151 to 175 of 283 NIST Jobs in the UK excluding London

and able to lead design Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, and NIST Confidence when speaking with stakeholders and clients Ideally, some relevant cybersecurity certifications - CISSP, CCSP, CISM etc Key Responsibilities: Lead the design and implementation of PCI DSS architectures, ensuring compliance with … comprehensive risk assessments and threat modelling to proactively identify vulnerabilities and develop effective mitigation strategies Develop and maintain security policies and frameworks that adhere to industry standards such as NIST, ISO 27001, and CIS Controls The client is looking to pay a starting salary of up to £90k, depending on experience. If you're a confident and client-focused person More ❯

and able to lead design Vulnerability management & Compliance Strong Security standard knowledge and experience, consulting on a range of security policies and standards such as GDPR, ISO, PCI, and NIST Confidence when speaking with stakeholders and clients Ideally, some relevant cybersecurity certifications - CISSP, CCSP, CISM etc Key Responsibilities: Lead the design and implementation of PCI DSS architectures, ensuring compliance with … comprehensive risk assessments and threat modelling to proactively identify vulnerabilities and develop effective mitigation strategies Develop and maintain security policies and frameworks that adhere to industry standards such as NIST, ISO 27001, and CIS Controls The client is looking to pay a starting salary of up to £90k, depending on experience. If you're a confident and client-focused person More ❯

Operational Technology Information Security Analyst Operational Technology Information Security Analyst - Physical Security, Asset Security, Cyber Security Assessments, Cyber Threats, PSP, CRISK, CISSP, RSES, NIST, CAF, ISO 27001 - Hybrid (Preston) - to £61,500 + excellent bonus + bens My client has an urgent need for an Operational Technology Information Security Analyst with in-depth experience of ensuring that Physical Security is … to write and present detailed reports - Thorough understanding of Physical Security and information security law including GDPR and NIS - Exposure to Cyber Security frameworks, standards and certifications: NCSC CAF, NIST, ISO 27000 series, CIS, PSP, CRISK, RSES The role will also involve taking responsibility for reviewing Cyber Security policies, assisting with incident and security reviews and ensuring that business processes … frameworks. Strong written and verbal and communication skills will be needed. Operational Technology Information Security Analyst - Physical Security, Asset Security, Cyber Security Assessments, Cyber Threats, PSP, CRISK, CISSP, RSES, NIST, CAF, ISO 27001 - Hybrid (Preston) - to £61,500 + excellent bonus + bens Essential Recruitment is a specialist Tech recruitment business with an in-depth understanding of the rapidly-changing More ❯

expertise in threat analytics, incident response, and cyber investigations · Strong understanding of attacker tactics, techniques, and procedures (TTPs) across diverse environments · Familiarity with industry-standard incident response frameworks (e.g., NIST, SANS) · Experience with both network-based and host-based threat detection and analysis · Proficiency in writing detection queries (Splunk preferred) and working with SIEM/EDR/SOAR tools · Solid … financial services sector · Strong analytical and communication skills, with the ability to present complex issues clearly to stakeholders · Knowledge of international security standards and control frameworks (e.g., ISO 27001, NIST CSF) Personal Requirements: · Excellent communication and interpersonal skills. · Results-driven with a strong sense of accountability and urgency. · Proactive, structured, and logical approach to problem-solving. · Strong decision-making skills More ❯

CK for ICS Performing vulnerability assessments, threat modelling and attack path analysis to identify and address security weaknesses Supporting risk assessments and compliance against standards such as IEC 62443, NIST SP800-82 and NIS-R Helping deploy, configure and maintain OT cybersecurity and security monitoring solutions Contributing to crisis simulations, incident response plans and cybersecurity awareness training Preparing reports, documenting … network security principles (switching, routing, firewalls) Experience deploying or supporting OT cybersecurity solutions and monitoring tools Ability to develop attack scenarios and validate security posture against recognised frameworks (e.g. NIST 800-53/82, IEC 62443) Exposure to incident response, including testing and improving detection and response capabilities Strong communication and stakeholder engagement skills, comfortable with both technical and non More ❯

