176 to 200 of 241 NIST Jobs in the UK

cloud security, data protection, and risk/control functions Oversee implementation and optimisation of security controls, ensuring real risk reduction and operational effectiveness Embed NIST-aligned practices across Identify, Protect, Detect, Respond, Recover domains Drive process, policy, and governance improvements to support a scalable security operating model Develop and track … leading large-scale Information Security or Security Transformation programmes Strong exposure across IAM (SailPoint), PAM, cloud security, and data protection domains Experience delivering against NIST or similar security frameworks Track record of improving security maturity across people, process, and technology Strong understanding of security controls and how they are implemented ...

working closely with Service Desk, Projects, and clients. Maintain robust security reporting and ensure clients understand their risk position. Oversee compliance efforts (ISO 27001, NIST, GDPR) and ensure gaps are addressed. Provide guidance on governance, policies, and technical best practice. Ensure SOC activities are efficient, actioned, and measurable. … security experience. Understanding SOC processes, alert triage, and incident escalation. Solid grasp of vulnerability management (tools, triage, prioritisation , remediation). Familiarity with ISO 27001, NIST CSF, GDPR, Cyber Essentials Plus. Ability to translate technical risk into business-impact language. Strong documentation, reporting, and communication skills. Experience implementing technical controls that ...

using the Purdue Model. · Strong familiarity with major OT/ICS vendors (Siemens, ABB, GE, Schneider Electric). · Experience applying frameworks such as IEC62443, NIST CSF, NIST 800‐82, NCSC CAF. · Senior-level stakeholder management experience. Certifications – Highly Desirable · OT/ICS Security/Safety Certifications · ISA/ ...

Contract Business Analyst | Utilities/Power Generation | NIS/NIS2/NIST | IT/OT Security | Security Framework and Operational Procedures | UK Based (can be working remotely) | £650/day Our client is looking for an experienced Utilities/Power Generation Business Analyst with IT/OT knowledge and ...

experience in vulnerability scanning tools, familiar with CVSS scoring and vulnerability prioritisation. This would suit an analyst who is familiar with frameworks such as NIST, Cyber Essentials. Working to understand and interpret findings and communicate to stakeholders, detailed orientated and can work with other cross functional teams and departments. ...

with clients, delivery teams, and senior stakeholders to embed security into solution design Standards & Compliance - Ensure adherence to industry standards such as ISO 27001, NIST, and government security policies Skills and Experience: Experience working as a Security Architect or in a senior security role within complex environments Strong practical experience … experience conducting threat modelling (e.g. STRIDE, attack trees) and risk analysis Strong understanding of security frameworks and best practice such as ISO 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure/NCSC CAF, HMG Security Policy Framework. ...

organisation.Cybersecurity ArchitectureLead the development and maintenance of secure architecture frameworks across cloud, on premises, and hybrid environments. Ensure alignment with industry standards (for example, NIST and ISO 27001) and organisational risk appetite, with a particular focus on AI.Technical Engineering LeadershipOversee the engineering and integration of security controls across platforms, including … equivalent experience).* Relevant professional certifications (for example, CISSP, CCSP, SABSA, or AWS/Azure Security).* Deep knowledge of security frameworks (such as NIST and ISO 27001), cloud and on premises security, and secure software development practices.* Proven track record of designing and implementing security controls and solutions ...

industries, frameworks, and environments - ideal if you're looking to broaden your experience. Key Responsibilities: Conduct security audits and assessments against recognised frameworks (ISO27001, NIST, NCSC) Support risk management activities and improve security posture across client environments Assist with information governance processes and reporting Deliver client projects within agreed scope … cyber security/IT security role Experience in security assurance, audits, or compliance-focused work Good understanding of frameworks such as ISO27001, NIST, NCSC Knowledge of risk management and information governance Familiarity with regulations like GDPR/Data Protection Act Strong communication skills - comfortable working with clients and stakeholders Ability ...

