1 to 25 of 28 NIST Jobs in the North West

OSI model, with the ability to apply layered security controls across infrastructure and cloud environments. Demonstrated ability to assess control effectiveness and identify compliance gaps against frameworks such as NIST, ISO 27001, CIS Benchmarks, and PCI DSS. Experienced in conducting security assessments and aligning solutions with ITSM, ITIL, and service improvement standards. Proven track record in supporting security incidents, implementing More ❯

develop the next generation of cyber leaders Ideal Background Proven experience in cyber strategy, transformation, and risk management within complex organisations Strong knowledge of regulatory and security frameworks (e.g. NIST CSF, ISO27001, GDPR, NIS2, NCSC CAF) Experience across areas such as GRC, security architecture, threat management, or vulnerability management Outstanding communication and stakeholder engagement skills, with the ability to influence More ❯

working with next gen security solutions Awareness of Cloud security solutions and standards is highly advantageous Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. Experience in an Information Security role gained in a financial services or e-commerce environment is preferred Ability to challenge approach, strategy and implementation to ensure Information Security is More ❯

working with next gen security solutions Awareness of Cloud security solutions and standards is highly advantageous Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. Experience in an Information Security role gained in a financial services or e-commerce environment is preferred Ability to challenge approach, strategy and implementation to ensure Information Security is More ❯

working with next gen security solutions Awareness of Cloud security solutions and standards is highly advantageous Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. Experience in an Information Security role gained in a financial services or e-commerce environment is preferred Ability to challenge approach, strategy and implementation to ensure Information Security is More ❯

prepare reports Cyber Defence Manager - Experience Incident response, security engineering, intrusion detection Experience of SOC or Incident Response Team Analyse End Point, Network, Application Logs Security frameworks/Standards (NIST, CIS, ISO27001) Scripting & Automation (PowerShell, Azure CLI, Azure Logic Apps) MITRE ATT&CK, Threat Modelling Knowledge of CVEs and security vulnerabilities SIEM Tools, Cyber Hunting Techniques Operational threat intelligence and More ❯

clearance, or is willing to undergo the security vetting process; Strong academics, including a minimum of 2.1 degree or equivalent experience Familiarity with information security frameworks such as ISO27001, NIST etc; Willingness to operate as part of an 'on-call roster', travelling to assist our UK and EMEA clients when required in an incident management capacity; Connect to your business More ❯

and delivering compliance aligned services across GDPR, Cyber Essentials, ISO 27001. Proficient in using Microsoft 365 security stack: Purview, Defender, Conditional Access, MFA. Fluent in cybersecurity frameworks (CIA, NCSC, NIST) and modern threat prevention approaches. Why Curveball Make a real impact: You’ll lead the cybersecurity footprint across clients and services. True partnership: We treat clients like collaborators, not just More ❯

and delivering compliance aligned services across GDPR, Cyber Essentials, ISO 27001. Proficient in using Microsoft 365 security stack: Purview, Defender, Conditional Access, MFA. Fluent in cybersecurity frameworks (CIA, NCSC, NIST) and modern threat prevention approaches. Why Curveball Make a real impact : You'll lead the cybersecurity footprint across clients and services. True partnership : We treat clients like collaborators, not just More ❯

interpreted by Information Technology and business individuals Skills: Recognised qualifications include CISSP, CISM, CISA or equivalent ISO 27001 Lead Auditor/Lead Implementor or similar qualification Familiarity with the NIST Cybersecurity Framework is beneficial. Formal qualification in Information Security domain or equivalent experience desirable Cloud Security Controls Location – Manchester or London (hybrid) Start Date: ASAP Rate: £700 - £750pd (Inside IR35 More ❯

Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

embed a strong security culture Promote continuous improvement across compliance and assurance What youll bring Strong background in cyber security governance, policy, and risk management Knowledge of ISO 27001, NIST CSF, CAF, GDPR/DPA Stakeholder engagement skills with senior leaders and technical teams Experience delivering security awareness or culture-change programmes Familiarity with tools such as Power BI, Excel More ❯

embed a strong security culture Promote continuous improvement across compliance and assurance What youll bring Strong background in cyber security governance, policy, and risk management Knowledge of ISO 27001, NIST CSF, CAF, GDPR/DPA Stakeholder engagement skills with senior leaders and technical teams Experience delivering security awareness or culture-change programmes Familiarity with tools such as Power BI, Excel More ❯

embed a strong security culture Promote continuous improvement across compliance and assurance What youll bring Strong background in cyber security governance, policy, and risk management Knowledge of ISO 27001, NIST CSF, CAF, GDPR/DPA Stakeholder engagement skills with senior leaders and technical teams Experience delivering security awareness or culture-change programmes Familiarity with tools such as Power BI, Excel More ❯

embed a strong security culture Promote continuous improvement across compliance and assurance What youll bring Strong background in cyber security governance, policy, and risk management Knowledge of ISO 27001, NIST CSF, CAF, GDPR/DPA Stakeholder engagement skills with senior leaders and technical teams Experience delivering security awareness or culture-change programmes Familiarity with tools such as Power BI, Excel More ❯