Role: Cyber Security Manager Location: London (Hybrid) Salary: £65,000 - £75,000 Summary Oscar Technology are working with a technology-focused organisation that is enhancing its internal security capability and looking for an experienced Cyber Security Manager to lead their More ❯

Security Operations Manager - Travel Sector Location: Greater London Contract Type: Permanent Hybrid Role Salary: £50,000 Must come from a security background Our client, a specialist travel management company based in Greater London, is looking for a Security Operations Manager More ❯

management response is well defined. Engage risk review and assurance activities across existing suppliers. Provide IT and business advice on aspects of security standards and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Engage with I&T system owners to provide training in relation to information security, cyber resilience, phishing, and facilitation of cyber scenario desktop simulations … controls and consequences across both IT and manufacturing environments in manufacturing or similar industries. Experience working with information security standards and frameworks such as and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Proven analytical, problem-solving, planning, project delivery and supplier work packages management skills. Demonstrable experience of engaging across all levels of a company in More ❯

IAM, DLP, Network Security and Penetration Testing Managing outsourced security providers and holding them to account on performance Acting as SME for security improvement projects, aligned to ISO27001/NIST Managing security incidents, including forensic investigations and post-incident reviews Supporting governance, due diligence and audit activity across the security function Key Requirements: Significant experience leading IT security operations within … major IT/cloud transformation initiatives, ensuring security is integrated throughout Good understanding of security standards, procedures, reviews and security automation Familiarity with security frameworks such as ISO27001 and NIST Strong stakeholder management skills, with the ability to work closely with IT, Security, Risk and external suppliers To discuss this permanent opportunity in more detail, please get in touch directly More ❯

up. Key Responsibilities: Identify and integrate security requirements throughout the product and system development lifecycle. Lead threat modelling and risk assessments, applying frameworks such as ISO/IEC 27001, NIST 800-30/53, and ISO 31000. Advise on secure architectures and develop strategies to mitigate identified information risks. Collaborate with multi-disciplinary teams to ensure compliance with MOD and … the Defence, Aerospace, or National Security sectors. Deep understanding of HMG Security Policy Framework and MOD-specific standards. Familiarity with risk management methodologies (ISO 27001/2, ISO 27005, NIST frameworks). Strong analytical and problem-solving abilities - able to assess complex data and provide actionable insights. A collaborative communicator who can balance technical assurance with business priorities. Ability to More ❯

work closely with both internal and external stakeholders across Legal, Risk & Audit, Procurement, and IT to embed strong governance and maintain alignment with leading standards such as ISO 27001, NIST CSF, and GDPR. The position combines both strategic oversight and hands-on delivery, providing clear visibility of risks and driving measurable improvements in security maturity. This role is majority onsite … PCI-DSS environment Develop, maintain, and evolve the cyber governance and compliance framework. Define and manage information and cyber security policies, standards, and procedures. Ensure alignment with ISO 27001, NIST CSF, GDPR, and other relevant regulations. Partner with internal teams to integrate governance and compliance into daily operations. Support policy reviews, updates, and communication across business units. Risk Management & Assurance More ❯

work closely with both internal and external stakeholders across Legal, Risk & Audit, Procurement, and IT to embed strong governance and maintain alignment with leading standards such as ISO 27001, NIST CSF, and GDPR. The position combines both strategic oversight and hands-on delivery, providing clear visibility of risks and driving measurable improvements in security maturity. This role is majority onsite … PCI-DSS environment Develop, maintain, and evolve the cyber governance and compliance framework. Define and manage information and cyber security policies, standards, and procedures. Ensure alignment with ISO 27001, NIST CSF, GDPR, and other relevant regulations. Partner with internal teams to integrate governance and compliance into daily operations. Support policy reviews, updates, and communication across business units. Risk Management & Assurance More ❯

work closely with both internal and external stakeholders across Legal, Risk & Audit, Procurement, and IT to embed strong governance and maintain alignment with leading standards such as ISO 27001, NIST CSF, and GDPR. The position combines both strategic oversight and hands-on delivery, providing clear visibility of risks and driving measurable improvements in security maturity. This role is majority onsite … PCI-DSS environment Develop, maintain, and evolve the cyber governance and compliance framework. Define and manage information and cyber security policies, standards, and procedures. Ensure alignment with ISO 27001, NIST CSF, GDPR, and other relevant regulations. Partner with internal teams to integrate governance and compliance into daily operations. Support policy reviews, updates, and communication across business units. Risk Management & Assurance More ❯

