126 to 150 of 176 NIST Jobs in the UK excluding London

experience in solutions architecture, including leading the design of end-to-end digital or technology solutions. Youll have familiarity with frameworks such as TOGAF, NIST, and ITIL, along with experience managing or line-managing a team.Youll be skilled at producing artefacts that guide delivery teams and at explaining design decisions ...

Contract Technical Author | NIS/NIS2/NIST | IT/OT Security | Utilities/Power Generation | Security Framework and Operational Procedures | UK Based (can be working remotely) | £700/day Our client is looking for 2 experienced Technical Authors for a long term project around Cyber Security and Resilience (Network ...

protection, secrets management, and container security (AKS). Integrate SAST/DAST/SCA tools into CI/CD pipelines and collaborate on compliance (NIST, ISO 27001, SOC 2, GDPR). Relevant certifications: AZ-500, AZ-400, CCSP (preferred) Unfortunately no sponsership is offered for this contract Azure DevSecOps Consultant ...

cloud security, data protection, and risk/control functions Oversee implementation and optimisation of security controls, ensuring real risk reduction and operational effectiveness Embed NIST-aligned practices across Identify, Protect, Detect, Respond, Recover domains Drive process, policy, and governance improvements to support a scalable security operating model Develop and track … leading large-scale Information Security or Security Transformation programmes Strong exposure across IAM (SailPoint), PAM, cloud security, and data protection domains Experience delivering against NIST or similar security frameworks Track record of improving security maturity across people, process, and technology Strong understanding of security controls and how they are implemented ...

working closely with Service Desk, Projects, and clients. Maintain robust security reporting and ensure clients understand their risk position. Oversee compliance efforts (ISO 27001, NIST, GDPR) and ensure gaps are addressed. Provide guidance on governance, policies, and technical best practice. Ensure SOC activities are efficient, actioned, and measurable. … security experience. Understanding SOC processes, alert triage, and incident escalation. Solid grasp of vulnerability management (tools, triage, prioritisation , remediation). Familiarity with ISO 27001, NIST CSF, GDPR, Cyber Essentials Plus. Ability to translate technical risk into business-impact language. Strong documentation, reporting, and communication skills. Experience implementing technical controls that ...

using the Purdue Model. · Strong familiarity with major OT/ICS vendors (Siemens, ABB, GE, Schneider Electric). · Experience applying frameworks such as IEC62443, NIST CSF, NIST 800‐82, NCSC CAF. · Senior-level stakeholder management experience. Certifications – Highly Desirable · OT/ICS Security/Safety Certifications · ISA/ ...

experience in vulnerability scanning tools, familiar with CVSS scoring and vulnerability prioritisation. This would suit an analyst who is familiar with frameworks such as NIST, Cyber Essentials. Working to understand and interpret findings and communicate to stakeholders, detailed orientated and can work with other cross functional teams and departments. ...

organisation.Cybersecurity ArchitectureLead the development and maintenance of secure architecture frameworks across cloud, on premises, and hybrid environments. Ensure alignment with industry standards (for example, NIST and ISO 27001) and organisational risk appetite, with a particular focus on AI.Technical Engineering LeadershipOversee the engineering and integration of security controls across platforms, including … equivalent experience).* Relevant professional certifications (for example, CISSP, CCSP, SABSA, or AWS/Azure Security).* Deep knowledge of security frameworks (such as NIST and ISO 27001), cloud and on premises security, and secure software development practices.* Proven track record of designing and implementing security controls and solutions ...

industries, frameworks, and environments - ideal if you're looking to broaden your experience. Key Responsibilities: Conduct security audits and assessments against recognised frameworks (ISO27001, NIST, NCSC) Support risk management activities and improve security posture across client environments Assist with information governance processes and reporting Deliver client projects within agreed scope … cyber security/IT security role Experience in security assurance, audits, or compliance-focused work Good understanding of frameworks such as ISO27001, NIST, NCSC Knowledge of risk management and information governance Familiarity with regulations like GDPR/Data Protection Act Strong communication skills - comfortable working with clients and stakeholders Ability ...

