24 of 24 NIST Jobs in the North of England

365. Knowledge of information security standards including ISO 27001, PCI-DSS, GDPR. Strong grasp of IT domains including Linux, Windows, networking, containers, IAM, and monitoring. Understanding of ISO27001, ISO27005, NIST security controls, WAF, and network segmentation. Desirable Extras: Experience leading peer reviews and collaborating with cloud solution architects. Ability to positively incorporate feedback into architectural patterns. Certifications Required: Essential: Active More ❯

are successful. More information on the things you will be asked about can be found here Proven experience and ability in a Cyber Security role. Understanding of the CAF, NIST, ISO-27001, PCI-DSS, NIS, CIS and other information security frameworks & standards. Ability to interface smoothly with all stakeholders within the business, interpret requirements, explain simply & deliver appropriate solutions. Risk More ❯

Security Skills: Strong expertise in areas such as cyber strategy, risk management, cyber maturity assessments, security architecture, transformation programmes, and regulatory compliance. Familiarity with leading frameworks and standards including NIST CSF, ISO27001, NCSC CAF, GDPR, NIS2, and CRI2.0. Hands-on experience delivering security solutions and assessments in varied environments. Relevant certifications such as CISSP, CISM, CISA, M.Inst.ISP, or a postgraduate More ❯

effectively, organise and prioritise tasks to meet deadlines. A proactive approach to problem-solving and continuous improvement. Knowledge of Service Now A keen interested in Security Familiarity with ISO27001, NIST or other security frameworks (desirable but not essential). Previous experience in an IT or security-related role (internship or entry-level) is a plus. What’s in it for More ❯

skills Ability to manage competing priorities and deliver under pressure A full UK driving license and access to a business-insured vehicle Desirable Skills Familiarity with Cyber Essentials, NCSC, NIST and ISO 27001 standards Experience with cloud platforms (e.g., Azure, AWS) Knowledge of cybersecurity frameworks and tools Strong communication and stakeholder engagement skills About us At CHCP, we're passionate More ❯

using the Microsoft security ecosystem. Responsibilities: Delivering GRC consultancy across varied client environments Conducting risk assessments, compliance audits, and control gap analyses Advising on security frameworks including ISO 27001, NIST, and GDPR Supporting implementation and optimisation of Microsoft Security solutions such as Defender, Sentinel, and Purview Translating compliance requirements into actionable security controls Building and maintaining strong client relationships through More ❯

repudiation and privacy. Excellent communication skills to technical, business and non-technical audiences at all levels, presenting with excellent written and verbal skills. Knowledge of leading standards such as NIST, CAF, Secure by Design and topics such as Security Controls, Risk Management and Zero Trust Architecture. Desirable Criteria Multiple security domains and disciplines including Cyber, Physical, Personnel, Process, Policy, Privacy More ❯

Asset Owner forms, Supplier Assurance Questionnaires. Experienced in relevant Security Policy and Cyber Security Frameworks including the GovS 007, MOD Secure by Design (SbD), ISO27001 - Information Security Management Systems, NIST, NCSC IA Guidance Qualifications for the Cyber Security Lead Educated to degree level or holds a relevant professional qualification or equivalent experience. Security Clearance The successful candidate must be able More ❯

DLP and compliance tools) and Azure Security Stack (including Microsoft Defender for Cloud, Microsoft Sentinel, Azure AD etc). Solid understanding of security frameworks (e.g., ISO 27001, Cyber Essentials, NIST, GDPR etc). Experience with vulnerability scanning, risk assessment, and remediation planning. Strong communication skills with the ability to work with both technical and non-technical teams. A proactive approach More ❯

DLP and compliance tools) and Azure Security Stack (including Microsoft Defender for Cloud, Microsoft Sentinel, Azure AD etc). Solid understanding of security frameworks (e.g., ISO 27001, Cyber Essentials, NIST, GDPR etc). Experience with vulnerability scanning, risk assessment, and remediation planning. Strong communication skills with the ability to work with both technical and non-technical teams. A proactive approach More ❯

and delivering compliance aligned services across GDPR, Cyber Essentials, ISO 27001. Proficient in using Microsoft 365 security stack: Purview, Defender, Conditional Access, MFA. Fluent in cybersecurity frameworks (CIA, NCSC, NIST) and modern threat prevention approaches. Why Curveball Make a real impact: You’ll lead the cybersecurity footprint across clients and services. True partnership: We treat clients like collaborators, not just More ❯

and delivering compliance aligned services across GDPR, Cyber Essentials, ISO 27001. Proficient in using Microsoft 365 security stack: Purview, Defender, Conditional Access, MFA. Fluent in cybersecurity frameworks (CIA, NCSC, NIST) and modern threat prevention approaches. Why Curveball Make a real impact : You'll lead the cybersecurity footprint across clients and services. True partnership : We treat clients like collaborators, not just More ❯

