101 to 125 of 338 NIST Jobs in the UK

ideally within the built environment or critical infrastructure . Strong understanding of cyber-physical systems , OT environments , and connected infrastructure . Experience applying assurance frameworks and technical standards (e.g. NIST, ISO27001, CAF). Background in governance, risk, and compliance (GRC) functions. Excellent communication and stakeholder engagement skills. Agile, analytical, and solutions-focused mindset. Experience in sectors such as energy, water More ❯

ideally within the built environment or critical infrastructure . Strong understanding of cyber-physical systems , OT environments , and connected infrastructure . Experience applying assurance frameworks and technical standards (e.g. NIST, ISO27001, CAF). Background in governance, risk, and compliance (GRC) functions. Excellent communication and stakeholder engagement skills. Agile, analytical, and solutions-focused mindset. Experience in sectors such as energy, water More ❯

dynamic team Good numeracy and organisational skills, with attention to detail Critical competencies – technical fit Good understanding of at least one audit framework; PCI DSS, ISO 27001, Cyber Essentials, NIST, SOC 2, NIS2, Microsoft 365 Certification, etc. Ability to deliver, without supervision/support, at least one Cyber Practice GRC service Aptitude for understanding, interpreting, and applying objective standards to More ❯

of Secure by Design principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001/2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and/or system development environments Effective communication and report-writing skills Ability More ❯

of Secure by Design principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001/2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and/or system development environments Effective communication and report-writing skills Ability More ❯

SCCM). Strong background in system monitoring, performance tuning, and troubleshooting. Experience supporting hybrid environments (on-premises and cloud). Familiarity with network security, patch management, and compliance frameworks (NIST, FISMA, FedRAMP). U.S. Citizenship required (Public Trust eligibility). Preferred Certifications: Microsoft Certified: Windows Server Hybrid Administrator Associate VMware Certified Professional (VCP) CompTIA Security+ or Network+ AWS or Azure More ❯

and communication skills. You have: Active Security Clearance (e.g., SC/DV). Proven experience in Security Assurance, Information Assurance, or Cyber Risk Management. Strong understanding of security frameworks (NIST, ISO 27001, MoD JSPs, CAF, etc.). Excellent reporting and documentation skills able to translate complex technical findings into actionable insights. Knowledge of cloud, network, or application security principles. A More ❯

entry level certification such as SEC+, Net+ or SANS/GIAC would be an additional benefit Additionally, it would be beneficial to have an understanding of security frameworks including NIST, NIS Regulations, CAF, IEC, SoGP, MITRE ATT&CK, MITRE ATT&CK ICS and/or Cyber Kill Chain. This role requires strong analytical and problem-solving skills including root-cause More ❯

lines of defence to ensure alignment and adherence to assurance best practice. We need you to have Expert knowledge of cyber security governance frameworks, policies, and procedures such as NIST, COBIT, CIS (Center for Internet Security) Controls Understanding of cyber security risk management principles and practices. Awareness of emerging cyber security trends, threats, and technologies. It's a bonus if More ❯

entry level certification such as SEC+, Net+ or SANS/GIAC would be an additional benefit Additionally, it would be beneficial to have an understanding of security frameworks including NIST, NIS Regulations, CAF, IEC, SoGP, MITRE ATT&CK®, MITRE ATT&CK® ICS and/or Cyber Kill Chain. This role requires strong analytical and problem-solving skills including root-cause More ❯

and compliance Ability to manage workload and meet deadlines Desirable Skills UK Cyber Security Council registration Knowledge of HMG or MoD security policy Secure by Design experience Experience with NIST, CAF, GovAssure or ISO 27001 audits Understanding of supplier assurance Experience reviewing penetration test and vulnerability outputs Additional Requirements SC or DV clearance preferred or willingness to be vetted Right More ❯

end IT, Digital, and Programme Assurance audits covering ERP, infrastructure, cybersecurity, data privacy, DA and digital transformation initiatives. Provide expert insights on IT controls, cybersecurity (aligned to frameworks like NIST, ISO, SOC2), and data protection regulations (e.g., GDPR). Support the development and presentation of risk and audit reports for senior executive committees and the Audit Committee. Evaluate the design More ❯

consistent quality of work. Experience & Skills: 1–3 years of experience in cyber security, ideally within MSSP or consulting environments. Exposure to incident response processes and frameworks such as NIST CSF, ISO 27001, and MITRE ATT&CK. Strong analytical and problem-solving skills with attention to detail. Effective communication skills, capable of engaging with both technical and non-technical stakeholders. More ❯

management principles. Experience in conducting security assessments and producing assurance reports. Ability to engage and influence stakeholders at all levels. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls). Excellent communication, planning, and organisational skills. Experience managing teams and developing talent. Ability to interpret complex technical and business information to assess risk. Experience in supply chain More ❯

