1 to 25 of 81 NIST Jobs in Scotland

experience may compensate for lack of formal education. Certifications such as CISSP, CISM, expert level Azure, or similar are a plus. Familiarity with security frameworks (ISO 27001, SOC 2, NIST, FedRAMP). Competencies Advanced knowledge of cyber security. Excellent leadership, communication, and cross-functional collaboration and mentoring skills. More ❯

security domain Strong knowledge of security technologies such as XDR, SIEM, EDR, identity management, email security, cloud security, etc. Familiarity with regulatory and compliance frameworks (e.g., ISO 27001, NIS, NIST, GDPR) Excellent communication and presentation skills, both technical and non-technical Ability to translate technical concepts into business value Relevant security certifications (e.g., CISSP, CISM, CCSP) preferred At Sword, our More ❯

and cloud security, particularly Azure and Microsoft 365 . Hands-on experience with SIEM, DLP, IAM, EDR, WAF, and SASE tools. Solid understanding of frameworks such as ISO 27001, NIST, CIS, and the Well-Architected Framework . Relevant qualifications such as CISA, CISM, SABSA, or TOGAF (preferred). Excellent communicator who can translate complex security concepts for both technical and More ❯

clearance, or is willing to undergo the security vetting process; Strong academics, including a minimum of 2.1 degree or equivalent experience Familiarity with information security frameworks such as ISO27001, NIST etc; Willingness to operate as part of an 'on-call roster', travelling to assist our UK and EMEA clients when required in an incident management capacity; Connect to your business More ❯

Candidate The ideal candidate will possess the following: Strong understanding of IT, Security, and operational resilience in large organisations Proven experience with information security controls and standards (e.g. COBIT, NIST, ISO 27001/2) Demonstrable knowledge of Enterprise Risk Management in a technical setting Experience delivering assurance activities, including control testing Excellent communication, influencing and negotiation skills Ability to manage More ❯

translate complex technical risks into actionable business decisions and provide senior leaders with clear, data driven insights. You will also align the company with leading industry frameworks such as NIST CSF, NIST 800 53, and SOC 2, helping advance its risk maturity. What You'll Be Doing ** Lead and continuously improve the cyber risk management program, including oversight of the … a strong ability to influence stakeholders across IT and the business. You'll bring: ** 5+ years in cybersecurity risk management, GRC, or equivalent senior role. ** Hands on experience with NIST CSF, NIST 800 53, SOC 2, and risk frameworks. ** Experience in SOC 2 audit readiness and execution. ** Knowledge of enterprise GRC tools such as ServiceNow, Archer, or Purview Compliance Manager. More ❯

translate complex technical risks into actionable business decisions and provide senior leaders with clear, data driven insights. You will also align the company with leading industry frameworks such as NIST CSF, NIST 800 53, and SOC 2, helping advance its risk maturity. What You'll Be Doing ** Lead and continuously improve the cyber risk management program, including oversight of the … a strong ability to influence stakeholders across IT and the business. You'll bring: ** 5+ years in cybersecurity risk management, GRC, or equivalent senior role. ** Hands on experience with NIST CSF, NIST 800 53, SOC 2, and risk frameworks. ** Experience in SOC 2 audit readiness and execution. ** Knowledge of enterprise GRC tools such as ServiceNow, Archer, or Purview Compliance Manager. More ❯

managing the security of critical systems. Demonstrable experience of managing complexity in a working context. Experience of control frameworks in a technology or information security context. Working Knowledge of NIST 800-53 and IS4. Security Institute Membership and/or BCS Membership NB: Successful applicant will require active SC before assignment commences/be willing to undertake SC and be More ❯

managing the security of critical systems. Demonstrable experience of managing complexity in a working context. Experience of control frameworks in a technology or information security context. Working Knowledge of NIST 800-53 and IS4. Security Institute Membership and/or BCS Membership NB: Successful applicant will require active SC before assignment commences/be willing to undertake SC and be More ❯

managing the security of critical systems. Demonstrable experience of managing complexity in a working context. Experience of control frameworks in a technology or information security context. Working Knowledge of NIST 800-53 and IS4. Security Institute Membership and/or BCS Membership NB: Successful applicant will require active SC before assignment commences/be willing to undertake SC and be More ❯

managing the security of critical systems. Demonstrable experience of managing complexity in a working context. Experience of control frameworks in a technology or information security context. Working Knowledge of NIST 800-53 and IS4. Security Institute Membership and/or BCS Membership NB: Successful applicant will require active SC before assignment commences/be willing to undertake SC and be More ❯

managing the security of critical systems. Demonstrable experience of managing complexity in a working context. Experience of control frameworks in a technology or information security context. Working Knowledge of NIST 800-53 and IS4. Security Institute Membership and/or BCS Membership NB: Successful applicant will require active SC before assignment commences/be willing to undertake SC and be More ❯

