101 to 125 of 470 NIST Jobs in the UK

enterprise networks. Implement secure identity and access management using Azure AD and Microsoft Entra. Consulting & Advisory: Provide expert guidance to clients on cybersecurity best practices, compliance (e.g., ISO 27001, NIST), and risk mitigation. Conduct assessments and audits of existing network and cloud security postures. Deliver workshops and training sessions on M365 and Azure security capabilities. Incident Response & Monitoring: Collaborate with More ❯

Requirements: ISO 27001 Lead Implementer or Auditor certification (essential). Demonstrated experience in an Information Security or IT Governance role. Strong knowledge of frameworks like ISO 27001/27002, NIST, GDPR, and related standards. Proven ability to manage audits, compliance reporting, and security training programs. Excellent stakeholder management, communication, and analytical skills. This is an exciting opportunity for someone who More ❯

technology controls. Industry Knowledge: The candidate should have a strong understanding of regulatory requirements and industry standards related to technology risk management. Experience in working with frameworks such as NIST, ISO 27001, or COBIT would be beneficial. Technical Skills: Proficiency in using risk management tools and software, as well as a good understanding of IT systems and infrastructure, is preferred. More ❯

Computer Science, or a related field. Proven track record in technology risk, third-party risk management, or IT audit. Strong understanding of regulatory frameworks and standards (e.g., ISO 27001, NIST, DORA, SOC 2). Evidence of ability to handle complex vendor relationships and risk assessments. Excellent analytical, organisational, and problem-solving skills. Strong written and verbal communication skills, with experience More ❯

cyber risk function in risk committees, regulatory meetings, and board-level discussions. Risk Framework & Governance: Design and maintain a cyber risk management framework that aligns with industry standards (eg, NIST, ISO 27005, FAIR). Define and monitor key cyber risk indicators (KRIs) and risk appetite metrics. Oversee regular cyber risk assessments, scenario planning, and risk reporting. Operational Risk Management: Collaborate More ❯

annual Due diligence framework in Risk Ledger, confirming accuracy and documentation Work in line with the overall control framework, which is aligned to ISO27001, ISO27017, ISO9001, FSQS audit and NIST Manage the admin around the Policy framework, ensuring accuracy and timeliness of updates Manage the timely collection of documentation around ICO registrations and insurances Manage the Client CRM and TP More ❯

annual Due diligence framework in Risk Ledger, confirming accuracy and documentation Work in line with the overall control framework, which is aligned to ISO27001, ISO27017, ISO9001, FSQS audit and NIST Manage the admin around the Policy framework, ensuring accuracy and timeliness of updates Manage the timely collection of documentation around ICO registrations and insurances Manage the Client CRM and TP More ❯

suppliers. Liaise with IT and MSSP teams to identify and remediate security risks/incidents. Draft reports, risk register updates, and maintain documentation aligned with best practice (ISO 27001, NIST CSF). Track and advise on industry security trends and their implications. Contribute to social engineering assessments, BAU risk mitigation, and business process evaluations. Influence and support change by aligning More ❯

helping anticipate, detect, and respond to evolving cyber threats. What You'll Do Design and implement secure software solutions, applying security-by-design principles and recognised standards (ISO 27001, NIST). Conduct threat modelling, code reviews, vulnerability assessments, and penetration tests to identify and mitigate risks. Respond to security incidents, perform root cause analysis, and enhance incident response capabilities and More ❯

years of active investigator experience in an IR team, preferably in global enterprise environment Proven experience leading and managing technical teams. Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO/IEC 27001, IAM). Proficiency with cybersecurity tools and platforms (e.g., SIEM, SOAR, SAS, Sandboxes, EDR solutions and cloud technologies). Working of knowledge of access control principles More ❯

Skills Needed: Minimum of 5 years of experience as a Security Architect. Strong background in security architecture and designing enterprise-level solutions. Deep familiarity with frameworks like ISO 27001, NIST, TOGAF or SABSA. Significant experience in Financial Services or Insurance, including PCI-compliant environments. Expert knowledge of network and cloud security using Azure, Hands-on experience with application security, data More ❯

