1 to 25 of 31 NIST Jobs in the East of England

SOC environment. Desirable * IT certifications such as CompTIA A+, Network+ * Cyber certifications such as CISM, CISA, CEH, or CompTIA Security+ * Understanding of regulatory frameworks and industry standards (e.g., NIS, NIST, ISO 27001, GDPR). * Experience in scripting or programming languages including PowerShell for automating security tasks. Person Specification: * Communication. Structures and conveys information and ideas effectively. Communicates to ensure they More ❯

to manage external security operations. Desirable Certifications: Azure Security Engineer Associate, CISSP, OSCP (Offensive Security Certified Professional), CCSP, or equivalent. Experience with container security (Docker, Kubernetes). Knowledge of NIST, ISO 27001, SOC 2 compliance frameworks. Familiarity with Zero Trust security principles. Other Stuff NB: Please only apply if you are able to work from their Debden (IG10) offices Monday More ❯

Lead the design and implementation of secure network architectures for on-premises, cloud, and hybrid environments. Define network security standards, frameworks, and policies aligned with industry best practices (e.g., NIST, ISO 27001, CIS). Develop and maintain secure designs for firewalls, VPNs, intrusion prevention systems (IPS/IDS), network segmentation, and zero trust network access (ZTNA). Collaborate with IT More ❯

risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to communicate risks associated with More ❯

and Compliance, IT Infrastructure, Engineering, Compliance and AI teams to integrate security tooling and sophisticated security capabilities into business-critical systems. Define frameworks and standards aligned with industry standards (NIST, MITRE ATT&CK) and semiconductor-specific regulatory requirements including export control and SoX compliance. Drive innovation by utilising AI and machine learning technologies to enhance threat detection, incident response, and … Technology or Semiconductor industries. Proven expertise in cloud security architecture and deployments, particularly in AWS, Azure, and/or Google Cloud Platform. Solid understanding of security frameworks such as NIST, MITRE ATT&CK, and relevant semiconductor industry standards. Excellent leadership skills with a track record of building and managing high-performing technical teams. Exceptional interpersonal skills with the ability to More ❯

. Expertise in identity and access management (IAM), including RBAC, ABAC, JWT and Cookie based authentication. Incident detection and response in MOD environments. Security compliance and regulatory frameworks (e.g., NIST, CIS Benchmarks). Experience working with Kubernetes at an administrative level Soft Skills Strong leadership and mentoring abilities. Effective communication with development, operations, and security teams. Ability to advocate for More ❯

and maintain clear, concise reports, metrics, and documentation related to security incidents, risks, and controls. What we need from you; Practical experience of ISO27001/27004/27005 and NIST Risk Management Framework (RMF) Demonstrable experience of writing IA Technical Risk Assessments and the management of these Assessments Good understanding and appreciation of the Engineering development lifecycles and how the More ❯

Provide technical escalation support in the absence of a cybersecurity specialist, particularly in coordination with the Security Operations Centre (SOC). - Support compliance with relevant standards (e.g. ISO 27001, NIST, UK GDPR). - Review security aspects of tenders and conduct third-party/vendor risk assessments to ensure alignment with organisational security requirements. - Perform additional security-related tasks as directed … and cloud security. - Ability to assess and communicate technical vulnerabilities in business terms. - Experience working with or within a SOC environment. - Familiarity with risk management frameworks?(e.g. ISO 27005, NIST RMF). - Excellent communication and reporting skills. - Relevant certifications (e.g. CISSP, CISM, CRISC, CEH). - Experience with GRC tools and risk registers. - Knowledge of regulatory requirements and data protection laws. More ❯

willing to undergo DBS and Counter Terrorist Check. It would be great if you had: Certifications such as CISSP, or other relevant qualifications. Experience with additional frameworks (e.g., SOC2, NIST, NCSC CAF). More than 2 years’ experience delivering IT or cybersecurity solutions. Benefits: 30 days annual leave + 8 bank holidays Additional day off for your birthday 3% employer More ❯

and one of LinkedIn's Top Companies 2024 Do you have proven experience in cyber security, information assurance or resilience management? If you have a strong working knowledge of the NIST Cyber Security Framework then this could be your chance to join us! We're looking for someone with excellent communication skills to work across the business to provide assurance … on Clarion's cybersecurity strategy, ensuring alignment with the National Institute of Standards and Technology (NIST) Cyber Security Framework. Familiar with UK housing sector regulation, applicable standards and data protection requirements (e.g. GDPR, ISO27001, ISO27002, ISO27701) you'll be responsible cyber assurance to support the security posture across systems and services that support tenants and operations. You'll communicate the More ❯

and one of LinkedIn's Top Companies 2024 Do you have proven experience in cyber security, information assurance or resilience management? If you have a strong working knowledge of the NIST Cyber Security Framework then this could be your chance to join us! We're looking for someone with excellent communication skills to work across the business to provide assurance … on Clarion's cybersecurity strategy, ensuring alignment with the National Institute of Standards and Technology (NIST) Cyber Security Framework. Familiar with UK housing sector regulation, applicable standards and data protection requirements (e.g. GDPR, ISO27001, ISO27002, ISO27701) you'll be responsible cyber assurance to support the security posture across systems and services that support tenants and operations. You'll communicate the More ❯

and how product security specialism is aligned. Engineering degree with minimum 5 years' experience in product security and CISSP, CISM or equivalent qualification Practical experience of risk management frameworks (NIST SP800-37, ISO27001) Practical experience of risk assessment processes (NIST SP800-30 and ISO 27005) Practical experience of applying security controls (NIST SP800-53 and ISO27002) Practical experience of Secure More ❯