managing the security of critical systems. Demonstrable experience of managing complexity in a working context. Experience of control frameworks in a technology or information security context. Working Knowledge of NIST 800-53 and IS4. Security Institute Membership and/or BCS Membership NB: Successful applicant will require active SC before assignment commences/be willing to undertake SC and be More ❯

managing the security of critical systems. Demonstrable experience of managing complexity in a working context. Experience of control frameworks in a technology or information security context. Working Knowledge of NIST 800-53 and IS4. Security Institute Membership and/or BCS Membership NB: Successful applicant will require active SC before assignment commences/be willing to undertake SC and be More ❯

and applications. ** Evaluate projects and initiatives for security risks, recommending appropriate mitigation and controls. ** Develop and maintain security frameworks and standards aligned to recognised best practice (e.g. ISO 27001, NIST, CIS). ** Ensure compliance with client and regulatory security obligations across all platforms and services. ** Collaborate with IT, Security Operations, and Risk teams to ensure security requirements are embedded throughout … in information security architecture and governance across enterprise environments. ** Expertise with Azure and Microsoft 365 security tooling and cloud security principles. ** Strong understanding of frameworks such as ISO 27001, NIST, and the Well Architected Framework. ** Experience with technologies such as SIEM, DLP, IAM, EDR, WAF, and SASE. ** Ability to communicate complex technical concepts to both technical and non technical audiences. More ❯

awareness, and the confidence to engage at every level. Ideally, youll have: Strong experience in cybersecurity risk management or GRC roles A solid understanding of industry frameworks such as NIST CSF, NIST 800-53, or SOC 2 Hands-on involvement in audit or certification readiness programmes Excellent communication skills with the ability to translate security risk into business value This More ❯

Sky's privileged security baseline. Be familiar designing and implementing closed loop credential management workflows. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Design, implement, and manage the PAM system to ensure the confidentiality, integrity, and … Expertise in cross platform scripting (Powershell, bash etc.). Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have experience with threat modelling methodologies e.g., STRIDE. Have a good understanding of Access Controls More ❯

Sky's privileged security baseline. Be familiar designing and implementing closed loop credential management workflows. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Design, implement, and manage the PAM system to ensure the confidentiality, integrity, and … Expertise in cross platform scripting (Powershell, bash etc.). Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have experience with threat modelling methodologies e.g., STRIDE. Have a good understanding of Access Controls More ❯

Sky's privileged security baseline. Be familiar designing and implementing closed loop credential management workflows. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Design, implement, and manage the PAM system to ensure the confidentiality, integrity, and … Expertise in cross platform scripting (Powershell, bash etc.). Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have experience with threat modelling methodologies e.g., STRIDE. Have a good understanding of Access Controls More ❯

Sky's privileged security baseline. Be familiar designing and implementing closed loop credential management workflows. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Design, implement, and manage the PAM system to ensure the confidentiality, integrity, and … Expertise in cross platform scripting (Powershell, bash etc.). Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have experience with threat modelling methodologies e.g., STRIDE. Have a good understanding of Access Controls More ❯

Sky's privileged security baseline. Be familiar designing and implementing closed loop credential management workflows. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Design, implement, and manage the PAM system to ensure the confidentiality, integrity, and … Expertise in cross platform scripting (Powershell, bash etc.). Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have experience with threat modelling methodologies e.g., STRIDE. Have a good understanding of Access Controls More ❯

Sky's privileged security baseline. Be familiar designing and implementing closed loop credential management workflows. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Design, implement, and manage the PAM system to ensure the confidentiality, integrity, and … Expertise in cross platform scripting (Powershell, bash etc.). Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have experience with threat modelling methodologies e.g., STRIDE. Have a good understanding of Access Controls More ❯

Sky's privileged security baseline. Be familiar designing and implementing closed loop credential management workflows. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Design, implement, and manage the PAM system to ensure the confidentiality, integrity, and … Expertise in cross platform scripting (Powershell, bash etc.). Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have experience with threat modelling methodologies e.g., STRIDE. Have a good understanding of Access Controls More ❯

Sky's privileged security baseline. Be familiar designing and implementing closed loop credential management workflows. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Design, implement, and manage the PAM system to ensure the confidentiality, integrity, and … Expertise in cross platform scripting (Powershell, bash etc.). Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have experience with threat modelling methodologies e.g., STRIDE. Have a good understanding of Access Controls More ❯

Sky's privileged security baseline. Be familiar designing and implementing closed loop credential management workflows. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Design, implement, and manage the PAM system to ensure the confidentiality, integrity, and … Expertise in cross platform scripting (Powershell, bash etc.). Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have experience with threat modelling methodologies e.g., STRIDE. Have a good understanding of Access Controls More ❯