Knowledge and Demonstrable Experience: Of MOD accreditation and secure by design processes (ISN2023/09), and associated policies and practices across the lifecycle. In the application of standards including NIST Special Publications (e.g. SP 800-30, 37 & 53), and/or RTCA-DO-326A/B, 355A & 356A. In the application of Defence security standards, such as Defstan More ❯

demonstrable expertise with monitoring and securing enterprise class technology estates. You will have proven experience with Cyber Security best practice including remediations for the MITRE ATT&CK Framework and NIST Cloud Security guidelines. You will support ISO 27001 compliance and have strong documentation skills. Experience in the Telco sector and knowledge of the UK Telecoms Security Act would be advantageous More ❯

years of active investigator experience in an IR team, preferably in global enterprise environment Proven experience leading and managing technical teams. Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO/IEC 27001, IAM). Proficiency with cybersecurity tools and platforms (e.g., SIEM, SOAR, SAS, Sandboxes, EDR solutions and cloud technologies). Working of knowledge of access control principles More ❯

to day-to-day operations. Expereince : Essential Prior experience in cybersecurity, risk management, compliance, or governance. Strong understanding of regulatory requirements, security frameworks, and standards such as ISO 27001, NIST CSF, CIS, and SOC 2. Hands-on experience with ISO 27001 implementation and audit readiness. Experience supporting SOC 2 readiness and evidence collection. Proficient with risk assessment methodologies and control More ❯

Git, PostgreSQL Cloud security skills, ideally in AWS Understanding of open-source risk management and enterprise tooling Exposure to ITIL service management disciplines Familiarity with MITRE ATT&CK and NIST cybersecurity frameworks Want to hear more or ready to apply? Think this is the role for you or interested in hearing more? Apply or contact the DCS Technology team. DCS More ❯

networking, storage, and identity management across multi-cloud environments. Collaborate with risk, compliance, and governance teams to ensure alignment with relevant industry regulations and frameworks , such as ISO 27001, NIST, or CIS. Where applicable, assess and enhance the security configuration of Salesforce , ensuring effective data protection and access management. Desirable Skills and Experience: 6+ years of experience in cloud security More ❯

management principles and security controls Interest in developing expertise in auditing, compliance, and risk Desirable (nice to have) Knowledge of other standards or frameworks such as Cyber Essentials Plus, NIST Cyber Security Framework, or ISO27701 Awareness of legal and regulatory requirements (e.g., NIS Directive, Telecom Security Act, Data Protection Act) We are the undisputed leader in UK TV and radio More ❯

management principles and security controls Interest in developing expertise in auditing, compliance, and risk Desirable (nice to have) Knowledge of other standards or frameworks such as Cyber Essentials Plus, NIST Cyber Security Framework, or ISO27701 Awareness of legal and regulatory requirements (e.g., NIS Directive, Telecom Security Act, Data Protection Act) We are the undisputed leader in UK TV and radio More ❯

CDMP, PMP, PRINCE2, TOGAF). Experience with data modelling, metadata management, and master data management (MDM) tools. Knowledge of cybersecurity and information assurance practices such as Secure by Design, NIST-800, ISO27001. Excellent stakeholder engagement and communication skills; able to influence across technical and non-technical teams. Strong analytical and problem-solving abilities with a keen attention to detail. Experience More ❯

security domain Strong knowledge of security technologies such as XDR, SIEM, EDR, identity management, email security, cloud security, etc. Familiarity with regulatory and compliance frameworks (e.g., ISO 27001, NIS, NIST, GDPR) Excellent communication and presentation skills, both technical and non-technical Ability to translate technical concepts into business value Relevant security certifications (e.g., CISSP, CISM, CCSP) preferred At Sword, our More ❯

across diverse industries and client environments What You'll Bring Strong experience in cyber strategy, risk management, governance, architecture, and regulatory compliance Familiarity with frameworks and standards such as NIST CSF, ISO27001, NCSC CAF, GDPR, and NIS2 Industry-recognised certifications (e.g. CISSP, CISM, CISA, M.Inst.ISP, or equivalent) Practical experience in GRC, threat and vulnerability management, or operational resilience Proven delivery More ❯

strategic delivery. Key Responsibilities Support cyber transformation projects, governance assessments, and maturity roadmaps Assist with cyber strategy documentation and recommendations for leadership teams Work across frameworks such as ISO27001, NIST CSF, NCSC CAF, GDPR, and NIS2 Contribute to reports, client workshops, presentations, and stakeholder engagement Develop knowledge of security concepts, risk appetite alignment, and digital resilience What We're Looking More ❯

senior leadership role Deep familiarity with security requirements in digital health, life sciences, or FDA-regulated software environments Proven track record managing security and compliance under HIPAA, FDA, and NIST Knowledge of GDPR, ISO 27001, SOC 2 and international security standards Experience with cloud-native environments (e.g., AWS), data encryption, identity management, and secure software development practices Strong communicator who More ❯

an asset. Licensure/Certifications: Industry certification (i.e. AWS CSA, ISC2 ISSAP, SABSA SCF or similar) Knowledge, Skills, Demonstrated Capabilities & Competencies: Familiarity with various security certifications such as ISO2700, NIST, etc., sufficient to provide immediate leadership and guidance to individuals, teams and departments in meeting the organization's security requirements Excellent management, analytical and problem-resolution skills Working knowledge of More ❯