126 to 150 of 284 NIST Jobs in the UK excluding London

as well as a deep understanding of cyber security regulations as they apply to different sectors Analysis and management of risks and cybersecurity controls. Standards and methodologies: ISO 27000, NIST, SANS CSC, etc Understanding of Infrastructure, Networking and Cloud environments Knowledge in Identity & Access Management Knowledge in Backup & Recovery technologies and installation Previous experience working with or within an Incident More ❯

Cyber/Engineering Role. Involvement in MOD accreditation and secure by design processes (ISN2023/09), associated policies and practices across the lifecycle. Knowledge or application of standards including NIST Special Publications (e.g. SP 800-30, 37 & 53). Managing risks and services in accordance with customer, regulatory and legislative expectations. Experience outside of traditional enterprise IT scenarios extending to More ❯

business strategy, technology architecture, and cyber security, the Senior Cyber Solutions Architect drives the strategy in relation to the integration of security governance, risk management, and compliance frameworks (ISO, NIST, Essential Eight) to protect platforms, data, and services. With deep expertise in secure solution architecture, cloud-native technologies, and Descopes practices, the role drives value creation by aligning technical roadmaps More ❯

and know how to influence/negotiate technical outcomes with 3rd parties, including conflict resolution due to changing priorities. Experience of using common information security management frameworks, such as NIST, PCI, GDPR, ISO Series, OWASP the IT Infrastructure Library (ITIL), the ISF Standards of Good Practice (SoGP) and ISACA's Control Objectives for Information and related Technology (COBIT) frameworks. Actively More ❯

frameworks. Expertise in identifying security issues in existing system designs, including recommending mitigations that balance cost, risk and usability. Knowledge of security standards and regulations (e.g. NCSC, ISO, SOC, NIST, PCI, GDPR). Experience in application architecture, software development and/or infrastructure architecture. Experience in testing the security of software and infrastructure using appropriate security tools. Experience with Continuous More ❯

access management in alignment with defence-grade standards Security Assurance & Compliance Ensure commission controls comply with MOD policies (e.g. JSP 440/JSP 604) and security frameworks such as NIST, ISO 27005, STIGs, and UK Functional Standard 007 Vulnerability Assessment & Access Review Support regular access reviews, entitlement audits, and role certification; identify and remediate potential vulnerabilities in provisioning and access More ❯

policies, standards, and procedures, etc.).Knowledge and/or experience in applying systems security policies and standards in engineering cyber-physical systems such as the Risk Management Framework (RMF), NIST SP (Apply online only), DO-326, and DoDI 5000.83.Excellent communications skills: able to influence without authority and describe complex ideas simply and succinctly to non-technical people.We are an equal More ❯

repudiation and privacy. Excellent communication skills to technical, business and non-technical audiences at all levels, presenting with excellent written and verbal skills. Knowledge of leading standards such as NIST and topics such as Security Controls, Risk Management, Cloud technologies and Zero Trust Architecture. Desirable Criteria Ideally, you will also have experience of: Leading multi-disciplinary security teams and building More ❯

repudiation and privacy. Excellent communication skills to technical, business and non-technical audiences at all levels, presenting with excellent written and verbal skills. Knowledge of leading standards such as NIST and topics such as Security Controls, Risk Management, Cloud technologies and Zero Trust Architecture. Desirable Criteria Ideally, you will also have experience of: Leading multi-disciplinary security teams and building More ❯

repudiation and privacy. Excellent communication skills to technical, business and non-technical audiences at all levels, presenting with excellent written and verbal skills. Knowledge of leading standards such as NIST and topics such as Security Controls, Risk Management, Cloud technologies and Zero Trust Architecture. Desirable Criteria Ideally, you will also have experience of: Leading multi-disciplinary security teams and building More ❯

in ISO 27001 implementation as a minimum, but preferably also experience in ISOs 27701/22301/9001 A strong understanding of information security and data privacy frameworks like NIST Cybersecurity Framework (CSF), GDPR, CIS or similar. Experience of certification body audits. Should have good experience and knowledge of Cyber/Information Security Governance, Risk Management, and Compliance. ISO Consultant More ❯

/GRC role Professional certifications including but not limited to CISSP, CCSP, CISM, CRISC, CISA, CDPSE. Experience in auditing and implementing security standards such as ISO 27001/2, NIST CSF, and others. Exceptional verbal, written communication, and presentation skills. Ability to articulate technical requirements to non-technical audiences. Proven self-management skills and ability to work on multiple assignments More ❯

or cyber security, or equivalent professional certification. Experience: 3+ years in a Cyber/Engineering role. Involvement in MOD accreditation and secure by design processes. Knowledge of standards like NIST SP 800-30, 37, 53. Experience managing risks and services in compliance with regulations. Experience with software, firmware, and hardware security. Conducting risk assessments, threat modelling, vulnerability analysis. Overseeing security More ❯