Professionalism and empathy when engaging with stakeholders and understanding their needs. Nice to Have Experience/Knowledge Understanding of Cyber Security principles Risk assessment Familiarity with Cyber Frameworks (e.g. NIST, ISO Translating technical risks into business impact Benefits We believe in supporting our people both professionally and personally. Here's what you can expect when you join us: Time Off More ❯

Security Architect. Proven track record in designing secure infrastructure solutions. Hands-on experience with cloud platforms such as Azure, AWS, or GCP. Familiarity with security and control frameworks (e.g., NIST, ISO). Strong understanding of authentication, authorisation, and access control. Ability to map control frameworks to security practices and conduct gap analyses. Excellent communication skills to articulate security requirements across More ❯

Excellent communication skills and the ability to work effectively within a collaborative SOC team Desirable Skills Experience with incident documentation and reporting Familiarity with security frameworks (MITRE ATT&CK, NIST, ISO 27001) Ability to adapt quickly to new tools, threats, and operational priorities Any relevant certifications (e.g., Security+, CySA+, Microsoft SC-series, GIAC More ❯

/Entra Active Directory Group Policy Highly desired: Keen interest in cyber security and understanding of key concepts and protocols. Understanding and exposure of the Cyber Essentials, ISO27001, and NIST frameworks. Previous experience within a SOC environment. Experience with Microsoft Defender XDR. In-depth hands on experience with Microsoft Sentinel SIEM. Certifications such as CompTIA Security+, ITIL and SSCP or More ❯

as Security Controller or Crypto Custodian. Demonstrated experience overseeing cyber security controls, audits, or compliance in partnership with IT teams and MSPs. Familiarity with frameworks such as ISO 27001, NIST, CAF, or similar standards. Experience developing corporate security policies, frameworks, and operating procedures. Experience leading security accreditation, assurance reviews, or certification maintenance. Exposure to facility and physical security planning, contract More ❯

or scripting languages (Python, PySpark, SQL). Solid understanding of data warehousing and data modelling techniques (Star Schema, Snowflake Schema). Familiarity with security frameworks (GDPR, HIPAA, ISO 27001, NIST, SOX, PII) and AWS security features (IAM, KMS, RBAC). Knowledge of Azure data engineering tools (ADF, Azure DB, Azure Synapse, Azure Data Lake, Azure Monitor) for hybrid migration scenarios. More ❯

qualifications (ISO 9001, ISO 22301, ISO 27701, ISO 20000-1). Experience auditing in data-intensive sectors such as finance, healthcare, or public sector. Technical knowledge of cybersecurity frameworks (NIST CSF, CIS, Cyber Essentials Plus). Membership in a professional body (BCS, ISACA, IIA, IISP, etc.). More ❯

to business operations. Security and Compliance Implement and enforce network security policies and procedures to safeguard the integrity and confidentiality of organizational data. Ensure compliance with industry standards, including NIST, PCI-DSS, and GDPR, by enforcing firewall, VPN, and other security measures. Collaboration and Leadership Work closely with cross-functional teams, including cybersecurity, cloud architects, systems engineers, and external vendors More ❯

an ICT Infrastructure, Managed Service Provider and/or Systems Integrator In-depth knowledge of ISO 27001 standards and best practices, as well as other relevant security frameworks (e.g., NIST, CAF) A regluated background is essential Strong technical understanding of modern IT and cloud environments, including the ability to assess third-party platforms, suppliers, and software for security risks Proven More ❯

OSCE, CREST CRT/CCT, GPEN. Bonus Points For: Cloud & container testing experience (AWS/Azure/GCP, Docker, Kubernetes), familiarity with standards such as PCI-DSS, ISO 27001, NIST, DORA, NIS2, exceptional communication skills and experience leading client engagements. More ❯

OSCE, CREST CRT/CCT, GPEN. Bonus Points For: Cloud & container testing experience (AWS/Azure/GCP, Docker, Kubernetes), familiarity with standards such as PCI-DSS, ISO 27001, NIST, DORA, NIS2, exceptional communication skills and experience leading client engagements. More ❯