25 of 25 NIST Jobs in the Thames Valley

or related field (master’s preferred). Experience in cybersecurity with 3+ years in a security architect or solution designer role. Familiarity with industry standards and frameworks such as NIST, ISO 27001, TOGAF. Strong documentation skills with experience writing SDDs, architecture diagrams, and technical specifications. Certifications such as CISSP, SABSA, TOGAF, CCSP, or AWS/Azure Security are a plus. More ❯

and compliance roles. Strong understanding of security best practices, standards, and control frameworks. Knowledge of GRC principles, security auditing, and compliance validation. Experience with security frameworks and regulations (ISO27001, NIST, PCI, GDPR). Excellent communication skills, able to translate technical concepts for diverse audiences. Strong relationship-building and stakeholder management skills. Desirable: Experience in the real estate sector is desirable. More ❯

of security-first thinking across Humanoid. We’re Looking For Proven experience in cyber security leadership or senior security engineering roles. Strong knowledge of security frameworks (ISO 27001, SOC2, NIST) and ability to apply them pragmatically in a start-up/scale-up. Hands-on experience with vulnerability management, SIEM/logging tools, and incident response. Demonstrated ability to lead More ❯

security role. Hands-on experience with the Microsoft Security Stack and other leading security tools. Familiarity with network and application firewalls. Working knowledge of security frameworks such as ISO27001, NIST, SOC2, and Cyber Essentials Plus. Experience with Privileged Access Management tools (e.g., CyberArk, Entra, SailPoint). Ability to quickly learn and adapt to new security tools and technologies. Please be More ❯

security role. Hands-on experience with the Microsoft Security Stack and other leading security tools. Familiarity with network and application firewalls. Working knowledge of security frameworks such as ISO27001, NIST, SOC2, and Cyber Essentials Plus. Experience with Privileged Access Management tools (e.g., CyberArk, Entra, SailPoint). Ability to quickly learn and adapt to new security tools and technologies. Please be More ❯

testing process Collaborate with control owners and stakeholders to gather evidence, clarify control objectives, and support the smooth execution of testing activities Stay informed on relevant cybersecurity frameworks (e.g., NIST CSF, CIS Controls) and industry best practices to support the evolution of the control testing programme Base location Hybrid Clear Water Court Reading What you should bring to the role More ❯

CrowdStrike, Carbon Black). Strong knowledge of digital forensics, malware analysis, and threat hunting. Skilled across Windows, Linux, and cloud environments. Familiar with frameworks such as MITRE ATT&CK, NIST, and ISO 27001. Scripting experience (Python, PowerShell) beneficial. Preferred Certifications SOC-related (CySA+, Blue Team L1, GCIH, GCIA, GCFA). CISSP or equivalent desirable. Additional Information Fast-paced environment; occasional More ❯

Comfortable working with data – familiarity with Python, SQL, or data tools is a plus. Bonus: Knowledge of AI ethics, data privacy, cybersecurity, or relevant industry frameworks (e.g. ISO 27001, NIST, etc.). Location: London Should you not be contacted within five working days of submitting your application, then unfortunately you have not been shortlisted for the opportunity. We will, however More ❯

planning and communication skills are key for this role, and you’ll have a knowledge of security standards and processes such as ISO 27001 standards, (NCSC) CAF, Cyber Essentials, NIST and Cyber Essentials/Plus. We’ll also look for your experience in: Developing cyber policy and procedures Data protection and privacy Security change management Understanding business continuity resilience and More ❯