networking/Software Defined Access (802.1X, IBNS 2.0) Solid grounding in Windows networking services including Active Directory, DNS, DHCP, and Certificate Services Desirable Skills NIST hardening guidelines ITIL processes ServiceNow BeCrypt OS Linux operating systems Data diodes On-Call Requirement - This role includes participation in an on-call rota with ...

embed security thinking into day-to-day engineering decisions. Key experience you will have Strong background in risk assessment using recognised frameworks such as NIST 800-30 or ISO 27005 Ability to define and implement effective risk mitigation across technical, physical and procedural controls Experience producing clear, structured security documentation ...

and strong stakeholder skills, including: CISM qualification (or equivalent) Strong knowledge of ISO 27001, ideally as a Lead Auditor or Auditor Working knowledge of NIST CSF and NIST SP 800-53 Excellent understanding of relevant legal, regulatory and compliance requirements Proven experience implementing and operating security management in line with ...

Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, and NIST Confidence when speaking with stakeholders and clients Ideally, some relevant cybersecurity certifications - CISSP, CCSP, CISM etc Key Responsibilities: Lead the design and implementation of … modelling to proactively identify vulnerabilities and develop effective mitigation strategies Develop and maintain security policies and frameworks that adhere to industry standards such as NIST, ISO 27001, and CIS Controls The client is looking to pay a starting salary of around £75,000, depending on experience. ...

related field (or equivalent experience). Relevant professional certifications (e.g., CISSP, CCSP, SABSA, AWS/Azure Security). Deep knowledge of security frameworks (e.g., NIST, ISO 27001), cloud and on-premises security, and secure software development practices. Proven track record in designing and implementing security controls and solutions at scale. … Cybersecurity Architecture: Lead the development and maintenance of secure architecture frameworks for cloud, on-premises, and hybrid environments. Ensure alignment with industry standards (e.g., NIST, ISO 27001) and Clients risk appetite with a particular focus on AI. Technical Engineering Leadership: Oversee the engineering and integration of security controls across platforms ...

responsible for ensuring that all corporate and subsidiary operations comply with internal security policies, regulatory requirements, and internationally recognised frameworks such as ISO27001, NIST, SOX, GDPR, CMMC, and others.Key Responsibilities- Support the execution and enhancement of the global information security compliance program.- Conduct internal audits, third-party risk assessments, and … diligence reviews.- Ensure alignment with regulatory and industry standards including ISO27001, NIST, SOX, GDPR, SOC 2, HIPAA, CCPA, LGPD.- Collaborate with cross-functional teams across multiple jurisdictions to drive compliance initiatives.- Identify gaps in security controls and recommend corrective actions.- Maintain and update security policies, procedures, and documentation.- Monitor changes ...

exercising Excellent communication and stakeholder influence skills across technical and non technical groups Familiarity with NCSC aligned approaches and/or frameworks such as NIST CSF Relevant professional qualifications such as CISSP or CISM To apply, we request that you submit a CV and you will be asked the following … hands on delivery to ensure both long term resilience and quick, tactical gains? Which cyber security governance or risk management frameworks (e.g., NCSC CAF, NIST CSF) have you implemented, and how have they influenced decision making and assurance in your previous organisations? The job advert closes ...

requests with clear and accurate documentation Develop assurance packs demonstrating strong security practices Regulatory & Industry Alignment Stay up to date with frameworks such as NIST CSF, GDPR, NIS2, and UK NCSC guidance Advise stakeholders on regulatory changes and their impact Ensure alignment with evolving cybersecurity standards Continuous Improvement Improve assurance … Essentials Plus, CREST) Strong understanding of Security Operations (SOC) environments Experience supporting audits, RFPs, and customer assurance activities Knowledge of industry frameworks and regulations (NIST, GDPR, NCSC, etc.) Experience working with auditors, regulators, and certification bodies Skills Strong documentation and audit evidence management Excellent communication skills with both technical and ...

security. Liaise with global Security Operations Centre colleagues to resolve any issues. Ensure compliance with relevant regulations, standards, and frameworks (e.g., GDPR, ISO 27001, NIST) Review and update security program documentation. Support customer relations and requirements per commercial agreements. Develop, implement, and maintain security policies, processes, procedures and guidelines. Assist … Understanding of PKI Desirable: Bachelor’s degree in computer science, IT or Information Security Compliance exposure with relevant security frameworks and standards (PCI, ISO, NIST, CIS) Experience with audits and compliance enforcement Penetration testing experience Strong understanding of networking protocols and systems architecture Creating PCI digital keys or security access ...

