426 to 450 of 457 NIST Jobs in England

to embed security controls from day one Review and guide third-party risk assessments and product security compliance Support DPIAs and ensure alignment with Cyber Essentials, ISO 27001, and NIST frameworks Lead threat modelling, risk assessments, and support documentation of potential vulnerabilities Influence strategic investment decisions based on risk and business impact What You'll Need: Proven experience advising on … security across the full project lifecycle Deep knowledge of Secure by Design principles and data protection best practices Strong familiarity with Cyber Essentials, ISO 27001, NIST, and other regulatory frameworks Hands-on experience supporting DPIAs and third-party risk reviews Ability to clearly communicate cyber risks to both technical and non-technical stakeholders Previous experience working in Agile or change More ❯

implement best-in-class security and disaster recovery solutions. What You'll Do: AWS cloud migration & build scalable infrastructure Automate deployments & CI/CD pipelines Ensure security & compliance with NIST 800-53 Manage containerization (Docker) Implement disaster recovery & high availability solutions Lead the migration of on-premises infrastructure to AWS , ensuring minimal disruption and maximum efficiency Design and implement scalable … optimize AWS services including EC2, S3, RDS, Lambda, VPC, IAM, CloudWatch, and CloudTrail Monitor system performance, conduct audits, and troubleshoot infrastructure issues Implement security and compliance measures aligned with NIST 800-53 Automate infrastructure provisioning using Terraform, CloudFormation, or AWS CDK Optimize cost-efficiency of cloud resources DevOps & Automation (40%) Design, implement, and manage CI/CD pipelines for seamless … CI/CD tools (Jenkins, GitLab CI/CD, AWS CodePipeline) Strong scripting skills in Python, Bash, or PowerShell Solid understanding of networking, cloud security best practices, and compliance (NIST 800-53) Experience with monitoring & logging tools (Prometheus, ELK Stack, Splunk) Excellent problem-solving and communication skills Location: Our office is located in Portsmouth, NH but we are now accepting More ❯

across multiple projects and programmes Design and implement Sentinel playbooks to automate detection and response Lead on PSN audit readiness and ensure compliance with key frameworks (Cyber Essentials, ISO27001, NIST, GDPR) Conduct cyber risk assessments, maintain the risk register, and drive remediation activity Provide regular reports and updates to senior stakeholders on cyber posture, risks, and progress Support and mentor … within a Local Government environment (this is essential) Direct experience supporting or leading PSN audits and wider compliance activities Strong working knowledge of core security frameworks: ISO27001, Cyber Essentials, NIST, GDPR Excellent stakeholder management and reporting skills, with the ability to operate independently in a complex environment CISSP certification is required Please only apply if you have Local Government experience More ❯

across multiple projects and programmes Design and implement Sentinel playbooks to automate detection and response Lead on PSN audit readiness and ensure compliance with key frameworks (Cyber Essentials, ISO27001, NIST, GDPR) Conduct cyber risk assessments, maintain the risk register, and drive remediation activity Provide regular reports and updates to senior stakeholders on cyber posture, risks, and progress Support and mentor … within a Local Government environment (this is essential) Direct experience supporting or leading PSN audits and wider compliance activities Strong working knowledge of core security frameworks: ISO27001, Cyber Essentials, NIST, GDPR Excellent stakeholder management and reporting skills, with the ability to operate independently in a complex environment CISSP certification is required Please only apply if you have Local Government experience More ❯

Your new company With over 160 years of experience, this organisation combines a strong heritage with a clear focus on innovation and progress. It prioritises safety, sustainability, and high-quality service, while fostering an inclusive workplace where people are empowered More ❯

impact to the organization • Risk analysis and mitigation of potential vulnerabilities • Applying risk management frameworks and methodologies • Performing data classification • Conducting security risk reviews • Control framework implementation, such as NIST 800-53, ISO 27001, Fed Ramp and NIST CSF • Knowledge of penetration tests on web applications and tools. • Maintaining systems/applications records status for reporting and alerts • Providing advice More ❯

