301 to 325 of 390 NIST Jobs in the UK

Cyber Security Engineer (Defence) NCC Bristol based with hybrid working (3-4 days per week in office) Salary: Competitive Salaries plus 12.5% employer pension, private medical insurance and additional benefits package. Government Security Clearance: to the nature of our business More ❯

to align platforms with overall security strategy. Supporting vulnerability scanning, remediation, and risk mitigation efforts. Collaborating with external penetration testers and ensuring compliance with frameworks such as ISO 27001, NIST, and CIS . Staying up to date with the latest threats and ensuring best practice is followed across the firm. What they’re looking for: Strong background in cyber security … with experience in: CrowdStrike EDR, Mimecast, Tessian (or similar DLP) Intune, Entra ID, Active Directory Palo Alto firewalls, WAF, Menlo Security Security frameworks and compliance (PCI-DSS, ISO 27001, NIST, CIS) Networking knowledge and experience leading incident response. Relevant certifications such as CPSA, CISSP, or Palo Alto Network Certified Security Ops Professional . More ❯

to align platforms with overall security strategy. Supporting vulnerability scanning, remediation, and risk mitigation efforts. Collaborating with external penetration testers and ensuring compliance with frameworks such as ISO 27001, NIST, and CIS . Staying up to date with the latest threats and ensuring best practice is followed across the firm. What they’re looking for: Strong background in cyber security … with experience in: CrowdStrike EDR, Mimecast, Tessian (or similar DLP) Intune, Entra ID, Active Directory Palo Alto firewalls, WAF, Menlo Security Security frameworks and compliance (PCI-DSS, ISO 27001, NIST, CIS) Networking knowledge and experience leading incident response. Relevant certifications such as CPSA, CISSP, or Palo Alto Network Certified Security Ops Professional . More ❯

to align platforms with overall security strategy. Supporting vulnerability scanning, remediation, and risk mitigation efforts. Collaborating with external penetration testers and ensuring compliance with frameworks such as ISO 27001, NIST, and CIS . Staying up to date with the latest threats and ensuring best practice is followed across the firm. What they’re looking for: Strong background in cyber security … with experience in: CrowdStrike EDR, Mimecast, Tessian (or similar DLP) Intune, Entra ID, Active Directory Palo Alto firewalls, WAF, Menlo Security Security frameworks and compliance (PCI-DSS, ISO 27001, NIST, CIS) Networking knowledge and experience leading incident response. Relevant certifications such as CPSA, CISSP, or Palo Alto Network Certified Security Ops Professional . More ❯

Lead to strengthen their cyber resilience and provide assurance across a complex, fast-moving environment. This role will lead on assurance activities, including gap analysis against recognised standards (ISO27001, NIST CSF, ONR), ensuring controls are implemented, measured, and continually improved. The position requires a confident, dynamic individual who can engage at all levels of the business, with broad exposure to … and the ability to influence are as critical as technical expertise. Key responsibilities - Cyber Assurance and GRC Leadership: Lead assurance activities and programmes, aligning security controls to ISO 27001, NIST CSF, ONR, and UK Gov standards Gap Analysis and Compliance: Produce audit-ready evidence, manage ONR requirements, and ensure ongoing alignment with NCSC and NPSA guidance Cloud Security Architecture: Secure … Experience - Essential - Established cyber security credentials with demonstrable experience in assurance, GRC, and cloud security Proven leadership in delivering gap analysis, audit evidence, and certification programmes (e.g. ISO 27001, NIST CSF, Cyber Essentials+) Strong technical background in Microsoft Security Stack and cloud security architecture Familiarity with risk assessment methodologies (ISO27005, NIST) Excellent communication, presentation, and stakeholder management skills Confident operating More ❯

