26 to 38 of 38 NIST Jobs in the North of England

maintain traceability and prove value delivered by remediation. Responsibilities Requirements & analysis: elicit and document user journeys, process maps and control requirements; maintain traceability to NIST CSF categories and regulatory obligations. Story writing and acceptance: write clear user stories with measurable acceptance criteria; orchestrate UAT and evidence packs. Service process alignment ...

traceable, measurable, and aligned to risk reduction outcomes. Responsibilities include: * Elicit and document user journeys, process maps, and control requirements * Maintain traceability to NIST CSF categories and regulatory obligations * Write clear user stories with measurable acceptance criteria * Lead UAT coordination and evidence pack preparation * Map as-is/ ...

Ability to read P&IDs, electrical drawings and control philosophies Advantageous (Not Essential) Interest in OT/ICS Cyber Security Awareness of IEC 62443, NIST or industrial cyber practices Experience delivering system upgrades or modernisation projects Functional safety knowledge (IEC 61508/61511) What's on Offer Competitive salary + ...

organisational priorities and risk appetite. Lead multidisciplinary teams spanning governance, risk, compliance, architecture, operations, and incident response. Embed recognised frameworks such as ISO 27001, NIST CSF, NIS2, and DORA into policies, processes, and technology platforms. Oversee security operations, including monitoring, threat detection, incident response, and vulnerability management. Conduct and support … information security within a complex, multi-site, or multinational organisation. Extensive experience developing enterprise-wide security strategies aligned to frameworks such as ISO 27001, NIST CSF, CIS Controls, or DORA. Strong understanding of cloud and hybrid security environments, including Microsoft 365 and Azure. Strong operational expertise across EDR/ ...

Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, and NIST Confidence when speaking with stakeholders and clients Ideally, some relevant cybersecurity certifications - CISSP, CCSP, CISM etc Key Responsibilities: Lead the design and implementation of … modelling to proactively identify vulnerabilities and develop effective mitigation strategies Develop and maintain security policies and frameworks that adhere to industry standards such as NIST, ISO 27001, and CIS Controls The client is looking to pay a starting salary of around £75,000, depending on experience. ...

security and network posture. Key responsibilities include: Developing and maintaining security strategies, policies, standards, and procedures in alignment with frameworks such as ISO27001 , NIST CSF , CIS Controls , and Cyber Essentials Plus . Providing senior leadership with insightful reports, dashboards, and actionable recommendations on security posture, risks, and incidents. Leading cyber … years in a senior/lead cybersecurity role. Leadership of teams and delivery of security strategies/policies. Deep knowledge of key frameworks (ISO27001, NIST CSF, CIS Controls, Cyber Essentials Plus). Experience in risk management, incident response, vulnerability management/remediation, third-party security, and stakeholder engagement. Relevant certifications ...

techniques Experience of security governance and compliance, ideally gained in financial services organisations Demonstrable understanding of Information Security control standards and frameworks e.g. ISO27001, NIST, PCI DSS Awareness and understanding of the Information Security threat landscape Deep understanding of Information Security solutions and controls Experience of Cloud security solutions and … standards is highly advantageous Competence, knowledge, and skills Competence Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. 5 years experience in an Information Security role gained in a financial services or e-commerce environment is preferred Knowledge & Skills Excellent communicator, able to translate ...

security workflow specifications (e.g., threat models, security control frameworks, policy decision flows), security architecture diagrams, and governance framework documentation aligned with industry standards (NIST, ISO 27001, CIS Controls). Desired Knowledge - Knowledge of DevSecOps tooling, GitOps for security-as-code, CI/CD pipelines for security policy deployment, Infrastructure … SASE), zero trust network access platforms, security posture management, and cloud IAM integration. Compliance and Regulatory Controls - Strong knowledge of security frameworks and standards (NIST Cybersecurity Framework, ISO 27001/27002, PCI-DSS, SOC 2) and experience designing and implementing solutions using commercial and open-source security tools for lifecycle ...

driven access control. Knowledge of segmentation strategies, firewall technologies, threat intelligence integration, and security policy modelling. Familiarity with governance frameworks and standards such as NIST, ISO 27001, and CIS Controls . Desirable Skills & Experience DevSecOps & Cloud Security Experience with security-as-code, GitOps, CI/CD security pipelines, and Infrastructure … security platforms (CASB, SASE, ZTNA platforms, cloud firewalls, IAM integration, security posture management). Compliance & Risk Knowledge of security and compliance frameworks such as NIST CSF, ISO 27001/27002, PCI-DSS, SOC 2 . Understanding of ITIL, risk management frameworks, and enterprise security governance processes. Agile Delivery Experience working ...

oversight of cybersecurity, IT infrastructure, and cloud risks. Partner with IT and Security to ensure strong controls aligned to ISO/IEC 27001 and NIST, track emerging threats, and drive timely mitigation. Regulatory Compliance & Reporting: Ensure alignment with PRA/FCA expectations and industry standards. Produce high-quality risk reporting … Proven capability across technical risk, AI/ML, data governance, cyber, and cloud. Confident challenging IT and data science teams using frameworks like COBIT, NIST, and ISO 27001. Skilled at engaging senior stakeholders and executives, delivering clear challenge, and driving cross-functional alignment on risk decisions. Relevant degree with desirable ...

across the full system lifecycle, ensuring compliance with JSP 440 (Leaflet 5C), JSP 453 and alignment to the National Institute of Standards and Technology (NIST) RMF and CSF frameworks. Key Responsibilities Lead continuous risk management within agreed risk appetite. Develop and maintain security artefacts (SMP, SAL, Risk Assessments, IR & Vulnerability … and audit remediation. Engage senior stakeholders and translate cyber risk into business impact. Essential Experience Proven cyber security risk or governance background. Strong knowledge of NIST RMF/CSF and MOD policy (JSP 440 & 453). Experience delivering risk assessments, health checks and remediation. Stakeholder management within MOD or Government ...

domains Define clear risk appetite metrics and KRIs for technology and operational resilience Ensure alignment with PRA/FCA expectations and relevant ISO/NIST standards Operational Resilience & Change Risk Oversee resilience across critical services and digital platforms Provide oversight of change governance in fast-moving technology programmes Ensure risk … Experience overseeing infrastructure, cloud, digitisation and legacy transformation risk Knowledge of PRA/FCA regulatory expectations and operational resilience requirements Familiarity with ISO 27001, NIST and related control frameworks Ability to challenge senior Technology leaders constructively and commercially Strong analytical capability with the confidence to drill into technical detail ...

domains Define clear risk appetite metrics and KRIs for technology and operational resilience Ensure alignment with PRA/FCA expectations and relevant ISO/NIST standards Operational Resilience & Change Risk Oversee resilience across critical services and digital platforms Provide oversight of change governance in fast-moving technology programmes Ensure risk … Experience overseeing infrastructure, cloud, digitisation and legacy transformation risk Knowledge of PRA/FCA regulatory expectations and operational resilience requirements Familiarity with ISO 27001, NIST and related control frameworks Ability to challenge ...