Director of Cyber Security - NIST CSF, Risk Management, Incident Response - Dublin - £150,000 + 40% bonus A leading international gaming and entertainment company are searching for a Director of Cyber Security to drive their Group cyber security strategy and build resilience across their global operations. The Director of Cyber Security's responsibilities will be: Lead implementation of Group cyber security … strategy, driving a long-term approach to building resilience and capability. Supervise 2nd line Cyber Risk, Standards and Assurance teams, implementing technology security policies and NIST CSF standards. Strengthen cyber governance and risk management, providing timely and accurate risk reporting to senior management and risk committees. Lead Security Monitoring & Incident Response teams, ensuring robust processes across critical business systems. Oversee … Platforms & Services Security teams, ensuring assets comply with NIST CSF v2 and Group policies. Manage SEC reporting requirements for significant cyber incidents and educate stakeholders on GDPR and regulatory responsibilities. Collaborate with Legal, Risk, DPO and Finance teams to add value and improve cyber risk management. Support merger and acquisition activities by assessing cyber risk in proposed acquisitions. Create and More ❯

structures, policies, and practices within Technology and Network functions. Design a fit-for-purpose Technology Risk Management Framework that aligns with business needs and industry standards (e.g. ISO 27001, NIST, COBIT). Develop practical tools such as risk registers, heatmaps, control libraries, and risk assessment templates. Stakeholder Engagement & Knowledge Transfer: Work closely with internal stakeholders to understand current risks and … Familiarity with regulatory and compliance requirements relevant to telecom (e.g., GDPR, NIS2, national telecom regulations). Experience working with risk and control frameworks such as ISO 31000, ISO 27001, NIST CSF, COBIT, or COSO. Ability to communicate clearly and influence senior stakeholders. Self-starter, capable of driving outcomes independently in a short time frame. Preferred Certifications: CRISC, CISM, CISSP, CISA More ❯

system (ISMS) capable of demonstrating compliance against internal security requirements and external commitments including certification and regulatory requirements. Provide subject matter expertise in the application of established standards including NIST, PCI-DSS, GDPR, COBIT, ISO 27001 and Cyber Essential compliance to any new or existing programme of work. Prepare and support internal and/or external compliance audit activities. Manage … certifications. Maintain up-to-date knowledge of legal & regulatory requirements impacting Technology and Operations and its Partners. Apply comprehensive knowledge of legal, regulatory obligations, and industry best practices (e.g., NIST, COBIT, ISO27001, PAS 555) to ensure compliance with technology standards. Schedule and review risk and compliance audits; direct issues to appropriate resources for investigation and resolution. Our people make us … as we continue to deliver for our customers. LI-KS1 Possess one of the Risk or security certifications (CISSP, CRISC, CISM). Have good knowledge and practical experience of NIST, PCI-DSS, GDPR, COBIT, ISO 27001, or Cyber Essentials. Previous experience in a similar role, with the ability to work in a dynamic and changing environment. Excellent team player who More ❯

and systems. - Assess and remediate gaps in security practices and influence operational teams to adopt security-first approaches. - Drive adherence to industry standards and frameworks such as ISO 27001, NIST, or similar. - Provide expert input to enhance security frameworks, policies, and procedures. - Lead and support security awareness initiatives across business units. What We’re Looking For - Strong understanding of information … security principles, particularly in GRC. - Hands-on experience with ISO 27001, NIST, or similar standards. - Excellent communication and stakeholder engagement skills - able to translate technical security concepts into clear business language. - Proven ability to embed governance and compliance into large, complex organisations. - Ability to balance technical, operational, and business priorities. Why Apply? This is more than a technical role - it More ❯

