1 to 25 of 41 NIST 800 Jobs in the UK

Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23/09 Secure by Design Knowledge of security frameworks, such as ISO/IEC 27001, NIST 800-30, NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further More ❯

Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23/09 Secure by Design Knowledge of security frameworks, such as ISO/IEC 27001, NIST 800-30, NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further! Product Security Architect Permanent role Based in Bristol Offering circa 80,000 Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource More ❯

uphold the highest standards of cyber assurance. Key Responsibilities Design and develop secure architectures for MOD platforms, systems, and networks. Align solutions with frameworks such as NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance. Produce and maintain documentation: Security Architecture Documents, Risk Assessments, and Security Management Plans. Lead and … by Design and security compliance (ISO 27001, CE/CE+). Experience producing security artefacts for MOD assurance. Working knowledge of risk management frameworks (HMG IS1/IS2, NIST RMF). Excellent communication skills – confident engaging with technical and non-technical stakeholders. Must hold ACTIVE SC Clearance – applicants without current clearance cannot be considered. Preferred Certifications Certified Information More ❯

uphold the highest standards of cyber assurance. Key Responsibilities Design and develop secure architectures for MOD platforms, systems, and networks. Align solutions with frameworks such as NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance. Produce and maintain documentation: Security Architecture Documents, Risk Assessments, and Security Management Plans. Lead and … by Design and security compliance (ISO 27001, CE/CE+). Experience producing security artefacts for MOD assurance. Working knowledge of risk management frameworks (HMG IS1/IS2, NIST RMF). Excellent communication skills confident engaging with technical and non-technical stakeholders. Must hold ACTIVE SC Clearance applicants without current clearance cannot be considered. Preferred Certifications Certified Information More ❯

You will be involved in: Design, develop, and maintain secure system architectures for MOD platforms, applications, and networks Ensure alignment with relevant standards and frameworks including; NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance Produce and maintain security documentation including; Security Architecture Documents, Security Risk Assessments, and Security Management … of systems engineering principles and secure development lifecycles Experience developing artefacts to support MOD security assurance Hands-on knowledge of risk management frameworks (e.g. HMG IS1/IS2, NIST RMF) Excellent communication skills, both written and verbal – able to present to technical and non-technical stakeholders Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) SABSA More ❯

Management, Computer Engineering, Cybersecurity or equivalent) Professional certifications such as CISSP, CISA, CISM, CRISC, SABSA, or equivalent. Deep expertise in risk management frameworks, including ISO 27001, NIST SP 800-53, and SANS Top 20 Critical Security Controls. Experience with cloud security solutions and services More ❯

Management, Computer Engineering, Cybersecurity or equivalent) Professional certifications such as CISSP, CISA, CISM, CRISC, SABSA, or equivalent. Deep expertise in risk management frameworks, including ISO 27001, NIST SP 800-53, and SANS Top 20 Critical Security Controls. Experience with cloud security solutions and services More ❯

for cloud deployments, ensuring security, compliance, performance, and maintainability. Lead the design and architecture of complex cloud solutions, considering factors such as security controls, compliance requirements (e.g., FedRAMP, NIST, ITAR), data sovereignty, and resilience in highly sensitive environments. Oversee the creation of detailed architectural diagrams, documentation, and specifications for cloud infrastructure and applications. Provide architectural guidance and oversight … platforms (e.g., AWS GovCloud, Azure Government, Google Cloud Platform Assured Workloads, private clouds). Security frameworks and compliance standards relevant to defenceand national security (e.g., NCSC best practices, NIST 800-53, DISA STIGs, SOC 2, ISO 27001). Secure cloud architecture patterns (e.zero trust, micro-segmentation, data loss prevention, encryption at rest and in transit). … ability to articulate complex technical solutions to clients and secure new business. Deep understanding of security frameworks and compliance standards relevant to defenceand national security (e.g., NCSC patterns, NIST 800-53, DISA STIGs). Technical Skills Expert-level knowledge of major cloud platforms (e.g.AWS, Azure, GCP) and their services, particularly in their government or secure offerings More ❯

