276 to 300 of 312 NIST Jobs in the UK

frameworks such as GovAssure, JSP 604 and support the client in securing Authority to Operate status. Implement and manage security risk processes such as NIST RMF, producing assurance and risk artefacts, and embedding a culture of continuous risk management. Collaborate with clients to understand their security needs, provide solution advice … trusted advisor, and shape solutions that embed Secure by Design principles from inception. Lead security maturity assessments against ISO 27001, NIST CSF, DevSecOps practices and deliver remediation roadmaps to uplift client cyber resilience and support external audit requirements. Job Benefits We are always listening to our growing teams and evolving ...

deliver continue to expand, including the use of common tooling that will facilitate the tracking and reporting of assurance actions. We are also developing NIST compliant risk assessment methodology and tooling that is raising our quality and customer confidence, you will be part of these developments. The role in PITSM … CIA+S), with practical risk management experience Experience in assurance processes for secure/sensitive systems using structured risk analysis Continuous assurance through implementation of NIST-based Information Security Management System (ISMS) controls and processes. Evaluating responses to security requirements for systems Maintaining security documentation sets (SyOPS, RMADs, Security Management Plans ...

Cheshire The opportunity Our client, a large UK-based multi-site enterprise, is delivering a multi-year cybersecurity, controls and resilience programme aligned to NIST CSF v2.0 and ISO/IEC 27001:2022. They require an experienced, hands-on Infrastructure Engineer to design, implement and uplift infrastructure controls translating cyber … across on-premise, cloud and hybrid environments. Remediate security findings arising from audits, risk assessments and maturity reviews. Engineer and embed technical controls supporting NIST CSF and ISO/IEC 27001 objectives. Support security tooling integration (SIEM log sources, EDR/XDR dependencies, vulnerability tooling). Enable and validate security ...

Privacy Manager/Senior Manager - Cyber Strategy & Transformation Overview Data privacy is a critical business priority and a key enabler for organisations seeking to grow in increasingly data-driven environments. This role focuses on shaping ...

Senior Cyber Security Engineer Glasgow or London | Hybrid | 12-Month Fixed-Term Contract Competitive Salary + Benefits| No Sponsorship Available VIQU have partnered with an established professional services organisation undergoing a significant cloud transformation programme. ...

Senior Cyber Security Engineer Glasgow or London | Hybrid | 12-Month Fixed-Term Contract Competitive Salary + Benefits| No Sponsorship Available VIQU have partnered with an established professional services organisation undergoing a significant cloud transformation programme. ...

security direction and guidance as required. This role requires someone with HMG or MOD experience and knowledge and experience in ISO 27001, GDPR and NIST CSF. Line Management Line management of a small team of three: Security Vetting Coordinator, Information Controller and Compliance Digital Project Manager. Interface Regular Interface with … English is desirable. Experience Experience as a security manager or security controller. Knowledge of HMG/MOD security framework, policy and controls (CE+, DefStan, NIST). FSC, IPSA, ISO27001 knowledge is desirable. Knowledge of risk management methodologies and practical experience of applications. Excellent working knowledge of Microsoft 365, including Word ...

Management: Establish robust cyber security governance frameworks tailored to OT environments. Spearhead comprehensive security risk assessments and gap analyses using industry frameworks such as NIST CSF and IEC 62443. Based on these assessments, identify the most cost-effective security controls in line with the client’s risk appetite, balancing risk … industrial control systems and SCADA environments is expected.* Standards & Regulatory Knowledge: Strong familiarity with OT security standards and frameworks such as IEC 62443 and NIST CSF, and with relevant regulations like the NIS Regulations and HSE OG-0086. Ability to apply these frameworks in practice and guide organisations through compliance ...