Lead to strengthen their cyber resilience and provide assurance across a complex, fast-moving environment. This role will lead on assurance activities, including gap analysis against recognised standards (ISO27001, NIST CSF, ONR), ensuring controls are implemented, measured, and continually improved. The position requires a confident, dynamic individual who can engage at all levels of the business, with broad exposure to … and the ability to influence are as critical as technical expertise. Key responsibilities - Cyber Assurance and GRC Leadership: Lead assurance activities and programmes, aligning security controls to ISO 27001, NIST CSF, ONR, and UK Gov standards Gap Analysis and Compliance: Produce audit-ready evidence, manage ONR requirements, and ensure ongoing alignment with NCSC and NPSA guidance Cloud Security Architecture: Secure … Experience - Essential - Established cyber security credentials with demonstrable experience in assurance, GRC, and cloud security Proven leadership in delivering gap analysis, audit evidence, and certification programmes (e.g. ISO 27001, NIST CSF, Cyber Essentials+) Strong technical background in Microsoft Security Stack and cloud security architecture Familiarity with risk assessment methodologies (ISO27005, NIST) Excellent communication, presentation, and stakeholder management skills Confident operating More ❯

for its commitment to leveraging technology to drive forward its mission. Description Implement and maintain ISMS aligning with ISO27001 Ensure security controls are in-place based on ISO27001 and NIST As the regional security representative in the global Security/Technology project Lead/execute phishing campaign Conduct vulnerability assessments and implement measures to mitigate potential risks. Involve in global … to ensure secure system designs and implementations. Provide training and support to staff to enhance security awareness across the organisation. Profile Practical experience and understanding of ISO27001 Familiar with NIST and GDPR is preferred Solid experience in threat, risk and vulnerabilities management process Experience with security tools such as SIEM, intrusion detection systems, and endpoint protection. Strong analytical and problem More ❯

information security compliance program.You will be responsible for ensuring that all corporate and subsidiary operations comply with internal security policies, regulatory requirements, and internationally recognised frameworks such as ISO27001, NIST, SOX, GDPR, CMMC, amongst others.Key Responsibilities: Support the execution and enhancement of the global information security compliance program. Conduct internal audits, third-party risk assessments, and due diligence reviews. Ensure … alignment with regulatory and industry standards including ISO27001, NIST, SOX, GDPR, SOC 2, HIPAA, CCPA, LGPD. Collaborate with cross-functional teams across multiple jurisdictions to drive compliance initiatives. Identify gaps in security controls and recommend corrective actions. Maintain and update security policies, procedures, and documentation. Monitor changes in global regulations and assess their impact on business operations. Minimum of … Required: Proven experience in information security compliance, risk management, and audit. Strong understanding of international regulatory frameworks and standards. Hands-on experience with: ISO27001 audits and implementation GDPR compliance NIST cybersecurity framework SOX, SOC 2, HIPAA, CCPA, LGPD Ability to interpret complex regulatory requirements and translate them into actionable controls. Excellent communication and stakeholder engagement skills. Strong analytical and problem More ❯

information security compliance program.You will be responsible for ensuring that all corporate and subsidiary operations comply with internal security policies, regulatory requirements, and internationally recognised frameworks such as ISO27001, NIST, SOX, GDPR, CMMC, amongst others.Key Responsibilities: Support the execution and enhancement of the global information security compliance program. Conduct internal audits, third-party risk assessments, and due diligence reviews. Ensure … alignment with regulatory and industry standards including ISO27001, NIST, SOX, GDPR, SOC 2, HIPAA, CCPA, LGPD. Collaborate with cross-functional teams across multiple jurisdictions to drive compliance initiatives. Identify gaps in security controls and recommend corrective actions. Maintain and update security policies, procedures, and documentation. Monitor changes in global regulations and assess their impact on business operations. Minimum of … Required: Proven experience in information security compliance, risk management, and audit. Strong understanding of international regulatory frameworks and standards. Hands-on experience with: ISO27001 audits and implementation GDPR compliance NIST cybersecurity framework SOX, SOC 2, HIPAA, CCPA, LGPD Ability to interpret complex regulatory requirements and translate them into actionable controls. Excellent communication and stakeholder engagement skills. Strong analytical and problem More ❯

