22 of 22 NIST Jobs in Exeter

security policies, standards, and procedures Work with IT and development teams to implement secure system designs and configurations Support compliance initiatives (e.g., ISO 27001, NIST, GDPR, PCI-DSS) by assisting with audits and documentation Conduct security awareness training and phishing simulations for employees Keep up-to-date with the latest More ❯

CI/CD pipelines for secrets management. Familiarity with other PAM tools (e.g., BeyondTrust, Thycotic) is a plus. Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001). Soft Skills: Strong communication and interpersonal skills. Ability to work independently and as part of a team. Detail-oriented with a focus More ❯

Essential Requirements: Degree in a relevant field or professional certification (CISSP, CISM, etc.). Strong understanding of cybersecurity challenges, industry standards (GDPR, ISO 27001, NIST CSF, Cyber Essentials), and risk management. Expertise in networking, operating systems, cloud computing, application security, and endpoint security. Experience managing cybersecurity teams and handling security More ❯

of secure network architectures for on-premises, cloud, and hybrid environments. Define network security standards, frameworks, and policies aligned with industry best practices (e.g., NIST, ISO 27001, CIS). Develop and maintain secure designs for firewalls, VPNs, intrusion prevention systems (IPS/IDS), network segmentation, and zero trust network access More ❯

at rest throughout the transition Develop and validate security requirements for cloud platforms (e.g., Azure, AWS) Ensure alignment with regulatory requirements (e.g., ISO 27001, NIST, GDPR) and internal governance policies Collaborate with infrastructure, network, cloud, and application teams to embed security by design in the migration process Oversee security tool More ❯

of cyber security controls demonstrated by attainment of appropriate qualifications e.g. CISSP, ISO27001 Lead Implementor or relevant SANS GIAC or equivalent Knowledge of the NIST framework, PCI DSS, GDPR and NIS as well as NCSC cyber guidance. Experience working in an agile delivery environment would be highly advantageous. Specific cyber More ❯

architecture frameworks (e.g., TOGAF). • Certifications such as AWS Certified Solutions Architect or Azure Solutions Architect Expert. • Familiarity with security and compliance frameworks (ISO, NIST). • Experience with Agile methodologies and DevOps environments. Additional Information • Private healthcare for you and your family. • 25 days annual leave plus a bonus half More ❯

risk strategy, appetite, and framework. What we're looking for: Practical knowledge of various information security and risk frameworks and standards such as ISO27001, NIST, Cyber Essentials. GRC experience is essential (risk awareness, identification, articulation and mitigation). Whilst this role won't see you utilising technical cyber security tools More ❯

security tools to optimize detection, response, and reporting functions. Skills & Knowledge Solid understanding of SOC best practices, incident response, and regulatory frameworks (e.g., GDPR, NIST, ISO 27001). Hands-on experience with security technologies such as SIEM, IDS/IPS, EDR, etc. Excellent communication skills, including the ability to explain More ❯

log analysis of Networking, Windows, Mac and Linux and Cloud. Understanding of evidence collection process based on priority. Strong understanding of incident response following NIST 800-61 guidelines incorporating containment, eradication and recovery phases. Experience with digital forensics and investigations, including evidence collection and chain-of-custody protocols. Should have More ❯

key IT risk areas such as cloud computing, cybersecurity, SaaS platforms, and data governance Familiarity with IT control frameworks aligned to SOX, COBIT, or NIST Strong analytical and communication skills, with the ability to influence and advise at a senior level Professional qualification such as CISA, CRISC, CISM or CISSP More ❯

role within a tech, managed services, or regulated environment. Strong understanding of risk management, compliance frameworks, and international regulatory landscapes. Familiarity with ISO 27001, NIST, GDPR, DORA, NIS2, and other relevant standards. Excellent communication skills and the ability to influence senior stakeholders. Fluent English is required; Spanish or German is More ❯

