1 to 25 of 28 NIST Jobs in the South West

Lead experience MOD/GDS Secure by Design Familiarity with: JSP440, JSP604/453, JSP490 Supplier Chain Assurance GDPR, PCI DSS, ICO ISO 27001, NIST CSF, CIS Controls v8 Skills in: Threat modelling (kill chain, attack trees, etc.) Cloud security (AWS, Azure), containerisation, firewalls Secure SDLC HLD/LLD review ...

strong professional development opportunities. Skills Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and ...

GCIH, GCIA, GREM), SC-200 or SC-300 Experience in cloud security operations Background in MSSP or consulting environments Familiarity with frameworks such as NIST, ISO27001, or ITIL Key Competencies Strong technical depth with the ability to simplify complex concepts Excellent analytical and problem-solving skills under pressure Confident communicator ...

GCIH, GCIA, GREM), SC-200 or SC-300 Experience in cloud security operations Background in MSSP or consulting environments Familiarity with frameworks such as NIST, ISO27001, or ITIL Key Competencies Strong technical depth with the ability to simplify complex concepts Excellent analytical and problem-solving skills under pressure Confident communicator ...

GCIH, GCIA, GREM), SC-200 or SC-300 Experience in cloud security operations Background in MSSP or consulting environments Familiarity with frameworks such as NIST, ISO27001, or ITIL Key Competencies Strong technical depth with the ability to simplify complex concepts Excellent analytical and problem-solving skills under pressure Confident communicator ...

GCIH, GCIA, GREM), SC-200 or SC-300 Experience in cloud security operations Background in MSSP or consulting environments Familiarity with frameworks such as NIST, ISO27001, or ITIL Key Competencies Strong technical depth with the ability to simplify complex concepts Excellent analytical and problem-solving skills under pressure Confident communicator ...

GCIH, GCIA, GREM), SC-200 or SC-300 Experience in cloud security operations Background in MSSP or consulting environments Familiarity with frameworks such as NIST, ISO27001, or ITIL Key Competencies Strong technical depth with the ability to simplify complex concepts Excellent analytical and problem-solving skills under pressure Confident communicator ...

GCIH, GCIA, GREM), SC-200 or SC-300 Experience in cloud security operations Background in MSSP or consulting environments Familiarity with frameworks such as NIST, ISO27001, or ITIL Key Competencies Strong technical depth with the ability to simplify complex concepts Excellent analytical and problem-solving skills under pressure Confident communicator ...

Familiarity with industry standards, guidelines, and regulatory compliance requirements related to information security and cloud computing such as GDPR, ISO 27001, Cloud Security Alliance, NIST 800-53, PCI DSS, ISA/IEC 62443, NERC CIP, HIPAA, etc. Knowledge of public cloud environments Azure, AWS or Google Cloud If interested, please ...

engineering or SOAR automation Purple team or red team collaboration experience Forensic analysis experience (memory, disk, network) Exposure to regulatory environments (e.g. ISO 27001, NIST, GDPR) Apply now to be part of this impactful opportunity ...

engineering or SOAR automation Purple team or red team collaboration experience Forensic analysis experience (memory, disk, network) Exposure to regulatory environments (e.g. ISO 27001, NIST, GDPR) Apply now to be part of this impactful opportunity ...

stakeholders, and communicate findings effectively. Proven expertise in Cyber Security Auditing, with strong knowledge of: NCSC Cyber Assessment Framework (CAF). ISO 27000 series, NIST Cyber Security & Risk Management Frameworks. Legacy IA standards and NCSC guidance. Familiarity with MOD security frameworks (e.g., JSP 453, JSP 440, JSP 902, DEFCON 659A ...

