8 of 8 NIST Jobs in South Wales

This position is critical to ensuring our products meet the highest standards of security by design. The successful candidate will be expected to bring deep, hands-on experience with NIST cybersecurity standards - this is essential -as well as a strong working knowledge of Defence Standards DefStan 05-138 Issue 3 and DefStan 05-139 Issue 1 . If you're … security controls throughout the product development lifecycle Conduct detailed threat modelling and risk assessments using recognised tools Lead the implementation of risk management strategies based on industry best practices (NIST, ISO) Work closely with development teams to ensure secure-by-design principles are followed Identify and propose mitigations for security vulnerabilities in solution architectures Maintain and evolve internal security policies … Support incident response efforts and coordinate remediation actions where needed Serve as a subject matter expert on product and application security to internal stakeholders Key Requirements: Extensive experience applying NIST frameworks (including NIST 800-30, NIST 800-53) - non-negotiable Working knowledge of DefStan 05-138 (Issue 3) and DefStan 05-139 (Issue 1) is essential Proficiency in threat modelling More ❯

an asset. Licensure/Certifications: Industry certification (i.e. AWS CSA, ISC2 ISSAP, SABSA SCF or similar) Knowledge, Skills, Demonstrated Capabilities & Competencies: Familiarity with various security certifications such as ISO2700, NIST, etc., sufficient to provide immediate leadership and guidance to individuals, teams and departments in meeting the organization's security requirements Excellent management, analytical and problem-resolution skills Working knowledge of More ❯

risks across infrastructure, data protection, and lifecycle management. * Own and maintain the IT risk register, ensuring mitigation plans are in place. * Align risk management frameworks with industry standards (ISO27001, NIST, CIS Critical Controls). * Lead IT audits, coordinate fieldwork, and track findings to ensure timely resolution. * Develop and implement IT policies, procedures, and security awareness initiatives. * Act as an SME More ❯

risks across infrastructure, data protection, and lifecycle management. * Own and maintain the IT risk register, ensuring mitigation plans are in place. * Align risk management frameworks with industry standards (ISO27001, NIST, CIS Critical Controls). * Lead IT audits, coordinate fieldwork, and track findings to ensure timely resolution. * Develop and implement IT policies, procedures, and security awareness initiatives. * Act as an SME More ❯

education of cybersecurity risks and responsibilities throughout the organisation. Travel to client sites as required. Person Specification Essential: Experience implementing security standards and frameworks such as ISO27001, PCI DSS, NIST, IASME Cyber Assurance etc. Proven ability to lead risk assessments and manage control frameworks Strong written and verbal communication skills, with the ability to present risk topics to both technical More ❯

operational and regulatory requirements Carry out ICS-specific risk assessments and develop mitigation strategies Oversee the development of policies, procedures, and assurance frameworks Ensure compliance with relevant standards, including NIST CSF and IEC 62443 Support incident response planning and real-time investigation efforts Manage technical controls such as firewalls, IDS/IPS, and endpoint protection Coordinate with both OT and More ❯

collaborative team of infrastructure and DevOps engineers Build secure, scalable infrastructure (Windows/Linux, VMs, containers) Drive CI/CD, automation, and Infrastructure as Code practices Ensure compliance with NIST, NCSC, CIS, JSP, and ISO 27001 Oversee backup, DR, and business continuity strategies Maintain strong cyber hygiene and proactively manage vulnerabilities Create documentation and a knowledge-sharing culture Work cross … hands-on expertise with strategic oversight. Essential Experience & Skills: Proven experience in secure IT infrastructure & DevOps leadership Strong technical background in systems administration & automation Solid grasp of compliance frameworks (NIST, NCSC, JSP) Excellent communication and stakeholder management Tech Stack You'll Work With: OS: Windows Server, Hardened Linux Containers/Orchestration: Docker, Kubernetes, Portainer DevOps Tools: Jenkins, Artifactory, Jira, Azure More ❯

hardware and firmware development, mobile apps and cloud integration. Passion for access control technologies, IoT connectivity and tools. Familiarity with industry alliances and standards body organizations (such as SIA, NIST, FIDO, FIRA, CCC, CSA, IEEE, IETF, etc) and associated standards and specifications (such as OSDP, Wiegand, FIPS, FICAM, PIV, CIV, Aliro, Thread, etc). Results oriented, strategic & critical thinking, proven More ❯