326 to 350 of 505 NIST Jobs in the UK

assurance framework definition, implementation, assessments and reporting Stakeholder management, including working with diverse teams in EMEA, North America, Ireland and Japan Information and Cyber Risk Frameworks and Standards (e.g., NIST/ISO27001) as well as Regulatory frameworks (e.g., Bank of England FCA/PRA, EU). Experience of EMEA Regulations and standards such as DORA/ECB regulatory requirements is More ❯

threat intelligence Strong understanding of modern detection and response strategies Familiarity with SOC tooling (Sentinel, Defender, QRadar, Cortex XDR, etc.) Knowledge of threat frameworks like MITRE ATT&CK and NIST Self-starter who can work independently in a lean security function Comfortable driving change and making meaningful improvements in security posture Why Apply? Youll join at a time where you More ❯

Be Doing: Lead and oversee secure development and testing strategy across the SDLC Define and govern secure architecture and ensure alignment with enterprise policies and industry frameworks (e.g. OWASP, NIST, ISO 27001) Drive DevSecOps integration into CI/CD pipelines, embedding SAST, DAST, SCA and container security tools Own the security testing process, improving automation, coverage, and remediation velocity Champion More ❯

as well as a deep understanding of cyber security regulations as they apply to different sectors Analysis and management of risks and cybersecurity controls. Standards and methodologies: ISO 27000, NIST, SANS CSC, etc. Understanding of Infrastructure, Networking and Cloud environments Knowledge in Identity and Access Management technologies Knowledge in Backup and Recovery technologies At Sword, our core values and culture More ❯

experience managing outsourced security providers and tracking SLAs/KPIs to ensure delivery Deep familiarity with EMEA frameworks (MiCA, DORA, BAIT, GDPR) and experience implementing cyber/security frameworks (NIST CSF, SOC2, ISO27001) Strong ability to design straightforward processes that flex to solve novel challenges and evolving regulations Excellent at distilling complex security risks into clear, concise updates for both More ❯

and human-to-machine) Knowledge/understanding of hardware security modules (HSMs) for storing cryptographic keys securely, including integration with enterprise applications for key generation and usage.? Familiarity with NIST's Post-Quantum Cryptography (PQC) standardization efforts and practical approaches for transitioning to quantum-resistant encryption schemes.? Knowledge of FIPS 140-2 and FIPS 140-3 validated cryptographic modules and More ❯

with senior leadership to ensure all technical initiatives align perfectly with our wider organisational strategy. Ensuring everything we do complies with industry standards and regulatory requirements (like ISO 27001, NIST). Championing a culture of continuous improvement, knowledge sharing, and operational excellence across your teams. Representing our technical function in client engagements, providing expert thought leadership and strategic guidance. Contributing More ❯

Security domain. You have experience working with Tenable products, such as Tenable.io, Tenable ONE, Tenable Security Center or Nessus. You have strong knowledge of security best practices, standards (e.g., NIST, CIS), and frameworks. You have a good understanding of system architectures and design principles. It would be nice if you recognise yourself in the following requirements as well: You have More ❯

Control Self-Assessment (RCSA) controls. Ensure industry best practices and methodologies are adopted where appropriate in proposed solutions. About the Candidate Exposure to industry frameworks/benchmarks such as NIST and CIS. Experience leading technical delivery and mentoring others. Proactive strategic leadership, demonstrable skills in the design, communication and delivery of end user technologies. Ability to engage and communicate at More ❯

Control Self-Assessment (RCSA) controls. Ensure industry best practices and methodologies are adopted where appropriate in proposed solutions. About the Candidate Exposure to industry frameworks/benchmarks such as NIST and CIS. Experience leading technical delivery and mentoring others. Proactive strategic leadership, demonstrable skills in the design, communication and delivery of end user technologies. Ability to engage and communicate at More ❯

logistics or manufacturing environment Good understanding of the risks, issues and controls associated with OT systems, networks and applications Awareness and knowledge across different security frameworks such as IEC62443, NIST for OT, COMAH Experience of risk identification and impact analysis in manufacturing and logistics environments Strong team building and stakeholder management skills with experience in IT and engineering environments, with More ❯

tools such as Illumio or Guardicore Desirable Experience with legacy infrastructure and operational technology (OT) Understanding of asset management and BAU handover processes Awareness of Zero Trust principles and NIST frameworks Exposure to cloud networking (Azure, AWS, GCP) If this is of interest, please apply with your latest CV and I’ll be in touch. More ❯

tools such as Illumio or Guardicore Desirable Experience with legacy infrastructure and operational technology (OT) Understanding of asset management and BAU handover processes Awareness of Zero Trust principles and NIST frameworks Exposure to cloud networking (Azure, AWS, GCP) If this is of interest, please apply with your latest CV and I’ll be in touch. More ❯