IT, identify gaps, propose holistic solutions and achieve group-wide endorsement. Continuously evaluate and identify new risks and mitigation, based on CTI and industry best practices including (ISO 270xx, NIST frameworks, OWASP and CIS) Your profile A university degree in computer science, information technology, or cybersecurity. At least 5 years of hands-on experience designing cloud security architecture (technical design More ❯

and implement scalable monitoring, alerting, and auditability solutions to support a secure, multi-cloud, geo-distributed workforce. Design, implement, and continuously improve Roku's Zero Trust Architecture, aligning with NIST SP 800-207 and SP 1800-35 guidance. Collaborate with IT, Networking, and Security teams to troubleshoot identity-related issues and support global infrastructure initiatives. Identify and implement automation opportunities … AWS; GCP is a plus Solid understanding of SaaS platforms and their identity integration Understanding of Zero Trust Architecture principles Familiarity with IT security frameworks and compliance standards (e.g., NIST, GDPR, SOC 2, PCI DSS, HIPAA) Awareness of logging, monitoring, and alerting practices related to identity and access events Basic understanding of email security and DNS Backup and recovery awareness More ❯

you should HODL 7+ years in security engineering or technical external audit/advisory, including hands-on experience with industry frameworks (e.g. ISO 27001, SOC 2, PCI DSS, FedRAMP, NIST). Strong long-form and asynchronous writing skills for a fully remote, globally distributed team. Built and/or made substantial contributions to a common controls framework. Knowledge of infrastructure More ❯

Ability to lead technical conversations, influence customer decisions, and deliver trusted advisory services Existing SC clearance or eligibility to apply Desirable Skills & Certifications Familiarity with industry security frameworks (e.g., NIST, ISO 27001, CIS Controls) Cloud security experience across major hyperscalers More ❯

and threat intelligence drive delivery alongside great response to incidents as they emerge, including in partnership with 3rd parties. Familiar with the application of security certifications such as ISO27001, NIST to global organisations with significant outsourced value stream activities Leadership of information security, data privacy and data handling issues in organisations with significant outsourced value stream activities In the field More ❯

to ensure comprehensive solutions. Governance and Compliance: Ensure that all architectural practices comply with relevant regulations, standards, and best practices in the healthcare industry, such as GDPR, CAF, DSPT, NIST and NHS guidelines. Regularly review and update policies to maintain alignment with evolving regulatory requirements. Ensure security measures are integrated into every aspect of the architecture. Mentorship and Leadership: Provide … a focus on healthcare IT solutions. Proven track record of leading large-scale projects and teams. Strong understanding of healthcare regulations, standards, and best practices (e.g., GDPR, CAF, DSPT, NIST). Excellent communication, presentation, and interpersonal skills. Relevant certifications (e.g., TOGAF, Zachman) (D) What you will get: A Competitive Annual Salary The equivalent of 33 days annual leave Pro Rata More ❯

of evolving security threats. What We're Looking For Extensive experience in Secure by Design, system accreditation, and government encryption. Strong knowledge of ISO 27001, Cyber Essentials Plus, and NIST/CMMC frameworks. Experience of defining and implementing strategies Executive level leadership and management experience Excellent communication skills to articulate complex security solutions. CISSP, CISM, or GIAC certifications. Current DV More ❯

experience in a technical Infrastructure or Software development background within a Microsoft environment Experience in the healthcare industry is desirable, with knowledge of healthcare systems and standards(DSPT, CAF, NIST, NHS guidelines). Extensive experience in developing and implementing diverse technical solutions in complex environments. Strong technical and architectural documentation capability Strong analytical and conceptual thought abilities Ability to provide More ❯

as required by the IT Manager. Suitable applicants should ideally have: Minimum 3 years experience working in an IT-related capacity Familiar with security best practices and standards, including NIST, CIS, and ISO, and how to follow these. Fundamentals of IT including an understanding of LAN and WAN networks, Operating Systems, Active Directory and authentication systems, Cloud Computing and basic More ❯

we're looking for: Demonstrable experience of effective and efficient cyber security delivery, project management or security engineering. Strong understanding of vulnerability management, secure software development, and compliance frameworks (NIST CSF 2.0, GDPR, ISO 27001). Strong examples of cross-functional stakeholder management, being a knowledgeable bridge between technical cyber security teams and non-cyber security colleagues. Proven track record More ❯

continuous improvement, training, and policy development. Key Requirements: Experience in product security engineering for defence/government programmes Strong background in risk assessments, mitigation planning & accreditation Familiar with: ISO27000, NIST SP800, JSP440, GovS 007, Common Criteria Understanding of platform security, firmware, cloud, and TEMPEST controls Degree in relevant field and/or NCSC-certified (e.g. CISSP, CISM) Strong documentation and More ❯

Security Architecture function coupled with experience of leading large client engagements. Proficient with Security Architecture principles, such as SABSA, and published frameworks or guidelines from organisations such as from NIST and NCSC. The ability to design and document effective security controls aligned to business objectives using a risk based approach. Excellent analytical and problem-solving skills. It would be great More ❯

Security Architecture function coupled with experience of leading large client engagements. Proficient with Security Architecture principles, such as SABSA, and published frameworks or guidelines from organisations such as from NIST and NCSC. The ability to design and document effective security controls aligned to business objectives using a risk based approach. Excellent analytical and problem-solving skills. It would be great More ❯