1 to 25 of 26 Permanent NIST Jobs in the North West

OSI model, with the ability to apply layered security controls across infrastructure and cloud environments. Demonstrated ability to assess control effectiveness and identify compliance gaps against frameworks such as NIST, ISO 27001, CIS Benchmarks, and PCI DSS. Experienced in conducting security assessments and aligning solutions with ITSM, ITIL, and service improvement standards. Proven track record in supporting security incidents, implementing More ❯

risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32. Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to communicate risks associated More ❯

develop the next generation of cyber leaders Ideal Background Proven experience in cyber strategy, transformation, and risk management within complex organisations Strong knowledge of regulatory and security frameworks (e.g. NIST CSF, ISO27001, GDPR, NIS2, NCSC CAF) Experience across areas such as GRC, security architecture, threat management, or vulnerability management Outstanding communication and stakeholder engagement skills, with the ability to influence More ❯

working with next gen security solutions Awareness of Cloud security solutions and standards is highly advantageous Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. Experience in an Information Security role gained in a financial services or e-commerce environment is preferred Ability to challenge approach, strategy and implementation to ensure Information Security is More ❯

working with next gen security solutions Awareness of Cloud security solutions and standards is highly advantageous Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. Experience in an Information Security role gained in a financial services or e-commerce environment is preferred Ability to challenge approach, strategy and implementation to ensure Information Security is More ❯

working with next gen security solutions Awareness of Cloud security solutions and standards is highly advantageous Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. Experience in an Information Security role gained in a financial services or e-commerce environment is preferred Ability to challenge approach, strategy and implementation to ensure Information Security is More ❯

prepare reports Cyber Defence Manager - Experience Incident response, security engineering, intrusion detection Experience of SOC or Incident Response Team Analyse End Point, Network, Application Logs Security frameworks/Standards (NIST, CIS, ISO27001) Scripting & Automation (PowerShell, Azure CLI, Azure Logic Apps) MITRE ATT&CK, Threat Modelling Knowledge of CVEs and security vulnerabilities SIEM Tools, Cyber Hunting Techniques Operational threat intelligence and More ❯

clearance, or is willing to undergo the security vetting process; Strong academics, including a minimum of 2.1 degree or equivalent experience Familiarity with information security frameworks such as ISO27001, NIST etc; Willingness to operate as part of an 'on-call roster', travelling to assist our UK and EMEA clients when required in an incident management capacity; Connect to your business More ❯

and delivering compliance aligned services across GDPR, Cyber Essentials, ISO 27001. Proficient in using Microsoft 365 security stack: Purview, Defender, Conditional Access, MFA. Fluent in cybersecurity frameworks (CIA, NCSC, NIST) and modern threat prevention approaches. Why Curveball Make a real impact: You’ll lead the cybersecurity footprint across clients and services. True partnership: We treat clients like collaborators, not just More ❯

and delivering compliance aligned services across GDPR, Cyber Essentials, ISO 27001. Proficient in using Microsoft 365 security stack: Purview, Defender, Conditional Access, MFA. Fluent in cybersecurity frameworks (CIA, NCSC, NIST) and modern threat prevention approaches. Why Curveball Make a real impact : You'll lead the cybersecurity footprint across clients and services. True partnership : We treat clients like collaborators, not just More ❯

demonstrate compliance to internal and external stakeholders. Conduct assessment and provision of control effectiveness in managing information security risk Perform health checks of controls and their effectiveness aligned with NIST (DFARS), DEFCON and HMG Secure by Design requirements to highlight key issues Support and implement service improvement for the assurance function Work with EIT Business Operation Teams to ensure findings More ❯

Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

embed a strong security culture Promote continuous improvement across compliance and assurance What youll bring Strong background in cyber security governance, policy, and risk management Knowledge of ISO 27001, NIST CSF, CAF, GDPR/DPA Stakeholder engagement skills with senior leaders and technical teams Experience delivering security awareness or culture-change programmes Familiarity with tools such as Power BI, Excel More ❯

embed a strong security culture Promote continuous improvement across compliance and assurance What youll bring Strong background in cyber security governance, policy, and risk management Knowledge of ISO 27001, NIST CSF, CAF, GDPR/DPA Stakeholder engagement skills with senior leaders and technical teams Experience delivering security awareness or culture-change programmes Familiarity with tools such as Power BI, Excel More ❯

embed a strong security culture Promote continuous improvement across compliance and assurance What youll bring Strong background in cyber security governance, policy, and risk management Knowledge of ISO 27001, NIST CSF, CAF, GDPR/DPA Stakeholder engagement skills with senior leaders and technical teams Experience delivering security awareness or culture-change programmes Familiarity with tools such as Power BI, Excel More ❯

embed a strong security culture Promote continuous improvement across compliance and assurance What youll bring Strong background in cyber security governance, policy, and risk management Knowledge of ISO 27001, NIST CSF, CAF, GDPR/DPA Stakeholder engagement skills with senior leaders and technical teams Experience delivering security awareness or culture-change programmes Familiarity with tools such as Power BI, Excel More ❯