repudiation and privacy. Excellent communication skills to technical, business and non-technical audiences at all levels, presenting with excellent written and verbal skills. Knowledge of leading standards such as NIST and topics such as Security Controls, Risk Management, Cloud technologies and Zero Trust Architecture. Desirable Criteria Ideally, you will also have experience of: Leading multi-disciplinary security teams and building More ❯

repudiation and privacy. Excellent communication skills to technical, business and non-technical audiences at all levels, presenting with excellent written and verbal skills. Knowledge of leading standards such as NIST and topics such as Security Controls, Risk Management, Cloud technologies and Zero Trust Architecture. Desirable Criteria Ideally, you will also have experience of: Leading multi-disciplinary security teams and building More ❯

assets and ensure effective security operations. Bring expertise in endpoint and network detection and response ( EDR/NDR ), information security standards, and frameworks such as MITRE ATT&CK and NIST . If you have a strong technical background in cyber security and Crowdstrike Falcon , thrive on continuous improvement, and enjoy empowering those around you, this is your chance to make More ❯

assets and ensure effective security operations. Bring expertise in endpoint and network detection and response ( EDR/NDR ), information security standards, and frameworks such as MITRE ATT&CK and NIST . If you have a strong technical background in cyber security and Crowdstrike Falcon , thrive on continuous improvement, and enjoy empowering those around you, this is your chance to make More ❯

For: Experience in IT security or within a SOC/NOC environment Strong knowledge of Microsoft Defender, EDR, and network architecture Understanding of security frameworks (e.g., MITRE ATT&CK, NIST, ISO 27001) Excellent communication and teamwork skills Relevant certifications (e.g., Sec+, OSCP, CISA) are a plus More ❯

threat intelligence Strong understanding of modern detection and response strategies Familiarity with SOC tooling (Sentinel, Defender, QRadar, Cortex XDR, etc.) Knowledge of threat frameworks like MITRE ATT&CK and NIST Self-starter who can work independently in a lean security function Comfortable driving change and making meaningful improvements in security posture Why Apply? Youll join at a time where you More ❯

and human-to-machine) Knowledge/understanding of hardware security modules (HSMs) for storing cryptographic keys securely, including integration with enterprise applications for key generation and usage.? Familiarity with NIST's Post-Quantum Cryptography (PQC) standardization efforts and practical approaches for transitioning to quantum-resistant encryption schemes.? Knowledge of FIPS 140-2 and FIPS 140-3 validated cryptographic modules and More ❯

related regulations e.g. Ops Res, GDPR, DORA, SOx etc Demonstrate experience of technology risk profiling, assessments, scenarios, metrics and reporting. Demonstrate knowledge of Risk Frameworks and certifications including Cobit, NIST, ISO27001 Financial services experience 5+ (not exclusively Insurance) Demonstrate a level of seniority - this is a new role and will require the candidate to plan and implement the IT Risk More ❯

related regulations e.g. Ops Res, GDPR, DORA, SOx etc Demonstrate experience of technology risk profiling, assessments, scenarios, metrics and reporting. Demonstrate knowledge of Risk Frameworks and certifications including Cobit, NIST, ISO27001 Financial services experience 5+ (not exclusively Insurance) Demonstrate a level of seniority - this is a new role and will require the candidate to plan and implement the IT Risk More ❯

related regulations e.g. Ops Res, GDPR, DORA, SOx etc Demonstrate experience of technology risk profiling, assessments, scenarios, metrics and reporting. Demonstrate knowledge of Risk Frameworks and certifications including Cobit, NIST, ISO27001 Financial services experience 5+ (not exclusively Insurance) Demonstrate a level of seniority - this is a new role and will require the candidate to plan and implement the IT Risk More ❯

of course, Microsoft Azure. You must have worked at Enterprise level previously and have experience with IAM (Identity & Access Management) controls. Experience with CIS (Centre for Internet Security) and NIST (National Institute of Standards & Technology) frameworks. This is a great contract opportunity and rate will be dependent on the individual, along with the experience you possess. Apply now for more More ❯

procedures . Manage and improve third-party/vendor risk management processes and assurance activities. Monitor compliance with regulatory requirements (e.g. FCA, GDPR ) and security frameworks (e.g. ISO 27001, NIST, CIS ). Provide oversight on the risk register and support risk committees with reporting and metrics. Support internal and external audits , collating evidence and ensuring timely remediation of findings. Deliver … of Information Security in governance forums and strategic initiatives. ✅ What We’re Looking For 3+ years’ experience in Information Security, GRC, or Risk & Compliance roles. Familiarity with ISO 27001, NIST, CIS Controls, or equivalent frameworks . Strong understanding of risk management methodologies and control frameworks. Excellent communication and stakeholder engagement skills with the ability to influence at all levels. Strong More ❯