threat models, risk assessments, architecture blueprints, and high/low-level design documentation Advising clients on implementing security controls aligned with frameworks such as NIST, CIS, ISO 27001, Cyber Essentials and NCSC CAF Supporting complex transformation programmes , working alongside programme and project teams Conducting cyber assessments and consultancy engagements either … exposure to AWS also beneficial Experience producing architecture artefacts such as threat modelling, risk assessments and design documentation Knowledge of major security frameworks including NIST, CIS, ISO 27001, Cyber Essentials or NCSC CAF Experience working within consulting, advisory, or client-facing roles Ability to communicate complex security concepts to technical ...

threat models, risk assessments, architecture blueprints, and high/low-level design documentation Advising clients on implementing security controls aligned with frameworks such as NIST, CIS, ISO 27001, Cyber Essentials and NCSC CAF Supporting complex transformation programmes , working alongside programme and project teams Conducting cyber assessments and consultancy engagements either … exposure to AWS also beneficial Experience producing architecture artefacts such as threat modelling, risk assessments and design documentation Knowledge of major security frameworks including NIST, CIS, ISO 27001, Cyber Essentials or NCSC CAF Experience working within consulting, advisory, or client-facing roles Ability to communicate complex security concepts to technical ...

networking/Software Defined Access (802.1X, IBNS 2.0) Solid grounding in Windows networking services including Active Directory, DNS, DHCP, and Certificate Services Desirable Skills NIST hardening guidelines ITIL processes ServiceNow BeCrypt OS Linux operating systems Data diodes On-Call Requirement - This role includes participation in an on-call rota with ...

embed security thinking into day-to-day engineering decisions. Key experience you will have Strong background in risk assessment using recognised frameworks such as NIST 800-30 or ISO 27005 Ability to define and implement effective risk mitigation across technical, physical and procedural controls Experience producing clear, structured security documentation ...

Understanding of secure system design within MOD or high-security environments Familiarity with Ivanti or similar endpoint control tools Awareness of compliance frameworks (e.g. NIST, RMADS, SyOPs ) If this Infrastructure Engineer role is of interest apply ...

Understanding of secure system design within MOD or high-security environments Familiarity with Ivanti or similar endpoint control tools Awareness of compliance frameworks (e.g. NIST, RMADS, SyOPs ) If this Infrastructure Engineer role is of interest apply ...

Experience with NAC platforms (Forescout, Cisco ISE, Aruba ClearPass). Understanding of 802.1X, RADIUS, certificates, and device profiling. Exposure to security frameworks (Zero Trust, NIST). Experience working in regulated environments. All profiles will be reviewed against the required skills and experience. Due to the high number of applications ...

and strong stakeholder skills, including: CISM qualification (or equivalent) Strong knowledge of ISO 27001, ideally as a Lead Auditor or Auditor Working knowledge of NIST CSF and NIST SP 800-53 Excellent understanding of relevant legal, regulatory and compliance requirements Proven experience implementing and operating security management in line with ...

Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, and NIST Confidence when speaking with stakeholders and clients Ideally, some relevant cybersecurity certifications - CISSP, CCSP, CISM etc Key Responsibilities: Lead the design and implementation of … modelling to proactively identify vulnerabilities and develop effective mitigation strategies Develop and maintain security policies and frameworks that adhere to industry standards such as NIST, ISO 27001, and CIS Controls The client is looking to pay a starting salary of around £75,000, depending on experience. ...

related field (or equivalent experience). Relevant professional certifications (e.g., CISSP, CCSP, SABSA, AWS/Azure Security). Deep knowledge of security frameworks (e.g., NIST, ISO 27001), cloud and on-premises security, and secure software development practices. Proven track record in designing and implementing security controls and solutions at scale. … Cybersecurity Architecture: Lead the development and maintenance of secure architecture frameworks for cloud, on-premises, and hybrid environments. Ensure alignment with industry standards (e.g., NIST, ISO 27001) and Clients risk appetite with a particular focus on AI. Technical Engineering Leadership: Oversee the engineering and integration of security controls across platforms ...