legal, and policy teams to develop, manage, and ensure compliance with industry regulations and internal policies Implement and support information security and privacy standards/frameworks (e.g. ISO 27001, NIST, CIS) Work directly with engineering teams and architects to review system and data architectures in line with best practices Analyse and communicate the impact of vulnerabilities, controls, and mitigations on … technical and non-technical audiences Manage stakeholder expectations across projects with a pragmatic, agile, and solution-oriented approach Key Skills & Experience In-depth knowledge of cybersecurity frameworks such as NIST, ISO 27001, and CIS Proven experience in a similar governance-focused role involving internal controls, risk management, and audit readiness Strong ability to bridge the gap between technical teams and More ❯

comprehensive security programmes tailored to diverse environments, including hybrid IT/OT settings. Demonstrable experience of delivering projects to industry frameworks and compliance requirements, such as NIST800-53, ISO27001, NIST CSF, NIS 2, DORA. Expertise in emerging technologies such as AI, IoT, cloud solutions, and advanced threat detection systems. Experience in advising on their application, assessing their suitability for specific … comprehensive security programmes tailored to diverse environments, including hybrid IT/OT settings. Demonstrable experience of delivering projects to industry frameworks and compliance requirements, such as NIST800-53, ISO27001, NIST CSF, NIS 2, DORA. Expertise in emerging technologies such as AI, IoT, cloud solutions, and advanced threat detection systems. Experience in advising on their application, assessing their suitability for specific More ❯

Cloud Security Engineer Kent – Hybrid 12-month FTC - Competitive Salary VIQU have partnered with a leading automotive organisation seeking a Cloud Security Engineer to join their growing security function. This role has been created to help bridge the gap between More ❯

and resolve performance, connectivity, and security incidents. Driving continuously monitoring and fine-tune Zscaler configurations and policies for optimal performance. Take responsibility for Compliance and Governance. (ie HIPAA, GDPR, NIST) Contributing to detailed project documentation, including design, configuration, testing records, status & management reports. Providing guidance, mentoring and training to junior engineers. To be successful in the Zscaler Engineering role you … Cybersecurity Consultant, Security Specialist, ZIA & ZPA Certified Administrator, ZIA & ZPA Certified Professional, ZIA and ZPA delivery specialist, ZIA and ZPA support specialist, ZDTA, ZDTE, ZDXA, ZCDS, ZCSS, HIPAA, GDPR, NIST, Secure Access Services Edge, SASE, Web Application Firewall, WAF, Cloud, Kubernetes, We are Disability Confident and neurodiverse aware. If you have a disability, please tell us if there are any More ❯

Job Title: Zscaler Consultant Day Rate: £500-600 per day (Outside IR35) Duration: 6 months Location: Fully remote/WFH Overview: As Zscaler Consultant you will be a senior member of the team responsible for designing, configuring, implementing, and optimizing More ❯

application, end to end encryption and life cycle management. Technical Skills & Experience: Expertise in Cybersecurity Industry 4.0, OT & IoT Security adaptive security approaches. Experience in working with framework like NIST CSF, IEC 62443, NIST 800-82 etc. Should have a strong understanding of broad cybersecurity risk management and Infrastructure security and a base level understanding OT Security including concepts and … enhance clients' security posture. Should be open to explore modern technologies and the OT Security product space and assess technology from vendors. Knowledge of security industry regulations and standards NIST, EU NIS Directive, IEC 62443. Industry qualifications (CCSK, CEH, CCSP, GICSP, CISM, CISA, SABSA) would be desirable. Knowledge on any of the platforms such as Nozomi Network, Claroty, Armis, PAS More ❯

and threat modelings ; Strong ability to communicate technical concepts and assessment results verbally and in written reports in simple terms; Knowledge of IEC 62443, MITRE ATT&CK for ICS, NIST CSF, NIST SP 800-82 and relevant regulations in EU and UK; Interest and ability to write exciting whitepapers and publications ; A supportive and a proactive personality , you know how More ❯

end-of-life firewalls, enhancing WiFi networks and improving overall network resilience. Implement automated remote patching processes and software/hardware inventory management. Own the cybersecurity roadmap, working towards NIST Cybersecurity Framework (NIST 3) maturity. Manage third-party technology partners, vendors and service providers. Create effective processes for logging, prioritising and resolving support requests. Lead internal security awareness and training More ❯

