51 to 75 of 218 NIST 800 Jobs in the UK

Perform security code reviews and ensure secure-by-design principles. Conduct threat modelling exercises to identify and mitigate potential risks. Ensure compliance with security regulations such as ISO27001, NIST 800-30/37/53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents, Security Management Plans). Conduct … penetration testing, vulnerability assessments, and remediation activities. Key Skills & Experience: Strong knowledge of risk management frameworks and methodologies (ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) . Experience with defence and government security standards (JSPs, Def Stan 05-138/139). Proficiency in security testing tools More ❯

Perform security code reviews and ensure secure-by-design principles. Conduct threat modelling exercises to identify and mitigate potential risks. Ensure compliance with security regulations such as ISO27001, NIST 800-30/37/53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents, Security Management Plans). Conduct … penetration testing, vulnerability assessments, and remediation activities. Key Skills & Experience: Strong knowledge of risk management frameworks and methodologies (ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) . Experience with defence and government security standards (JSPs, Def Stan 05-138/139). Proficiency in security testing tools More ❯

do: Oversee the ICT infrastructure and cybersecurity programme, ensuring compliance with DORA and ISO 27001 standards. Develop and implement information security strategies, policies, and procedures in line with NIST CSF, NIST 800-53, CIS, and COBIT frameworks. Conduct risk assessments and audits to ensure compliance with regulatory standards and best practices, including ISAE3402 and … in all commercial correspondence. Extensive experience in IT security leadership, preferably within fintech, financial services, or crypto-asset sectors. Proven expertise in implementing information security and risk frameworks (NIST CSF, ISO 27001, NIST 800-53, CIS, COBIT). In-depth knowledge of DORA requirements, and risk management for ICT assets, including crypto platforms. Strong More ❯

cryptographic security controls into software development and deployment processes. Support post-quantum cryptography (PQC) readiness by evaluating and preparing for emerging threats to encryption security. Ensure compliance with NIST 800-57, PCI DSS, FIPS 140-2/3, ISO 27001, GDPR, FFIEC, and IoT security (NIST 800-183, ETSI EN … storage practices. Experience working in financial institutions or other highly regulated industries. Certifications such as CISSP, CISM, AWS Security Specialty, HashiCorp Certified Vault Associate or CCSK. Familiarity with NIST 800-57, PCI DSS, FIPS 140-2/3, ISO 27001, GDPR, FFIEC, and IoT security (NIST 800-183, ETSI EN More ❯

information assets through robust cybersecurity measures, ensuring adherence to best practices, international standards, and local regulations. Ideally suited to candidates who possess expert knowledge of security frameworks including NIST 800, ISO 27001, and cybersecurity guidelines from PRA, FCA, and ICO. Candidates with at least 3 years' relevant experience in finance or banking, particularly as an information … to implement security policies and controls. Provide cybersecurity training to ensure staff awareness and compliance. Skills & Qualifications: Minimum 3 years' experience in cybersecurity. Strong knowledge of security frameworks (NIST 800, ISO 27001) and GDPR regulations. Experience with network security infrastructure and SIEM tools (Splunk, SolarWinds). Proficiency in Windows/Linux system administration and virtualization technologies More ❯

root cause analysis and recommend mitigation strategies. Collaborate on incident handling, reporting, and documentation. Enforce security policies in line with industry standards and regulations (GDPR, ISO, Cyber Essentials+, NIST 800-171). Assist with audits and compliance reporting. Manage and configure network devices with a focus on security. Design and implement secure system architectures and disaster More ❯

including ticket ownership, problem resolution, and incident management using Remedy or similar ticketing systems. Knowledge of cloud security principles, including identity management, network security, and compliance frameworks (e.g., NIST 800-53, DoD STIGs). Understanding of CI/CD pipeline operations and troubleshooting in a cloud-native environment. Minimum SECRET clearance and a security certification such More ❯

including ticket ownership, problem resolution, and incident management using Remedy or similar ticketing systems. Knowledge of cloud security principles, including identity management, network security, and compliance frameworks (e.g., NIST 800-53, DoD STIGs). Understanding of CI/CD pipeline operations and troubleshooting in a cloud-native environment. Minimum SECRET clearance and a security certification such More ❯

the outcome of engagement in real-time. Operational strategy, written process, control policies, and guidelines. Deriving standard Alpha states from standard control frameworks in conformity to NIST SP 800-171 and NIST SP 800-160 . Creating an ecosystem of practices and preparing incremental improvements. Creating information security requirements, classifying information sensitivity More ❯

across teams. What We’re Looking For Technical Experience & Knowledge Experience with risk management frameworks and methodologies such as ISO/IEC 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53. Strong understanding of security standards and frameworks including OWASP, Secure by Design principles, and MOD-specific guidelines … Def Stan 05-138/139). Familiarity with HMG security principles and assurance frameworks is advantageous. Comfortable using threat modelling tools and implementing mitigation strategies. Experience with NIST standards. (this is an absolute must) Key Competencies Strong communicator with the ability to present complex information clearly and confidently. Proactive problem solver who approaches challenges with innovation and More ❯

information assets through robust cybersecurity measures, ensuring adherence to best practices, international standards, and local regulations. Ideally suited to candidates who possess expert knowledge of security frameworks including NIST 800, ISO 27001, and cybersecurity guidelines from PRA, FCA, and ICO. Candidates with at least 3 years' relevant experience in finance or banking, particularly as an information … to implement security policies and controls. Provide cybersecurity training to ensure staff awareness and compliance. Skills & Qualifications: Minimum 3 years' experience in cybersecurity. Strong knowledge of security frameworks (NIST 800, ISO 27001) and GDPR regulations. Experience with network security infrastructure and SIEM tools (Splunk, SolarWinds). Proficiency in Windows/Linux system administration and virtualization technologies More ❯

