1 to 25 of 58 NIST Jobs in the North of England

perspective. Policy, Procedure, and Guidance Oversight Review, update, and enforce security policies, standards, and guidance (e.g. Acceptable Use, Incident Response, Remote Access). Ensure compliance with NCSC, ISO 27001, NIST, Cyber Essentials, and GDPR frameworks. Clarify security roles and responsibilities across departments. Support Information Governance and Data Protection teams on policy alignment and compliance. Technical Review and Oversight Lead or More ❯

compliance standards. Technical Knowledge & Experience Proven experience delivering IT or cyber security projects or capability enhancements in complex environments. Strong understanding of cyber security principles, controls, and frameworks (e.g. NIST, ISO 27001, CIS). Experience working with DevOps tools and practices (e.g. JIRA, Confluence, Azure DevOps). Familiarity with enterprise security domains such as identity management, cloud security, network defence More ❯

compliance standards. Technical Knowledge & Experience Proven experience delivering IT or cyber security projects or capability enhancements in complex environments. Strong understanding of cyber security principles, controls, and frameworks (e.g. NIST, ISO 27001, CIS). Experience working with DevOps tools and practices (e.g. JIRA, Confluence, Azure DevOps). Familiarity with enterprise security domains such as identity management, cloud security, network defence More ❯

enterprise applications and cloud platforms (AWS, Azure, GCP). Implement DevSecOps practices, including secure CI/CD pipelines and infrastructure-as-code templates. Ensure compliance with frameworks such as NIST CSF, ISO 27001, PCI DSS, and CSA CCM. Essential Skills & Experience 15+ years in Information Security, 7-8+ years in Security Architecture. Cloud security architecture experience (AWS, Azure, GCP More ❯

enterprise applications and cloud platforms (AWS, Azure, GCP). Implement DevSecOps practices, including secure CI/CD pipelines and infrastructure-as-code templates. Ensure compliance with frameworks such as NIST CSF, ISO 27001, PCI DSS, and CSA CCM. Essential Skills & Experience 15+ years in Information Security, 7-8+ years in Security Architecture. Cloud security architecture experience (AWS, Azure, GCP More ❯

OSI model, with the ability to apply layered security controls across infrastructure and cloud environments. Demonstrated ability to assess control effectiveness and identify compliance gaps against frameworks such as NIST, ISO 27001, CIS Benchmarks, and PCI DSS. Experienced in conducting security assessments and aligning solutions with ITSM, ITIL, and service improvement standards. Proven track record in supporting security incidents, implementing More ❯

Review and update security policies, procedures, standards, and guidance regularly (e.g., acceptable use, remote access, incident response, etc.). Ensure alignment with frameworks such as NCSC guidance, ISO 27001, NIST, Cyber Essentials, and GDPR. Develop and communicate clear roles and responsibilities for information security across departments. Support Information Governance and Data Protection with policy harmonisation and compliance efforts. Technical Review More ❯

Review and update security policies, procedures, standards, and guidance regularly (e.g., acceptable use, remote access, incident response, etc.). Ensure alignment with frameworks such as NCSC guidance, ISO 27001, NIST, Cyber Essentials, and GDPR. Develop and communicate clear roles and responsibilities for information security across departments. Support Information Governance and Data Protection with policy harmonisation and compliance efforts. Technical Review More ❯

maintain security architecture. Mentor the engineering function and provide technical leadership. Demonstrate proven experience with Azure and M365 security tools and technologies. Apply security frameworks and standards such as NIST, CIS, and ISO27001. Use scripting and automation tools (PowerShell, Azure CLI, Azure Logic Apps). Relevant Certifications Microsoft Certified: Azure Security Engineer Associate Microsoft Certified: Cyber Security Architect Expert Microsoft More ❯

develop the next generation of cyber leaders Ideal Background Proven experience in cyber strategy, transformation, and risk management within complex organisations Strong knowledge of regulatory and security frameworks (e.g. NIST CSF, ISO27001, GDPR, NIS2, NCSC CAF) Experience across areas such as GRC, security architecture, threat management, or vulnerability management Outstanding communication and stakeholder engagement skills, with the ability to influence More ❯

working with next gen security solutions Awareness of Cloud security solutions and standards is highly advantageous Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. Experience in an Information Security role gained in a financial services or e-commerce environment is preferred Ability to challenge approach, strategy and implementation to ensure Information Security is More ❯

architecture Mentor the engineering function, provide technical leadership Principal Cyber Security Engineer: Duties Proven experience with Azure & M365 security tools and technologies Deep knowledge of security frameworks and standards (NIST, CIS, ISO27001) Knowledge of scripting & automation tools (PowerShell, Azure CLI, Azure Logic Apps) Principal Cyber Security Engineer: Relevant Certifications Microsoft Cert: Azure Security Engineer Associate Microsoft Cert: Cyber Security Architect More ❯

prepare reports Cyber Defence Manager - Experience Incident response, security engineering, intrusion detection Experience of SOC or Incident Response Team Analyse End Point, Network, Application Logs Security frameworks/Standards (NIST, CIS, ISO27001) Scripting & Automation (PowerShell, Azure CLI, Azure Logic Apps) MITRE ATT&CK, Threat Modelling Knowledge of CVEs and security vulnerabilities SIEM Tools, Cyber Hunting Techniques Operational threat intelligence and More ❯