/OT Continuity Plan and Backup Management Procedure. Defining and documenting RTOs and RPOs, and conducting Asset Impact Analyses. Leading risk assessments and ensuring compliance with standards such as NIST, NIS2, and ISO 22301. Planning and executing backup integrity tests and realistic recovery scenarios. Facilitating tabletop and live failover exercises, and reporting on continuity readiness to senior stakeholders. Collaborating with … DR platforms and OT technologies (SCADA, PLC, HMI). Proven experience defining RTO/RPO frameworks and conducting impact analyses. Familiarity with regulatory frameworks and standards (e.g., ISO 22301, NIST). Certifications such as CBCP, ISO 22301 Lead Implementer, DRICert, or ITIL Foundation (preferred). Excellent communication and stakeholder coordination skills. A proactive, analytical mindset with a passion for resilience More ❯

to join our global client's new UK cybersecurity team. This role is predominantly end-client facing, advising on security best practices, vulnerability management and security standard compliance (e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. Skills & Experience Required: 3+ years of experience working in Cyber Security within an AWS cloud environment Any experience with CrowdStrike would … with PCI DSS Vulnerability management & Compliance Lead on Audits Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with stakeholders and clients, as well as the ability to provide training and mentoring around cybersecurity Ideally, some relevant cybersecurity certifications This role is full-time onsite More ❯

collaborative team of infrastructure and DevOps engineers Build secure, scalable infrastructure (Windows/Linux, VMs, containers) Drive CI/CD, automation, and Infrastructure as Code practices Ensure compliance with NIST, NCSC, CIS, JSP, and ISO 27001 Oversee backup, DR, and business continuity strategies Maintain strong cyber hygiene and proactively manage vulnerabilities Create documentation and a knowledge-sharing culture Work cross … hands-on expertise with strategic oversight. Essential Experience & Skills: Proven experience in secure IT infrastructure & DevOps leadership Strong technical background in systems administration & automation Solid grasp of compliance frameworks (NIST, NCSC, JSP) Excellent communication and stakeholder management Tech Stack You'll Work With: OS: Windows Server, Hardened Linux Containers/Orchestration: Docker, Kubernetes, Portainer DevOps Tools: Jenkins, Artifactory, Jira, Azure More ❯

Are you a cloud infrastructure professional with a strong security focus? Are you looking for a broader role, offering the opportunity for continued learning and development while embracing tech for good? Do you have the skills to innovate and influence More ❯

Press Tab to Move to Skip to Content Link Select how often (in days) to receive an alert: Identity & Access Management Engineer Date: 10 Jul 2025 Company: Royal London Group Job Title: Identity & Access Management Engineer - IGA Contract Type: Permanent More ❯

Job Title: PAM Consultant- SC Cleared Location: Hybrid – Stafford Park 1, Telford TF3 3BD (3 days/week Onsite) Duration: 3months+ Description We are seeking a highly experienced Privileged Access Management (PAM) Consultant to lead the assessment and strategic planning More ❯

risk management framework that aligns with the organizations strategic goals and objectives. This will be aligned to COBIT but also take into account other frameworks in use such as NIST and ITIL. Stakeholder Engagement: Engage with external stakeholders, including the Head of Risk Assurance, the Risk Assurance team and our internal audit partners, to ensure effective communication and compliance with … services or high regulation sector (for example Pharma). Demonstrable working knowledge of common IT processes and department functions. Working knowledge of a recognised Risk Management Framework, such as NIST, or as part of a more general framework such as COBIT (preferred) Excellent communication and influencing skills, with the ability to engage stakeholders at all levels. Experience in building risk More ❯