20 of 20 Permanent NIST Jobs in the North of England

solutions and standards is highly advantageous Competence, knowledge and skills Competence Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. 5 years experience in an Information Security role gained in a financial services or e-commerce environment is preferred Knowledge & Skills Significant experience ...

core IT and networking principles Awareness of current threat landscape and evolving attack vectors Experience & Qualifications Experience working within recognised frameworks such as ISO27001, NIST or similar Significant experience within IT security Financial services or e-commerce sector experience preferred CISSP (attained or working towards) desirable About AJ Bell ...

your continuous professional development Strong communication, analytical thinking, and stakeholder engagement skills Familiarity with international standards and bodies such as ISO 27001, NCSC, Mitre, NIST, GDPR A commitment to ongoing training and development in cybersecurity and IT governance Experience in manufacturing is a plus, but not essential What ...

Systems (ACS), along with physical security control measures and industry best practice Exposure to recognised cyber security frameworks and standards, such as NCSC CAF, NIST, ISO 2700x series and CIS Relevant certifications in Information or Physical Security Management (e.g. PSP, CRISC, CISSP) ISO 27001 audit experience (preferred) Ability to collaborate ...

reporting to senior leadership. Demonstrable year-on-year improvement in cyber resilience. Skills and Experience Essential: Strong knowledge of cyber security frameworks (ISO 27001, NIST, Cyber Essentials, GDPR, etc.). Hands-on experience with cyber tools (SIEM, firewalls, EDR, MFA, encryption) and incident response. Experience leading or supporting DR/ ...

Extras: Relevant vendor certifications (e.g., Microsoft, Cisco, VMware, Fortinet). Pre-sales or sales engineering background. Experience in cyber security frameworks (ISO27001, Cyber Essentials, NIST). Track record of exceeding new business targets or KPIs in a technical sales role. Ready to become the authoritative voice that enables our sales ...

audits or inspections. Strong working knowledge of Enterprise Risk Management Framework (ERMF) structures. Desirable Skills Knowledge of industry cloud governance and security frameworks (e.g., NIST CSF, ISO 27001/2, CSA CCM, COBIT, ITIL). Familiarity with cloud service provider models (AWS, Azure, GCP) Experience supporting control uplift programmes ...

SentinelOne, and Microsoft Defender. Ability to interpret event logs and system audit data to identify and respond to security incidents. Solid understanding of the NIST CVSS scoring system for vulnerability assessment. Experienced in report generation and effectively presenting findings to clients and stakeholders. Expertise in OS hardening practices, including SELinux ...

business systems. Strong understanding of hybrid/cloud convergence and securing legacy or brownfield enterprise landscapes. Knowledge of recognised enterprise security standards such as NIST CSF, ISO 27001, and zero-trust principles. Experience designing secure segmentation models (zero-trust, micro-segmentation), next-gen firewalls, and secure remote access solutions. Familiarity ...

of IT/OT convergence and securing legacy or brownfield industrial estates. Knowledge of recognised OT security standards such as IEC 62443 (ISA-99), NIST SP 800-82 , and application of the Purdue Model . Experience designing secure segmentation models (zones and conduits), industrial firewalls, and secure remote access solutions. ...

coding practices and application security principles DESIRABLE Experience with enterprise IT architectures and business support systems Knowledge of information security frameworks such as ISO27001, NIST or GDPR Experience within ISP, MSP or telecommunications environments BENEFITS Smart casual dress code Free access to gym facilities Access to a financial wellbeing platform ...

within ISP, MSP or telecommunications environments Familiarity with enterprise IT architectures including OSS and BSS systems Knowledge of information security frameworks such as ISO27001, NIST or GDPR Experience with infrastructure automation tools such as Terraform or Ansible BENEFITS Smart casual dress code Free access to gym facilities Access ...

expectations Exposure to AI, cyber, cloud or digital change risk Comfortable challenging senior IT or data stakeholders Familiarity with frameworks such as ISO 27001, NIST or COBIT Professional certifications (IRM, CISSP, CISM, CRISC) are beneficial but not essential.This is an opportunity to step into a visible, business-critical role overseeing ...

engagement Ability to design, test and challenge IT/cyber controls end to end Understanding of cloud + on prem control environments Familiarity with NIST, COBIT, ISO27001 or similar frameworks Certifications such as CISA, CISSP, CRISC (desirable) If youre a senior IT/Cyber Risk specialist with solid 1LOD experience ...

Bash to automate certificate provisioning, renewal, and monitoring. Ability to enforce security policies, audit PKI environments, and ensure compliance with standards such as NIST, ISO 27001, and industry best practices. ...

organisational priorities and risk appetite. Lead multidisciplinary teams spanning governance, risk, compliance, architecture, operations, and incident response. Embed recognised frameworks such as ISO 27001, NIST CSF, NIS2, and DORA into policies, processes, and technology platforms. Oversee security operations, including monitoring, threat detection, incident response, and vulnerability management. Conduct and support … information security within a complex, multi-site, or multinational organisation. Extensive experience developing enterprise-wide security strategies aligned to frameworks such as ISO 27001, NIST CSF, CIS Controls, or DORA. Strong understanding of cloud and hybrid security environments, including Microsoft 365 and Azure. Strong operational expertise across EDR/ ...

techniques Experience of security governance and compliance, ideally gained in financial services organisations Demonstrable understanding of Information Security control standards and frameworks e.g. ISO27001, NIST, PCI DSS Awareness and understanding of the Information Security threat landscape Deep understanding of Information Security solutions and controls Experience of Cloud security solutions and … standards is highly advantageous Competence, knowledge, and skills Competence Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. 5 years experience in an Information Security role gained in a financial services or e-commerce environment is preferred Knowledge & Skills Excellent communicator, able to translate ...

and playbooks. The role includes mentoring CIRT analysts , enhancing SIEM/SOAR automation, and continuously improving processes using frameworks such as MITRE ATT&CK, NIST 800-61, and PCI DSS. What this job is really about Owning cyber incident response end-to-end: from first alert, through containment and eradication … cases so you see retail-relevant threats early and clearly.? Being the person who connects the dots between frameworks like MITRE ATT&CK, NIST 800-61, PCI DSS and what actually happens on the ground. Who this will suit You've worked in SOC, Incident Response, or Threat Hunting and ...

domains Define clear risk appetite metrics and KRIs for technology and operational resilience Ensure alignment with PRA/FCA expectations and relevant ISO/NIST standards Operational Resilience & Change Risk Oversee resilience across critical services and digital platforms Provide oversight of change governance in fast-moving technology programmes Ensure risk … Experience overseeing infrastructure, cloud, digitisation and legacy transformation risk Knowledge of PRA/FCA regulatory expectations and operational resilience requirements Familiarity with ISO 27001, NIST and related control frameworks Ability to challenge senior Technology leaders constructively and commercially Strong analytical capability with the confidence to drill into technical detail ...

domains Define clear risk appetite metrics and KRIs for technology and operational resilience Ensure alignment with PRA/FCA expectations and relevant ISO/NIST standards Operational Resilience & Change Risk Oversee resilience across critical services and digital platforms Provide oversight of change governance in fast-moving technology programmes Ensure risk … Experience overseeing infrastructure, cloud, digitisation and legacy transformation risk Knowledge of PRA/FCA regulatory expectations and operational resilience requirements Familiarity with ISO 27001, NIST and related control frameworks Ability to challenge ...