Security, System Hardening, Cryptographic Controls (PKI, Data at Rest/In Transit), Protective Monitoring, and Security Auditing. Strong understanding of the ISO 27000 series, NIST Cyber Security & Risk Management Frameworks, NCSC CAF, and other industry standards. Familiarity with NCSC guidance and legacy Information Assurance (IA) standards. Experience with MOD security ...

and participation in HMG/MoD Security Working Groups Experience with the NCSC Cyber Assurance Framework (CAF) and GovAssure audits Knowledge and experience of NIST standards, e.g., the Cyber Security Framework, Risk Assessment Cyber security audit skills, knowledge and experience (e.g., ISO/IEC 27001 audit) Experience of Supplier Assurance ...

tools such as Riverbed, ExtraHop, A10, Arbor Networks Experience contributing to technical strategy, whitepapers, or solution design documentation Understanding of cybersecurity frameworks such as NIST or ISO 27001 Pre-sales methodology training (e.g. Sandler, Afterburner) Additional Information This is a remote-based role; however, the successful candidate must be comfortable ...

and help millions access essential services. Qualifications and Certifications Familiarity with information security best practices, standards, and frameworks (e.g., Cyber Assessment Framework, ISO 27001, NIST 800-53, COBIT 5, CIS CSC 2, Cyber Essentials Plus, PCI DSS) is beneficial. Membership in relevant institutions or bodies (e.g., Institute of Information Security ...

communication skills, with the ability to turn technical security concerns into clear, actionable decisions. Familiarity with recognised frameworks or certifications such as ISO 27001, NIST CSF or similar would be helpful. Experience in a product, platform or SaaS business. Experience in high-trust, regulated or mission-critical environments would ...

Cybersecurity architecture or security engineering roles within the Defence, Critical Infrastructure or National Security sectors You are familiar with ISO 27001/2 and NIST frameworks and can evidence your involvement in helping an organisation achieve certification You have technical depth with hands on knowledge of hybrid & on-prem system ...

ISO27001 standard that you have the proven, battle-tested experience of achieving from the ground up. Aligning global security protocols with regional requirements, including NIST (Americas) and Essential 8 (Australia). Acting as the sole, energetic technical lead for vulnerability management and endpoint security across the worldwide estate. ...

Strong executive presence and stakeholder management skills Microsoft certifications (e.g. SC-100, SC-200, SC-401) preferred Understanding of frameworks such as ISO 27001, NIST, GDPR, SOC 2 Why join Work on some of the largest Security programmes using Microsoft technologies Shape next-generation Microsoft Security offerings and capability High ...

vulnerability management, firewalls and network security Good understanding of risk management, vendor security assessments and compliance Understanding of UK regulations, including Cyber Essentials, ISO27001, NIST On Offer: Salary up to £65,000 Hybrid working - approximately 2 days a week in office (Chippenham) 25 days annual leave plus bank holidays Private ...

Infrastructure Engineers to provide technical input, assurance, and oversight for global transformation programmes. Aligning all technical operations with world-recognised security frameworks, including ISO27001, NIST 800-53, and Australia's Essential 8. Driving the push for Automation across the infrastructure lifecycle to improve reliability and cost-optimisation globally. ...

traceable to MOD security policies and risk appetite. Assurance Activities (Compliance, Risk, Accreditation) Risk & Compliance Conduct risk assessments using MOD-approved methodologies (e.g., NIST, ISO 27005). Produce and maintain Security Risk Assessments (SRAs) and Risk Treatment Plans (RTPs). Identify non-compliances and propose compensating controls. Accreditation & Governance Support ...

industries, frameworks, and environments - ideal if you're looking to broaden your experience. Key Responsibilities: Conduct security audits and assessments against recognised frameworks (ISO27001, NIST, NCSC) Support risk management activities and improve security posture across client environments Assist with information governance processes and reporting Deliver client projects within agreed scope … cyber security/IT security role Experience in security assurance, audits, or compliance-focused work Good understanding of frameworks such as ISO27001, NIST, NCSC Knowledge of risk management and information governance Familiarity with regulations like GDPR/Data Protection Act Strong communication skills - comfortable working with clients and stakeholders Ability ...

within a commercial environment. What You'll Do Contribute to security assessment and improvement programmes aligned to frameworks such as ISO/IEC 27001, NIST CSF, Cyber Essentials, CAF, CSA CCM and comparable standards Perform structured gap analyses that consider business risk, regulatory drivers, and client priorities Support the execution … of cyber and information risk assessments using recognised approaches (e.g. ISO 27005, NIST RMF, FAIR or similar methodologies) Develop, review, and maintain security documentation including policies, standards, procedures, and supporting guidance Assist with the design and implementation of administrative, technical, and physical security controls mapped to relevant frameworks (including ...