251 to 275 of 312 NIST Jobs in the UK

security and compliance programs. As a fast‐growing startup, we specialize in a wide range of frameworks—including SOC 2, ISO 27001, GDPR, CMMC, NIST 800-171, NIST 800-53, and FedRAMP—empowering companies to meet regulatory requirements and enhance their cybersecurity posture from day one. The Opportunity … complex accounts, and deliver an outstanding client experience — while also bringing deep expertise in cybersecurity compliance frameworks such as SOC 2, ISO 27001, and NIST CSF. The successful candidate will be able to come up to speed quickly, integrate into the organization, and take on clients within your first ...

maintaining quality and managing stakeholder expectations.* Willingness and flexibility to travel throughout the UK (and occasionally overseas) as required.* Relevant professional certifications (e.g., ISO27000, NIST Cyber Security Professional, CISMP, CISM, CISSP, CCSP, Chartered Cyber Security Professional) are highly desirable. Solid understanding of ‘Secure by Design’ methodology. Commitment to ongoing professional … and help them deploy that technology in live OT/ICS environments. Familiarity with OT cyber security standards or regulatory frameworks (e.g., IEC 62443, NIST CSF, NIS Regulations, HSE OG-0086).* Relevant OT cyber security qualifications (e.g., GICSP, IEC/ISA 62443). Membership of recognised security professional bodies ...

techniques Experience of security governance and compliance, ideally gained in financial services organisations Demonstrable understanding of Information Security control standards and frameworks e.g. ISO27001, NIST, PCI DSS Awareness and understanding of the Information Security threat landscape Deep understanding of Information Security solutions and controls Experience of Cloud security solutions and … standards is highly advantageous Competence, knowledge, and skills Competence Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. 5 years experience in an Information Security role gained in a financial services or e-commerce environment is preferred Knowledge & Skills Excellent communicator, able to translate ...

support Manage vulnerability scanning and remediation tracking across infrastructure and cloud (Azure desirable) Support secure configuration, security best practices, and alignment to ISO27001 and NIST Contribute to security documentation (policies, SOPs, playbooks) and continuous improvement of controls Support BAU operations, projects, and penetration testing activities as required Key Requirements of … Rapid7 (or similar technologies) Experience supporting cloud environments, ideally Azure, within a security operations context Strong understanding of security frameworks such as ISO27001 and NIST Experience across both BAU security operations and project delivery Strong incident response experience, including investigation, escalation, and root cause analysis Ability to produce clear technical ...

external auditors as appropriate to assess the standard of information and IT security across Robertson to meet the requirements of ISO 27001, PCI DSS, NIST 800-53 and Cyber Essentials Plus. Answer security questionnaires, assist in bid responses and develop cyber security plans as part of contract execution. Work with … record of delivering cost effective solutions to protect corporate assets and experience of achieving compliance against industry security standards such as ISO27001, PCI‐DSS, NIST 800 Series. Demonstrable experience in Security Risk management. Leadership experience with ability to mentor a team and to drive IT, Information and Cybersecurity awareness across ...

happy to discuss flexible working! Top 3 skills needed for this role: Information Security Governance & Risk Leadership Regulatory & Framework Expertise (ISO27001, GDPR, NIST) Stakeholder Communication & Security Culture Influence What this role is all about: As our Senior Information Security Officer, youll drive a business-wide security agenda, shaping … Information Risk management in alignment with the Enterprise Risk Framework Act as a trusted advisor on regulatory requirements and best-practice frameworks (ISO27001, GDPR, NIST, ITIL), protecting the confidentiality, integrity and availability of systems Lead security governance forums and manage the Information Security Governance team, including the Information Risk function ...

assessments, configuration reviews, and audits of AWS environments to identify vulnerabilities and recommend remediation. Implement and maintain AWS security controls aligned to ISO 27001, NIST and cloud security best practices. Proficiency in building/configuring SOAR platforms such as Shuffler and Tracecat. Develop security automation tooling, scripts, and infrastructure … and related cloud native controls. Practical experience with scripting (Python preferred) and Infrastructure as Code tooling such as Terraform. Solid understanding of ISO 27001 , NIST CSF , and cloud security best practices. Familiarity with commonly used open‐source security testing tools (e.g., BurpSuite, ZAP, Nikto, Metasploit, SQLmap). Behaviours & Mindset Highly ...

security role Strong experience in secure software design and high integrity systems Knowledge of MOD Secure by Design processes (ISN2023/09) Experience with NIST SP 800-30, 37, 53 and supply chain risk management (NIST 800-161) Experience with Def Stan 05-138/05-139 and aviation security … this is required before a start date can be confirmed. Keywords: Cyber Security Consultant, Secure by Design, Defence Cyber Security, Aviation Security, CISSP, CISM, NIST, MOD, Security Architect, Information Security Consultant, RTCA DO-326A, Def Stan, Threat Modelling, Risk Assessment. Meridian Business Support is a recruitment specialist acting on behalf ...

talent. Encourage knowledge‐sharing, continuous learning, and succession planning. Security & Compliance Ensure IT security controls align with recognised frameworks (ISO 27001, Cyber Essentials, NIST). Own or support IT audits and certification processes. Ensure compliance with data protection and licensing requirements. Support health & safety compliance, including DSE standards. Promote security … with IT asset management and lifecycle processes. Experience managing IT budgets, vendors, and contracts. Strong understanding of IT security frameworks (ISO 27001, Cyber Essentials, NIST). Experience supporting audits and certification processes. Familiarity with Google Workspace, Azure, AWS and endpoint management/MDM solutions. Design, implement, and manage network infrastructure ...

