and technical authority for Cyber Defence. Conduct thorough investigations to reduce risk. Determine the More ❯

Control concepts, tools, and technologies (e.g., whitelisting, blacklisting, application allowlisting). Experience in configuring and managing Application Control solutions in enterprise environments preferred. Understanding of security frameworks such as NIST, CIS Controls, or ISO 27001. Formal industry recognised Cyber Security qualification such as ISC2 CISSP, ISC2 CISM or Certified Ethical Hacker (CEH) (desired). Security and Network technology experience. The More ❯

and non-technical stakeholders. Experience of evaluating security policies, procedures, and controls to ensure they are effective and up-to-date. Understanding of cyber security frameworks such as ISO27001, NIST and NCSC CAF. Professional security certification such as CISSP, CISM, CEH or OSCP. Knowing we’re right for you Embracing uniqueness, the culture at Grant Thornton thrives on the contributions More ❯

Deep hands-on experience with Microsoft Security technologies. Proven track record in automation, Gen AI, or vulnerability management (especially Qualys). Strong grasp of security frameworks (MITRE ATT&CK, NIST, ISO 27001). Strategic mindset with the ability to communicate clearly across technical and non-technical audiences. A passion for innovation, mentoring, and staying ahead of the curve. What can More ❯

maintain compliance. To be considered for this role, you should have Proven experience in a senior Information Security leadership role. Strong knowledge of security frameworks such as ISO 27001, NIST, GDPR, and other compliance standards. Expertise in risk management, governance, and security architecture. Hands-on experience in designing and implementing security policies and strategies. Strong stakeholder management and the ability More ❯

them in meeting their compliance obligations and managing risks across the business and its subsidiaries. Key Skills: Strong knowledge of regulations and standards (e.g., GDPR, PECR, HIPAA, PCI, SOC2, NIST, DORA, ISO27001), with experience in implementation and monitoring. Building frameworks. Setting up controls and policies. Building best practices for each territory (multi-country). Key Responsibilities: Design and implement governance … similar. Experience managing risk frameworks across multiple regions and entities, including risk appetite calibration and impact assessment. Strong knowledge of regulations and standards (e.g., GDPR, PECR, HIPAA, PCI, SOC2, NIST, DORA, ISO27001), with experience in implementation and monitoring. Excellent communication skills, capable of presenting complex concepts clearly to senior stakeholders. Ability to work independently and as part of a collaborative More ❯

certifications or experience Extensive experience in technology and operations, preferably within the financial services or banking industry. Good understanding of security protocols and compliance standards (e.g., PCI-DSS, CIS, NIST). Experience in a Data Centre Operations or other similar critical operations role. Strong and demonstrable process management and development experience in a live operational environment. Extensive real time Incident More ❯