We’re Looking For: Experience in cyber security, cyber strategy, or cyber risk management—ideally in a consulting or advisory environment. Strong understanding of cyber frameworks and standards (e.g., NIST CSF, ISO27001, GDPR, NIS2). Ability to operate in fast-paced, client-facing environments and manage multiple stakeholders. Relevant certifications (CISSP, CISM, CISA, MSc Cyber Security, etc.) are a plus. More ❯

regularly to senior leadership on risk posture. Skills & Experience Required Previous experience in an information security or IT risk management role. Strong understanding of frameworks such as ISO 27001, NIST, PCI-DSS, or Cyber Essentials . Excellent communication and stakeholder engagement skills. Ability to manage multiple priorities in a dynamic environment. Benefits Include A people-focused culture with genuine support More ❯

clear guidance to non-technical stakeholders. Strong analytical and problem-solving abilities. Experience with resilience testing, incident response, and compliance reporting. Additional Skills & Qualifications AWS certification. Familiarity with ISO27001, NIST, or other resilience/security frameworks. Location Oxford, UK Rate/Salary 300.00 GBP Daily Trading as TEKsystems. Allegis Group Limited, Bracknell, RG12 1RT, United Kingdom. No Allegis Group Limited More ❯

and API management patterns Nice to Haves Microsoft Azure Architect Expert (AZ-305) certification Experience with Azure APIM , Logic Apps , and Event Grid Knowledge of FinOps , ISO 27001 , or NIST security frameworks Exposure to multi-cloud environments (AWS, GCP) Familiarity with Kanban delivery , architecture decision records (ADRs) , and collaborative design facilitation Why Join/Projects This isn’t just about More ❯

skills. Understanding of full packet capture and analysis concepts, or hands-on experience with tools like Wireshark, Zeek, or similar platforms. Awareness of cybersecurity frameworks and best practices (e.g., NIST, ISO 27001) and how they apply to network assurance. Role & Responsibilities As Principal Sales Engineer, you will play a vital role in driving revenue by delivering technical presales support, demonstrating More ❯

the Greater London area) or in a hybrid setup from our office in Dudley. Position purpose The Cybersecurity & Compliance Manager will lead Tosca’s efforts to ensure adherence to NIST CFS 2.0, ISO 27001, and other standards. This role focuses on developing security protocols, maintaining documentation, conducting risk assessments, and ensuring regulatory compliance. Responsibilities include managing security infrastructure, incident response … and promoting cybersecurity awareness. The position requires collaboration with Global IT, cross-functional teams, and third-party partners. Key qualifications include experience in cybersecurity and compliance, strong knowledge of NIST and ISO standards, risk management expertise, and effective communication skills. This is a full-time role, with travel up to 30% of the time. Responsibilities Implement security protocols and manage … information security programs Report performance, exceptions, and outages to all audiences transparently. Align disaster recovery with business continuity plans. Ensure compliance with ISO27001, NIST CFS 2.0, and maintain ISMS. Identify risks, develop a comprehensive security plan. Test cyber-attacks regularly to address vulnerabilities. Monitor security trends, adapt strategies. Oversee incident monitoring, detection, response via SOC and MSSPs. Manage security tools More ❯

vs Buy, On-premise vs Cloud, In-house vs Outsourced Development, and Intra-group vs Local Service Delivery. Familiarity with technology standards and frameworks such as ITIL, COBIT, and NIST, and working knowledge of relevant regulatory expectations. Excellent written and verbal communication skills, with the ability to articulate risk topics clearly to both technical and non-technical audiences. Experience with More ❯

exposure to cyber/information security Ability to spot weaknesses and recommend pragmatic solutions Excellent communicator who can build trust and influence senior stakeholders Experience with risk frameworks (e.g. NIST, COBIT, ISO27001) is a plus Why Apply Up to £90,000 + bonus High visibility across senior technology and risk leaders A genuine opportunity to help shape the IT risk More ❯

security strategies, policies, and architectures. Lead on AI risk assessment, threat modelling, and mitigation planning. Ensure compliance with GDPR, the EU AI Act, and international security frameworks (ISO 27001, NIST, TOGAF, SABSA). Build and maintain secure AI architectures for complex models and pipelines. Oversee ethical AI governance, driving policy alignment and responsible AI adoption. Advise clients on secure cloud … security architecture, adversarial ML mitigation, and model governance. Current security certifications such as CISSP or CISM. Proven experience across cloud security, data privacy, and DevSecOps. Familiarity with frameworks including NIST, ISO 27001, TOGAF, SABSA. Excellent communication and stakeholder influence skills. Eligible for UK Security Clearance (SC). If you’re an experienced security architect or consultant ready to shape how More ❯