Strong knowledge of information security risk management techniques Experience of governance, risk and compliance, ideally in financial services Knowledge of frameworks such as ISO27001, NIST, PCI DSS Awareness of the threat landscape and modern security controls Strong understanding of cloud security solutions and standards Skills and experience Experience working within … recognised security frameworks (e.g. ISO27001, NIST) Ideally 5+ years’ experience in an information security role within financial services or e-commerce Strong understanding of core IT and networking concepts Excellent communication skills, with the ability to translate technical topics for non-technical audiences High attention to detail and strong ownership ...

and reference designs that engineering teams can implement. Enhance governance and compliance by aligning solutions and controls to various frameworks and standards such as NIST 800, ISO 27001 and NIS2. Support client workshops, design reviews and technical discussions. Contribute to internal knowledge sharing, reusable assets and capability development within … of: Network and cloud fundamentals Identity and access management concepts Secure system design principles Working knowledge of any cybersecurity framework or standard such as NIST or ISO 27001. Experience using architecture and design tools. Willingness to travel for client delivery (domestic and international as required). Ideally, You’ll Also ...

guidance to ensure security risks are understood, managed and remediated in line with organisational risk appetite and recognised best practice frameworks (e.g. ISO 27001, NIST, CIS Controls). Key Responsibilities Deliver security risk identification, assessment, analysis and logging activities, ensuring risks are clearly articulated, consistently scored and recorded in approved … and non-technical audiences. Experience working collaboratively with multidisciplinary teams across business and technology functions. Familiarity with recognised security frameworks and standards (ISO 27001, NIST, CIS Controls). Highly organised with strong attention to detail and a commitment to high-quality, auditable documentation. Candidates must hold government security vetting ...

cyber security audits, ensuring compliance with regulatory and industry standards. Develop and maintain risk management frameworks, aligning with best practices such as ISO 27001, NIST, and GDPR. Collaborate with stakeholders to identify and mitigate cyber risks across digital and operational infrastructures. Provide expert guidance on cyber risk governance, resilience, and … Other essential skills Proven experience in cyber security risk management and audit, ideally within regulated industries Strong knowledge of security frameworks, including ISO 27001, NIST, CIS Controls, and GDPR compliance Ability to conduct security assessments, risk analyses, and internal audits Familiarity with security tooling and governance platforms (e.g., SIEM ...

/Kubernetes). Compliance & Frameworks: Ensure the platform is built to be PCI DSS compliant, utilizing frameworks such as ISO 27001/2 and NIST CSF . Risk Orchestration: Help translate complex technical risks into business-relevant terms for stakeholders, ensuring all risks are logged, understood, and mitigated. Assurance: Assist … least 2 years of recent experience in mapping cyber controls and navigating complex project roadmaps. Framework Fluency: Deep understanding of ISO 27001/2 , NIST CSF , and PCI DSS . Cloud & Modern Engineering: A solid grasp of cloud implementations (AWS preferred) and secure development lifecycle principles. Stakeholder Mastery: The ability ...

practice. The role You will be responsible for: Delivering risk assessments, gap analyses and maturity reviews Advising clients on frameworks such as Cyber Essentials, NIST, CIS and ISO 27001 Conducting vulnerability assessments and identifying areas of security risk Supporting the implementation of security improvements across areas such … ideal candidate will have: Experience in a cyber security consultancy or client-facing advisory role Strong knowledge of GRC frameworks , including ISO 27001, NIST, CIS and Cyber Essentials Plus Experience delivering security assessments, control reviews and remediation plans A good understanding of technical security across infrastructure, cloud and SaaS environments ...

procedures, and controls * Work alongside Infrastructure and Technical Services teams to improve security across the estate * Support compliance activities aligned to ISO27001, GDPR, and NIST frameworks * Conduct security awareness initiatives including phishing simulations and end-user training * Maintain and improve endpoint protection, IDS/IPS, EDR, XDR, and MDR solutions … management platforms * Strong understanding of EDR, XDR, MDR, IDS/IPS technologies * Good knowledge of Microsoft security technologies and infrastructure environments * Understanding of ISO27001, NIST, GDPR, and security best practices * Experience investigating security incidents and producing clear documentation * Full UK driving licence Desirable: * CompTIA Security+ * CISSP Associate * Microsoft certifications * Experience ...