Director of Azure Cloud Services Job Description The Director of Azure Cloud Services is a strategic leadership position responsible for driving the global Azure cloud vision, architecture, and operations across the organisation. This role oversees the delivery of scalable, secure More ❯

management response is well defined. Engage risk review and assurance activities across existing suppliers. Provide IT and business advice on aspects of security standards and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Engage with I&T system owners to provide training in relation to information security, cyber resilience, phishing, and facilitation of cyber scenario desktop simulations … controls and consequences across both IT and manufacturing environments in manufacturing or similar industries. Experience working with information security standards and frameworks such as and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Proven analytical, problem-solving, planning, project delivery and supplier work packages management skills. Demonstrable experience of engaging across all levels of a company in More ❯

design documentation (HLDs, LLDs, blueprints etc.), supporting cloud architecture design, implementation, operations, and automation in Azure AWS and GCP. Strong knowledge and ability to demonstrate the use of the NIST Cyber Security Framework, mapping and translating NIST Cyber Security Controls to other frameworks such as ISO27001 and CIS Top 20 controls, including understanding of the Azure Cloud Adoption Framework. Experience More ❯

a risk assessmentConsult on potential security components architectures (e.g. SIEM, IAM, gateways, detection and deception capabilities )Evaluate architectures against Business Line policy and major cyber security standards & regulation frameworks (NIST, ISO, JSP, etc.)Produce justification for architectural choicesEnsure technical coordination across a multi-discipline teamPresent, recommend and demonstrate solutions to customer representatives, peers or technical teamsConduct security related tasks including … Security (ISS) You can advise and give support to the rest of the team Familiar with Risk Analysis, Network Security, Cryptography, Identity & Access Management (software/hardware development, the NIST Cybersecurity Framework, cloud technologies) Able to monitor and measure risk as well as compliance You have the ability to work with customers and technical teams NICE TO HAVE: Domain knowledge More ❯

each of the projects we deliver continue to expand, including the use of common tooling that will facilitate the tracking and reporting of assurance actions. We are also developing NIST-compliant risk assessment methodology and tooling that is raising our quality and customer confidence, you will be part of these developments. The role in P-ITSM and likely other projects … gaining and maintaining accreditation for secure/sensitive systems using structured Risk analysis and treatment approaches Experience of process involved in continuous assurance for information security management systems, e.g. NIST, ISO Experience of developing and managing a Cyber Incident Response capability Experience of developing Security Awareness training including Threat Modelling, table top war gaming Experience in tracing through and evaluating More ❯

framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls. Manage and enhance Third-Party Risk Management, including cybersecurity assessments of external partners and suppliers. Collaborate with stakeholders to develop and track cyber risk treatment plans … while fostering strong relationships to embed a risk-aware culture across the organisation. Experience you will have: Expertise in cybersecurity risk frameworks and compliance, including CIS Controls, ISO 27001, NIST CSF, GDPR, SOX, and PCI. Strong technical and analytical skills, with the ability to assess risks, identify gaps, and propose mitigation strategies across IT systems and third parties. Excellent communication More ❯

framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls. Manage and enhance Third-Party Risk Management, including cybersecurity assessments of external partners and suppliers. Collaborate with stakeholders to develop and track cyber risk treatment plans … while fostering strong relationships to embed a risk-aware culture across the organisation. Experience you will have: Expertise in cybersecurity risk frameworks and compliance, including CIS Controls, ISO 27001, NIST CSF, GDPR, SOX, and PCI. Strong technical and analytical skills, with the ability to assess risks, identify gaps, and propose mitigation strategies across IT systems and third parties. Excellent communication More ❯

framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls. Manage and enhance Third-Party Risk Management, including cybersecurity assessments of external partners and suppliers. Collaborate with stakeholders to develop and track cyber risk treatment plans … while fostering strong relationships to embed a risk-aware culture across the organisation. Experience you will have: Expertise in cybersecurity risk frameworks and compliance, including CIS Controls, ISO 27001, NIST CSF, GDPR, SOX, and PCI. Strong technical and analytical skills, with the ability to assess risks, identify gaps, and propose mitigation strategies across IT systems and third parties. Excellent communication More ❯

