101 to 125 of 660 NIST Jobs in the UK

risk management processes Support vulnerability management, penetration testing, and incident response Requirements for this role: 3+ years' experience in a senior cyber security role Strong knowledge of security frameworks (NIST, NCSC, CIS, MITRE ATT&CK) Hands-on experience with security tools: SIEM, IDS/IPS, firewalls, endpoint protection Expertise in Azure security and securing cloud platforms A solid understanding of More ❯

encryption, masking and pseudonymisation. Detailed understanding of the information lifecycle and the self assurance framework for Records Management. Experience of implementing data security standards such as ISO27001, PCI DSS, NIST CSF, CAA CAF etc. Ability to effectively manage cyber security risks and can clearly communicate with key stakeholders to minimise the risk to easyJet. DESIRABLE SKILLS Experience leading a Cyber More ❯

following skills and experience: Strong expertise in defining, delivering, and supporting robust, resilient, and secure enterprise infrastructure. Experience with IT audits and compliance frameworks (CIS, PCI DSS, Cyber Essentials, NIST, ISO 27001). In-depth understanding of network security and compliance in regulated environments. Proven ability to secure high-value data (PCI cardholder data, PII) and implement security best practices. More ❯

and Compliance, IT Infrastructure, Engineering, Compliance and AI teams to integrate security tooling and sophisticated security capabilities into business-critical systems. Define frameworks and standards aligned with industry standards (NIST, MITRE ATT&CK) and semiconductor-specific regulatory requirements including export control and SoX compliance. Drive innovation by utilising AI and machine learning technologies to enhance threat detection, incident response, and … Technology or Semiconductor industries. Proven expertise in cloud security architecture and deployments, particularly in AWS, Azure, and/or Google Cloud Platform. Solid understanding of security frameworks such as NIST, MITRE ATT&CK, and relevant semiconductor industry standards. Excellent leadership skills with a track record of building and managing high-performing technical teams. Exceptional interpersonal skills with the ability to More ❯

teams to create a secure and compliant technology environment. What you will be doing: Maintain security policy, standards, procedures and frameworks. Ensure alignment with security industry standards such as NIST CSF and NIST 800-53. Act as an advisor to colleagues across the organisation on best security practice. Conduct regular risk assessments and maintain risk register in RSA Archer. …/certifications Ideally qualified in MSc Information Security, CICA, CRISC, CISM and/or Data analysis beneficial but not essential if experience validates skills. Knowledge of security frameworks (e.g., NIST CSF, ISO 27001, SOC1,2). Prince 2, MSP, APMQ advantageous. A desire to continue learning and developing security skills and qualifications More ❯

teams to create a secure and compliant technology environment. What you will be doing: Maintain security policy, standards, procedures and frameworks. Ensure alignment with security industry standards such as NIST CSF and NIST 800-53. Act as an advisor to colleagues across the organisation on best security practice. Conduct regular risk assessments and maintain risk register in RSA Archer. …/certifications Ideally qualified in MSc Information Security, CICA, CRISC, CISM and/or Data analysis beneficial but not essential if experience validates skills. Knowledge of security frameworks (e.g., NIST CSF, ISO 27001, SOC1,2). Prince 2, MSP, APMQ advantageous. A desire to continue learning and developing security skills and qualifications More ❯

teams to create a secure and compliant technology environment. What you will be doing: Maintain security policy, standards, procedures and frameworks. Ensure alignment with security industry standards such as NIST CSF and NIST 800-53. Act as an advisor to colleagues across the organisation on best security practice. Conduct regular risk assessments and maintain risk register in RSA Archer. …/certifications Ideally qualified in MSc Information Security, CICA, CRISC, CISM and/or Data analysis beneficial but not essential if experience validates skills. Knowledge of security frameworks (e.g., NIST CSF, ISO 27001, SOC1,2). Prince 2, MSP, APMQ advantageous. A desire to continue learning and developing security skills and qualifications More ❯