ethical AI principles and align architectures with frameworks such as the EU AI Act and GDPR. Evaluate and implement AI/ML security tools, ensuring adherence to ISO 27001, NIST, TOGAF, and SABSA standards. Collaborate with cross-functional teams to embed DevSecOps practices within AI/ML lifecycles. What We’re Looking For 7+ years’ experience in cybersecurity architecture, including … privacy, and adversarial ML mitigation . Expertise in cloud security (AWS, Azure, or GCP). Current security certification (CISSP, CISM, or equivalent). Knowledge of security frameworks such as NIST, ISO 27001, TOGAF, and SABSA. If you thrive at the intersection of cybersecurity, AI, and client engagement — apply today and help shape the future of secure innovation. More ❯

accounts. • Managing sales, pre-sales and delivery team of consultants for all regional engagements • Designing solutions related to Cyber Risk engagement on assessment and implementation of frameworks such as NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K • Designing solutions related to advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy … services (preferable candidates from Big4 organizations) • Capabilities of executing atleast 3-4 advisory/consulting engagements. • Technical Knowledge around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance … Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS) TPRM • Business Resiliency & Cyber Recovery, ZTA • GRC Project & Program Management • Excellent written and verbal communications skills • Should be able to travel 70%-80% on short as well as long term engagements. PLATFORM/TOOL EXPERTISE • Experience on the below mentioned tools is not mandated More ❯

management response is well defined. Engage risk review and assurance activities across existing suppliers. Provide IT and business advice on aspects of security standards and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Engage with I&T system owners to provide training in relation to information security, cyber resilience, phishing, and facilitation of cyber scenario desktop simulations … controls and consequences across both IT and manufacturing environments in manufacturing or similar industries. Experience working with information security standards and frameworks such as and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Proven analytical, problem-solving, planning, project delivery and supplier work packages management skills. Demonstrable experience of engaging across all levels of a company in More ❯

framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls. Manage and enhance Third-Party Risk Management, including cybersecurity assessments of external partners and suppliers. Collaborate with stakeholders to develop and track cyber risk treatment plans … while fostering strong relationships to embed a risk-aware culture across the organisation. Experience you will have: Expertise in cybersecurity risk frameworks and compliance, including CIS Controls, ISO 27001, NIST CSF, GDPR, SOX, and PCI. Strong technical and analytical skills, with the ability to assess risks, identify gaps, and propose mitigation strategies across IT systems and third parties. Excellent communication More ❯

framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls. Manage and enhance Third-Party Risk Management, including cybersecurity assessments of external partners and suppliers. Collaborate with stakeholders to develop and track cyber risk treatment plans … while fostering strong relationships to embed a risk-aware culture across the organisation. Experience you will have: Expertise in cybersecurity risk frameworks and compliance, including CIS Controls, ISO 27001, NIST CSF, GDPR, SOX, and PCI. Strong technical and analytical skills, with the ability to assess risks, identify gaps, and propose mitigation strategies across IT systems and third parties. Excellent communication More ❯

trusted advisor to clients, leading Quarterly Security Reviews and presenting clear business-focused risk assessments. Own security governance processes, ensuring compliance with frameworks such as Cyber Essentials, ISO27001, and NIST . Oversee patching, vulnerability management, and internal infrastructure security. Collaborate across service delivery, project, and account management teams to embed security consistently. Mentor and develop Security Analysts, ensuring certifications and … into actionable business outcomes for C-level stakeholders. The ideal candidate will have: 5+ years in IT security or MSP environments . Strong knowledge of Cyber Essentials, ISO27001, or NIST frameworks. Experience in vulnerability management, patch governance, and cloud security (M365/Azure). Excellent communication skills with the ability to influence both technical teams and business leaders. (Desirable) Certifications More ❯

Oracle Fusion Developer - Reading/Havant - Hybrid - Inside IR35 Pay Rate - £550 - £650 Duration - 3 months Harvey Nash's Client are hiring a contract Oracle Fusion Developer, you will be responsible for: Develop and test Oracle Fusion HCM reports ensuring More ❯