Provide technical direction and leadership across projects Essential Skills & Experience Proven expertise in secure cloud architecture and solution design Strong understanding of security standards and regulations (e.g. NCSC, ISO, NIST, PCI, GDPR) Background in application architecture, software development, or infrastructure architecture Experience with security testing tools and techniques Familiarity with CI/CD pipelines and continuous security practices Knowledge of More ❯

cyber security controls, designing solutions that enable defence in depth and services with security controls embedded. Significant experience of implementing enterprise security tooling and platforms in line with the NIST cyber security framework or equivalent, and CIS security controls. Influential and able to lead investigative work into problems and opportunities in existing processes, driving the collection of information and creation More ❯

cyber security controls, designing solutions that enable defence in depth and services with security controls embedded. Significant experience of implementing enterprise security tooling and platforms in line with the NIST cyber security framework or equivalent, and CIS security controls. Influential and able to lead investigative work into problems and opportunities in existing processes, driving the collection of information and creation More ❯

cyber security controls, designing solutions that enable defence in depth and services with security controls embedded. Significant experience of implementing enterprise security tooling and platforms in line with the NIST cyber security framework or equivalent, and CIS security controls. Influential and able to lead investigative work into problems and opportunities in existing processes, driving the collection of information and creation More ❯

maintain company systems and their security. Liaise with global Security Operations Centre colleagues to resolve any issues. Ensure compliance with relevant regulations, standards, and frameworks (e.g., GDPR, ISO 27001, NIST) Review and update security program documentation. Support customer relations and requirements per commercial agreements. Develop, implement, and maintain security policies, processes, procedures and guidelines. Assist with internal and external audits … sensitive information with sound judgement. Understanding of PKI. Desirable: Bachelor's degree in Computer Science, IT or Information Security. Compliance exposure with relevant security frameworks and standards (PCI, ISO, NIST, CIS). Experience with audits and compliance enforcement. Penetration testing experience. Strong understanding of networking protocols and systems architecture. Creating PCI digital keys or security access modules. Threat intelligence exposure. More ❯

and continuity teams to embed cyber risk Improve processes, tools, and methodologies What were looking for Strong knowledge of cyber risk and enterprise risk registers Familiarity with frameworks like NIST, ISO 27001 or NCSC CAF Confident presenting to technical and exec audiences Skilled with reporting tools (Excel, Power BI, GRC platforms) Organised, proactive, and a clear communicator Whats on offer More ❯

penetration testing and vulnerability assessments, tracking remediation to closure or handover to BAU. Translate technical risks into business language for stakeholders. Maintain alignment with ISO27001 and other frameworks (e.g., NIST). Advise on compliance for staff, suppliers, and services. Support procurement activities with security assessments and contract reviews. Skills & Experience - Essential Strong experience in Information Security across complex environments (e.g. … stakeholders. Ability to work independently and collaboratively in a fast-paced environment. Skills & Experience - Desirable Recognised certifications: CISSP, CISM, CISA, CEH. ISO27001 Lead Auditor/Implementer certification. Knowledge of NIST Cybersecurity Framework and PKI. Understanding of large public sector programmes. Eligible for HMG SC clearance. Personal Attributes Analytical and detail-oriented with a proactive mindset. Strong stakeholder engagement and influencing More ❯

Security risk management tools and techniques Experience of security governance and compliance, ideally gained in financial services organisations Demonstrable understanding of Information Security control standards and frameworks e.g. ISO27001, NIST, PCI DSS Awareness and understanding of the Information Security threat landscape Deep understanding of Information Security solutions and controls Experience of Cloud security solutions and standards is highly advantageous Competence … knowledge, and skills Competence Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. 5 years experience in an Information Security role gained in a financial services or e-commerce environment is preferred Knowledge & Skills Excellent communicator, able to translate complex topics to all areas of the business Significant experience in the area of Information More ❯

OCTAVE, MITRE ATT&CK. • Up to date knowledge of cyber security threats, threat actor motivation and capability, and relevant threat group TTPs. • An understanding of risk management frameworks e.g. NIST, FAIR, Orange Book, and an understanding of Government Functional Standards e.g. GovS 007. • Knowledge of security control (and maturity) frameworks e.g. NIST (e.g. CSMA, CSF), CIS, ISO 27000 series, CSA … Cloud Controls Matrix, NCSC CAF, and an understanding of the types and functions of security controls. • An understanding of hypothetical attack paths, familiarity with NIST CSF tools and able to use it for gap analysis. • Understands Data Flow Diagrams (DFD) and trust boundaries and is able to create one using information provided about an environment. • Familiar with the functions of More ❯

OCTAVE, MITRE ATT&CK. Up to date knowledge of cyber security threats, threat actor motivation and capability, and relevant threat group TTPs. An understanding of risk management frameworks e.g. NIST, FAIR, Orange Book, and an understanding of Government Functional Standards e.g. GovS 007. Knowledge of security control (and maturity) frameworks e.g. NIST (e.g. CSMA, CSF), CIS, ISO 27000 series, CSA … Cloud Controls Matrix, NCSC CAF, and an understanding of the types and functions of security controls. An understanding of hypothetical attack paths, familiarity with NIST CSF tools and able to use it for gap analysis. Understands Data Flow Diagrams (DFD) and trust boundaries and is able to create one using information provided about an environment. Familiar with the functions of More ❯