76 to 100 of 104 NIST Jobs in the South East

security strategies, policies, and architectures. Lead on AI risk assessment, threat modelling, and mitigation planning. Ensure compliance with GDPR, the EU AI Act, and international security frameworks (ISO 27001, NIST, TOGAF, SABSA). Build and maintain secure AI architectures for complex models and pipelines. Oversee ethical AI governance, driving policy alignment and responsible AI adoption. Advise clients on secure cloud … security architecture, adversarial ML mitigation, and model governance. Current security certifications such as CISSP or CISM. Proven experience across cloud security, data privacy, and DevSecOps. Familiarity with frameworks including NIST, ISO 27001, TOGAF, SABSA. Excellent communication and stakeholder influence skills. Eligible for UK Security Clearance (SC). If you’re an experienced security architect or consultant ready to shape how More ❯

security is embedded throughout the delivery lifecycle. This role is fully on-site in Basingstoke and will suit someone with a strong background in Secure by Design principles and NIST methodologies, who thrives in fast-paced, collaborative environments. Key Responsibilities: Lead the integration of security controls into infrastructure designs and solutions Act as the security subject matter expert across Scrum More ❯

the organisation through training, awareness campaigns, and policy enforcement. Maintain oversight of cyber KPIs, threat intelligence, and incident response protocols. Ensure compliance with relevant regulatory frameworks (e.g., PCI DSS, NIST, ISO 27001) Build and maintain strategic relationships with external partners, including regulators and the National Cyber Security Centre. Represent cyber security in major organisational change programmes and digital transformation initiatives. … professional body (e.g., (ISC), ISACA, BCS). Essential Knowledge and Experience Demonstrable experience leading cyber security in large, complex organisations. Deep understanding of cyber security frameworks and standards (e.g., NIST, ISO 27001, PCI DSS). Proven track record of developing and delivering cyber strategies and managing risk at an enterprise level. Strong technical knowledge of modern security technologies and principles More ❯

threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. • Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). • Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. • Oversee endpoint security, cloud network and API security for robust protection across all … Strong experience managing Microsoft 365 (Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. • Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. • Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM More ❯

environments, including ICS, SCADA, and IIoT systems. Partner with engineering, operations, and Technology teams to embed security across the full OT lifecycle. Establish governance frameworks, policies, and compliance programs (NIST, IEC 62443, ISO 27001, etc.) for OT cybersecurity. Lead a high-performing OT cybersecurity team, developing our people as well as technology. Oversee OT-focused vulnerability management, solutions development, conformance … leading OT/ICS cybersecurity programs in industries such as energy, utilities, oil & gas, manufacturing, or transportation. Deep knowledge of OT security standards and frameworks (IEC 62443, NERC CIP, NIST CSF, MITRE ATT&CK for ICS). Strong grasp of industrial control systems design and OT/IT convergence challenges. Exceptional executive communication skills, with ability to engage both technical More ❯

environments, including ICS, SCADA, and IIoT systems. Partner with engineering, operations, and Technology teams to embed security across the full OT lifecycle. Establish governance frameworks, policies, and compliance programs (NIST, IEC 62443, ISO 27001, etc.) for OT cybersecurity. Lead a high-performing OT cybersecurity team, developing our people as well as technology. Oversee OT-focused vulnerability management, solutions development, conformance … leading OT/ICS cybersecurity programs in industries such as energy, utilities, oil & gas, manufacturing, or transportation. Deep knowledge of OT security standards and frameworks (IEC 62443, NERC CIP, NIST CSF, MITRE ATT&CK for ICS). Strong grasp of industrial control systems design and OT/IT convergence challenges. Exceptional executive communication skills, with ability to engage both technical More ❯

