26 to 50 of 66 NIST Jobs in the North of England

DLP and compliance tools) and Azure Security Stack (including Microsoft Defender for Cloud, Microsoft Sentinel, Azure AD etc). Solid understanding of security frameworks (e.g., ISO 27001, Cyber Essentials, NIST, GDPR etc). Experience with vulnerability scanning, risk assessment, and remediation planning. Strong communication skills with the ability to work with both technical and non-technical teams. A proactive approach More ❯

engaging with executive leadership and external stakeholders. What Were Looking For: Extensive experience in Information and Cyber Security, with strong strategic thinking and operational delivery. Familiarity with frameworks like NIST, Cyber Essentials Plus, and GovAssure. Proven leadership and people management skills in fast-paced environments. Experience in project delivery, risk management, and supplier negotiations. Excellent stakeholder engagement, especially at senior More ❯

engaging with executive leadership and external stakeholders. What Were Looking For: Extensive experience in Information and Cyber Security, with strong strategic thinking and operational delivery. Familiarity with frameworks like NIST, Cyber Essentials Plus, and GovAssure. Proven leadership and people management skills in fast-paced environments. Experience in project delivery, risk management, and supplier negotiations. Excellent stakeholder engagement, especially at senior More ❯

Enterprise customers in a B2B SaaS context. Experience of working with B2C SaaS/reseller networks. Knowledge & Skills: An understanding of compliance frameworks such as GDPR, ISO 27001, SOC, NIST, HIPAA, etc and how they shape requirements. Knowledge of SQL (preferably DuckDB) for data analysis. An understanding of the current state and capabilities of LLMs for assessing AI opportunities. An More ❯

access management in alignment with defence-grade standards Security Assurance & Compliance Ensure commission controls comply with MOD policies (e.g. JSP 440/JSP 604) and security frameworks such as NIST, ISO 27005, STIGs, and UK Functional Standard 007 Vulnerability Assessment & Access Review Support regular access reviews, entitlement audits, and role certification; identify and remediate potential vulnerabilities in provisioning and access More ❯

/GRC role Professional certifications including but not limited to CISSP, CCSP, CISM, CRISC, CISA, CDPSE. Experience in auditing and implementing security standards such as ISO 27001/2, NIST CSF, and others. Exceptional verbal, written communication, and presentation skills. Ability to articulate technical requirements to non-technical audiences. Proven self-management skills and ability to work on multiple assignments More ❯

ll have experience leading within a risk management role and have a good knowledge of methodologies such as IEC 62443 and ISO 27005. Knowledge of control frameworks such as NIST, IEC 62443, ISO 27001, ITIL (Information Technology Infrastructure Library), and SABSA is also required. You’ll need to have a structured, methodical and accurate approach with the ability to interpret More ❯

threat intelligence Strong understanding of modern detection and response strategies Familiarity with SOC tooling (Sentinel, Defender, QRadar, Cortex XDR, etc.) Knowledge of threat frameworks like MITRE ATT&CK and NIST Self-starter who can work independently in a lean security function Comfortable driving change and making meaningful improvements in security posture Why Apply? Youll join at a time where you More ❯

and human-to-machine) Knowledge/understanding of hardware security modules (HSMs) for storing cryptographic keys securely, including integration with enterprise applications for key generation and usage.? Familiarity with NIST's Post-Quantum Cryptography (PQC) standardization efforts and practical approaches for transitioning to quantum-resistant encryption schemes.? Knowledge of FIPS 140-2 and FIPS 140-3 validated cryptographic modules and More ❯

related Recognised Industry Security Qualifications eg CCP, CISSP, CISM or similar (or able to achieve Proven experience of assessing and managing information risk in line with industry good practice (NIST, ISO 27001) Experience managing a team and working with customers ideally within a complex engineering or industrial setting Benefits: As well as a competitive pension scheme, BAE Systems also offers More ❯

related Recognised Industry Security Qualifications eg CCP, CISSP, CISM or similar (or able to achieve Proven experience of assessing and managing information risk in line with industry good practice (NIST, ISO 27001) Experience managing a team and working with customers ideally within a complex engineering or industrial setting Benefits: As well as a competitive pension scheme, BAE Systems also offers More ❯

related Recognised Industry Security Qualifications eg CCP, CISSP, CISM or similar (or able to achieve Proven experience of assessing and managing information risk in line with industry good practice (NIST, ISO 27001) Experience managing a team and working with customers ideally within a complex engineering or industrial setting Benefits: As well as a competitive pension scheme, BAE Systems also offers More ❯

Experience with scripting and automation using Python, Bash, or PowerShell. Certifications such as OSCP, OSCE, CEH, or similar are highly desirable. Understanding of regulatory compliance standards (ISO 27001, GDPR, NIST, etc.). Excellent problem-solving skills and attention to detail. Ability to communicate findings and recommendations effectively to clients. Why Join Darkshield? Work with a passionate and expert cybersecurity team. More ❯

risk, and assurance. Key Responsibilities: 1. Governance, Risk & Compliance (GRC) Management Develop, implement, and maintain GRC policies, frameworks, and procedures aligned with industry standards and regulatory requirements (ISO 27001, NIST, SOC 2, GDPR, HIPAA, PCI DSS). Conduct workshops to gather requirements for risk assessments and security reviews, ensuring risk mitigation strategies are in place. Maintain a risk register and More ❯