clearance, or is willing to undergo the security vetting process; Strong academics, including a minimum of 2.1 degree or equivalent experience Familiarity with information security frameworks such as ISO27001, NIST etc; Willingness to operate as part of an 'on-call roster', travelling to assist our UK and EMEA clients when required in an incident management capacity; Connect to your business More ❯

deliverables. Support the development of business cases for security initiatives. Contribute to security governance, standards, and best practices. Assist with incident response planning and regulatory alignment (e.g., GDPR, ISO27001, NIST, Cyber Essentials). Skills & Experience Required: Proven experience as a Business Analyst within Cyber Security projects . Strong knowledge of information security principles, frameworks, and best practices. Experience with security More ❯

deliverables. Support the development of business cases for security initiatives. Contribute to security governance, standards, and best practices. Assist with incident response planning and regulatory alignment (e.g., GDPR, ISO27001, NIST, Cyber Essentials). Skills & Experience Required: Proven experience as a Business Analyst within Cyber Security projects . Strong knowledge of information security principles, frameworks, and best practices. Experience with security More ❯

deliverables. Support the development of business cases for security initiatives. Contribute to security governance, standards, and best practices. Assist with incident response planning and regulatory alignment (e.g., GDPR, ISO27001, NIST, Cyber Essentials). Skills & Experience Required: Proven experience as a Business Analyst within Cyber Security projects . Strong knowledge of information security principles, frameworks, and best practices. Experience with security More ❯

security posture. What We're Looking For Experience in cyber security, ideally with a focus on security assurance or risk A strong understanding of frameworks such as ISO 27001, NIST, CISA, CISSP, CISM, etc Experience working with or within supply chains, CNI, government, or highly regulated industries Excellent stakeholder management and communication skills SC or DV Clearance is ESSENTIAL Salary More ❯

and delivering compliance aligned services across GDPR, Cyber Essentials, ISO 27001. Proficient in using Microsoft 365 security stack: Purview, Defender, Conditional Access, MFA. Fluent in cybersecurity frameworks (CIA, NCSC, NIST) and modern threat prevention approaches. Why Curveball Make a real impact: You’ll lead the cybersecurity footprint across clients and services. True partnership: We treat clients like collaborators, not just More ❯

and delivering compliance aligned services across GDPR, Cyber Essentials, ISO 27001. Proficient in using Microsoft 365 security stack: Purview, Defender, Conditional Access, MFA. Fluent in cybersecurity frameworks (CIA, NCSC, NIST) and modern threat prevention approaches. Why Curveball Make a real impact : You'll lead the cybersecurity footprint across clients and services. True partnership : We treat clients like collaborators, not just More ❯

with business goals and regulations Leading and developing the cyber security operations team Overseeing threat monitoring, incident response, and vulnerability management Managing compliance with frameworks such as Cyber Essentials, NIST, ISO27001, GDPR, and GovAssure Acting as the primary point of contact for cyber matters internally and externally, including regulators and industry forums Representing Cyber Security at board committees and senior More ❯

security events and incidents by leading investigations, coordinating remediation efforts, and driving improvements after incidents. Maintain ongoing compliance with relevant security and data privacy standards (e.g., GDPR, ISO 27001, NIST, CCPA) through diligent documentation, effective policies, and audit preparedness. Work collaboratively with global IT, Cloud, and Security Operations Centre teams to protect company systems and efficiently tackle any emerging challenges. … cloud environments. Bachelor's degree in Computer Science, Information Technology, or Information Security , or equivalent practical experience. Familiarity with key security frameworks and standards such as PCI, ISO 27001, NIST, and CIS, along with experience supporting audits and compliance initiatives. Strong understanding of networking protocols, systems architecture , and secure key management (e.g., PCI digital keys, security access modules). Hands More ❯

expectations. Desirable Relevant vendor certifications (e.g. Microsoft, VMware, Cisco, Fortinet, Veeam, Ubiquiti). Hands-on Microsoft Azure architecture and migrations experience. An understanding of security frameworks (e.g. Cyber Essentials, NIST, CIS). Knowledge of modern networking technologies (SD-WAN, SASE & ZTNA). Experience in Managed Services or Managed Services Provider environments. Commercial awareness with the ability to align technology proposals More ❯

expectations. Desirable Relevant vendor certifications (e.g. Microsoft, VMware, Cisco, Fortinet, Veeam, Ubiquiti). Hands-on Microsoft Azure architecture and migrations experience. An understanding of security frameworks (e.g. Cyber Essentials, NIST, CIS). Knowledge of modern networking technologies (SD-WAN, SASE & ZTNA). Experience in Managed Services or Managed Services Provider environments. Commercial awareness with the ability to align technology proposals More ❯

to join the team. The right candidate for this role will have extensive experience of the implementation and maintenance of various information security standards including: ISO27001, CyberEssentials (Plus), GDPR, NIST etc - you would also naturally be the person leading responses to audit and information requests too. You will ideally have worked with a company of a similar size or larger More ❯