regulatory frameworks, including NIS2, GDPR, ISO 27001, and sector-specific compliance obligations (eg, energy). Proven experience with vendor risk management frameworks such as SIG questionnaires, NIST SP 800-161, and third-party risk scoring methodologies. Strong background in contractual and SLA analysis, particularly around security clauses, data protection, and breach management. Hands-on experience conducting More ❯

develop, implement, and secure such systems. Experience in applying systems security policies and standards in engineering cyber-physical systems such as the Risk Management Framework (RMF), NIST SP 800-160, DO-326. Must have - Ability to work in a fast paced, dynamic remote/hybrid work environment, including virtual teams. Strong interpersonal skills with ability to More ❯

IOT Security SME Role: 10+ years of experience in Cyber security Designing & implementation on ICS/OT network Architectures, Cybersecurity frameworks for ICS/OT environments NIST SP 800-82 and c, OT Network Communication Protocols (e.g., Ethernet, Modbus, OPC, IEC-101/104 etc.), Information Event Management (SIEM). Key Responsibilities: Designing and implementing technical More ❯

days onsite. Requirement: 10+ years of experience in Cyber security Designing & implementation on ICS/OT network Architectures, Cybersecurity frameworks for ICS/OT environments NIST SP 800-82 and c, OT Network Communication Protocols (e.g., Ethernet, Modbus, OPC, IEC-101/104 etc.), Information Event Management (SIEM). Key Responsibilities: Designing and implementing technical solutions More ❯

days onsite. Requirement: 10+ years of experience in Cyber security Designing & implementation on ICS/OT network Architectures, Cybersecurity frameworks for ICS/OT environments NIST SP 800-82 and c, OT Network Communication Protocols (e.g., Ethernet, Modbus, OPC, IEC-101/104 etc.), Information Event Management (SIEM). Key Responsibilities: Designing and implementing technical solutions More ❯

and compliance standards Conduct threat modelling, risk assessments, and recommend effective security controls following "Secure by Design" principles Develop security documentation, reference architectures, and governance frameworks aligned with NIST, NCSC, and ISO standards Collaborate with stakeholders across all defence lines to ensure regulatory, privacy, and risk compliance Mentor junior consultants and support the growth of the Security Practice … through knowledge sharing and proposal development Drive continuous improvement through the review of existing controls, KPIs, and compliance measures What you'll bring: Knowledge of frameworks such as NIST CSF, NIST 800-53, and NCSC CAF Strong understanding of networking, cloud security (AWS/Azure), IAM, and vulnerability management Familiarity with ISO 27001/ More ❯

Managing sales, pre-sales and delivery team of consultants for all regional engagements • Designing solutions related to Cyber Risk engagement on assessment and implementation of frameworks such as NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K • Designing solutions related to advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC … preferable candidates from Big4 organizations) • Capabilities of executing atleast 3-4 advisory/consulting engagements. • Technical Knowledge around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP … Compliance), Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS) TPRM • Business Resiliency & Cyber Recovery, ZTA • GRC Project & Program Management • Excellent written and verbal communications skills • Should be able to travel 70%-80% on short as well as long term engagements. PLATFORM/TOOL EXPERTISE • Experience on the below mentioned tools More ❯

Managing sales, pre-sales and delivery team of consultants for all regional engagements • Designing solutions related to Cyber Risk engagement on assessment and implementation of frameworks such as NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K • Designing solutions related to advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC … preferable candidates from Big4 organizations) • Capabilities of executing atleast 3-4 advisory/consulting engagements. • Technical Knowledge around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP … Compliance), Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS) TPRM • Business Resiliency & Cyber Recovery, ZTA • GRC Project & Program Management • Excellent written and verbal communications skills • Should be able to travel 70%-80% on short as well as long term engagements. PLATFORM/TOOL EXPERTISE • Experience on the below mentioned tools More ❯

and the confidence to engage at every level. Ideally, youll have: Strong experience in cybersecurity risk management or GRC roles A solid understanding of industry frameworks such as NIST CSF, NIST 800-53, or SOC 2 Hands-on involvement in audit or certification readiness programmes Excellent communication skills with the ability to translate security More ❯