certification such as Certified Identity and Access Manager (CIAM) or Certified Identity Management Professional (CIMP), CISSP, or CISM is highly desirable. Experience with cybersecurity frameworks and standards, such as NIST, ISO 27001, or similar. General understanding of operational risk and risk-related control frameworks and practices such (ISO 27001, NIST SP 800-53, NIST CSF, COBIT, ITIL, etc.). Experience More ❯

best practices Ability to communicate effectively with senior management and stakeholders on security issues and risks Expertise in ensuring compliance with relevant cybersecurity regulations and frameworks, such as FCA, NIST, GDPR Experience in one or a combination of the following: systems, applications, or architecture planning Experience driving security awareness programs Strong verbal, written, and interpersonal communication skills Ability to influence More ❯

best practices Ability to communicate effectively with senior management and stakeholders on security issues and risks Expertise in ensuring compliance with relevant cybersecurity regulations and frameworks, such as FCA, NIST, GDPR Experience in one or a combination of the following: systems, applications, or architecture planning Experience driving security awareness programs Strong verbal, written, and interpersonal communication skills Ability to influence More ❯

with SIEM, SOAR, EDR, vulnerability management, and DevSecOps practices. Deep understanding of modern attack vectors, threat intelligence, and incident response processes. Experience with security frameworks and compliance standards (e.g., NIST, ISO 27001, SOC 2, GDPR). Proven ability to align security priorities with business and product strategy. Demonstrated experience delivering large-scale, cross-functional security projects. Excellent leadership, communication, and More ❯

with SIEM, SOAR, EDR, vulnerability management, and DevSecOps practices. Deep understanding of modern attack vectors, threat intelligence, and incident response processes. Experience with security frameworks and compliance standards (e.g., NIST, ISO 27001, SOC 2, GDPR). Proven ability to align security priorities with business and product strategy. Demonstrated experience delivering large-scale, cross-functional security projects. Excellent leadership, communication, and More ❯

information security and risk management frameworks, such as Mitre ATT&CK, International Organization for Standardization (ISO) 2700x and 31000, the ITIL, COBIT and National Institute of Standards and Technology (NIST) or Centre for Internet Security (CIS) frameworks. A broad knowledge and understanding of the cyber security threat landscape and research. Desirable Experience The desirable experience and qualifications include the following More ❯

to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance with ISO 27001 other relevant frameworks and standards (NIST CSF, IEC 62443, CIS, GDPR etc.) Maintain the department’s information security procedures, including but not limited to information security incident response and business continuity management, conducting tabletop exercises to … information security management and/or security awareness. In-depth expert knowledge of industry standard frameworks and best practices – ISO 27001: 2022, ISO 27002:2022, ISO 27005, ISO 31000, NIST and their practical application in a corporate environment to ensure all elements of integrity, availability and confidentiality are adhered to. Extensive experience conducting information security risk assessments, reporting risks Experience More ❯

the team to achieve excellence, while giving credit and recognition where it is due. Knowledge of General Data Protection Regulation (GDPR), Payment Card Industry (PCI), National Institute of Standards (NIST), International Standards Organization (ISO) and other relevant regulations and frameworks. Additional Qualifications Proven trustworthiness and history of acting with integrity, taking pride in work, seeking to excel, being curious and More ❯

security testing (AWS, Azure, or Google Cloud). * Certifications such as ISTQB, CISSP, CISM, or CyberArk Defender are a plus. * Knowledge of security compliance standards (e.g., ISO 27001, GDPR, NIST, PCI-DSS). All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful More ❯

Security risk management tools and techniques Experience of security governance and compliance, ideally gained in financial services organisations Demonstrable understanding of Information Security control standards and frameworks e.g. ISO27001, NIST, PCI DSS Awareness and understanding of the Information Security threat landscape Deep understanding of Information Security solutions and controls Experience of Cloud security solutions and standards is highly advantageous Competence … knowledge, and skills Competence Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. 5 years experience in an Information Security role gained in a financial services or e-commerce environment is preferred Knowledge & Skills Excellent communicator, able to translate complex topics to all areas of the business Significant experience in the area of Information More ❯