security best practice ??? Ensure security is embedded across the product lifecycle You will have; ??? 7+ years IT security experience ideally with product design ??? Strong knowledge of frameworks such as NIST, IEC 62443, ISO 27001 ??? Technical expertise in network, application and cloud security ??? Proven leadership of security focused projects from inception to delivery ??? Be certified Security+, CISSP, CCNA Security or GIAC More ❯

identifying security issues in existing system designs or products, including recommending sensible mitigations that balance cost, risk and usability. Knowledge of security standards and regulations (e.g. NCSC, ISO, SoC, NIST, PCI, GDPR). Experience in application architecture, software development and/or infrastructure architecture. Experience testing the security of software and infrastructure using appropriate security tools. Experience with Continuous Security More ❯

in complex systems. Support the secure integration of emerging technologies. Essential Experience 4+ years in a cyber security or information assurance role. Strong understanding of risk assessment methodologies (e.g., NIST, ISO 27005). Experience developing security documentation and mitigation strategies. Excellent communication and technical writing skills. Desirable Experience Familiarity with MOD/HMG security policies (e.g., JSP More ❯

as a Cyber Security Pre-Sales Consultant (minimum 2 years). Strong understanding of cyber security solutions, including managed services, SOC/SIEM, vulnerability management, and compliance frameworks (ISO27001, NIST, Cyber Essentials, etc.). Excellent communication and presentation skills for both technical and non-technical audiences. Ability to build rapport and credibility with senior stakeholders. Commercial awareness and the ability More ❯

Experience with scripting and automation using Python, Bash, or PowerShell. Certifications such as OSCP, OSCE, CEH, or similar are highly desirable. Understanding of regulatory compliance standards (ISO 27001, GDPR, NIST, etc.). Excellent problem-solving skills and attention to detail. Ability to communicate findings and recommendations effectively to clients. Why Join Darkshield? Work with a passionate and expert cybersecurity team. More ❯

an IAM solution across all aspects of the SDLC (Analyse, Design, Develop/Configure, Test, Deploy, Document) Understanding of regulatory frameworks, and their application to IAM, e.g. SOx, ISO27001, NIST, HIPAA, GDPR, PSD2, etc. Ideally, an education in Business, IT, IT security or related field Advantageous: Professional certifications such as CISSP, CISA, ITIL, etc. Product certifications from SailPoint, or other More ❯

an IAM solution across all aspects of the SDLC (Analyse, Design, Develop/Configure, Test, Deploy, Document) Understanding of regulatory frameworks, and their application to IAM, e.g. SOx, ISO27001, NIST, HIPAA, GDPR, PSD2, etc. Ideally, an education in Business, IT, IT security or related field Advantageous: Professional certifications such as CISSP, CISA, ITIL, etc. Product certifications from SailPoint, or other More ❯

an IAM solution across all aspects of the SDLC (Analyse, Design, Develop/Configure, Test, Deploy, Document) Understanding of regulatory frameworks, and their application to IAM, e.g. SOx, ISO27001, NIST, HIPAA, GDPR, PSD2, etc. Ideally, an education in Business, IT, IT security or related field Advantageous: Professional certifications such as CISSP, CISA, ITIL, etc. Product certifications from SailPoint, or other More ❯

an IAM solution across all aspects of the SDLC (Analyse, Design, Develop/Configure, Test, Deploy, Document) Understanding of regulatory frameworks, and their application to IAM, e.g. SOx, ISO27001, NIST, HIPAA, GDPR, PSD2, etc. Ideally, an education in Business, IT, IT security or related field Advantageous: Professional certifications such as CISSP, CISA, ITIL, etc. Product certifications from SailPoint, or other More ❯

an IAM solution across all aspects of the SDLC (Analyse, Design, Develop/Configure, Test, Deploy, Document) Understanding of regulatory frameworks, and their application to IAM, e.g. SOx, ISO27001, NIST, HIPAA, GDPR, PSD2, etc. Ideally, an education in Business, IT, IT security or related field Advantageous: Professional certifications such as CISSP, CISA, ITIL, etc. Product certifications from SailPoint, or other More ❯

identifying security issues in existing system designs or products, including recommending sensible mitigations that balance cost, risk and usability. Knowledge of security standards and regulations (e.g. NCSC, ISO, SoC, NIST, PCI, GDPR). Experience in application architecture, software development and/or infrastructure architecture. Experience testing the security of software and infrastructure using appropriate security tools. Experience with Continuous Security More ❯

will be an expert across multiple domains such as cyber security; threat, vulnerability and risk assessments (TVRA), security tools (e.g. Splunk, Crowstrike, etc.), application of security frameworks (e.g. ISM, NIST, etc.) and/or implementation and monitoring of cyber security controls (i.e. detection, protection, alerting, etc.) and will be sought out for advice on a range of technical and business More ❯