20 NIST Jobs in the South West

IS1 & IS2 ISO27000 Series JSP440 JSP604 NCSC Guidance Material Secure by Design DefStan 05-139 Knowledge and application of non-UK Information Assurance Standards NIST SP800 (in particular NIST SP 800-53, NIST SP 800-37, NIST SP) NIST Guidance Material Knowledge of encryption standards, technologies and key/certificate more »

e.g. ICS/SCADA/IoT) Knowledge of Information security standards (e.g. ISO27000, NCSC, GDPR) Knowledge of ICS Cyber Security Standards (e.g. IEC 62443, NIST SP) Desirable Experience with I&C systems design, commissioning or operation in a nuclear plant environment CS&IA experience in a large infrastructure project environment more »

and articulate technically complex work clearly to stakeholders with differing levels of technical knowledge is important. Knowledge of national or international standards such as NIST, ISO27000, and DCPP/Cyber Essentials would be advantageous but not essential. Our client values professional qualifications and professional registration with appropriate institutions and can more »

management, cyber threats, and I&C systems operations. Expertise in information security standards like ISO27000, NCSC, GDPR, and ICS standards such as IEC 62443, NIST SP. Ability to communicate effectively and build relationships with key project stakeholders. Desirable Attributes: Prior experience with I&C systems in a nuclear environment. Recognized more »

passport and current UK government security clearance (minimum SC; DV preferred). - Strong knowledge of security standards and frameworks such as ISO/IEC27001, NIST, and the UK government's Security Policy Framework. - Proven experience in risk assessment, security auditing, and incident response. - Excellent communication and interpersonal skills, with the more »

CK and Cyber Kill Chain frameworks • Skilled in maintaining Microsoft directory services. • Skilled in using virtualisation software. • Knowledge of key security frameworks (e.g. ISO, NIST 800-53, 800-171, 800-172, C2M2) • Excellent communication skills • Experience of writing Defence/Government documentation Desirable Qualifications: • Broad Spectrum Cyber Course (SANS SEC401 more »

CloudWatch, Guard Duty, Macie Experience with network security, vulnerability management, and penetration testing Knowledge of security best practices and industry standards, such as CIS, NIST, and PCI-DSS Excellent communication and collaboration skills Ability to work independently and in a team environment AWS certifications such as AWS Certified Security Specialty more »

of risk management, information security and IT roles (including Audit) Knowledge gained through working with common information security management frameworks (e.g. ISO27001, Cyber Essentials, NIST, PCI DSS, SOC2) A strong knowledge of Office 365, Teams, and SharePoint Knowledge of data protection regulations and requirements Experience of PCI-DSS controls and more »

of risk management, information security and IT roles (including Audit)Knowledge gained through working with common information security management frameworks (e.g. ISO27001, Cyber Essentials, NIST, PCI DSS, SOC2)A strong knowledge of Office 365, Teams, and SharePointKnowledge of data protection regulations and requirementsExperience of PCI-DSS controls and implementationHow we more »

processes. Reporting on control effectiveness and the development of local policies in context of improving security posture. To become a CISM/CAF/NIST expert as part of your own learning and development. To regularly undertake cyber exercising. · To keep abreast of industry developments and relevant security frameworks. · To more »

progressive team and organisation. Qualifications Experience Requirements Practical knowledge of security standards and frameworks, such as those provided through IASME, Cyber Essentials, ISO 27001, NIST or equivalent, and designing solutions to achieve these. Relevant technical certifications such as those provided by Microsoft, Cisco, or security toolset providers Demonstrable experience working more »

at influencing and negotiating. Certifications such as CISSP, CEH, OSCP, or GSEC are preferrable. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. more »

issues. Certifications such as CISSP, CEH, OSCP, or GSEC are preferred but not required. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modeling and risk assessments. more »

Engineering Delivery Team with a candidate who will be proficient in running hands-on risk assessments in line with industry good practice (ISO 27001, NIST, JSP 440). You'll also lead the development of risk-based cybersecurity requirements and provide essential technical guidance. Your responsibilities will include conducting in more »

you will be identifying risks to products and providing guidance on how to enhance and align them with industry frameworks such as ISO 27001, NIST, and JSP 440 and making sure the risks have been mitigated effectively. My client has a huge training budget for this team and utilizes this more »

audit, and risk management. Good exposure to and experience of carrying out security reviews against recognised security control frameworks such as ISO27017/27001, NIST CSF, or PCI-DSS. Ability to evaluate the adequacy of cloud security controls, and how they are applied in a business context. Familiarity and use … Compliance Portal/Purview, Azure Information Protection (AIP), Azure Security Centre. Experience of carrying out security reviews against recognised security control frameworks such as NIST CSF. Effective interpersonal skills to engage and collaborate with multiple internal and external stakeholders. Interview process The interview process for this role will be a more »

including but not limited to: Security governance and risk management approaches, tools, and techniques. Threat modelling (e.g. STRIDE) and socio-technical risk assessment (e.g. NIST 800-30) methodologies. Attack classification and characterisation frameworks (e.g. MITRE ATT&CK) Computer, Network and Cloud Security architectures and controls, System Hardening, Secure Boundary Protection … Transit, Public Key Infrastructure (PKI)), Security Monitoring and System Security Audit. National and international security standards including the International Standards Organisation (ISO) 27000 series, NIST Cyber Security Framework, Risk Management Framework, and Special Publication 800 Series, NCSC Cyber Assessment Framework, and other industry frameworks. Familiarity with NCSC and industry best more »

transform Security Operations Centers Demonstrable experience in providing senior-level supervision and direction on technical matters, Knowledge of the Cybersecurity Capability Maturity Model (C2M2) & NIST Cybersecurity Framework (CSF) Experience of Security Operations Centers operating within the Military domain Main tasks: Providing the authoritative technical subject matter expertise needed to mature … vSphere Cyber Kill Chain (CKC), Intelligence Driven Defence (IDD), Unified Enterprise Defence (UED), Consultancy and communication Important Knowledge Cybersecurity Capability Maturity Model (C2M2) and NIST Cyber Security Framework (CSF) Current awareness of the market for data analytics and SIEM platforms, including emerging leaders and Network security implementations (e.g host-based more »

Industry qualifications, Microsoft MS-500, Microsoft AZ-500, Microsoft SC-900, VCTA-SEC/VCP-SEC. Internationally recognized cyber security standards and OT Regulations (NIST-CSF, ISO27k series, NISD, NIS2 etc.). OT cybersecurity standards and frameworks (IEC ISA 99/62443, NIST SP 800-82, etc.). Essential: Experience more »

and Tanium Incident Management - using DCC and Elastic Stack Endpoint security - using vSphere, SolarWinds, Trend Intelligence Driven Defence, Cyber Kill Chain, Unified Enterprise Defence NIST Cyber Security Framework and C2M2 Awareness of the current market - SIEM platforms, data analytics, Network Security implementations To Be Considered Please either apply by clicking …/LEAD CONSULTANT/LEAD CYBER CONSULTANT/LEAD CYBER SECURITY CONSULTANT/SOC/SOC OPERATIONS/VULNERABILITY MANAGEMENT/INCIDENT MANAGEMENT/NIST/ENDPOINT SECURITY/CORSHAM/BRISTOL/SOUTHWEST/DV/DV CLEARED/DV CLEARANCE/SECURITY CLEARANCE more »