proposing new technologies, training employees, and preparing security reports. Requirements: Degree qualified in Computer Science or similar. Extensive relevant experience in cybersecurity including knowledge of: frameworks and standards (ISO27001, NIST); security tools and technologies (firewalls, IDS/IPS); regulatory requirements (GDPR, HIPAA); cloud and general internet security. Good communication skills and ability to work well within a team environment are More ❯

coding experience in any language (even personal projects count!); familiarity with PHP and Python is a plus. Experience of cybersecurity concepts (attack vectors, kill chain) Experience of compliance understanding (NIST, ISO, custom policies) Customer/stakeholder engagement (technical project management, consulting) Why Join Us? Nucleus is a fast-growing startup where we recognize and reward performance and encourage sustainable working More ❯

access control, authentication, and encryption standards across platforms. Work with data scientists and engineers to embed security into model development. Stay current on evolving AI regulations (EU AI Act, NIST AI RMF, GDPR, etc.). Support adversarial testing, model bias assessments, and trustworthiness evaluations. Contribute to training and awareness initiatives on AI/ML security best practices. Act as a More ❯

and infrastructure. Experience with cloud platforms (AWS, Azure, GCP) and their integration with CyberArk. Knowledge of DevOps and CI/CD pipelines for secrets management. Understanding of cybersecurity frameworks (NIST, ISO 27001). Benefits: Competitive salary, benefits package, training, and development opportunities, including: Contributory pension Extra holiday purchase Life insurance Private medical insurance Equal Opportunities: Wipro promotes diversity and inclusion. More ❯

business goals Required Skills & Experience Proven experience in senior security consultancy or architecture roles Strong understanding of cloud security (AWS), SOC design, and threat detection Familiarity with security frameworks (NIST CSF, ISO 27001) and red teaming approaches Excellent communication skills with ability to influence technical and executive stakeholders Preferred Background Experience in software or SaaS environments Previous consulting/advisory More ❯

and capability growth What We're Looking For 5+ years in cybersecurity or cyber advisory Experience leading cyber transformation in a consulting or enterprise environment Deep understanding of frameworks: NIST, ISO27001, GDPR, NIS2, CAF Track record managing teams and complex project delivery Executive-level stakeholder management and influencing skills Certifications (CISSP, CISM, CISA, M.Inst.ISP) highly desirable This is a chance More ❯

with security automation; scripting in Python is a strong advantage. Solid understanding of incident response processes, threat intelligence, and security monitoring. Familiarity with frameworks such as MITRE ATT&CK, NIST, and OWASP. Exposure to secure coding practices and DevSecOps environments is a strong plus (not mandatory) Experience working in large enterprise environments and supporting complex infrastructure. Must have the legal More ❯

security risk/issue management-related processes and services. Experience in Risk Management aligned to certification requirements (ISO27001, ISO31000 or similar) required Knowledge of relevant security/governance frameworks (NIST CSF, ISO27001, CobiT, ) required Experience in service build up a plus Security Governance/Risk Management certification (CISSP, CGEIT, CISM, CRISC ) is a plus Qualified individuals with a disability may More ❯

. Security Frameworks & Secure by Design Strong understanding of Secure by Design principles and ability to bake security in from concept through production. Practical experience implementing the NCSC or NIST Cybersecurity Framework (CSF) and/or NIST SP 800-53 controls. Demonstrable understanding of ISO/IEC 27001 requirements and hands-on experience mapping technical controls to ISO clauses, supporting More ❯

efforts. Perform threat hunting and behavioural analysis using threat intelligence and analytics tools. Maintain and tune security tools, detection rules, and automation scripts. Support compliance initiatives (e.g., ISO 27001, NIST, GDPR). Document incidents, procedures, and technical findings clearly and accurately. Ensure timely management and resolution of tickets, both internal/partner and third-party suppliers. Remain up to date … services (e.g., Active Directory, Azure AD). Log Analysis &Forensics: Ability to analyse logs and artifacts from Windows, Linux, and cloud environments. Security Frameworks: Familiarity with MITRE ATT&CK, NIST CSF, CIS Controls. Preferred Qualifications: Industry certifications such as CompTIA CySA+, SSCP,CEH, GCIA, or equivalent. Experience with DevSecOps practices and CI/CD pipeline security. Microsoft SC-900, AZ More ❯

and controls processes. Good understanding of the retail industry and its needs towards technology risks and controls. Strong understanding with various control frameworks and regulatory requirements, such as COBIT, NIST-CSF, Sarbanes-Oxley (SOX), Privacy (CCPA, GDPR, etc.), and other leading practice frameworks. An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an More ❯

regulatory drivers (e.g., FCA/PRA Operational Resilience Policy, DORA, SYSC 8, PS 21/3, CP4/24) and relevant industry frameworks (COBIT, ITIL, ISO 27001/22301, NIST CSF). Strong analytical skills with the ability to translate complex technical issues into clear, business-focused recommendations. Possession of strong team working and leadership skills, including the ability to More ❯