Managing relationships with third-party security providers and ensuring recommendations are delivered effectively Supporting compliance initiatives across standards including ISO 27001, SOC 2 and NIST Acting as an escalation point for significant security incidents when required Driving security awareness and embedding best practice across the wider organisation Supporting alignment of … scripting or automation experience using Python, Bash or similar tools Experience supporting audits, certifications and compliance frameworks including ISO 27001, SOC 2 and NIST Knowledge of security methodologies such as MITRE ATT&CK Excellent communication and stakeholder management skills Experience operating within high-growth or evolving organisations French language skills ...

work across a varied portfolio of programmes, supporting clients with governance, risk and compliance activities aligned to frameworks and standards including ISO 27001, NIST, CAF, Secure by Design, JSP440 and JSP604. The environment is fast‐moving, collaborative and highly consultative. Beyond delivery, you’ll also contribute to pre‐sales activity … Lead experience within MOD environments will be especially well suited. Key Experience Security assurance and accreditation within Defence environments JSP440/JSP604 ISO 27001, NIST, CAF and Secure by Design Cyber risk assessments and gap analysis Working across cloud, SaaS and traditional infrastructure Stakeholder engagement and consultancy delivery MOD Security ...

work across a varied portfolio of programmes, supporting clients with governance, risk and compliance activities aligned to frameworks and standards including ISO 27001, NIST, CAF, Secure by Design, JSP440 and JSP604. The environment is fast-moving, collaborative and highly consultative. Beyond delivery, you'll also contribute to pre-sales activity … Lead experience within MOD environments will be especially well suited. Key Experience: Security assurance and accreditation within Defence environments JSP440/JSP604 ISO 27001, NIST, CAF and Secure by Design Cyber risk assessments and gap analysis Working across cloud, SaaS and traditional infrastructure Stakeholder engagement and consultancy delivery MOD Security ...

experience of: Security assurance, working with JSP440, JSP604/453 Security accreditation Secure by design Implementing security standards and frameworks, such as ISO 27001, NIST 800 and CAF Conducting Cyber Security risk assessments and managing risk management activities Good knowledge of IT systems covering traditional infrastructure, cloud platforms and SaaS … security management/leadership position Working with various technical teams Conducting Cyber Security assessments and gap analysis against various frameworks. Qualifications We Look For: * NIST Foundation/Practitioner * CISM * CRISC * ISO 27001 Lead Implementer/Auditor * CISSP * CISMP In an ideal world, the client would like to get someone started ...

active role in shaping and maintaining security policies, standards, and operational procedures Help ensure ongoing alignment with key compliance requirements such as ISO 27001, NIST, and GDPR Deliver and support security awareness initiatives across the business, including phishing campaigns and user education Keep up to date with the evolving threat … attack methods, and core security principles Confident investigating security incidents and identifying opportunities for improvement Familiar with key compliance frameworks such as ISO 27001, NIST, and GDPR Able to communicate technical issues clearly to both technical and non-technical audiences Strong analytical thinking with a structured, problem-solving approach ...

serve as incident commander during security events of varying severity. You will contribute to the development and improvement of response methodologies aligned with the NIST Incident Response Lifecycle and help maintain cybersecurity incident response documentation. This position requires strong expertise in incident response, digital forensics, threat hunting, and security monitoring … actions Serve as incident commander during security events, directing investigation strategies and coordinating cross‐functional response efforts Execute incident response activities aligned with the NIST Incident Response Lifecycle to detect, contain, eradicate, recover, and learn from cybersecurity incidents Contribute to the maintenance and improvement of the Cybersecurity Incident Response Plan ...

across: Cloud security (Azure, AWS, GCP) Application security and OWASP Top 10 Identity and access management (IAM, MFA, PAM, Zero Trust) Security frameworks including NIST, ISO 27001, SOC 2, PCI-DSS, GDPR Support secure design discussions with architects and engineers Pipeline and commercial support Support qualification and shaping of early … Strong understanding of cyber security, cloud security, or enterprise security domains Experience working with Azure, AWS, or GCP Knowledge of security frameworks such as NIST, ISO 27001, SOC 2, GDPR, OWASP Ability to engage credibly with both technical teams and senior stakeholders Experience working alongside architects, engineers, and delivery teams ...

and control framework such as COBIT or Secure Controls Framework (SCF). Experience with an information security framework such as ISO 27000 Lead Implementor, NIST CSF v1.1 and/or NIST 800-53. Experience with information and cyber security in supply chains (outsourced management) and cloud environments. Experience working ...

occasional customer site visits Conduct security risk assessments and support accreditation activities within the UK defence domain Ensure compliance with frameworks such as the NIST Risk Management Framework (RMF) and NIST Cyber Security Framework (CSF) Plan, coordinate, or participate in CHECK/penetration testing activities Maintain awareness of emerging cyber ...