environments, including ICS, SCADA, and IIoT systems. Partner with engineering, operations, and Technology teams to embed security across the full OT lifecycle. Establish governance frameworks, policies, and compliance programs (NIST, IEC 62443, ISO 27001, etc.) for OT cybersecurity. Lead a high-performing OT cybersecurity team, developing our people as well as technology. Oversee OT-focused vulnerability management, solutions development, conformance … leading OT/ICS cybersecurity programs in industries such as energy, utilities, oil & gas, manufacturing, or transportation. Deep knowledge of OT security standards and frameworks (IEC 62443, NERC CIP, NIST CSF, MITRE ATT&CK for ICS). Strong grasp of industrial control systems design and OT/IT convergence challenges. Exceptional executive communication skills, with ability to engage both technical More ❯

security. Develop and maintain automation scripts (e.g., PowerShell, Python, Java) to streamline IAM processes and migrations. Advise on IAM-related compliance and governance requirements using frameworks such as ISO, NIST, and Zero Trust architectures. Collaborate with client stakeholders to define IAM strategies aligned to business objectives and security standards. Contribute to the secure integration of cloud, enterprise IT, OT, and … Azure AD, Ping Identity, Saviynt, SailPoint). Strong understanding of IAM concepts: SSO, MFA, RBAC, LDAP, OAuth, SAML, OpenID Connect, provisioning. Knowledge of security protocols, frameworks, and architectures (e.g., NIST, ISO, Zero Trust). Proven experience in cloud IAM across AWS, Azure, and/or GCP environments. Proficiency in scripting/programming (PowerShell, Python, or Java) for IAM automation. Practical More ❯

ethical AI principles and align architectures with frameworks such as the EU AI Act and GDPR. Evaluate and implement AI/ML security tools, ensuring adherence to ISO 27001, NIST, TOGAF, and SABSA standards. Collaborate with cross-functional teams to embed DevSecOps practices within AI/ML lifecycles. What We’re Looking For 7+ years’ experience in cybersecurity architecture, including … privacy, and adversarial ML mitigation . Expertise in cloud security (AWS, Azure, or GCP). Current security certification (CISSP, CISM, or equivalent). Knowledge of security frameworks such as NIST, ISO 27001, TOGAF, and SABSA. If you thrive at the intersection of cybersecurity, AI, and client engagement — apply today and help shape the future of secure innovation. More ❯

ethical AI principles and align architectures with frameworks such as the EU AI Act and GDPR. Evaluate and implement AI/ML security tools, ensuring adherence to ISO 27001, NIST, TOGAF, and SABSA standards. Collaborate with cross-functional teams to embed DevSecOps practices within AI/ML lifecycles. What We’re Looking For 7+ years’ experience in cybersecurity architecture, including … privacy, and adversarial ML mitigation . Expertise in cloud security (AWS, Azure, or GCP). Current security certification (CISSP, CISM, or equivalent). Knowledge of security frameworks such as NIST, ISO 27001, TOGAF, and SABSA. If you thrive at the intersection of cybersecurity, AI, and client engagement — apply today and help shape the future of secure innovation. More ❯

ethical AI principles and align architectures with frameworks such as the EU AI Act and GDPR. Evaluate and implement AI/ML security tools, ensuring adherence to ISO 27001, NIST, TOGAF, and SABSA standards. Collaborate with cross-functional teams to embed DevSecOps practices within AI/ML lifecycles. What We’re Looking For 7+ years’ experience in cybersecurity architecture, including … privacy, and adversarial ML mitigation . Expertise in cloud security (AWS, Azure, or GCP). Current security certification (CISSP, CISM, or equivalent). Knowledge of security frameworks such as NIST, ISO 27001, TOGAF, and SABSA. If you thrive at the intersection of cybersecurity, AI, and client engagement — apply today and help shape the future of secure innovation. More ❯

