1 to 25 of 95 NIST Jobs in the North of England

assurance, compliance or a related discipline. Certifications such as CISSP, CISM, CRISC, or equivalent are strongly preferred. In-depth understanding of cybersecurity frameworks (e.g., NIST, ISO 27001) and risk management methodologies. Experience with controls development and management tools, and familiarity with security controls, threat modelling, and vulnerability management. Experience of More ❯

and data management to enhance metrics and operational support. Security Compliance & Governance : Ensure security configurations align with compliance frameworks such as CIS, ISO 27001, NIST, and regulatory requirements. Collaborate Across Teams: Work closely with IT, Development, Product, and Operations to design and deploy secure cloud architectures. Engagement: Foster a culture More ❯

log analysis, and incident response. Establish incident response playbooks and conduct forensic investigations when needed. 4. Compliance & Risk Management Ensure adherence to ISO 27001, NIST, GDPR, and CIS Benchmarks. Conduct risk assessments, vulnerability scans, and security audits. Define data protection, backup, and retention policies aligned with Microsoft 365 compliance tools. More ❯

ensuring they are updated regularly to reflect evolving threats and changes in the business. Key Requirements: Technical Skills: Deep understanding of security frameworks (e.g., NIST, ISO 27001, CIS Controls, etc.). Practical experience with security tools such as SIEM, firewalls, IDS/IPS, endpoint protection, and vulnerability scanners. Proficiency in More ❯

for real-time threat detection. Cloud Security Assessments & Compliance Conduct cloud security assessments, penetration testing, and risk analysis . Ensure compliance with ISO 27001, NIST, CIS Benchmarks, GDPR , and other security standards. Collaborate with DevOps teams to integrate security into CI/CD pipelines. Security Automation & Infrastructure as Code (IaC More ❯

work history such as: Information Security qualification (or equivalent) e.g. CISSP. In-depth knowledge of security frameworks, standards, and best practices (e.g., ISO 27001, NIST, CIS, DSPT/CAF). Experience as a Security Architect or in a similar role, with a strong track record of designing and implementing security More ❯

concepts, such as email security, endpoint detection and response, vulnerability management, and SIEM. Understanding of at least one information security framework (e.g., ISO 27001, NIST) and general awareness of regulations such as GDPR. Strong communication skills, with the ability to explain technical risks to non-technical users. Enthusiastic, proactive team More ❯

Security Professional, Certified Information Security Manager). 5+ years of IT security experience working on data security enforcement. Strong understanding of security frameworks like NIST, ISO 27001, and CIS Controls, and their application to enhance security and ensure compliance. Proven expertise in designing and implementing data security controls in geographically More ❯

Payment Card Industry Data Security Standard (PCI-DSS) General Data Protection Regulation (GDPR) and Privacy Practices ISO 27001/2 Knowledge of OWASP 10 NIST Cybersecurity Framework (CSF) CIS and Benchmarking By joining Morrisons, you not only become an essential asset to our success but also open doors to a More ❯

Payment Card Industry Data Security Standard (PCI-DSS) General Data Protection Regulation (GDPR) and Privacy Practices ISO 27001/2 Knowledge of OWASP 10 NIST Cybersecurity Framework (CSF) CIS and Benchmarking By joining Morrisons, you not only become an essential asset to our success but also open doors to a More ❯

Provide expert consulting services in IT & OT and convergence challenges and solutions. Perform risk assessments and gap analyses against relevant industry standards and frameworks (NIST, IEC 62443, etc.). Design and implement security controls specific to industrial environments. Work independently, create and deliver technical reports and executive presentations for clients. More ❯

Identify emerging IT risks and trends, and provide strategic recommendations to strengthen controls. Maintain up-to-date knowledge of regulatory requirements, industry standards (e.g., NIST, ISO, CIS), and leading cloud security practices. Work closely with Internal Audit, Risk, and Compliance teams to align technology audit priorities with business risks. Contribute More ❯

solutions). Experience driving digital transformation and employee enablement in a retail, e-commerce, or multi-site environment. Strong understanding of security frameworks like NIST, ISO 27001, and CIS Controls, and their application to enhance security and ensure compliance. Strong understanding of identity lifecycle management, IAG, and privileged access security. More ❯