risk assessment activities across cloud workloads, identifying security gaps and providing actionable remediation guidance. Ensure adherence to relevant security frameworks including NCSC Cyber Essentials, NIST, ISO 27001, and the Government Security Classification (GSC) policy. Engage with technical and non-technical stakeholders to communicate security requirements, influence design decisions, and support … across AWS and/or Azure cloud platforms, including IAM, network segmentation, and data protection controls. Strong working knowledge of security frameworks such as NIST CSF, ISO 27001, NCSC guidance, and experience applying these within regulated or public sector environments. Ability to produce high quality security design documentation and architecture ...

and delivery effort. Generate, iterate and maintain threat models and cyber risk assessments throughout the project lifecycle, using appropriate frameworks and methods such as NIST RMF. Identify and define proportionate risk treatments by applying suitable security baselines, including NIST RMF and IEC 62443, where appropriate. Generate, manage and track security … bids. Practical experience producing threat models and cyber risk assessments across the full project lifecycle. Knowledge of risk management approaches and frameworks such as NIST RMF. Knowledge of security baselines and control frameworks such as NIST, IEC 62443 or equivalent. Ability to define, manage and track cybersecurity requirements. Understanding of ...

risk trends, control effectiveness, and emerging threats, providing insights to senior stakeholders Support compliance programmes, ensuring adherence to regulatory and industry standards (e.g. ISO27001, NIST CSF) Coordinate internal and external audits, including evidence gathering and action tracking Contribute to governance policies, standards, and procedures development and review Produce clear governance … Analyst: 4–5 years’ experience in governance, risk, or compliance roles within regulated or critical environments Strong understanding of frameworks such as ISO27001 and NIST CSF Experience supporting audits, compliance reporting, and evidence management Ability to interpret regulatory requirements into practical controls and processes Excellent communication and stakeholder engagement skills ...

security audit, the organisation is now focused on implementing a series of security recommendations as part of a wider security improvement programme aligned to NIST and ISO27001 frameworks. This role will be instrumental in delivering those improvements and helping shape the future security architecture and governance standards across the business. … Sentinel Microsoft Purview Strong understanding of cloud security best practices and security frameworks Experience implementing security controls following audits or gap assessments Knowledge of NIST and/or ISO27001 Experience with: Conditional Access, Identity & Access Management (IAM), Privileged Access, Management (PAM), SIEM, monitoring, Endpoint security Key Responsibilities of the Cloud ...

security audit, the organisation is now focused on implementing a series of security recommendations as part of a wider security improvement programme aligned to NIST and ISO27001 frameworks. This role will be instrumental in delivering those improvements and helping shape the future security architecture and governance standards across the business. … Sentinel Microsoft Purview Strong understanding of cloud security best practices and security frameworks Experience implementing security controls following audits or gap assessments Knowledge of NIST and/or ISO27001 Experience with: Conditional Access, Identity & Access Management (IAM), Privileged Access, Management (PAM), SIEM, monitoring, Endpoint security Key Responsibilities of the Cloud ...

engagements, including opportunity qualification, solution design, and client presentations. Develop and maintain governance and compliance documentation, ensuring adherence to standards such as ISO 27001, NIST, GDPR, NIS2, and UK regulations. Provide technical input for bids, including cost modelling, risk assessments, and solution architecture clarification through workshops and scoping sessions. … have built a representative and welcoming environment, for everyone. Your skills and experience Strong knowledge of cyber security principles and compliance frameworks (ISO 27001, NIST, GDPR, NIS2, ISA/IEC 62443). Experience in solution design for complex IT/security projects, including bid management and cost modelling in regulated ...

frameworks such as GovAssure, JSP 604 and support the client in securing Authority to Operate status. Implement and manage security risk processes such as NIST RMF, producing assurance and risk artefacts, and embedding a culture of continuous risk management. Collaborate with clients to understand their security needs, provide solution advice … trusted advisor, and shape solutions that embed Secure by Design principles from inception. Lead security maturity assessments against ISO 27001, NIST CSF, DevSecOps practices and deliver remediation roadmaps to uplift client cyber resilience and support external audit requirements. Job Benefits We are always listening to our growing teams and evolving ...

frameworks such as GovAssure, JSP 604 and support the client in securing Authority to Operate status. Implement and manage security risk processes such as NIST RMF, producing assurance and risk artefacts, and embedding a culture of continuous risk management. Collaborate with clients to understand their security needs, provide solution advice … trusted advisor, and shape solutions that embed Secure by Design principles from inception. Lead security maturity assessments against ISO 27001, NIST CSF, DevSecOps practices and deliver remediation roadmaps to uplift client cyber resilience and support external audit requirements. Job Benefits We are always listening to our growing teams and evolving ...

frameworks such as GovAssure, JSP 604 and support the client in securing Authority to Operate status. Implement and manage security risk processes such as NIST RMF, producing assurance and risk artefacts, and embedding a culture of continuous risk management. Collaborate with clients to understand their security needs, provide solution advice … trusted advisor, and shape solutions that embed Secure by Design principles from inception. Lead security maturity assessments against ISO 27001, NIST CSF, DevSecOps practices and deliver remediation roadmaps to uplift client cyber resilience and support external audit requirements. Job Benefits We are always listening to our growing teams and evolving ...