SDLC, partnering with IT, product, and development teams. Conduct risk assessments and threat modeling, proactively identifying vulnerabilities and mitigation strategies. Develop and maintain security policies and frameworks aligned with NIST, ISO 27001, and CIS Controls. Lead PCI-DSS architecture and compliance, ensuring both front- and back-office systems meet standards. Guide and mentor teams in best-practice security engineering, fostering … cybersecurity, with at least 3 in security architecture or design leadership. Deep understanding of AWS security, hybrid cloud design, and modern DevSecOps principles. Strong knowledge of frameworks such as NIST, ISO 27001, OWASP, and CIS. Experience designing and implementing secure, compliant PCI-DSS solutions. Solid grounding in tools and technologies like SIEM, IDS/IPS, DLP, endpoint protection, IAM, and More ❯

is a hands-on consulting position delivering Governance, Risk and Compliance (GRC) projects for major enterprise clients — including risk management, cloud security governance, and compliance frameworks such as ISO27001, NIST CSF, CIS Top 18 and COBIT .You’ll play a key role in engaging with senior stakeholders, assessing cyber maturity, and driving best-practice improvements across a range of industries. … levels. Skills & Experience Required 4+ years’ experience in a professional consulting role, ideally within enterprise IT security, governance, or risk management. Proven delivery experience using frameworks such as ISO27001, NIST CSF, CIS, COBIT , or equivalent. Strong client-facing skills, with the ability to communicate technical concepts to non-technical audiences. Relevant industry certifications such as CISSP, CISA, CRISC, CISM, or More ❯

structured IT and information security risk assessments and threat modelling for new IT platforms, systems, and applications and for material changes. Provide security architecture advice (patterns, guardrails) aligned to NIST CSF/ISO 27001 and company standards. Define and agree control selection (prevent/detect/correct) proportionate to risk, including identity, data and platform controls. Conduct IT control walkthroughs … approach. Role Requirements 7+ years in information risk, security assurance or IT audit within regulated, safety-critical or industrial environments (energy/oil & gas preferred). Strong knowledge of NIST CSF, ISO 27001, UK GDPR and supplier assurance practices; familiarity with the UK CAF is desirable. Proven experience running compliance and assurance functions, Secure-by-Design reviews, and control testing More ❯

structured IT and information security risk assessments and threat modelling for new IT platforms, systems, and applications and for material changes. Provide security architecture advice (patterns, guardrails) aligned to NIST CSF/ISO 27001 and company standards. Define and agree control selection (prevent/detect/correct) proportionate to risk, including identity, data and platform controls. Conduct IT control walkthroughs … approach. Role Requirements 7+ years in information risk, security assurance or IT audit within regulated, safety-critical or industrial environments (energy/oil & gas preferred). Strong knowledge of NIST CSF, ISO 27001, UK GDPR and supplier assurance practices; familiarity with the UK CAF is desirable. Proven experience running compliance and assurance functions, Secure-by-Design reviews, and control testing More ❯

for its commitment to leveraging technology to drive forward its mission. Description Implement and maintain ISMS aligning with ISO27001 Ensure security controls are in-place based on ISO27001 and NIST As the regional security representative in the global Security/Technology project Lead/execute phishing campaign Conduct vulnerability assessments and implement measures to mitigate potential risks. Involve in global … to ensure secure system designs and implementations. Provide training and support to staff to enhance security awareness across the organisation. Profile Practical experience and understanding of ISO27001 Familiar with NIST and GDPR is preferred Solid experience in threat, risk and vulnerabilities management process Experience with security tools such as SIEM, intrusion detection systems, and endpoint protection. Strong analytical and problem More ❯