staff. Qualifications and skills needed Bachelor's degree in Information Technology, Business Administration, Risk Management, or a related field. Basic understanding of GRC concepts and frameworks (e.g., ISO 27001, NIST, SOX, GDPR). Strong analytical and problem-solving skills. Project management and business analyst skills. Excellent written and verbal communication skills. Ability to work collaboratively in a team environment. Detail More ❯

those requirements. Policy and Procedure Management: directs, develops or maintains organisational cyber and information security policies, standards and processes, using recognised standards (e.g. the ISO/IEC 27000 family, NIST CSF) where appropriate. Applies recognised cyber and information security standards and controls within an organisation, programme, project or operation. Applies relevant security classification. Risk Management: develops cyber and information security … varied experience in information security, data protection, risk management, enterprise IT, legal or (relevant) compliance roles. Strong understanding of security governance, risk, and compliance frameworks such as ISO 27001, NIST 800-53/CSF, NIS/NIS2, DORA, UK CNI/OT/IIOT compliance. Hands-on experience building credibility with external stakeholders, including enterprise clients, critical system vendors, certification More ❯

/GCP would be beneficial Knowledge of Ci/CD pipelines Thorough understanding of SAST, DAST (including fuzzing), endpoint and perimeter scanning etc. Familiarity with industry security standards (ISO27001, NIST, CCM etc) Network and infrastructure experience. API gateway security, WAF and IDS, SSO, SAML etc At least one professional security certification e.g. CISSP, CEH, GCIH, GCFA , CSSLP etc or working More ❯

test, and deliver Security Policy as code for a variety of Public Cloud compute services and Container platforms leveraging native services. Understand industry standard controls such as CIS/NIST/GDPR/ISO/CSA CCM/MCSB to deliver compliant solutions through appropriate adoption, configuration and management of key controls. Deliver security work stream activities and tasks against More ❯

test, and deliver Security Policy as code for a variety of Public Cloud compute services and Container platforms leveraging native services. Understand industry standard controls such as CIS/NIST/GDPR/ISO/CSA CCM/MCSB to deliver compliant solutions through appropriate adoption, configuration and management of key controls. Deliver security work stream activities and tasks against More ❯

Relationship building across teams Set Yourself Apart With Security Certifications: CISSP, CCSP, CISA, CISM, ITIL GCP certifications: Professional Cloud Architect, Professional Cloud Security Engineer Knowledge of standards like ISO, NIST, CSA Experience in regulated environments Experience with Azure security design Development experience in Python, Node Desire to learn and contribute Additional Information Our hybrid work policy requires employees to be More ❯

our information assets through robust cybersecurity measures, ensuring adherence to best practices, international standards, and local regulations. Ideally suited to candidates who possess expert knowledge of security frameworks including NIST 800, ISO 27001, and cybersecurity guidelines from PRA, FCA, and ICO. Candidates with at least 3 years' relevant experience in finance or banking, particularly as an information security officer or … centres to implement security policies and controls. Provide cybersecurity training to ensure staff awareness and compliance. Skills & Qualifications: Minimum 3 years' experience in cybersecurity. Strong knowledge of security frameworks (NIST 800, ISO 27001) and GDPR regulations. Experience with network security infrastructure and SIEM tools (Splunk, SolarWinds). Proficiency in Windows/Linux system administration and virtualization technologies (VMware, Hyper-V More ❯

our information assets through robust cybersecurity measures, ensuring adherence to best practices, international standards, and local regulations. Ideally suited to candidates who possess expert knowledge of security frameworks including NIST 800, ISO 27001, and cybersecurity guidelines from PRA, FCA, and ICO. Candidates with at least 3 years' relevant experience in finance or banking, particularly as an information security officer or … centres to implement security policies and controls. Provide cybersecurity training to ensure staff awareness and compliance. Skills & Qualifications: Minimum 3 years' experience in cybersecurity. Strong knowledge of security frameworks (NIST 800, ISO 27001) and GDPR regulations. Experience with network security infrastructure and SIEM tools (Splunk, SolarWinds). Proficiency in Windows/Linux system administration and virtualization technologies (VMware, Hyper-V More ❯