176 to 200 of 470 NIST Jobs in the UK

focus on Microsoft Azure. Deep understanding of Azure security architecture, governance, and compliance. Hands-on experience with Azure-native security tools and services. Familiarity with security frameworks such as NIST, ISO 27001, CIS Benchmarks, and Zero Trust principles. Azure certifications such as AZ-500 (Azure Security Engineer Associate) or SC-100 (Cybersecurity Architect Expert) are highly desirable. Excellent communication and More ❯

Experience with cloud engineering, security tooling, and cloud workload protection Skills in DevOps, AWS, Infrastructure as Code (Terraform), and scripting languages (Python, Bash) Knowledge of security standards (OWASP, CIS, NIST) and Agile/DevOps practices Experience with CSPM, CNAPP, security incident response, and SIEM tools Ability to evaluate and recommend new security technologies Effective communication skills focused on developer experience More ❯

etc.) . Familiarity with cloud migration strategies and hybrid logging environments . Strong documentation skills and attention to detail . Experience with security frameworks such as MITRE ATT&CK, NIST, and CAF . Ability to troubleshoot complex ingestion or parsing issues and resolve at speed Essential Skills . Proven experience onboarding and managing log sources in Azure Sentinel . Hands More ❯

the utilisation of SOC personnel for billable client engagements. Incident Response and Management o Develop and implement incident response frameworks and playbooks in alignment with industry best practices (e.g., NIST CSF, MITRE ATT&CK, ISO 27035) to standardise and optimise response efforts. o Oversee the deployment, configuration, and utilisation of security tools such as SIEMs, IDS/IPS, endpoint protection More ❯

activities. Collaborate with IT and business stakeholders to embed security into solution designs. Monitor compliance with internal policies, external regulations and industry good practice. (e.g., GDPR, ISO27001, CIS, ISF, NIST). Provide expert guidance on security best practices, threat modelling, and mitigation strategies. Support incident response and post-incident reviews from an architectural perspective. Skills and experience you need asInformation More ❯

years of relevant experience. In-depth knowledge of cloud platforms such as AWS and Microsoft Azure, as well as Microsoft Entra ID and M365. Familiarity with frameworks such as NIST CSF, Cyber Assessment Framework (CAF), and NCSC Cloud Security Principles. Proven ability to influence stakeholders and support secure delivery in large, complex environments. Excellent communication skills and ability to collaborate More ❯

threats. Key Responsibilities: Conduct security audits, risk assessments, and penetration tests to evaluate and strengthen our security posture Develop and implement security policies aligned with Cyber Essentials, ISO 27001, NIST, and GDPR Configure and deploy essential tools: firewalls, IDS/IPS, endpoint protection, and encryption Overhaul Active Directory, Group Policies, and server configurations Lead incident response, forensic analysis, and threat More ❯

threats. Key Responsibilities: Conduct security audits, risk assessments, and penetration tests to evaluate and strengthen our security posture Develop and implement security policies aligned with Cyber Essentials, ISO 27001, NIST, and GDPR Configure and deploy essential tools: firewalls, IDS/IPS, endpoint protection, and encryption Overhaul Active Directory, Group Policies, and server configurations Lead incident response, forensic analysis, and threat More ❯

threats. Key Responsibilities: Conduct security audits, risk assessments, and penetration tests to evaluate and strengthen our security posture Develop and implement security policies aligned with Cyber Essentials, ISO 27001, NIST, and GDPR Configure and deploy essential tools: firewalls, IDS/IPS, endpoint protection, and encryption Overhaul Active Directory, Group Policies, and server configurations Lead incident response, forensic analysis, and threat More ❯

senior stakeholders to deliver cyber risk solutions that protect operations, support compliance, and enable strategic growth. Key Responsibilities Lead cyber strategy and maturity assessments aligned to frameworks like ISO27001, NIST CSF, GDPR, and CAF Deliver cyber risk roadmaps and business-aligned security recommendations Translate technical insights into executive-level communications Mentor junior consultants and contribute to proposal or bid work More ❯

with EU AI Act, FCA cybersecurity principles, and oversight of critical systems Worked directly with cybersecurity and compliance teams in regulated deployments Implemented or maintained controls under ISO 27001, NIST, or SOC2 frameworks Technical Skills & Technologies: Languages & Frameworks Python (FastAPI), LangChain, Google AI SDK, Azure Open AI SDK Cloud & AI Platforms GCP: Vertex AI, Gemini API, Cloud Run, GCS, IAM More ❯

with EU AI Act, FCA cybersecurity principles, and oversight of critical systems Worked directly with cybersecurity and compliance teams in regulated deployments Implemented or maintained controls under ISO 27001, NIST, or SOC2 frameworks Technical Skills & Technologies: Languages & Frameworks Python (FastAPI), LangChain, Google AI SDK, Azure Open AI SDK Cloud & AI Platforms GCP: Vertex AI, Gemini API, Cloud Run, GCS, IAM More ❯

meet stringent regulatory compliance requirements relevant to the financial industry in Europe (e.g., data residency, privacy, operational resilience). Develop and implement security controls that align with frameworks like NIST CSF, ISO 27001, PCI DSS, and CSA CCM. DevSecOps & Automation: Champion the integration of security into the entire SDLC (DevSecOps), promoting automated security testing, continuous compliance, and secure configuration management. … and Event Management (SIEM) and logging strategies. Zero Trust Architecture principles. Proven experience with DevSecOps methodologies and securing CI/CD pipelines. Strong understanding of security frameworks such as NIST CSF, ISO 27001, CSA CCM, and experience in translating these into practical architectural designs. Hands-on experience with security tools and technologies for vulnerability management, secrets management, cloud security posture More ❯

