576 to 600 of 611 NIST Jobs in the UK

across a number of sectors strengthen their security posture. You’ll work with industry-leading frameworks like Cyber Essentials (CE), Cyber Essentials Plus (CE+), NIST 2, ISO 27001/223001, DORA , and more. This is the perfect opportunity if you’re looking for more autonomy, rapid career growth, and a … Senior Cyber Security Consultant: 2+ years of information security consulting Experience of Governance, Risk, and Compliance (GRC) frameworks such as ISO 27001, ISO 223001, NIST, DORA and other regulatory standards. Experience conducting Cyber Essentials and Cyber Essentials Plus assessments and guiding clients through the certification process, with a strong understanding More ❯

Ready for a challenge? Then Just Eat might be the place for you. We're a leading global online food delivery platform, and our vision is to empower everyday convenience. Whether it's a Friday-night feast, a post-gym More ❯

or remediation, and proficiency in multiple security assessment methodologies (e.g., Open Worldwide Application Security Project (OWASP) Top Ten, National Institute of Standards and Technology (NIST) Cybersecurity Framework), offensive testing tools, or resiliency testing equivalents Excellent communication, collaboration, and report writing skills, with the ability to influence and engage stakeholders across More ❯

compliance to DoD/Navy directives, policies, and instruction to include but not limited to Federal Information Security Management Act (FISMA), OMB A-130, NIST SP 800 Series, FIPS Publications, and Navy RMF governance. Assists in RMF A&A process negotiation and task management for accomplishing A&A activities. Prepares … protocols and technologies, 5G, and other relevant technologies in use with modern enterprises. Extensive experience and understanding of DoD cybersecurity and policies, instructions, and NIST publications as they relate to the Authorizing Official. Understanding of system and software SDLCs, and unique DoD domains such as Cross-domain solutions, PPSM. Excellent More ❯

interpret key security standards and frameworks such as NCSC NIS Guidance, CAF, ISO 27001, ISO 27005, NERC CIP, ISA-99/IEC 62443, and NIST CSF. Collaborate effectively with client stakeholders, nurturing relationships and providing strategic cybersecurity counsel. Support business development and client engagement activities. Required Skills & Experience: Expertise in … critical infrastructure. Familiarity with leading cybersecurity standards and frameworks : NCSC NIS Guidance, CAF ISO 27001, ISO 27005 NERC CIP ISA-99/IEC 62443 NIST CSF Outstanding communication skills with the ability to engage both technical and non-technical stakeholders. Strong teamwork and collaboration abilities . Preferred Qualifications: Experience applying More ❯

testing, behavioural analysis, and environmental factors Develop and present comprehensive risk assessment reports, including clear recommendations for mitigation and investment Apply frameworks such as NIST 800-53, ISO/IEC 27001, and NCSC CAF to assess current controls and identify improvement opportunities Contribute to the development of organisational threat models … You can apply critical thinking to complex and ambiguous environments, making informed decisions under pressure You have strong knowledge of cyber risk frameworks (e.g. NIST, ISO27001, NCSC CAF) and experience in applying them You're experienced in one or more of: counterintelligence, human intelligence and security, physical security assessments, operational More ❯

approach to identifying and explaining cyber risks within complex transformation initiatives Project management and delivery experience across the following Cyber Security areas: frameworks (e.g. NIST CSF, CPMI-IOSCO, ISO, 'Profile' - Financial Services sector-specific distillation of the NIST CSF, etc.), assessments, implementation, roadmap definition (tactical and strategic), strategy, risk identification More ❯

RBAC, comprehensive logging, etc. Experience with the following would also be beneficial: International regulations and security frameworks (US State privacy laws, Australian Privacy Act, NIST, SOC2, etc) Wider MS Azure security tooling and data warehousing configuration AI Risk Frameworks (e.g. EU AI Act, NIST and the Framework Convention on Artificial More ❯

compliance, and policy. You will be responsible for developing and implementing internal control frameworks and defining policies in line with industry standards such as NIST and ISO 27001. Collaboration with various business units will be key to reducing risk and ensuring compliance with regulations. Key Responsibilities: Focus on risk management … and compliance, including policy and standards development. Map internal controls to industry standards such as NIST and ISO 27001. Build and define security policies, ensuring alignment with organizational goals. Develop and manage compliance frameworks using Microsoft tools such as SharePoint, Power BI, Power Automate, and Risk Automate. Work closely with … various regions. Identify and deliver service/control improvements and contribute lessons learned to future projects. Desired Skills and Qualifications: Certifications: CISA, CISM, CRISC, NIST, ISO 27001. Experience with building compliance frameworks and policies using Microsoft tools. Please apply if interested More ❯