Engage risk review and assurance activities across existing suppliers. Provide IT and business advice on aspects of security standards and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Engage with I&T system owners to provide training in relation to information security, cyber resilience, phishing, and facilitation … and manufacturing environments in manufacturing or similar industries. Experience working with information security standards and frameworks such as and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Proven analytical, problem-solving, planning, project delivery and supplier work packages management skills. Demonstrable experience of engaging across all levels ...

Strong knowledge of information security risk management techniques Experience of governance, risk and compliance, ideally in financial services Knowledge of frameworks such as ISO27001, NIST, PCI DSS Awareness of the threat landscape and modern security controls Strong understanding of cloud security solutions and standards Skills and experience Experience working within … recognised security frameworks (e.g. ISO27001, NIST) Ideally 5+ years’ experience in an information security role within financial services or e-commerce Strong understanding of core IT and networking concepts Excellent communication skills, with the ability to translate technical topics for non-technical audiences High attention to detail and strong ownership ...

guidance to ensure security risks are understood, managed and remediated in line with organisational risk appetite and recognised best practice frameworks (e.g. ISO 27001, NIST, CIS Controls). Key Responsibilities Deliver security risk identification, assessment, analysis and logging activities, ensuring risks are clearly articulated, consistently scored and recorded in approved … and non-technical audiences. Experience working collaboratively with multidisciplinary teams across business and technology functions. Familiarity with recognised security frameworks and standards (ISO 27001, NIST, CIS Controls). Highly organised with strong attention to detail and a commitment to high-quality, auditable documentation. Candidates must hold government security vetting ...

protection strategies aligned to business risk and regulatory requirements Design and deliver Microsoft Purview solutions Translate regulatory and GRC requirements (eg GDPR, ISO 27001, NIST, data residency and retention) into practical, defensible data security controls Conduct data risk assessments, gap analyses, and control reviews across Microsoft 365 and wider data … with both technical teams and non-technical stakeholders The ability to balance risk, usability, and commercial realities Knowledge of frameworks such as ISO 27001, NIST CSF, ISO 27701, CAF, or DSPT Relevant certifications such as ISO 27001, CISSP, CISM, or Microsoft Security If you are a Data Security Consultant looking ...

deliver continue to expand, including the use of common tooling that will facilitate the tracking and reporting of assurance actions. We are also developing NIST compliant risk assessment methodology and tooling that is raising our quality and customer confidence, you will be part of these developments. The role in PITSM … CIA+S), with practical risk management experience Experience in assurance processes for secure/sensitive systems using structured risk analysis Continuous assurance through implementation of NIST-based Information Security Management System (ISMS) controls and processes. Evaluating responses to security requirements for systems Maintaining security documentation sets (SyOPS, RMADs, Security Management Plans ...

of our SDLC Conduct risk assessments and threat modelling, proactively identifying vulnerabilities and mitigation strategies Develop and maintain security policies and frameworks aligned with NIST, ISO 27001, and CIS Controls Guide and mentor teams in best-practice security engineering, fostering a culture of continuous improvement You will need to demonstrate … following experience: Deep understanding of Cloud security (AWS, Azure or GCP), hybrid cloud design, and modern DevSecOps principles Strong knowledge of frameworks such as NIST, ISO 27001, OWASP, and CIS Solid grounding in tools and technologies like SIEM, IDS/IPS, DLP, endpoint protection, IAM, and encryption This ...

incident management, ensuring timely response, clear stakeholder communication, and ongoing improvement of processes. Ensure adherence to relevant regulations and industry standards, including ISO 27001, NIST, GDPR, and the UK Data Protection Act. Promote a strong security-first culture across the organisation through awareness initiatives, training programmes, and targeted education efforts. … Requirements: Strong technical understanding across various security toolings, IAM, DLP, SIEM, EDR, and vulnerability management. Deep understanding of compliance frameworks including, ISO27001, NIST, GDPR, and industry best practice Collaborative leadership style with ability to influence and challenge at exec level Risk-based mindset with ability to balance security with operational ...