We are the security engineering team, skilled in cybersecurity, cloud security, application security, and regulatory compliance. Our global distribution allows us to leverage unique experiences and skillsets to build and operate security services that safeguard our platform. We prioritize a More ❯

accounts. • Managing sales, pre-sales and delivery team of consultants for all regional engagements • Designing solutions related to Cyber Risk engagement on assessment and implementation of frameworks such as NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K • Designing solutions related to advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy … services (preferable candidates from Big4 organizations) • Capabilities of executing atleast 3-4 advisory/consulting engagements. • Technical Knowledge around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance … Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS) TPRM • Business Resiliency & Cyber Recovery, ZTA • GRC Project & Program Management • Excellent written and verbal communications skills • Should be able to travel 70%-80% on short as well as long term engagements. PLATFORM/TOOL EXPERTISE • Experience on the below mentioned tools is not mandated More ❯

accounts. • Managing sales, pre-sales and delivery team of consultants for all regional engagements • Designing solutions related to Cyber Risk engagement on assessment and implementation of frameworks such as NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K • Designing solutions related to advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy … services (preferable candidates from Big4 organizations) • Capabilities of executing atleast 3-4 advisory/consulting engagements. • Technical Knowledge around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance … Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS) TPRM • Business Resiliency & Cyber Recovery, ZTA • GRC Project & Program Management • Excellent written and verbal communications skills • Should be able to travel 70%-80% on short as well as long term engagements. PLATFORM/TOOL EXPERTISE • Experience on the below mentioned tools is not mandated More ❯

accounts. • Managing sales, pre-sales and delivery team of consultants for all regional engagements • Designing solutions related to Cyber Risk engagement on assessment and implementation of frameworks such as NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K • Designing solutions related to advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy … services (preferable candidates from Big4 organizations) • Capabilities of executing atleast 3-4 advisory/consulting engagements. • Technical Knowledge around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance … Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS) TPRM • Business Resiliency & Cyber Recovery, ZTA • GRC Project & Program Management • Excellent written and verbal communications skills • Should be able to travel 70%-80% on short as well as long term engagements. PLATFORM/TOOL EXPERTISE • Experience on the below mentioned tools is not mandated More ❯

management response is well defined. Engage risk review and assurance activities across existing suppliers. Provide IT and business advice on aspects of security standards and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Engage with I&T system owners to provide training in relation to information security, cyber resilience, phishing, and facilitation of cyber scenario desktop simulations … controls and consequences across both IT and manufacturing environments in manufacturing or similar industries. Experience working with information security standards and frameworks such as and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Proven analytical, problem-solving, planning, project delivery and supplier work packages management skills. Demonstrable experience of engaging across all levels of a company in More ❯

framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls. Manage and enhance Third-Party Risk Management, including cybersecurity assessments of external partners and suppliers. Collaborate with stakeholders to develop and track cyber risk treatment plans … while fostering strong relationships to embed a risk-aware culture across the organisation. Experience you will have: Expertise in cybersecurity risk frameworks and compliance, including CIS Controls, ISO 27001, NIST CSF, GDPR, SOX, and PCI. Strong technical and analytical skills, with the ability to assess risks, identify gaps, and propose mitigation strategies across IT systems and third parties. Excellent communication More ❯

framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls. Manage and enhance Third-Party Risk Management, including cybersecurity assessments of external partners and suppliers. Collaborate with stakeholders to develop and track cyber risk treatment plans … while fostering strong relationships to embed a risk-aware culture across the organisation. Experience you will have: Expertise in cybersecurity risk frameworks and compliance, including CIS Controls, ISO 27001, NIST CSF, GDPR, SOX, and PCI. Strong technical and analytical skills, with the ability to assess risks, identify gaps, and propose mitigation strategies across IT systems and third parties. Excellent communication More ❯

findings Apply both test of Design and Operating Effectiveness methodologies Use sampling techniques (random and judgemental) to evaluate control performance Monitoring compliance with industry cyber security standards such as NIST and CIS Reporting & Analysis Evidence reviews Prepare detailed reports on control testing outcomes, including ratings and observations Support the development of dashboards and governance reports Track and monitor Key Risk … demonstrable experience in the following: IT audit, compliance or governance Risk management and risk assessment methodologies Control frameworks (e.g., ISO 27001, COBIT). Standards and frameworks, e.g. ITIL, ITSM, NIST Project management and stakeholder management With the following skills: Broad technical awareness: Microsoft Azure, Service Desk, SQL, Information Security etc Strong analytical and documentation skills Proficiency in Excel, SharePoint, PowerBI More ❯

