18 of 18 Permanent NIST 800 Jobs in the UK

Governance, risk and compliance Provide executive oversight of IT governance, risk management and compliance activities. Ensure alignment with recognised frameworks including ITIL, ISO27001, NIST 800‐53, NIST 800‐171, Essential 8 and Cyber Essentials Plus. Maintain executive visibility of risk, control effectiveness … service management and governance. Experience operating within fast paced regulated or security ‐focused environments. Demonstrable knowledge of frameworks such as ITIL, ISO27001 and NIST 800-53 and 800-171. Experience overseeing cyber security, information security risk and compliance at executive level. Strong commercial ...

security, risk management or security assessment (10+ years, or advanced degree with 8+ years). In-depth understanding of key frameworks such as NIST (800-37, 800-30, 800-53), ISO 27001/27005, SOC 2, PCI or MITRE ATT&CK. Solid … GCFE, GSEC, CCSP). Experience with cyber risk modelling (e.g., CyberCube, RMS, Cyence). Hands-on experience with frameworks such as ISO 27001, NIST CSF, NCSC CAF or CIS Controls. Understanding of ICS/OT environments. Southern Water is at the forefront of transforming Britain’s water industry ...

convergence and securing legacy or brownfield industrial estates. Knowledge of recognised OT security standards such as IEC 62443 (ISA-99), NIST SP 800-82 , and application of the Purdue Model . Experience designing secure segmentation models (zones and conduits), industrial firewalls, and secure remote access solutions. ...

Terraform for network configuration management. Familiarity with Cisco NSO or RESTCONF/NETCONF interfaces. Exposure to industrial cybersecurity frameworks: IEC 62443, NIST SP 800-82, or NIS2. Experience with SCADA/ICS systems (e.g., Ignition, Wonderware, Siemens TIA Portal, Rockwell FactoryTalk). Familiarity with network monitoring ...

Product Defense in Depth, security technology, regulatory compliance and incident response Domain specific standards and approaches on privacy and product security (ISO 2700x, NIST 800 Series Special Publications) Knowledgeable and experience with laws and regulations on cyber security, privacy, data protection and breach notification (e.g. ...

Product Defense in Depth, security technology, regulatory compliance and incident response Domain specific standards and approaches on privacy and product security (ISO 2700x, NIST 800 Series Special Publications) Knowledgeable and experience with laws and regulations on cyber security, privacy, data protection and breach notification (e.g. ...

cyber risk, security target operating model, governance, compliance, cyber security maturity assessment, metrics and C-level dashboards) and leading industry-based practices (e.g. NIST CSF, ISO 2700x) Managing the coordination and communication of key findings and results of engagements, producing written reports and supporting oral presentations to senior … financial services entities 3+ years' variedexperience in information security, risk management Strongunderstanding of security governance, risk, and compliance frameworks such as ISO 27001, NIST 800-53/CSF, NIS2 and DORA Hands-onexperience building credibility with external stakeholders Provenability to guide and collaborate with senior stakeholders ...

cyber risk, security target operating model, governance, compliance, cyber security maturity assessment, metrics and C-level dashboards) and leading industry-based practices (e.g. NIST CSF, ISO 2700x) Managing the coordination and communication of key findings and results of engagements, producing written reports and supporting oral presentations to senior … financial services entities 3+ years' variedexperience in information security, risk management Strongunderstanding of security governance, risk, and compliance frameworks such as ISO 27001, NIST 800-53/CSF, NIS2 and DORA Hands-onexperience building credibility with external stakeholders Provenability to guide and collaborate with senior stakeholders ...

professional development opportunities. Skills Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across ...

understanding of IT technologies Applied knowledge industry frameworks and processes including ITIL, SAFe, DevSecOps, etc Understanding of information assurance standards and frameworks including CIS, NIST800-53, ISO 27001, Cyber Essentials/Essentials Plus, GDPR, NIS2 and Dora Analytical approach to problem solving Experienced in delivery of concurrent projects within time ...

Provide additional assistance to the Supportability Function What you’ll need Key Must Have skills: Experience in Project Security planning and implementation e.g. NIST 800 series. Experience in delivering project documentation using SbD principles. Experience in Security/Information Assurance e.g. CESG Good Practice Guides. Experience ...

help millions access essential services. Qualifications and Certifications Familiarity with information security best practices, standards, and frameworks (e.g., Cyber Assessment Framework, ISO 27001, NIST 800-53, COBIT 5, CIS CSC 2, Cyber Essentials Plus, PCI DSS) is beneficial. Membership in relevant institutions or bodies (e.g., Institute ...

product lifecycle Provide additional support to the wider supportability function when required Essential Skills & Experience Experience in project security planning and implementation (e.g. NIST 800 series) Experience producing security documentation using Secure by Design principles Background in security and information assurance (e.g. CESG Good Practice Guides ...

lifecycle → Supporting the wider Supportability function as required What we're looking for — essential: ✔ Proven experience in project security planning and implementation (e.g. NIST 800 series) ✔ Experience delivering project documentation using Security by Design (SbD) principles ✔ Strong background in Information Assurance — RMADS, SbD documentation, CESG Good ...

including design documentation, risk registers, and compliance checklists. Facilitate security sign-off processes and ensure alignment with internal policies and external standards (e.g., NIST 800-53 analysis). Promote a culture of security awareness and continuous improvement across delivery teams. Essential Skills & Experience Strong understanding ...

cyber security vulnerabilities * Reduce the risk of system abuse or exploitation What you'll bring* Experience in project security planning and implementation (e.g. NIST 800 series) * Strong understanding of Secure by Design (SbD) methodologies, documentation, and governance * Ability to produce and manage security artefacts aligned ...

Engineers to provide technical input, assurance, and oversight for global transformation programmes. Aligning all technical operations with world-recognised security frameworks, including ISO27001, NIST 800-53, and Australia's Essential 8. Driving the push for Automation across the infrastructure lifecycle to improve reliability and cost-optimisation ...

implementation of the Operational Resilience Framework (ORF) outlining Business Continuity (BCM) and Disaster Recovery (DR) program requirements based on industry standards (ISO 22301, NIST, SOC2) and applicable regulatory requirements. Lead the update of relevant policy updates to reflect program development and application of requirements to the business based … organizations needs You bring experience across technical and non-technical continuity practices You are fluent in external compliance and audit frameworks (ISO 22301, NIST 800-34, SOC2, GDPR) and skilled in preparing evidence for assessments ...