What We're Looking For: Experience in pre-sales or solution design within a cybersecurity context Knowledge of security frameworks and standards (e.g. ISO27001, NIST, PCI, MITRE ATT&CK) Proven ability to manage the full pre-sales lifecycle from scoping to sign-off Strong presentation, proposal writing, and communication skills More ❯

maximum 1 month. The experience you'll need for this role is: Strong experience in SOC Good experience of Security frameworks such as ISO27k1, NIST, MITRE ATT&CK etc. Good SOC knowledge of both the hands-off and hands-on skills required Good knowledge around Cloud technologies and DevOps methodologies More ❯

and non-trivial security issues. Support technical teams in resolving vulnerabilities and strengthening security measures. Develop and maintain security testing methodologies aligned with OWASP, NIST, and CIS Controls . Integrate security testing into the CI/CD pipeline to detect and fix vulnerabilities early. Ensure compliance with industry security regulations More ❯

Experience of working in a collaborative manner with auditors, compliance and other key business stakeholders A strong understanding of framework for example ISO 27001, NIST or similar governance models Strong technical experience in IAM delivery, including authentication, federation (SAML, OIDC, OAuth2), and access lifecycle automation Hands-on background in engineering More ❯

and risk management within defence, government, or high-security environments. Suited candidates must have strong knowledge of security frameworks and standards such as RMADS, NIST, DEF STAN, and policies. You will also have experience with accreditation processes and developing security risk balance cases. Familiarity with codes of connection (CoCo), Secure More ❯

vulnerability assessment and a penetration test in the context of assessment scope, objectives, and deliverables. Working knowledge of information security frameworks such as ISO27001, NIST, and CIS. If this sounds like a good opportunity, apply today. Unfortunately no sponsorship is on offer at this stage for this role. More ❯

design patterns Familiar with fallback controls such as WAF's, API gateways Experience using SIEM/logging tools to track API threats Familiarity with NIST, OWASP SAMM, or internal security frameworks Experience producing risk dashboards/reports for API's Able to translate technical risks into business language, collaborating with More ❯

security risks Develop and implement risk mitigation plans Maintain and evolve governance and compliance frameworks Monitor compliance against standards and regulations like ISO 27001, NIST, GDPR Coordinate audits (internal and external) Perform vendor risk assessments Requirements: Degree in Computer Science/IT or relevant industry certifications such as CISA, CRISC … Lead Auditor/Implementer Working knowledge with legal/security needs in housing association sector and its regulatory environment Solid grasp of ISO 27001, NIST, GDPR, and risk management frameworks Experience with risk assessments and developing mitigation plans Experience producing internal audits, reports, gap analyses Experience maintaining compliance with frameworks More ❯

influence. What You'll Be Working On: You’ll support key client projects across a diverse and exciting portfolio, including: Framework Compliance : ISO 27001, NIST, PCI-DSS Security Assurance : Audit, controls assessment, reporting Third-Party Risk Assurance : Vendor risk reviews, supply chain assessments Cloud Security Advisory : Azure, AWS, Office … finish. You’ll Need: Proven experience in a security consulting role (client-facing or internal consulting) Strong understanding of Information Security frameworks (ISO 27001, NIST, PCI-DSS) Hands-on experience delivering security assessments, audits, or assurance reviews Awareness or experience with cloud platforms (Azure, AWS, Office 365) Ability to engage More ❯

to a large-scale uplift of security posture across a global organisation operating at enterprise scale. Following a refresh of security policies aligned to NIST CSF v2.0, the company requires a strong Security Analyst to carry out a broad review of systems, infrastructure, and applications. This role will focus on … SaaS platforms, and bespoke systems. Review current ("as-is") environments and conduct gap analyses against the organisation's new security control framework based on NIST CSF v2.0. Identify weaknesses or outdated practices and define clear, actionable remediation plans in partnership with other teams. Dig into legacy security issues and help More ❯