Strong communication skills. Experience producing intelligence reports for varied audiences. Familiarity with cyber threats, threat actors, attack vectors, and vulnerabilities. Knowledge of information assurance standards and frameworks including CIS, NIST, ISO 27001, Cyber Essentials/Essentials Plus, GDPR. Knowledge of threat cyber security frameworks such as MITRE ATT&CK, Kill Chain and NIST CSF 2.0. The ideal candidate will combine More ❯

mitigation plans. Contribute to periodic operational risk assessments and formal risk reporting processes. Compliance Support IT control compliance reviews and assessments against internal standards and frameworks (e.g., ISO 27001, NIST). Assist control owners in performing control self-assessments and audit readiness activities. Help coordinate compliance attestations across internal teams and third-party providers. Participate in periodic maturity assessments and … of IT risk management principles, control frameworks and compliance processes. Experience conducting IT risk assessments, control testing and evidence gathering for audits. Knowledge of frameworks such as ISO 27001, NIST or COBIT. Strong analytical skills and attention to detail with excellent documentation and reporting abilities. Confident communicator, able to engage effectively with technical and non-technical stakeholders. Exposure to financial More ❯

requirements into SOC governance, processes, and operational practices Ensure continuous monitoring, evidence collection, and audit readiness for internal and external assessments Monitor developments in global cybersecurity regulations and frameworks (NIST CSF, UK NCSC guidance, EU NIS2, GDPR) Oversee sector-specific assurance requirements, including PCI DSS and NCSC CIR/CHECK, where applicable Provide expert advice to leadership on regulatory changes … II, Cyber Essentials Plus, CREST) Strong understanding of SOC operations and security assurance frameworks Experience in customer-facing assurance activities, including audits, RFIs, and RFPs In-depth knowledge of NIST CSF, GDPR, and UK NCSC guidance Experience liaising with external auditors, regulators, and certification bodies Strong ability to develop and maintain compliance documentation and audit evidence Proven organisational skills managing More ❯

fast-paced environment, and want to make real impact at Europe’s leading frozen food company. Responsibilities: Overseeing cyber security governance efforts, ensuring alignment with frameworks like ISO 27001, NIST, NIS2 and GDPR, and regulatory standards. Identify, assess, and mitigate security risks across the organisation. Implement and maintain risk management processes, ensuring effective controls are in place. Ensure continuous compliance … experienced in operating a risk management framework across multiple entities and territories, including risk appetite and impact/likelihood calibration. Has familiarity with regulations and standards such as ISO27001, NIST CSF, NIS2, COBIT, ITIL, GDPR, and SOC2, including developing and maintaining frameworks, policies and guidance, and implementation and monitoring strategies. Some of the key skillset required for this position are More ❯

implementation of data loss protection DLP, data retention, and rights management initiatives Drive compliance with DORA, Operational Resilience, and Data Governance requirements Develop and maintain security governance frameworks (ISO27001, NIST) Manage stakeholder relationships across all organizational levels Oversee risk assessments and control implementation Lead security and data privacy policy development Monitor and report on control effectiveness Key Skills: Proven experience … in information security governance and compliance Strong knowledge of UK/EU data privacy regulations Experience with ISO27001, NIST, and GDPR frameworks Project management expertise Excellent stakeholder management skills Technical proficiency in security controls and data governance This is a unique opportunity to shape security and governance strategies while working with cutting-edge technologies and frameworks. Sound like you? Please More ❯

Information Security Consultant - DORA/NIST FocusRemoteA boutique consultancy by nature, the GRC is looking at growing once again. With work spanning across a variety of sectors ever project will be different their organisation's cyber resiliency more effectively.The focus (not limited too): gap assessments and/or assisting in the certification of clients to known security standards such as More ❯