1 to 25 of 26 Permanent NIST Jobs in Southampton

security policies, standards, and procedures Work with IT and development teams to implement secure system designs and configurations Support compliance initiatives (e.g., ISO 27001, NIST, GDPR, PCI-DSS) by assisting with audits and documentation Conduct security awareness training and phishing simulations for employees Keep up-to-date with the latest More ❯

CI/CD pipelines for secrets management. Familiarity with other PAM tools (e.g., BeyondTrust, Thycotic) is a plus. Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001). Soft Skills: Strong communication and interpersonal skills. Ability to work independently and as part of a team. Detail-oriented with a focus More ❯

with third-party and outsourcing risk, AI and digital transformation risks. Experience of developing and operating Technology Risk Management Frameworks such as ITIL, COBIT, NIST, ISO. Demonstrable extensive relevant experience of technology and change/operational risk in either a 1LoD or 2LoD capacity (2LoD preferable). Experience in scenario More ❯

a leadership role Strong hands-on knowledge of SIEM, EDR, SOAR, IDS/IPS, firewalls, and cloud security Deep understanding of MITRE ATT&CK, NIST, ISO 27001, CIS frameworks Proven experience in incident response, threat intelligence, and multi-tenant SOCs Excellent leadership, communication, and client engagement skills Bonus Points for More ❯

implement best practices for compliance, data privacy, and protection, while integrating tools and frameworks to assess APIs against OWASP and other relevant security standards (NIST, ISO-27001, PCI-DSS, HIPAA, FedRAMP) Automate security and compliance controls into the platform for continuous monitoring and reporting. Execute MySQL queries to ensure data More ❯

Technical knowledge and experience with SIEM, SOAR, IDPS, DDoS, Malware Protection, Vulnerability Management, and Application Security tooling, etc. Knowledge of Information Security frameworks (CIS, NIST, NCSC CAF), supporting processes and toolsets. Ability to breakdown and solve complex problems across multiple domains and successfully lead the recovery of major and/ More ❯

security support responsibilities Collaborate with Engineering, Platform and Development teams to address security issues and implement best practices Develop and maintain security documentation; ISO, NIST and CIS. Stay updated on the latest security trends, vulnerabilities, and technologies to ensure robust protection against evolving threats What You'll Bring: Design and More ❯

log analysis of Networking, Windows, Mac and Linux and Cloud. Understanding of evidence collection process based on priority. Strong understanding of incident response following NIST 800-61 guidelines incorporating containment, eradication and recovery phases. Experience with digital forensics and investigations, including evidence collection and chain-of-custody protocols. Should have More ❯

incidents, risks, and compliance status About You 3-5 years of experience in cyber security roles, with hands-on involvement in implementing frameworks like NIST, eCAF, or ISO27001 Experience in SIEM, Vulnerability Management, Threat Intelligence, and IAM tools Background in supporting enterprise-level security initiatives aligned with regulatory or certification More ❯

in this role? Industry experience in an Information/Cyber Security role Experience in information security management: This includes using industry-standard frameworks like NIST CSF, ISO 27001, or SOC2 Familiarity with SDLC Knowledge of completing security audits i.e Cyber Essentials or ISO 27001 Technical knowledge and experience in Windows More ❯

promote a security-focused culture. Promote Incident Response, Business Continuity Planning (BCP), and Disaster Recovery practices. Implement industry security standards such as ISO 27001, NIST 800-53, and AWS Well-Architected Framework. Identify opportunities for process improvement and standardization, working with stakeholders to deliver value. Track and report on security More ❯

teams are aware and supportive Utilizing your experience migrating businesses and teams into using industry security best practices and frameworks such as ISO 27001, NIST 800-53, and AWS Well-Architected Framework Identifying opportunities for improvement and standardization of technology, risk register, and security dashboards. Working with Business and Tech More ❯

emerging threats, vulnerabilities, and ensuring swift action ? Supporting alignment with future certification frameworks such as GovAssure, NCSC CAF, ISO27001 Requirements: ? In-depth knowledge of NIST, ISO27001, ISO27701, NCSC, and Cabinet Office security best practices Proven track record across full security lifecycle: risk management, governance, incidents, pen testing ?️ Experience working in More ❯