incident management, and play a key role in safeguarding our organisation’s digital environment. Communications with key business partners is key regarding risks, threats and SOC performance. Familiarity with NIST Cybersecurity, MITRE ATT&CK, Splunk, Sentinel and ISO27001 is vital What you will be doing: Lead, mentor, and develop SOC analysts and incident responders. Provide technical direction, conduct performance reviews … analysts, building high-performing teams, and managing effective shift models. Confident communicator with the ability to translate complex technical risks into clear business impacts for senior stakeholders. Familiarity with NIST Cybersecurity Framework and MITRE ATT&CK. Understanding of ISO 27001 standards and compliance best practices. Working knowledge of the CREST SOC Maturity Model. Experience applying ITIL processes across incident, problem More ❯

work closely with both internal and external stakeholders across Legal, Risk & Audit, Procurement, and IT to embed strong governance and maintain alignment with leading standards such as ISO 27001, NIST CSF, and GDPR. The position combines both strategic oversight and hands-on delivery, providing clear visibility of risks and driving measurable improvements in security maturity. This role is majority onsite … PCI-DSS environment Develop, maintain, and evolve the cyber governance and compliance framework. Define and manage information and cyber security policies, standards, and procedures. Ensure alignment with ISO 27001, NIST CSF, GDPR, and other relevant regulations. Partner with internal teams to integrate governance and compliance into daily operations. Support policy reviews, updates, and communication across business units. Risk Management & Assurance More ❯

Information Security Consultant required to join a global organisation in Glasgow and play a key role in evaluating security risks across projects, technology initiatives, and third-party suppliers. This is a chance to influence how a global firm approaches security More ❯

As a Cyber Security Apprentice, you’ll play a vital role in protecting our organisation’s digital assets while developing your skills in one of the most in-demand areas of technology. Under the guidance of experienced professionals, you’ll More ❯

identifying efficiencies and supporting financial planning Governance & Compliance Ensure all IT operations meet the minimum requirements set by Group, including Technical Security Audit (based on CIS security controls) and NIST Frameworks. Development and review of IT policies and procedures Lead internal (e.g. GMR, system) and external audits (e.g. Cyber Essentials Plus) Infrastructure & Service Management Oversee the performance, maintenance, and security … IT Director Build strong relationships with internal stakeholders to understand business needs and deliver effective technology solutions SKILLS, EXPERIENCE & QUALIFICATIONS An understanding of Cyber Essentials Plus, CIS audits and NIST frameworks is also required to ensure the business meets the challenges of cyber security hygiene Hands on knowledge of Microsoft 365 is required to drive the platform forward to ensure More ❯

identifying efficiencies and supporting financial planning Governance & Compliance Ensure all IT operations meet the minimum requirements set by Group, including Technical Security Audit (based on CIS security controls) and NIST Frameworks. Development and review of IT policies and procedures Lead internal (e.g. GMR, system) and external audits (e.g. Cyber Essentials Plus) Infrastructure & Service Management Oversee the performance, maintenance, and security … IT Director Build strong relationships with internal stakeholders to understand business needs and deliver effective technology solutions SKILLS, EXPERIENCE & QUALIFICATIONS An understanding of Cyber Essentials Plus, CIS audits and NIST frameworks is also required to ensure the business meets the challenges of cyber security hygiene Hands on knowledge of Microsoft 365 is required to drive the platform forward to ensure More ❯

Cyber Security Risk Manager Cyber Security Risk Manager - Cyber Security Risk Assessments, Audits, GRC, Information Security Management, CRISK, CISM, CompTIA Security+, NIS, NIST, ISO 27001 - Hybrid (Manchester) - to £61,500 + excellent bonus + bens This is an outstanding opportunity to become my clients primary Cyber Security Risk Advisor working within a high-profile and growing Cyber Security function which … management skills including the ability to write and present detailed reports - Certification in Information Security Management would be ideal (CRISK, CISM, COMPTIA Security+) - Cyber Security audit experience (NIS/NIST/ISO 27001) would be preferred, along with knowledge of vulnerability management platforms The role also involves consulting on ratings for IT/OT Physical Cyber risks and supporting stakeholders … best practice and guide the business through upcoming certifications and audits. Cyber Security Risk Manager - Cyber Security Risk Assessments, Audits, GRC, Information Security Management, CRISK, CISM, CompTIA Security+, NIS, NIST, ISO 27001 - Hybrid (Manchester) - to £61,500 + excellent bonus + bens Essential Recruitment is a specialist Tech recruitment business with an in-depth understanding of the rapidly-changing nature More ❯