Securing IT/OT communications and real-time/performance-sensitive systems. Documentation : Experience creating Functional Design and Cyber Security Specifications. Security Standards : Familiarity with frameworks such as NIST 800-53/800-82, ISO 27001, IEC 62433, NIS-R, etc. Stakeholder Management : Proven ability to manage relationships at all levels. Customer Focus : Commitment More ❯

CISM qualifications. Experience required: Security assurance, working with JSP440, JSP604/453. Security accreditation. Implementation of Secure by Design. Implementing security standards and frameworks, such as ISO 27001, NIST 800 and CAF. Conducting Cyber Security risk assessments and managing risk management activities. Experience of working within highly classified environments, implementing, and ensuring compliance with Above Secret … and SaaS. Working as a Security Assurance Co-Ordinator Working with various technical teams. Conducting Cyber Security assessments and gap analysis against various frameworks. Qualifications they look For: NIST Foundation/Practitioner CISM CRISC CISSP CISMP Senior Security Consultant – DV Cleared – up to £75,000 + bonus - Corsham - On-Site 2 days per week More ❯

day-to-day operations to major transformation projects. Main responsibilities: Leading security assurance, assessments, and advisory for IT and business projects (both Cloud and On-Prem), aligned to NIST 800-53 standards. Partnering with security architecture and other teams to define and embed security patterns and controls. Developing non-functional security requirements and guiding their integration … to finish. Bonus points if you bring: Experience with AppSec and DevSecOps. Hands-on knowledge of Azure, AWS, and/or Google Cloud. Familiarity with standards like ISO2700X, ISO31000, NIST800, PCI-DSS. Certifications such as CISSP, CCSP, CRISC, CISM, or SABSA. Why QBE? At My Best? At QBE, we want our people to feel rewarded and inspired to perform at More ❯

Key Responsibilities: Identify and integrate security requirements throughout the product and system development lifecycle. Lead threat modelling and risk assessments, applying frameworks such as ISO/IEC 27001, NIST 800-30/53, and ISO 31000. Advise on secure architectures and develop strategies to mitigate identified information risks. Collaborate with multi-disciplinary teams to ensure compliance … Defence, Aerospace, or National Security sectors. Deep understanding of HMG Security Policy Framework and MOD-specific standards. Familiarity with risk management methodologies (ISO 27001/2, ISO 27005, NIST frameworks). Strong analytical and problem-solving abilities — able to assess complex data and provide actionable insights. A collaborative communicator who can balance technical assurance with business priorities. Ability More ❯

Secure by Design principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001/2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and/or system development environments Effective communication and report More ❯

Secure by Design principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001/2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and/or system development environments Effective communication and report More ❯

functions, and key management practices. Experience in designing secure architectures in hybrid or cloud environments. Knowledge of compliance and regulatory standards such as PCI DSS, HIPAA, SOX, GDPR, NIST 800-53. Preferred Qualifications: Certifications: CISSP, CISM, CEH, GIAC, Microsoft Certified: Identity and Access, or other IDAM equivalent Technologies. Experience with Zero Trust Architecture and Identity More ❯

functions, and key management practices. Experience in designing secure architectures in hybrid or cloud environments. Knowledge of compliance and regulatory standards such as PCI DSS, HIPAA, SOX, GDPR, NIST 800-53. Preferred Qualifications: Certifications: CISSP, CISM, CEH, GIAC, Microsoft Certified: Identity and Access, or other IDAM equivalent Technologies. Experience with Zero Trust Architecture and Identity More ❯