Risk Manager, Senior GRC Consultant (Cybersecurity), Cybersecurity Risk and Compliance Lead, Information Security Compliance Manager, Head of InfoSec Governance, ISO 27001 Compliance Lead, ISO 27001 Lead Implementer/Auditor, NIST Cybersecurity Framework, Risk management (cyber/information security), Information Security Management System (ISMS), Control assurance/control testing, Regulatory compliance (GDPR, UK Cyber Essentials), Security governance frameworks REF More ❯

management, trade compliance, license management, quality inspections, and certification processes like FRACAS/CAP and corrective actions. Our architecture emphasizes business process alignment and compliance with cybersecurity standards including NIST SP 800-171, CMMC, ITAR . We aim to develop BNN , a generative AI model that provides detailed insights into operational and analytical processes, ensuring compliance with DFARS and related More ❯

familiarity with industry standards such as ISO 27001-ideally having led certification projects-and an ability to apply structured frameworks for risk assessment across complex organisational landscapes. Exposure to NIST frameworks or certifications such as CISMP/CISSP/CISM/CRISC which would further enhance your suitability for this influential position. five years' experience in Information Security/GRC More ❯

familiarity with industry standards such as ISO 27001-ideally having led certification projects-and an ability to apply structured frameworks for risk assessment across complex organisational landscapes. Exposure to NIST frameworks or certifications such as CISMP/CISSP/CISM/CRISC which would further enhance your suitability for this influential position. five years' experience in Information Security/GRC More ❯

Strong understanding of mail filtering technologies • Strong understanding of Cloud infrastructure technologies, including encryption • Demonstrable experience of working with Microsoft Sentinel, Defender and Purview • Excellent understanding of security frameworks (NIST and Cyber Essentials) • Ability to lead and manage third party providers • Strong understanding of incident response processes and methodologies including leading and managing incidents • Lead on root cause analysis, providing More ❯

Strong understanding of mail filtering technologies • Strong understanding of Cloud infrastructure technologies, including encryption • Demonstrable experience of working with Microsoft Sentinel, Defender and Purview • Excellent understanding of security frameworks (NIST and Cyber Essentials) • Ability to lead and manage third party providers • Strong understanding of incident response processes and methodologies including leading and managing incidents • Lead on root cause analysis, providing More ❯

Analyse and interpret relevant and emerging compliance standards and regulations to ensure these are understood by the business and appropriate steps are taken to achieve compliance where relevant. Support NIST control maturity assessment. Support resilience activities and audits. Oversee and lead the liaison, preparation and coordination of external compliance and regulatory audits, ensuring they are run effectively and efficiently. What More ❯

Engineering Role. Leading delivery of MOD accreditation and secure by design processes (ISN2023/09), associated policies and practices across the lifecycle. Experience in the application of standards including NIST Special Publications (e.g. SP 800-30, 37 & 53). Application of Defence standards including Defstan 05-138 & Defstan 05-139. Experience managing risks and services in accordance with customer More ❯

services Analysing potential attack vectors and understanding the impact of security threats on the system. Awareness of relevant industry regulations (e.g., GDPR, HIPAA) and security standards (e.g., ISO 27001, NIST) helps ensure that the systems and processes align with legal and regulatory obligations. The salary range on offer for this role is £65,000 - £80,000 per annum, depending on More ❯

s cyber security controls, processes, and systems. It supports informed assurance by: Evaluating control effectiveness through testing, validation, and review against defined security frameworks (e.g., NCSC CAF, ISO 27001, NIST). Conducting assurance reviews across systems, suppliers, and internal functions to identify risks, control gaps, and areas for improvement. Driving remediation by working with control owners and delivery teams to More ❯

ideally within the built environment or critical infrastructure . Strong understanding of cyber-physical systems , OT environments , and connected infrastructure . Experience applying assurance frameworks and technical standards (e.g. NIST, ISO27001, CAF). Background in governance, risk, and compliance (GRC) functions. Excellent communication and stakeholder engagement skills. Agile, analytical, and solutions-focused mindset. Experience in sectors such as energy, water More ❯

year's working in a Security Architect/technical role Recent MOD experience Security related legislation (eg GDPR, PCI DSS, ICO requirements) Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8 HMG and NCSC security policies, standards and guidance Cloud security including Amazon Web Service offerings such as KMS, IAM and ECS Event-driven microservice architectures More ❯