Provide strategic direction for hybrid, multi-cloud architecture (AWS, Azure, on-premises). Security, Compliance & Risk Management Ensure platform security aligns with ISO 27001, NIST, and GDPR compliance. Embed security-first principles into platform governance and DevOps processes. Leadership, Collaboration & Stakeholder Management Lead and mentor a team of Platform Engineers More ❯

Provide strategic direction for hybrid, multi-cloud architecture (AWS, Azure, on-premises). Security, Compliance & Risk Management Ensure platform security aligns with ISO 27001, NIST, and GDPR compliance. Embed security-first principles into platform governance and DevOps processes. Leadership, Collaboration & Stakeholder Management Lead and mentor a team of Platform Engineers More ❯

DevOps pipelines . Implement CI/CD pipelines for infrastructure deployment and application modernization. Security & Compliance: Ensure compliance with Azure Security Standards (Zero Trust, NIST, GDPR, ISO 27001, HIPAA, PCI DSS) . Implement Azure Policy, Security Center, Defender for Cloud, and Sentinel for security monitoring and governance. Networking & Connectivity: Design More ❯

to a technical level across multiple projects, including working with security tools, network security infrastructure technologies, and information security management frameworks (eg, ISO 27001, NIST) Experience overseeing penetration testing and the ability to effectively translate cyber risk analysis into standards, patterns, and approaches to enable the safe exploitation of current More ❯

to a technical level across multiple projects, including working with security tools, network security infrastructure technologies, and information security management frameworks (e.g., ISO 27001, NIST) Experience overseeing penetration testing and the ability to effectively translate cyber risk analysis into standards, patterns, and approaches to enable the safe exploitation of current More ❯

qualifications (e.g., CISA, CISM, CISSP) and/or relevant graduate degrees. Understanding of relevant regulatory environments. Knowledge of cyber security frameworks or standards like NIST, CIS, ISO. Highly valued skills include: Financial services industry knowledge. Background in IT Architecture across various technology environments including on-premise, cloud, and hybrid. Experience More ❯

Proven experience as a Senior Project Manager in Cyber Risk Management , Information Security, or a related field. Strong understanding of cyber risk frameworks (e.g., NIST, ISO 27001, CIS, FAIR). Experience working with risk categorization and governance processes. Demonstrated ability to engage with senior stakeholders and influence decision-making. Strong More ❯

and oversight Ability to influence stakeholders and communicate effectively at all levels, including non-technical audiences Knowledge of security frameworks such as ISO 27001, NIST, or similar Experience identifying control gaps and working across functions to address them Comfortable working in a collaborative, solutions-focused environment Sector background is flexible More ❯

and response (EDR) solutions, vulnerability management, detection and response/remediation (VMDR) solutions and threat intelligence platforms. Knowledge of security standards and frameworks (e.g., NIST, CIS Controls, ISO 27001) and regulatory requirements (e.g., GDPR, HIPAA). Proficiency in scripting and automation (e.g., Python, PowerShell) for security operations and incident response. More ❯

have technical knowledge in network segmentation, firewalls, Mitre Att&ck, Windows and Linux, with experience in Cyber Security standards, e.g. Cyber Essentials, ISO 27001, NIST 2 Framework, EU/UK NIS Security Analyst - Benefits: - Competitive salary - 25 days holiday plus bank holidays (with option of buying more) - Group Life Assurance More ❯

insurance is highly desirable. Excellent understanding of cyber insurance products and current market conditions. Strong knowledge of security frameworks, standards, and best practices (e.g., NIST, ISO, COBIT, etc.). Expertise in security technologies, tools, and methodologies (e.g., firewalls, encryption, penetration testing, etc.). Strong understanding of underwriting practices for cyber More ❯

years + Experience in a cyber-security role Working knowledge of technical and cyber security standards Working knowledge of industry best practices (such as NIST Framework, OWASP top ten, SANS and NCSC Guidance) Technical knowledge of information systems, infrastructure, and networks Security monitoring and testing technologies such as vulnerability scanning More ❯