trusted advisor to clients, leading Quarterly Security Reviews and presenting clear business-focused risk assessments. Own security governance processes, ensuring compliance with frameworks such as Cyber Essentials, ISO27001, and NIST . Oversee patching, vulnerability management, and internal infrastructure security. Collaborate across service delivery, project, and account management teams to embed security consistently. Mentor and develop Security Analysts, ensuring certifications and … into actionable business outcomes for C-level stakeholders. The ideal candidate will have: 5+ years in IT security or MSP environments . Strong knowledge of Cyber Essentials, ISO27001, or NIST frameworks. Experience in vulnerability management, patch governance, and cloud security (M365/Azure). Excellent communication skills with the ability to influence both technical teams and business leaders. (Desirable) Certifications More ❯

the highest level. Key Responsibilities Architecture & Design - Develop HLDs, LLDs, and build guides for end-to-end infrastructure solutions. Ensure alignment with security frameworks (Secure By Design, NCSC CAF, NIST 800-53). Networking & Security - Architect secure, multi-tenant data centre networks (Clos-fabric, advanced BGP, DCI). Implement strong security using Palo Alto firewalls, VMware NSX-T micro-segmentation … NVIDIA GPU passthrough experience. Professional Skills & Qualifications Proven ability to lead design workshops & governance board presentations. Strong documentation skills (HLDs, LLDs, Build Guides). Knowledge of CIS, STIG, and NIST 800-53 frameworks. Certifications such as CISSP, CCNP (or equivalent experience) desirable. If you'd like to discuss this Technical Architect role in more detail, please send your updated CV More ❯

the highest level. Key Responsibilities Architecture & Design - Develop HLDs, LLDs, and build guides for end-to-end infrastructure solutions. Ensure alignment with security frameworks (Secure By Design, NCSC CAF, NIST 800-53). Networking & Security - Architect secure, multi-tenant data centre networks (Clos-fabric, advanced BGP, DCI). Implement strong security using Palo Alto firewalls, VMware NSX-T micro-segmentation … NVIDIA GPU passthrough experience. Professional Skills & Qualifications Proven ability to lead design workshops & governance board presentations. Strong documentation skills (HLDs, LLDs, Build Guides). Knowledge of CIS, STIG, and NIST 800-53 frameworks. Certifications such as CISSP, CCNP (or equivalent experience) desirable. If you'd like to discuss this Technical Architect role in more detail, please send your updated CV More ❯

Strong communication skills. Experience producing intelligence reports for varied audiences. Familiarity with cyber threats, threat actors, attack vectors, and vulnerabilities. Knowledge of information assurance standards and frameworks including CIS, NIST, ISO 27001, Cyber Essentials/Essentials Plus, GDPR. Knowledge of threat cyber security frameworks such as MITRE ATT&CK, Kill Chain and NIST CSF 2.0. The ideal candidate will combine More ❯

OT (Operational Technology) Analyst Permanent - £52k - £60k + strong benefits Location: Hybrid - South Wales Your new company I am looking to recruit an OT Analyst to join a leader in the utilities space. The business has been investing in its More ❯

LMAX Group is a global financial technology company and the leading independent operator of multiple institutional execution venues for FX and cryptocurrency trading. The Group's portfolio includes LMAX Exchange (institutional FX exchange and FCA regulated MTF), LMAX Global (FCA More ❯

OCTAVE, MITRE ATT&CK. • Up to date knowledge of cyber security threats, threat actor motivation and capability, and relevant threat group TTPs. • An understanding of risk management frameworks e.g. NIST, FAIR, Orange Book, and an understanding of Government Functional Standards e.g. GovS 007. • Knowledge of security control (and maturity) frameworks e.g. NIST (e.g. CSMA, CSF), CIS, ISO 27000 series, CSA … Cloud Controls Matrix, NCSC CAF, and an understanding of the types and functions of security controls. • An understanding of hypothetical attack paths, familiarity with NIST CSF tools and able to use it for gap analysis. • Understands Data Flow Diagrams (DFD) and trust boundaries and is able to create one using information provided about an environment. • Familiar with the functions of More ❯

and risk implications to technical and non-technical stakeholders. Managing and supporting project stakeholder expectations with a flexible, pragmatic approach. Cyber Governance Analyst Requirements: Working knowledge of cybersecurity frameworks (NIST and CIS.) Over three years experience working with and implementing NIST compliance frameworks into organisations Proven experience in a similar role, supporting governance, monitoring controls, and managing risks. Ability to More ❯