1 to 25 of 226 NIST Jobs in the UK excluding London

strong MOD stakeholder exposure. Experience with Sparx Enterprise Architect, ArchiMate, NAFv4 or similar modelling approaches. Knowledge of Joint Service Publications, NCSC guidance, ISO27001, NIST, CIS or related security frameworks. Experience across IAM, PKI, secure integration, cloud security, data flows and security architecture patterns. Experience reviewing HLDs, LLDs, current-state and ...

point security tools and data loss prevention controls are highly advantageous Skills and experience Experience working within recognised information security frameworks (e.g. ISO27001, NIST) Proven experience in an information security role, preferably within financial services or e-commerce Strong analytical capability, with the ability to interpret data and support decision ...

experience in Project Management with a background delivering on Cyber Security projects. Strong understanding of cyber security frameworks and standards such as ISO 27001, NIST, CIS Controls, and Cyber Essentials. Experience delivering consultancy engagements directly to clients. Knowledge of risk assessment methodologies and security maturity reviews. Excellent stakeholder management and ...

Information Security Strong experience with SIEM, EDR/XDR, IDS/IPS and firewalls Good understanding of Microsoft Azure security technologies Knowledge of NIST, ISO27001 and CIS Controls Experience in incident response, vulnerability management and threat intelligence Relevant certifications such as CISSP, CISM, GIAC or Security+ Soft skills: Strong analytical ...

Lead experience MOD/GDS Secure by Design Familiarity with: JSP440, JSP604/453, JSP490 Supplier Chain Assurance GDPR, PCI DSS, ICO ISO 27001, NIST CSF, CIS Controls v8 Skills in: Threat modelling (kill chain, attack trees, etc.) Cloud security (AWS, Azure), containerisation, firewalls Secure SDLC HLD/LLD review ...

and security gap analyses across infrastructure and application layers Define and enforce security standards, reference architectures, and policy controls aligned with frameworks such as NIST, ISO/IEC 27001, and CIS Evaluate, select, and integrate security technologies including: Identity and Access Management (IAM) Security Information and Event Management (SIEM) Endpoint ...

proven experience gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF ...

and the wider estate are sufficiently tested for signs of vulnerability. Governance, Risk & Compliance (GRC) Ensure audit readiness, control effectiveness (key SOX/ITGC, NIST/ISO mappings), and remediation governance; lead policy lifecycle and attestations. Oversee the enterprise risk process (RCSA, KRIs), executive reporting, and board risk briefings. Improve ...

Lead beneficial MOD/GDS Secure by Design Familiarity with JSP440, JSP604/453, JSP490, Supplier Chain Assurance, GDPR, PCI DSS, ICO, ISO 27001, NIST CSF, CIS Controls v8 Certifications (Desirable) CIISEC UK Cyber Security Council registration (Chartered or Principal) AWS/Azure Security (Professional) CCSP, CISSP, CISM ...

strong professional development opportunities. Skills Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and ...

teams in remote environments Desirable Experience Experience supporting government or critical national infrastructure environments Knowledge of NCSC guidance, Secure by Design principles, ISO 27001, NIST or JSP standards Experience delivering maturity assessments or audit activities Professional certifications such as CISSP, CISM, ISO 27001 Lead Auditor, CCP or equivalent SC clearance ...

SIEM, EDR/XDR, and incident response workflows Experience with scripting or automation using Python, PowerShell, or similar Knowledge of security frameworks such as NIST, ISO 27001, SOC 2, or CIS Strong problem-solving mindset with the ability to operate across multiple security domains Experience within regulated or financial environments ...

SIEM, EDR/XDR, and incident response workflows Experience with scripting or automation using Python, PowerShell, or similar Knowledge of security frameworks such as NIST, ISO 27001, SOC 2, or CIS Strong problem-solving mindset with the ability to operate across multiple security domains Experience within regulated or financial environments ...

including Product Defense in Depth, security technology, regulatory compliance and incident response Domain specific standards and approaches on privacy and product security (ISO 2700x, NIST 800 Series Special Publications) Knowledgeable and experience with laws and regulations on cyber security, privacy, data protection and breach notification (e.g.: FDA cyber security guidelines ...

