1 to 25 of 165 NIST Jobs in the UK excluding London

Security experience (required) Security-related certification e.g. CompTIA Security+, GSEC, CISSP, CISA, CCSP (preferred). Good understanding of security frameworks such as ISO 27001, NIST, Mitre (preferred) Experience of introducing Information Security improvement through effective deployment of technology and/or processes to move to a proactive footing in security ...

Lead experience MOD/GDS Secure by Design Familiarity with: JSP440, JSP604/453, JSP490 Supplier Chain Assurance GDPR, PCI DSS, ICO ISO 27001, NIST CSF, CIS Controls v8 Skills in: Threat modelling (kill chain, attack trees, etc.) Cloud security (AWS, Azure), containerisation, firewalls Secure SDLC HLD/LLD review ...

proven experience gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF ...

proven experience gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF ...

security project delivery, PowerShell automation skills, and familiarity with IR frameworks. Consulting-style experience providing advisory support to IT/Digital teams. Knowledge of NIST, CIS, ISO, COBIT, OWASP, and willingness to work out of hours/travel when needed. Desirable: Experience in MxDR/SOC support, security technologies ...

focusing on high-level incident response and the triaging of complex security issues.• Governance & Risk: Define and maintain security policies in alignment with NCSC, NIST, MITRE, and GDPR frameworks. • Team Development: Mentor junior staff and share technical knowledge to strengthen the team’s overall security posture. • Process Improvement: Drive automation ...

clients What would be desirable? * Experience working in a managed services or MSP environment* Exposure to compliance frameworks such as GDPR, ISO 27001, or NIST* Vulnerability assessment or penetration testing experience* SOC or security operations experience* Mentoring or leadership exposure within technical teams The Package * 40-hour working week (Monday ...

application and API design Logging, monitoring and SIEM Infrastructure, platform and endpoint security Experience working with security and compliance frameworks such as ISO27001, GDPR, NIST or CIS Excellent stakeholder engagement skills, able to communicate with both technical and non-technical audiences Pragmatic, risk-based approach with strong analytical skills Experience ...

Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within ...

landscape and emerging security risks What you’ll bring Strong experience in an information security leadership role Excellent knowledge of security frameworks (ISO 27001, NIST, Cyber Essentials, OWASP) Good understanding of GDPR and regulatory compliance requirements Hands-on experience with core security technologies (SIEM, IAM, firewalls, endpoint security, vulnerability management ...

Guard Duty, KMS , IAM Analyzer, Cloud Trail Cloud Watch , VPC, Peering , Route53 , Maice , Secret Manager, AWS Firewall manager, Storage Security Understanding of NIST Cybersecurity Framework Understanding of ITIL Processes Preferable experience in AWS Security, GCP/Azure security architecture experience is advantageous Functional understanding of O&G/Manufacturing sectors ...

Microsoft Sentinel. A passion for developing teams — coaching analysts and building collaborative, high-performing cultures. Strong understanding of frameworks and standards such as NIST, MITRE ATT&CK, ISO 27001, CREST, and ITIL. Excellent communication skills, with the ability to translate technical risks into clear business impacts. Desirable Vendor certifications such ...

strong professional development opportunities. Skills Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and ...

cloud security (AWS/Azure) Experience delivering security improvements and technical control implementation PowerShell or automation scripting skills Solid understanding of frameworks such as NIST, CIS, ISO 27001, OWASP Confident communicator with strong stakeholder engagement skills Nice to Have Security certifications (Security+, CEH, CySA+, cloud security certs) SOC/ ...

including Product Defense in Depth, security technology, regulatory compliance and incident response Domain specific standards and approaches on privacy and product security (ISO 2700x, NIST 800 Series Special Publications) Knowledgeable and experience with laws and regulations on cyber security, privacy, data protection and breach notification (e.g.: FDA cyber security guidelines ...

and network issues and participate in change management processes Ensure continuous compliance with industry standards and regulations, including ISO 27001, ISA/IEC 62443, NIST, and GDPR, as well as internal corporate policies Translate global cybersecurity policies into practical local procedures tailored to OT constraints such as safety and uptime ...

Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within ...

SIEM, DLP) **YOU'LL BRING** - 10+ years enterprise security architecture (IAM, cloud security, GDPR) - Deep frameworks knowledge (TOGAF, SABSA, CISSP/CISM, ISO 27001, NIST) - Proven stakeholder influence with senior business/technology leaders - Cloud expertise (Azure/AWS/GCP) + network, encryption, incident response **PACKAGE** Competitive salary + ...

of cybersecurity controls is demonstrated by attainment of appropriate qualifications, e.g. CISSP, ISO27001 Lead Implementor or relevant SANS GIAC or equivalent. Knowledge of the NIST framework, PCI DSS, GDPR and NIS as well as NCSC cyber guidance. Experience working in an agile delivery environment would be highly advantageous. Specific cyber ...

party security controls into vendor governance processes, working closely with Procurement, Legal, Technology, and Risk. Monitor compliance with industry frameworks such as CIS Controls, NIST, GDPR, and sector-specific guidance. Support contract reviews and provide expert input on security clauses, ensuring risk-based decisions are supported by strong security requirements. ...

Lead Implementer/Auditor Professional skills/experience Demonstrate a good understanding of information security frameworks, standards and security best practice (ISO27001, NIST CSF, Cyber Essentials, OWASP). Knowledge and adherence to data protection legislation and regulatory requirements (e.g. GDPR, FCA SYSC, PCI DSS). Extensive experience and understanding of ...

cybersecurity or information security • Strong expertise across cybersecurity, information security and data protection within a regulated environment • In-depth knowledge of security frameworks including NIST 800, ISO 27001 and Cyber Essentials • Strong understanding of UK regulatory expectations, including PRA, FCA, ICO and GDPR • Proven experience with SIEM-led monitoring, threat ...

Azure, AWS & Office 365), Automation Tools & Scripting Languages (Python, Java, PowerShell). Strong Knowledge of ITIL Principles & Security Governance Frameworks (such as ISO 27001, NIST, PCI DSS, CIS Controls). Responsibilities of Cyber Security Engineer will include: Deploy & Oversee Security Tools & Technologies to effectively protect the IT environment. C ontribute ...

Security Operations Analyst or AZ-500 Azure Security Engineer Associate Knowledge of cloud security principles and technologies Desirable: Strong understanding of security frameworks (NIST, ISO 27001, Mitre ATT&CK) Knowledge of web security tooling such as web proxy, DNS filtering and similar (e.g. Cisco Umbrella) Previous experience as a Security ...

stakeholders, and communicate findings effectively. Proven expertise in Cyber Security Auditing, with strong knowledge of: NCSC Cyber Assessment Framework (CAF). ISO 27000 series, NIST Cyber Security & Risk Management Frameworks. Legacy IA standards and NCSC guidance. Familiarity with MOD security frameworks (e.g., JSP 453, JSP 440, JSP 902, DEFCON 659A ...