76 to 100 of 283 NIST Jobs in the UK excluding London

or defence-focused discipline. Recognised cybersecurity certifications: CompTIA, CISSP, CISM, CRISC, ISO 27001 Lead Auditor/Implementer, or equivalent. Familiarity with MOD, maritime, or defence-specific frameworks: JSPs, DEFSTAN, NIST, IEC 62443, IMO or ISO/IEC 27001. DV clearance (or eligibility to obtain DV as a minimum) is required. Evidence of ongoing professional development aligned with cybersecurity assurance, defence More ❯

ideally within the built environment or critical infrastructure . Strong understanding of cyber-physical systems , OT environments , and connected infrastructure . Experience applying assurance frameworks and technical standards (e.g. NIST, ISO27001, CAF). Background in governance, risk, and compliance (GRC) functions. Excellent communication and stakeholder engagement skills. Agile, analytical, and solutions-focused mindset. Experience in sectors such as energy, water More ❯

ideally within the built environment or critical infrastructure . Strong understanding of cyber-physical systems , OT environments , and connected infrastructure . Experience applying assurance frameworks and technical standards (e.g. NIST, ISO27001, CAF). Background in governance, risk, and compliance (GRC) functions. Excellent communication and stakeholder engagement skills. Agile, analytical, and solutions-focused mindset. Experience in sectors such as energy, water More ❯

ideally within the built environment or critical infrastructure . Strong understanding of cyber-physical systems , OT environments , and connected infrastructure . Experience applying assurance frameworks and technical standards (e.g. NIST, ISO27001, CAF). Background in governance, risk, and compliance (GRC) functions. Excellent communication and stakeholder engagement skills. Agile, analytical, and solutions-focused mindset. Experience in sectors such as energy, water More ❯

dynamic team Good numeracy and organisational skills, with attention to detail Critical competencies – technical fit Good understanding of at least one audit framework; PCI DSS, ISO 27001, Cyber Essentials, NIST, SOC 2, NIS2, Microsoft 365 Certification, etc. Ability to deliver, without supervision/support, at least one Cyber Practice GRC service Aptitude for understanding, interpreting, and applying objective standards to More ❯

of Secure by Design principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001/2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and/or system development environments Effective communication and report-writing skills Ability More ❯

SCCM). Strong background in system monitoring, performance tuning, and troubleshooting. Experience supporting hybrid environments (on-premises and cloud). Familiarity with network security, patch management, and compliance frameworks (NIST, FISMA, FedRAMP). U.S. Citizenship required (Public Trust eligibility). Preferred Certifications: Microsoft Certified: Windows Server Hybrid Administrator Associate VMware Certified Professional (VCP) CompTIA Security+ or Network+ AWS or Azure More ❯

entry level certification such as SEC+, Net+ or SANS/GIAC would be an additional benefit Additionally, it would be beneficial to have an understanding of security frameworks including NIST, NIS Regulations, CAF, IEC, SoGP, MITRE ATT&CK, MITRE ATT&CK ICS and/or Cyber Kill Chain. This role requires strong analytical and problem-solving skills including root-cause More ❯

lines of defence to ensure alignment and adherence to assurance best practice. We need you to have Expert knowledge of cyber security governance frameworks, policies, and procedures such as NIST, COBIT, CIS (Center for Internet Security) Controls Understanding of cyber security risk management principles and practices. Awareness of emerging cyber security trends, threats, and technologies. It's a bonus if More ❯

entry level certification such as SEC+, Net+ or SANS/GIAC would be an additional benefit Additionally, it would be beneficial to have an understanding of security frameworks including NIST, NIS Regulations, CAF, IEC, SoGP, MITRE ATT&CK®, MITRE ATT&CK® ICS and/or Cyber Kill Chain. This role requires strong analytical and problem-solving skills including root-cause More ❯

and compliance Ability to manage workload and meet deadlines Desirable Skills UK Cyber Security Council registration Knowledge of HMG or MoD security policy Secure by Design experience Experience with NIST, CAF, GovAssure or ISO 27001 audits Understanding of supplier assurance Experience reviewing penetration test and vulnerability outputs Additional Requirements SC or DV clearance preferred or willingness to be vetted Right More ❯

consistent quality of work. Experience & Skills: 1–3 years of experience in cyber security, ideally within MSSP or consulting environments. Exposure to incident response processes and frameworks such as NIST CSF, ISO 27001, and MITRE ATT&CK. Strong analytical and problem-solving skills with attention to detail. Effective communication skills, capable of engaging with both technical and non-technical stakeholders. More ❯