Microsoft Defender XDR technologies Threat Hunting experience Detection Engineering Security Automation Vulnerability Assessment platforms such as Qualys Knowledge of MITRE ATT&CK Exposure to NIST, ISO27001 or CIS Controls Experience supporting regulated environments Why Apply? This organisation is a recognised international technology and cyber security provider supporting customers globally. ...

Microsoft Defender XDR technologies Threat Hunting experience Detection Engineering Security Automation Vulnerability Assessment platforms such as Qualys Knowledge of MITRE ATT&CK Exposure to NIST, ISO27001 or CIS Controls Experience supporting regulated environments Why Apply? This organisation is a recognised international technology and cyber security provider supporting customers globally. ...

/XDR solutions, firewalls, IDS/IPS Strong knowledge of Microsoft Azure cloud security technologies and concepts Familiar with cybersecurity frameworks such as NIST CSF, ISO27001, CIS Controls This is a great opportunity and salary is dependent upon experience. Apply now for more details... ...

interpret penetration test results Security Tools – SIEM, SOAR, EDR, UTM Cloud Security – Understanding of AWS, Azure, etc. Security Frameworks – Knowledge of MITRE ATT&CK, NIST, etc. Consulting Skills Risk management, strategic planning, problem‐solving and project management Building and maintaining trusted client relationships Providing guidance, training and mentorship ...

with SIEM (e.g., Arctic Wolf), Fortinet firewalls, Nessus, and vulnerability remediation. Experience working with SOC teams and supplier security assessments. Familiarity with CAF, CE+, NIST, CIS Controls, ISO 27001. Understanding of healthcare data protection, ideally NHS/UK standards. Strong incident response, analytical, and problem-solving skills. Knowledge of ...

public sector and Defence clients * Support secure-by-design initiatives and threat modelling activities * Advise on regulatory and compliance frameworks including ISO 27001, NIST, GDPR, and PCI-DSS * Identify vulnerabilities and communicate security risks and mitigation strategies to technical and non-technical stakeholders * Contribute to innovation, research, and continuous improvement ...

develop a small regional security team. Strong background within Information Security, Cyber Risk, or Technology Risk in financial services. Experience with frameworks such as NIST, ISO27001, COBIT, SOX, and FFIEC. Good understanding of cloud security, GDPR, IAM/PAM, SIEM, vulnerability management, and network security. CISSP, CISM, CRISC, or similar ...

operations automation. Awareness of emerging AI-driven attack techniques, including adversarial AI and automated exploitation methods. Familiarity with security frameworks and standards such as NIST, CIS, ISO 27001, and GDPR. Strong analytical thinking with a structured, risk-based approach. Excellent communication skills with the ability to translate technical and ...

including Product Defense in Depth, security technology, regulatory compliance and incident response Domain specific standards and approaches on privacy and product security (ISO 2700x, NIST 800 Series Special Publications) Knowledgeable and experience with laws and regulations on cyber security, privacy, data protection and breach notification (e.g. FDA cyber security guidelines ...

including Product Defense in Depth, security technology, regulatory compliance and incident response Domain specific standards and approaches on privacy and product security (ISO 2700x, NIST 800 Series Special Publications) Knowledgeable and experience with laws and regulations on cyber security, privacy, data protection and breach notification (e.g.: FDA cyber security guidelines ...

financial services industry. Experience in developing and implementing information security governance frameworks. Strong understanding of information security standards and frameworks such as ISO 27001, NIST Cybersecurity Framework or CIS Controls . Good knowledge of UK regulatory expectations related to cyber security, operational resilience and outsourcing risk. Understanding of banking ...