for this role, you should have Proven experience in a senior Information Security leadership role. Strong knowledge of security frameworks such as ISO 27001, NIST, GDPR, and other compliance standards. Expertise in risk management, governance, and security architecture. Hands-on experience in designing and implementing security policies and strategies. Strong More ❯

sleeves and digging into tooling, architecture, and implementation. Solid understanding of attacker TTPs and how to design effective, scalable defenses. Experience with ISO 27001, NIST CSF, SP 800-53, Cyber Essentials, or similar frameworks. Deep knowledge of UK and global data protection and cybersecurity regulations. Certifications like CISSP , CISM , or More ❯

and related technologies. Proven track record in designing and implementing complex security solutions. Familiarity with ICS/SCADA/OT environments and standards like NIST, CIS benchmarks, and CAF Framework. Strong relationship-building skills, capable of collaborating with architecture groups and wider teams. If you are ready to make a More ❯

ensure all teams are aware and supportive Utilizing your experience migrating businesses and teams into using industry security best practices and frameworks. ISO 27001, NIST 800-53, and AWS Well-Architected Framework Identifying opportunities for improvement and standardization of technology, risk register, and security dashboards. Working with Business and Tech More ❯

GRC initiatives. Proven experience embedding & delivering IT & Security GRC frameworks in a large, matrixed organisation. Strong knowledge of security standards and frameworks (e.g. ISO27001, NIST, PCI DSS, Cloud Security). Excellent understanding of the principles, theories, practices and techniques for activities associated with planning and implementing information security management frameworks More ❯

design principles. Familiarity with government and defence security standards such as: HMG/NCSC IA Policies and Guidelines JSP440 and other MoD IA standards NIST, NIS-D ONR SyAPs (Security Assessment Principles) Excellent stakeholder communication skills – you can clearly explain complex security concepts to both technical and non-technical audiences. More ❯

in technology and operations, preferably within the financial services or banking industry. Good understanding of security protocols and compliance standards (e.g., PCI-DSS, CIS, NIST). Experience in a Data Centre Operations or other similar critical operations role. Strong and demonstrable process management and development experience in a live operational More ❯

required for business and customer requirements and help develop the strategic direction. You will ensure that our infrastructure is implemented securely, following guidance from NIST, NCSC, CIS, etc. You will ensure all systems are maintained, supported, and compliant with our security certifications. Candidates should have experience in a similar-sized More ❯

Log Analytics and Azure Monitor, detect anomalies before they escalate. Policy Enforcement & Governance: ensure everything aligns to internal controls and external standards (ISO 27001, NIST, GDPR) Documentation & Collaboration: work closely with DevSecOps, application owners, and GRC teams to build secure-by-design patterns If this sounds like you, please get More ❯

for vulnerabilities Familiar with fallback controls such as WAF's, API gateways Experience using SIEM/logging tools to track API threats Familiarity with NIST, OWASP SAMM, or internal security frameworks Experience producing risk dashboards/reports for API's Able to translate technical risks into business language, collaborating with More ❯

and data protection. Translate requirements from PSD2 SCA, PCI DSS, and SWIFT CSP into technical security controls. Maintain IT security governance frameworks (ISO 27001, NIST CSF, CIS Controls). Manage and maintain Security Policies and procedures Third-Party Risk & Outsourcing Management: Design and implement third-party risk management programs to … tools. Proficiency in IAM (Identity and Access Management) solutions and conducting user access reviews. Familiarity with cloud Technology and IT infrastructure. Strong knowledge of NIST frameworks (CSF, 800-53) and CIS Controls. Certifications: CRISC, CISSP, CISM, or CISA preferred (equivalent experience considered). #J-18808-Ljbffr More ❯

compliance against our information security framework. The ideal candidate will have experience evaluating IT Infrastructure Security technologies, IT general computer controls, industry frameworks (e.g. NIST) and will bring strong information technology audit or security consulting experience to the programme. Location United Kingdom/Europe Main responsibilities The Senior Associate will … Prior experience within a security compliance assurance or auditing position. Understanding of relevant regulatory requirements and assurance processes, including various auditing standards such as NIST and ISO27001 Analytical skills to collect, analyse and interpret information and/or data into useful insight Excellent communication skills, both verbal and written, with More ❯