the CESG IA Portfolio and MoD JSPs such as JSP440, JSP604/JSP453 (plus other standard MoD IA methods). Certifications such as ISO27000, NIST Cyber Security Professional, CISMP etc. Flexibility over UK, and potentially overseas travel. Experience with IT Computer Systems and interconnecting systems and networks. Desirable- Certified Information … of recognised security professional body such as the Institute of Information Security Professionals (IISP), IS2, BCS and Understanding of 'Secure by Design' methodology and NIST 800-37 Risk Management Framework. A keen interest in the latest technology with a focus on security technologies. Ambition to work in a challenging and More ❯

JSP604/JSP453 (plus other standard MoD IA methods). Experience with IT Computer Systems and interconnecting systems and networks. Certifications such as ISO27000, NIST Cyber Security Professional, CISMP etc. Flexibility over UK, and potentially overseas travel. Desirable: Certified Information Security Manager Principles (CISMP) or equivalent. Associate/Full Membership … of recognised security professional body such as the Institute of Information Security Professionals (IISP), IS2, BCS. Understanding of 'Secure by Design' methodology and NIST 800-37 Risk Management Framework. A keen interest in the latest technology with a focus on security technologies. Ambition to work in a challenging and rewarding More ❯

s new UK cybersecurity team. This role is predominantly end-client facing, advising on security best practices, vulnerability management and security standard compliance (e.g. NIST, ISO, PCI DSS etc), and leading audits and examinations. You will be reporting to the UK Head of Security and consulting global clients across the … Compliance Lead on Audits Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, NIST Confidence when speaking with stakeholders and clients, as well as the ability to provide training and mentoring around cybersecurity Ideally, some relevant cybersecurity certifications This More ❯

This individual will provide architectural leadership across IT Infrastructure, Applications, and Cyber Security domains, with a strong emphasis on Secure by Design principles and NIST Risk Management Framework compliance. The role requires effective communication with senior client stakeholders and the ability to influence technical decisions through sound governance and evidence … strategies. · Cyber Security & Secure by Design o Embed Secure by Design principles throughout the product lifecycle. o Ensure architecture and solution designs comply with NIST controls, regulatory requirements, and internal cyber security policies. o Collaborate with Information Architecture, Security, Risk, and Compliance teams to assess architectural risk and apply appropriate … architecture (e.g. integration, APIs, data), and cyber security architecture (e.g. identity & access management, threat modelling, security controls). · Strong working knowledge and application of NIST Risk Management Framework, Secure by Design, and architecture standards. · Proven experience leading architecture governance in large-scale transformation programmes. · Demonstrated ability to engage and influence More ❯

This individual will provide architectural leadership across IT Infrastructure, Applications, and Cyber Security domains, with a strong emphasis on Secure by Design principles and NIST Risk Management Framework compliance. The role requires effective communication with senior client stakeholders and the ability to influence technical decisions through sound governance and evidence … strategies. Cyber Security & Secure by Design o Embed Secure by Design principles throughout the product lifecycle. o Ensure architecture and solution designs comply with NIST controls, regulatory requirements, and internal cyber security policies. o Collaborate with Information Architecture, Security, Risk, and Compliance teams to assess architectural risk and apply appropriate … architecture (e.g. integration, APIs, data), and cyber security architecture (e.g. identity & access management, threat modelling, security controls). Strong working knowledge and application of NIST Risk Management Framework, Secure by Design, and architecture standards. Proven experience leading architecture governance in large-scale transformation programmes. Demonstrated ability to engage and influence More ❯

and ensure compliance with industry regulations and company-specific policies. Implementing and maintaining Information Security and Privacy Standards and Frameworks, such as ISO 27001, NIST, and CIS. Reviewing system and data architectures alongside engineering teams and architects, recommending best practices. Assessing vulnerabilities, articulating their impact, and recommending controls and mitigations … stakeholders. Managing and supporting project stakeholder expectations with a flexible, pragmatic approach. Cyber Governance Analyst Requirements: Strong knowledge of cybersecurity frameworks (e.g., ISO 27001, NIST, CIS). Proven experience in a similar role, supporting governance, monitoring controls, and managing risks. Ability to assess and articulate the impact of vulnerabilities and More ❯

Expanding Technology company seeks its first Security Architect to join a security team of 7. In this role, you will develop and maintain security blueprints and repeatable patterns, design processes, set up documentation, and design the overall security architecture for More ❯