Ideally, you'll have experience leading within a risk management role and havea good knowledge of methodologies such as IEC 62443 and ISO 27005. Knowledge ofcontrol frameworks such as NIST, IEC 62443, ISO 27001, ITIL (InformationTechnology Infrastructure Library), and SABSA is also required. You'll need to have a structured, methodical and accurate approach with theability to interpret relevant industry More ❯

Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

Drive innovation and thought leadership within the Practice by defining standards, sharing knowledge, and mentoring peers Influence customer outcomes through expert knowledge of DevSecOps tools and compliance frameworks like NIST, CIS, SOC 2, and PCI DSS You'll travel to client sites across the UK, working directly with business and technical stakeholders to drive real business value What you'll More ❯

secure on-premise network architectures including segmentation, access control, and perimeter defence. Collaborate with other teams to ensure compliance with internal security policies and external regulations (e.g., ISO 27001, NIST, GDPR). Threat Intelligence - analyse potential threats, identify vulnerabilities, and implement measures to mitigate risks. Conduct vulnerability scans, validate findings and use a risk-based approach to track and manage … KQL, Azure RBAC, Privileged Identity Management (PIM). Specific knowledge of AWS security stack would be beneficial including GuardDuty, CloudWatch and SecurityHub Familiarity with industry frameworks: MITRE ATT&CK, NIST, CIS, PCI-DSS. Excellent incident response, problem-solving, and communication skills. Preferred Certifications: Microsoft Certified: Cybersecurity Architect Expert (SC-100) Microsoft Certified: Security Operations Analyst Associate (SC-200) Microsoft Certified More ❯

need to succeed Knowledge of what a good control looks like but also has the ability to effectively test controls Understanding of core technology and information security frameworks (COBIT, NIST, ISO27001) Excellent articulative ability Demonstrable experience working in IT audit, IT risk management, technical controls testing/management and IT risk & assurance-related roles Experience in an IT assurance role More ❯

Sales, Cybersecurity or similar technical consultancy role (MSP/reseller experience preferred). Strong understanding of incident response, SOC operations, and endpoint security. Familiarity with security standards (ISO27002, CIS, NIST, CAF). Experience with technologies such as SSE, SASE, SIEM, MDR/EDR. Confident in customer-facing engagements and solution design. Excellent communication, documentation and stakeholder management skills. Engineer certifications More ❯

Sales, Cybersecurity or similar technical consultancy role (MSP/reseller experience preferred). Strong understanding of incident response, SOC operations, and endpoint security. Familiarity with security standards (ISO27002, CIS, NIST, CAF). Experience with technologies such as SSE, SASE, SIEM, MDR/EDR. Confident in customer-facing engagements and solution design. Excellent communication, documentation and stakeholder management skills. Engineer certifications More ❯

management. Solid IT general controls (ITGCs) knowledge. IT outsourcing arrangements, including service delivery, supplier management, and data security considerations. IT governance, strategy, and operating models. Knowledge of IT frameworks (NIST, COBIT, ISO, ITIL) is desirable. Knowledge of project change methodology is desirable. Self-motivated and proactive in approach, able to act independently and on own initiative. Excellent analytical, influencing, presentation More ❯

Eclipse C++ Development IDE & plugins, anti-malware tools, configuring switch/firewall/NAS and other network devices, setup of RHEL subscription and update services, all within a secure NIST based framework. The task package requires the derivation of detailed use cases and design from the high-level use cases/requirements and design, and implementation and test of the More ❯

Security risk management tools and techniques Experience of security governance and compliance, ideally gained in financial services organisations Demonstrable understanding of Information Security control standards and frameworks e.g. ISO27001, NIST, PCI DSS Awareness and understanding of the Information Security threat landscape Deep understanding of Information Security solutions and controls Experience of Cloud security solutions and standards is highly advantageous Competence … knowledge, and skills Competence Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. 5 years experience in an Information Security role gained in a financial services or e-commerce environment is preferred Knowledge & Skills Excellent communicator, able to translate complex topics to all areas of the business Significant experience in the area of Information More ❯

change programmes, and digital transformation initiatives. Develop and deliver a compliance strategy aligned with legislation (e.g., UK GDPR, Data Protection Act 2018, PCI-DSS), internal policies, external frameworks (e.g., NIST CSF, ISO 27001) and aligned with sector-specific best practice (e.g UCISA, NCSC) Develop and deliver a Security Assurance Testing program, including internal and external audit, penetration testing and associated … practices. Highly Desirable Certifications Industry-recognised certifications such as CISSP, CISM, GIAC (e.g., GDSA, GCIH, GCIA), and CompTIA CASP+ Framework-related qualifications (e.g. ISO 27001 Lead Implementer/Auditor, NIST CSF, TOGAF or SABSA) demonstrating capability in structured security operations and strategic alignment. To learn more about this exciting opportunity and benefits we offer, please read the job description and … the wider IT& Digital department to provide a coordinated and effective cyber defence capability. We align our work with recognised frameworks such as the NCSC Cyber Assessment Framework (CAF), NIST CSF, and CIS Controls, ensuring we keep pace with industry best practice while tailoring our approach to the unique challenges of the higher education sector. As part of the team More ❯