information assets through robust cybersecurity measures, ensuring adherence to best practices, international standards, and local regulations. Ideally suited to candidates who possess expert knowledge of security frameworks including NIST 800, ISO 27001, and cybersecurity guidelines from PRA, FCA, and ICO. Candidates with at least 3 years' relevant experience in finance or banking, particularly as an information … to implement security policies and controls. Provide cybersecurity training to ensure staff awareness and compliance. Skills & Qualifications: Minimum 3 years' experience in cybersecurity. Strong knowledge of security frameworks (NIST 800, ISO 27001) and GDPR regulations. Experience with network security infrastructure and SIEM tools (Splunk, SolarWinds). Proficiency in Windows/Linux system administration and virtualization technologies More ❯

information assets through robust cybersecurity measures, ensuring adherence to best practices, international standards, and local regulations. Ideally suited to candidates who possess expert knowledge of security frameworks including NIST 800, ISO 27001, and cybersecurity guidelines from PRA, FCA, and ICO. Candidates with at least 3 years' relevant experience in finance or banking, particularly as an information … to implement security policies and controls. Provide cybersecurity training to ensure staff awareness and compliance. Skills & Qualifications: Minimum 3 years' experience in cybersecurity. Strong knowledge of security frameworks (NIST 800, ISO 27001) and GDPR regulations. Experience with network security infrastructure and SIEM tools (Splunk, SolarWinds). Proficiency in Windows/Linux system administration and virtualization technologies More ❯

specific experience in testing cloud security controls Professional certification such as CISA, CISM, CISSP, ISO 27001 Lead Auditor, or equivalent Knowledge of industry standards and frameworks such as NIST 800-53, ISO 27001/27002, CIS Controls, COBIT Strong communication and stakeholder management skills Experience with automated testing tools such as Sailpoint, Rapid7, Wiz.io, MS Defender More ❯

at all levels. Creative and critical thinking is necessary to address complex cyber security challenges effectively. Familiarity with relevant cybersecurity frameworks and standards, such as TOGAF, SABSA, ISO27000, NIST CSF & NIST 800-53 WHAT BAYER OFFERS YOU As a modern employer, we take care of our employees and help them find a balance between More ❯

must, along with significant experience in similar roles across Cloud/IT based solutions for Defence customers. Deep knowledge of HMG standards (including MOD-specific JSP), NCSC and NIST 800 standards is a given, along with how to apply these across a variety of different solution spaces. This role will be a key leadership position, interacting More ❯

must, along with significant experience in similar roles across Cloud/IT based solutions for Defence customers. Deep knowledge of HMG standards (including MOD-specific JSP), NCSC and NIST 800 standards is a given, along with how to apply these across a variety of different solution spaces. This role will be a key leadership position, interacting More ❯

tools (Wiz, Puppet, Nexpose) Proficiency in Python, PowerShell, and other scripting languages Experience in a Security Operations role within a complex environment Understanding of cybersecurity standards and frameworks (ISO27001, NIST800-53, CIS, OWASP,SOC2) Equal Opportunity Employer At WTW, we believe difference makes us stronger. We want our workforce to reflect the different and varied markets we operate in and More ❯

in scripting and automation for security tasks (e.g. Python, PowerShell). Information Security Frameworks: Working knowledge of common frameworks and standards, such as ISO 27001/2/5, NIST800-53, and Cyber Essentials. Risk Management and Compliance: Thorough understanding of Information Security Risk Management and Compliance frameworks, including ability to assess information risks and select appropriate controls. Data Protection More ❯

accreditation and secure by design processes (ISN2023/09), associated policies and practices across the lifecycle. Experience in the application of standards including NIST Special Publications (e.g. SP 800-30, 37 & 53). Application of Defence standards including Defstan 05-138 & Defstan 05-139. Experience managing risks and services in accordance with customer, regulatory and More ❯

accreditation and secure by design processes (ISN2023/09), associated policies and practices across the lifecycle. Experience in the application of standards including NIST Special Publications (e.g. SP 800-30, 37 & 53). Application of Defence standards including Defstan 05-138 & Defstan 05-139. Experience managing risks and services in accordance with customer, regulatory and More ❯

accreditation and secure by design processes (ISN2023/09), associated policies and practices across the lifecycle. Experience in the application of standards including NIST Special Publications (e.g. SP 800-30, 37 & 53). Application of Defence standards including Defstan 05-138 & Defstan 05-139. Experience managing risks and services in accordance with customer, regulatory and More ❯

delivery security, and preferably some experience and/or awareness of different security controls in the mobile network core domain. Practical experience with ISO/IEC 2700-series, NIST 800-series, GDPR, Risk Management, and principles of Information Security, Business Continuity, and Crisis Management. Business Acumen: Sound understanding of business processes, risk management, and change management More ❯

to both technical and non-technical audiences. What would be great to have CISSP, CISM, 62443 cyber security certificates Cyber Assessment Framework, NIST CSF, NIST SP 800-82, IEC ISA 99/62443, CIS Controls Strong understanding of IT and OT security risks Knowledge of the threat landscape Experience in Business development and proposal More ❯

C-Suite and senior stakeholders to drive strategic security initiatives, influencing decisions at the enterprise level. Deep expertise in security risk management frameworks, including ISO 27001, NIST SP 800-53, and SANS Top 20 Critical Security Controls. In-depth knowledge of SABSA framework (ideally certified) and its six layers, particularly in risk management and security strategy More ❯