Professionalism and empathy when engaging with stakeholders and understanding their needs. Nice to Have Experience/Knowledge Understanding of Cyber Security principles Risk assessment Familiarity with Cyber Frameworks (e.g. NIST, ISO Translating technical risks into business impact Benefits We believe in supporting our people both professionally and personally. Here's what you can expect when you join us: Time Off More ❯

Security Architect. Proven track record in designing secure infrastructure solutions. Hands-on experience with cloud platforms such as Azure, AWS, or GCP. Familiarity with security and control frameworks (e.g., NIST, ISO). Strong understanding of authentication, authorisation, and access control. Ability to map control frameworks to security practices and conduct gap analyses. Excellent communication skills to articulate security requirements across More ❯

/Entra Active Directory Group Policy Highly desired: Keen interest in cyber security and understanding of key concepts and protocols. Understanding and exposure of the Cyber Essentials, ISO27001, and NIST frameworks. Previous experience within a SOC environment. Experience with Microsoft Defender XDR. In-depth hands on experience with Microsoft Sentinel SIEM. Certifications such as CompTIA Security+, ITIL and SSCP or More ❯

as Security Controller or Crypto Custodian. Demonstrated experience overseeing cyber security controls, audits, or compliance in partnership with IT teams and MSPs. Familiarity with frameworks such as ISO 27001, NIST, CAF, or similar standards. Experience developing corporate security policies, frameworks, and operating procedures. Experience leading security accreditation, assurance reviews, or certification maintenance. Exposure to facility and physical security planning, contract More ❯

or scripting languages (Python, PySpark, SQL). Solid understanding of data warehousing and data modelling techniques (Star Schema, Snowflake Schema). Familiarity with security frameworks (GDPR, HIPAA, ISO 27001, NIST, SOX, PII) and AWS security features (IAM, KMS, RBAC). Knowledge of Azure data engineering tools (ADF, Azure DB, Azure Synapse, Azure Data Lake, Azure Monitor) for hybrid migration scenarios. More ❯

to business operations. Security and Compliance Implement and enforce network security policies and procedures to safeguard the integrity and confidentiality of organizational data. Ensure compliance with industry standards, including NIST, PCI-DSS, and GDPR, by enforcing firewall, VPN, and other security measures. Collaboration and Leadership Work closely with cross-functional teams, including cybersecurity, cloud architects, systems engineers, and external vendors More ❯

an ICT Infrastructure, Managed Service Provider and/or Systems Integrator In-depth knowledge of ISO 27001 standards and best practices, as well as other relevant security frameworks (e.g., NIST, CAF) A regluated background is essential Strong technical understanding of modern IT and cloud environments, including the ability to assess third-party platforms, suppliers, and software for security risks Proven More ❯

2nd line or similar). Strong hands-on experience in threat investigation, log analysis, and remediation . Good understanding of common security frameworks and practices (e.g., MITRE ATT&CK, NIST, ISO 27001). Familiarity with a range of security tools and platforms – experience with Microsoft Sentinel is desirable but not essential. Excellent communication skills – able to liaise confidently between technical More ❯

SIEM Hands-on exposure to Microsoft Defender XDR Windows, Microsoft 365 and Linux security monitoring/tooling knowledge Vulnerability, phishing, and alert analysis experience Exposure or understanding of ISO27001, NIST, or Cyber Essentials frameworks Security process automation mindset Benefits Support and sponsorship for future security certifications Clear progression towards Senior Analyst/Security Engineer pathways Join during active initiatives: Cyber More ❯

focused security advice. What they're looking for: Strong technical security and GRC experience. Experience in project delivery and stakeholder engagement (not hands-off). Knowledge of ISO 27001, NIST, or similar frameworks. Excellent communication, analytical, and problem-solving skills. Contract Details: Location: London (2 days p/week onsite) Duration: 6-12 month initial If interested, please send your More ❯

Candidates should have proven experience within an MOD/Defence Digital environment. And also hold Some/Several of the following Accreditations and Qualifications: CCP SIRA qualified Ex CLAS NIST CISSP, CISSM, ISO27001 SC as a minimum and Ideally DV Clearance will be required prior to starting, as such all candidates should either hold existing clearance or be willing and More ❯

recovery, business continuity, data governance, privacy, change, and third party risk. At least five years’ experience in a risk focused role. Knowledge of risk management frameworks such as ISO31000, NIST, COBIT or COSO. Understanding of control frameworks and IT general controls. Experience in control assurance is desirable. Certifications such as ITIL Master or Expert, CISA or CRISC would be beneficial. More ❯

recovery, business continuity, data governance, privacy, change, and third party risk. At least five years experience in a risk focused role. Knowledge of risk management frameworks such as ISO31000, NIST, COBIT or COSO. Understanding of control frameworks and IT general controls. Experience in control assurance is desirable. Certifications such as ITIL Master or Expert, CISA or CRISC would be beneficial. More ❯