Expanding Technology company seeks its first Security Architect to join a security team of 7. In this role, you will develop and maintain security blueprints and repeatable patterns, design processes, set up documentation, and design the overall security architecture for More ❯

Information Security Technical Lead Position Overview We are seeking an Information Security Technical Lead/Cyber Security Advisor to join our team in a hybrid role based in Canary Wharf. The package includes a salary of circa £80,000, a More ❯

Design Conduct threat modelling exercises to prioritise potential risks and develop mitigation strategies to reduce risks Ensure products meet regulatory standards such as ISO27001, NIST 800-30/37/53, Joint Standards Publications (JSP) such as JSP 440, 604 and Defence Standards (Def stans) Produce security documentation like RMADS … and remediation activities Your skillset may include: Understanding and application of risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) Working knowledge of Defence Standards (e.g., JSPs, HMG, Def Stan 05-138, Def Stan 05-139) Experience with security testing More ❯

Design Conduct threat modelling exercises to prioritise potential risks and develop mitigation strategies to reduce risks Ensure products meet regulatory standards such as ISO27001, NIST 800-30/37/53, Joint Standards Publications (JSP) such as JSP 440, 604 and Defence Standards (Def stans) Produce security documentation like RMADS … and remediation activities Your skillset may include: Understanding and application of risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) Working knowledge of Defence Standards (e.g., JSPs, HMG, Def Stan 05-138, Def Stan 05-139) Experience with security testing More ❯

shaping policies, and overseeing security operations across all systems and services. A key part of the role involves implementing and aligning practices with the NIST Cybersecurity Framework, ensuring a consistent, standards-based approach to managing cyber threats and resilience. You’ll lead on incident response planning, certification and compliance, and … in the organisation’s digital transformation plans. What we’re looking for: Proven experience leading cyber security strategy and operations. Strong understanding of the NIST Cybersecurity Framework and its practical application. Knowledge of compliance and certification standards such as PCI-DSS and Cyber Essentials Plus. Experience in risk management, threat More ❯

CyberArk) and Identity Access Management (RSA IGL) operations. Define and implement cyber security policies and governance frameworks in line with regulatory requirements (ISO 27001, NIST, FFIEC). Drive access control enhancements, ensuring least privilege principles and role-based access control (RBAC) methodologies are enforced. Lead investigations into security incidents, privileged … access management, and privileged access management. Deep knowledge of CyberArk, and other IAM/PAM solutions. Strong understanding of security governance frameworks (ISO 27001, NIST, FFIEC, FCA regulations). Proficiency in SQL, PowerShell, and automation scripting for security operations. Experience working with SIEM solutions (e.g., Splunk) and incident response processes. More ❯

CyberArk) and Identity Access Management (RSA IGL) operations. Define and implement cyber security policies and governance frameworks in line with regulatory requirements (ISO 27001, NIST, FFIEC). Drive access control enhancements, ensuring least privilege principles and role-based access control (RBAC) methodologies are enforced. Lead investigations into security incidents, privileged … access management, and privileged access management. Deep knowledge of CyberArk, and other IAM/PAM solutions. Strong understanding of security governance frameworks (ISO 27001, NIST, FFIEC, FCA regulations). Proficiency in SQL, PowerShell, and automation scripting for security operations. Experience working with SIEM solutions (e.g., Splunk) and incident response processes. More ❯

sponsorship for this vacancy. 5 + years of security/technology audit experience, including development of control test plans/scripts Working knowledge of NIST CSF 2.0 and/or NIST 800.53 rev. 5 Experience in automating control testing processes Experience managing multiple assignments and projects at once Desirable Skills More ❯

ensure that cyber risk is measured, tracked, and embedded within broader technology and business decision-making frameworks. You'll leverage risk methodologies such as NIST and ISO 27005 to deliver detailed qualitative and quantitative analysis, supporting effective security prioritisation and investment decisions. Key Responsibilities Perform detailed cyber and IT risk … analysis using recognised frameworks (e.g. NIST, ISO27005) Collaborate pragmatically with technical and business stakeholders to undertake cyber risk assessments and influence control decisions Act as a subject matter expert and trusted advisor on cyber and IT risk management Communicate risk findings clearly, tailoring insights for both technical and non-technical … required for effective risk governance. Essential Experience and Skills Demonstrable experience applying at least two recognised cyber and/or IT risk methodologies (e.g., NIST, ISO27005, FAIR, OCTAVE) Experience managing cyber risk in complex, geographically distributed organisations Strong documentation skills with the ability to manage and track detailed risk registers More ❯