responsible for ensuring that all corporate and subsidiary operations comply with internal security policies, regulatory requirements, and internationally recognised frameworks such as ISO27001, NIST, SOX, GDPR, CMMC, and others.Key Responsibilities- Support the execution and enhancement of the global information security compliance program.- Conduct internal audits, third-party risk assessments, and … diligence reviews.- Ensure alignment with regulatory and industry standards including ISO27001, NIST, SOX, GDPR, SOC 2, HIPAA, CCPA, LGPD.- Collaborate with cross-functional teams across multiple jurisdictions to drive compliance initiatives.- Identify gaps in security controls and recommend corrective actions.- Maintain and update security policies, procedures, and documentation.- Monitor changes ...

exercising Excellent communication and stakeholder influence skills across technical and non technical groups Familiarity with NCSC aligned approaches and/or frameworks such as NIST CSF Relevant professional qualifications such as CISSP or CISM To apply, we request that you submit a CV and you will be asked the following … hands on delivery to ensure both long term resilience and quick, tactical gains? Which cyber security governance or risk management frameworks (e.g., NCSC CAF, NIST CSF) have you implemented, and how have they influenced decision making and assurance in your previous organisations? The job advert closes ...

requests with clear and accurate documentation Develop assurance packs demonstrating strong security practices Regulatory & Industry Alignment Stay up to date with frameworks such as NIST CSF, GDPR, NIS2, and UK NCSC guidance Advise stakeholders on regulatory changes and their impact Ensure alignment with evolving cybersecurity standards Continuous Improvement Improve assurance … Essentials Plus, CREST) Strong understanding of Security Operations (SOC) environments Experience supporting audits, RFPs, and customer assurance activities Knowledge of industry frameworks and regulations (NIST, GDPR, NCSC, etc.) Experience working with auditors, regulators, and certification bodies Skills Strong documentation and audit evidence management Excellent communication skills with both technical and ...

security. Liaise with global Security Operations Centre colleagues to resolve any issues. Ensure compliance with relevant regulations, standards, and frameworks (e.g., GDPR, ISO 27001, NIST) Review and update security program documentation. Support customer relations and requirements per commercial agreements. Develop, implement, and maintain security policies, processes, procedures and guidelines. Assist … Understanding of PKI Desirable: Bachelor’s degree in computer science, IT or Information Security Compliance exposure with relevant security frameworks and standards (PCI, ISO, NIST, CIS) Experience with audits and compliance enforcement Penetration testing experience Strong understanding of networking protocols and systems architecture Creating PCI digital keys or security access ...

reviews and compliance assessments, becoming a fully rounded consultant in this field. Support security maturity & gap assessments across frameworks including: PCI DSS, ISO 27001, NIST CSF, CIS Controls, SCF, NCSC CAF, TISAX, SWIFT CSP, DORA, GDPR Contribute to vCISO engagements, including governance, policy development, and exec‐level reporting Perform reviews … and templates What You’ll Bring Experience Minimum 2+ years delivering Cyber Essentials Plus engagements Strong understanding of security frameworks such as: ISO 27001, NIST CSF, CIS Controls, PCI DSS Qualifications Required: IASME Lead Assessor for Cyber Essentials & Cyber Essentials Plus Desirable: One or more of: PCI QSA, CISA, CISM ...

governance and access management. Strong PowerShell scripting skills for automation and identity operations. Knowledge of security compliance frameworks such as ISO27001, GDPR, CIS Controls, NIST, and enterprise governance models. Experience with hybrid identity, AAD Connect, and secure authentication methods (MFA, SSO). Familiarity with privileged access management … OpenID Connect. Administer roles, permissions, and access governance in Entra ID. Security Hardening & Compliance Implement security benchmarks, including CIS Controls, Microsoft Security Baselines, and NIST recommendations. Enforce least privilege, role based access control (RBAC), privileged access management (PAM), and secure admin models (Tier 0/Tier 1). Manage ...

Engage risk review and assurance activities across existing suppliers. Provide IT and business advice on aspects of security standards and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Engage with I&T system owners to provide training in relation to information security, cyber resilience, phishing, and facilitation … and manufacturing environments in manufacturing or similar industries. Experience working with information security standards and frameworks such as and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Proven analytical, problem-solving, planning, project delivery and supplier work packages management skills. Demonstrable experience of engaging across all levels ...