1 to 25 of 88 Remote/Hybrid NIST Jobs in England

Lead experience MOD/GDS Secure by Design Familiarity with: JSP440, JSP604/453, JSP490 Supplier Chain Assurance GDPR, PCI DSS, ICO ISO 27001, NIST CSF, CIS Controls v8 Skills in: Threat modelling (kill chain, attack trees, etc.) Cloud security (AWS, Azure), containerisation, firewalls Secure SDLC HLD/LLD review ...

proven experience gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF ...

proven experience gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF ...

of DNS, DMARC/DKIM/SPF, networking fundamentals and TCP/IP. Familiarity with frameworks such as MITRE ATT&CK, ISO27001, CIS benchmarks, NIST, Cyber Essentials. Ability to explain technical concepts to non-technical audiences. Strong documentation, analysis and problem-solving skills. Experience in security auditing, PCI DSS, CSIRT ...

focusing on high-level incident response and the triaging of complex security issues.• Governance & Risk: Define and maintain security policies in alignment with NCSC, NIST, MITRE, and GDPR frameworks. • Team Development: Mentor junior staff and share technical knowledge to strengthen the team’s overall security posture. • Process Improvement: Drive automation ...

clients What would be desirable? * Experience working in a managed services or MSP environment* Exposure to compliance frameworks such as GDPR, ISO 27001, or NIST* Vulnerability assessment or penetration testing experience* SOC or security operations experience* Mentoring or leadership exposure within technical teams The Package * 40-hour working week (Monday ...

point security tools and data loss prevention systems also highly advantageous Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. Knowledge of relevant regulatory requirements (e.g. GDPR/FCA/PRA) Experience in an Information Security role gained in a financial services ...

application and API design Logging, monitoring and SIEM Infrastructure, platform and endpoint security Experience working with security and compliance frameworks such as ISO27001, GDPR, NIST or CIS Excellent stakeholder engagement skills, able to communicate with both technical and non-technical audiences Pragmatic, risk-based approach with strong analytical skills Experience ...

Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within ...

landscape and emerging security risks What you’ll bring Strong experience in an information security leadership role Excellent knowledge of security frameworks (ISO 27001, NIST, Cyber Essentials, OWASP) Good understanding of GDPR and regulatory compliance requirements Hands-on experience with core security technologies (SIEM, IAM, firewalls, endpoint security, vulnerability management ...

strong professional development opportunities. Skills Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and ...

Security) are highly desirable. Security Expertise: Proven experience in security engineering, security architecture, or security compliance roles. Strong understanding of security principles, frameworks (e.g., NIST, ISO 27001), and compliance requirements (e.g., SOC 2, GDPR, HIPAA). Experience with various security controls, including access management (IAM), data encryption, network security, vulnerability ...

of cybersecurity controls is demonstrated by attainment of appropriate qualifications, e.g. CISSP, ISO27001 Lead Implementor or relevant SANS GIAC or equivalent. Knowledge of the NIST framework, PCI DSS, GDPR and NIS as well as NCSC cyber guidance. Experience working in an agile delivery environment would be highly advantageous. Specific cyber ...

Lead Implementer/Auditor Professional skills/experience Demonstrate a good understanding of information security frameworks, standards and security best practice (ISO27001, NIST CSF, Cyber Essentials, OWASP). Knowledge and adherence to data protection legislation and regulatory requirements (e.g. GDPR, FCA SYSC, PCI DSS). Extensive experience and understanding of ...

architectural assessment using tools like IriusRisk Strong knowledge of compliance benchmarks (e.g., CIS, GDPR, PCI-DSS, ISO standards) and industry cloud security standards (e.g., NIST, CSA) Proficiency in coding and workload languages (e.g., Python, Java, .NET) and practical understanding of various cloud models (IaaS, PaaS, SaaS) Excellent documentation, presentation, and ...

solutions and standards is highly advantageous Competence, knowledge and skills Competence Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. 5 years experience in an Information Security role gained in a financial services or e-commerce environment is preferred Knowledge & Skills Significant experience ...

Security Operations Analyst or AZ-500 Azure Security Engineer Associate Knowledge of cloud security principles and technologies Desirable: Strong understanding of security frameworks (NIST, ISO 27001, Mitre ATT&CK) Knowledge of web security tooling such as web proxy, DNS filtering and similar (e.g. Cisco Umbrella) Previous experience as a Security ...

stakeholders, and communicate findings effectively. Proven expertise in Cyber Security Auditing, with strong knowledge of: NCSC Cyber Assessment Framework (CAF). ISO 27000 series, NIST Cyber Security & Risk Management Frameworks. Legacy IA standards and NCSC guidance. Familiarity with MOD security frameworks (e.g., JSP 453, JSP 440, JSP 902, DEFCON 659A ...

core IT and networking principles Awareness of current threat landscape and evolving attack vectors Experience & Qualifications Experience working within recognised frameworks such as ISO27001, NIST or similar Significant experience within IT security Financial services or e-commerce sector experience preferred CISSP (attained or working towards) desirable About AJ Bell ...

and how to test compliance through audit evidence - Awareness of information security threats, risks and common control failures - Experience applying risk assessment methodologies (ISO27005, NIST, IRAM2) to support audit scoping and risk-rating of findings - Strong documentation and report writing skills - able to produce structured audit reports containing observations, root ...

allocation, capacity planning, and performance tuning within the virtual infrastructure. Security & Compliance: Ensure compliance with industry security standards and best practices (e.g., ISO 27001, NIST, GDPR). Implement and maintain firewall policies, intrusion detection/prevention systems (IDS/IPS), and security patching. Perform regular security audits and vulnerability assessments ...

Management System Manual for Quality (ISO 9001), InfoSec (ISO 27001) and ESG (ISO 14001). Follow established OT security procedures aligned with IEC 62443, NIST CSF, and company policies. Translate complex technical threats into clear business risks for management and collaborate with GRC (Governance, Risk, and Compliance) teams. Work with ...

e.g., Rapid7, Nessus, Qualys, OpenVAS). Knowledge in scripting languages (e.g., Python, PowerShell) for automation. Knowledge of security standards and frameworks (e.g., ISO 27001, NIST, CIS Controls). Skills & Competencies Analytical Skills Ability to conduct risk assessments and prioritise vulnerabilities based on business impact. Experience in creating and interpreting metrics ...

Security Tools: Experience with Data Loss Prevention (DLP), IAM, and secure vaults (e.g., CyberArk). Frameworks: Deep understanding of Privacy and Security frameworks (GDPR, NIST, OWASP). Preferred Qualifications Financial Services: Previous experience within a highly regulated banking environment is strongly preferred. Certification: CISSP, CISM, or equivalent cloud security certifications. ...

Strong understanding of Active Directory, LDAP, and authentication protocols - Experience with scripting (PowerShell, Python) for automation and reporting - Familiarity with compliance frameworks (ISO 27001, NIST, GDPR) - Excellent problem-solving, communication, and documentation skills If you are interested in this position and would like to learn more, please send through your ...