Provide technical direction and leadership across projects Essential Skills & Experience Proven expertise in secure cloud architecture and solution design Strong understanding of security standards and regulations (e.g. NCSC, ISO, NIST, PCI, GDPR) Background in application architecture, software development, or infrastructure architecture Experience with security testing tools and techniques Familiarity with CI/CD pipelines and continuous security practices Knowledge of More ❯

cyber security controls, designing solutions that enable defence in depth and services with security controls embedded. Significant experience of implementing enterprise security tooling and platforms in line with the NIST cyber security framework or equivalent, and CIS security controls. Influential and able to lead investigative work into problems and opportunities in existing processes, driving the collection of information and creation More ❯

cyber security controls, designing solutions that enable defence in depth and services with security controls embedded. Significant experience of implementing enterprise security tooling and platforms in line with the NIST cyber security framework or equivalent, and CIS security controls. Influential and able to lead investigative work into problems and opportunities in existing processes, driving the collection of information and creation More ❯

cyber security controls, designing solutions that enable defence in depth and services with security controls embedded. Significant experience of implementing enterprise security tooling and platforms in line with the NIST cyber security framework or equivalent, and CIS security controls. Influential and able to lead investigative work into problems and opportunities in existing processes, driving the collection of information and creation More ❯

maintain company systems and their security. Liaise with global Security Operations Centre colleagues to resolve any issues. Ensure compliance with relevant regulations, standards, and frameworks (e.g., GDPR, ISO 27001, NIST) Review and update security program documentation. Support customer relations and requirements per commercial agreements. Develop, implement, and maintain security policies, processes, procedures and guidelines. Assist with internal and external audits … sensitive information with sound judgement. Understanding of PKI. Desirable: Bachelor's degree in Computer Science, IT or Information Security. Compliance exposure with relevant security frameworks and standards (PCI, ISO, NIST, CIS). Experience with audits and compliance enforcement. Penetration testing experience. Strong understanding of networking protocols and systems architecture. Creating PCI digital keys or security access modules. Threat intelligence exposure. More ❯

and continuity teams to embed cyber risk Improve processes, tools, and methodologies What were looking for Strong knowledge of cyber risk and enterprise risk registers Familiarity with frameworks like NIST, ISO 27001 or NCSC CAF Confident presenting to technical and exec audiences Skilled with reporting tools (Excel, Power BI, GRC platforms) Organised, proactive, and a clear communicator Whats on offer More ❯

penetration testing and vulnerability assessments, tracking remediation to closure or handover to BAU. Translate technical risks into business language for stakeholders. Maintain alignment with ISO27001 and other frameworks (e.g., NIST). Advise on compliance for staff, suppliers, and services. Support procurement activities with security assessments and contract reviews. Skills & Experience - Essential Strong experience in Information Security across complex environments (e.g. … stakeholders. Ability to work independently and collaboratively in a fast-paced environment. Skills & Experience - Desirable Recognised certifications: CISSP, CISM, CISA, CEH. ISO27001 Lead Auditor/Implementer certification. Knowledge of NIST Cybersecurity Framework and PKI. Understanding of large public sector programmes. Eligible for HMG SC clearance. Personal Attributes Analytical and detail-oriented with a proactive mindset. Strong stakeholder engagement and influencing More ❯

Security risk management tools and techniques Experience of security governance and compliance, ideally gained in financial services organisations Demonstrable understanding of Information Security control standards and frameworks e.g. ISO27001, NIST, PCI DSS Awareness and understanding of the Information Security threat landscape Deep understanding of Information Security solutions and controls Experience of Cloud security solutions and standards is highly advantageous Competence … knowledge, and skills Competence Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. 5 years experience in an Information Security role gained in a financial services or e-commerce environment is preferred Knowledge & Skills Excellent communicator, able to translate complex topics to all areas of the business Significant experience in the area of Information More ❯

Sky's privileged security baseline. Be familiar designing and implementing closed loop credential management workflows. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Design, implement, and manage the PAM system to ensure the confidentiality, integrity, and … Expertise in cross platform scripting (Powershell, bash etc.). Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have experience with threat modelling methodologies e.g., STRIDE. Have a good understanding of Access Controls More ❯