Governance Define and execute the enterprise-wide AI & Intelligent Automation strategy Establish frameworks for Responsible AI, ethics, and model governance (e.g. EU AI Act, NIST AI RMF) Act as executive sponsor for AI architecture, operating model, and adoption roadmap AI & GenAI Ecosystem Lead the design and deployment of scalable … Power BI, Looker) Enable predictive modelling and optimisation using modern ML toolkits Security, Compliance & Responsible AI Ensure alignment with enterprise security standards (SOC2, ISO27001, NIST) Champion explainability, bias mitigation, and ethical AI practices Leadership & Talent Build and lead high-performing global teams across AI, data, and automation Foster a culture ...

client's UK cybersecurity team. This role is predominantly end-client facing, advising on security best practices, vulnerability management and security standard compliance (e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. Skills & Experience Required: 2+ years of experience working in Cyber Security within an AWS cloud environment … Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with stakeholders and clients, as well as the ability to provide training and mentoring around cybersecurity Ideally, some relevant cybersecurity certifications This role ...

clients. Role Tasks and Responsibilities Managing and delivering client projects Delivering projects (e.g., conducting asset identification exercises, cyber risk assessments against ISO and NIST CSF 2.0 standards, and demonstrating cyber audit expertise). Managing different types of client meetings and maintaining positive and respectful client relationships. Line management and upskilling … delivering cyber security risk assessments within an established global consultancy. Proven experience in delivering risk assessments for several different clients against industry standards (NIST CSF, 800‐53 and ISO27001). An excellent knowledge of IT and network infrastructure, alongside cyber security best practices for securing networks. The ability to explain ...

knowledge across AWS, Azure or GCP• Experience with vulnerability management, penetration testing or application security testing• Good knowledge of security frameworks such as ISO27001, NIST and ideally exposure to NIS2• Any experience with compliance frameworks such as CMMC, DORA or DISP would be highly advantageous• Previous experience within SaaS, software … with genuine progression towards future cyber leadership responsibilities, apply today to learn more! Senior Cyber Security Engineer, DevSecOps, Secure Coding, Cloud Security, Application Security, NIST Corriculo Ltd acts as an employment agency and an employment business. #INDITO #MR #ChannelB ...

modelling frameworks such as MITRE ATT and CK, DEF3ND, or EMB3D Awareness of industrial control systems or operational technology environments Working knowledge of the NIST Cyber Security Framework To Be Considered Please either apply through this advert or email me directly via . For further information please call … required skills, your application to our client in conjunction with this vacancy only. Key Skills Product Cyber Security Specialist, Cyber Risk Management, Threat Modelling, NIST CSF, Industrial Control Systems, Secure by Design, Defence ...

that our products are secure and compliant throughout their lifecycle, covering design, production, and maintenance. Key responsibilities include assessing security controls against frameworks (e.g., NIST, ISO, IEC), managing product vulnerabilities, coordinating penetration tests, ensuring compliance with regulations like the Cyber Resilience Act, and fostering a "secure-by-design" culture within … policies, procedures, white papers regarding product security posture. Monitor, interpret, and apply relevant laws and standards to products, such as CRA, RED, GDPR, CCPA, NIST RMF, ISO 27K, and how they impact ADI products. Stay updated on the latest IoT security trends, regulations, standards, and best practices, ensuring ADI policies ...

assessments Produce and maintain accreditation documentation including RMADS, SyOps, security cases and risk registers Apply and advise on frameworks including ISO/IEC 27001, NIST SP 800-53 and JSP 440/JSP 604 Engage confidently with programme teams, risk owners, SROs and accrediting authorities Own client workstreams and deliverables … experience in information assurance, security assurance or GRC Proven delivery in defence or central government environments Strong working knowledge of ISO/IEC 27001, NIST SP 800-53 and the Cyber Assessment Framework Practical experience with defence accreditation frameworks - JSP 440 and JSP 604 Experience producing RMADS, SyOps and supporting ...

range of IT skills, which need to be kept up to date in line with IT developments in the business. An excellent understanding of NIST, CIS, ISO27001 framework and controls Experience developing cyber resilience and disaster recovery Confidence to communicate effectively with all layers of the business, including the delivery … compliance Collaborate within the IT Team to develop security policies, hardening guidelines and department procedure guides Continue development in ISO27001/CIS/NIST type frameworks ensuring industry best practices This is an excellent opportunity to join a professional working environment with exciting career development opportunities. The role is offered ...