17 of 17 NIST Jobs in the East of England

MOD/GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). More ❯

MOD/GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). More ❯

/SOAR tooling, preferably Splunk or Microsoft Sentinel. A passion for developing teams — coaching analysts and building collaborative, high-performing cultures. Strong understanding of frameworks and standards such as NIST, MITRE ATT&CK, ISO 27001, CREST, and ITIL. Excellent communication skills, with the ability to translate technical risks into clear business impacts. Desirable Vendor certifications such as Splunk Certified or More ❯

MOD/GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). More ❯

serverless for threats and misconfigurations Investigate and respond to runtime security incidents Integrate CNAPP tooling into CI/CD pipelines with DevOps and Engineering teams Ensure compliance with CIS, NIST, ISO 27001, HIPAA, and PCI-DSS Build dashboards and reports for cloud security posture and incident metrics Analyze cloud entitlements and support least-privilege access Lead cloud security posture assessments More ❯

ability to influence and align technical and business stakeholders. Preferred Qualifications Experience in a global manufacturing organization. Relevant certifications (e.g., CISSP, CISM, CCSP). Familiarity with frameworks such as NIST CSF, ITIL, ISO 27001, HIPAA, FedRamp. Work Location & Flexibility At Brooks, we aim to foster a collaborative and engaging environment while offering flexibility where possible. Work arrangements may include a More ❯

for data extraction and transformation. Prior experience with Data warehousing and Data modelling (Star Schema or Snowflake Schema). Skilled in security frameworks such as GDPR, HIPAA, ISO 27001, NIST, SOX, and PII, with expertise in IAM, KMS, and RBAC implementation. Cloud automation and orchestration tools like Terraform and Airflow. Strong analytical skills to assess data quality, identify inconsistencies, and More ❯

Excel and Power BI or similar tools for reporting purposes, • Understanding of security best practices (least privilege, SSO, RBAC, MFA, Zero Trust), regulatory compliance requirements (PCI DSS V4) and NIST Cyber Security Framework V2.0, • Strong analytical, troubleshooting, and documentation skills, including process mapping, • Strong communication and stakeholder management skills with external teams in IT and business. What you’ll get More ❯

leadership What You Bring Experience in defence, government, secure manufacturing or similar Strong working knowledge of GovS 007, JSP 440, DEFSTAN & protective security frameworks Familiarity with ISO 27001/NIST/GDPR Experience handling sensitive/classified information Excellent communication & stakeholder engagement skills Ability to work autonomously and influence at senior level DISA/vetting-related accreditation beneficial Why This More ❯

or scripting languages (Python, PySpark, SQL). Solid understanding of data warehousing and data modelling techniques (Star Schema, Snowflake Schema). Familiarity with security frameworks (GDPR, HIPAA, ISO 27001, NIST, SOX, PII) and AWS security features (IAM, KMS, RBAC). Knowledge of Azure data engineering tools (ADF, Azure DB, Azure Synapse, Azure Data Lake, Azure Monitor) for hybrid migration scenarios. More ❯

Content experience should involve: Strong hands-on experience leading SIEM engineering projects using platforms such as Splunk, Sentinel or QRadar. A deep understanding of cybersecurity frameworks and best practice (NIST, ISO, CIS, PCI DSS). Scripting ability in Python, PowerShell and Regex for tuning and automation. Excellent communication skills and the ability to collaborate across teams and projects. This is More ❯

technologies such as Splunk, Sentinel, and QRadar. Thorough grasp of security standard methodologies and protocols, for instance ISO 27001/27002, PCI DSS. Familiarity with security frameworks such as NIST, ISO, and CIS. Experience with programming languages such as Python, PowerShell, and regex. If you are interested in this role but not sure if your skills and experience are exactly More ❯

toolkit implementation Your Required Skills: Proven leadership in threat intelligence and vulnerability management Strong knowledge of threat actor TTPs, IoCs, and threat hunting methodologies Familiarity with TIPs, security frameworks (NIST, ISO), and OT/ICS environments Excellent stakeholder engagement skills across corporate and operational domains Ability to communicate technical controls to senior leadership Experience influencing security culture and behaviour within More ❯

and production needs, whilst adhering to multiple compliance frameworks. Key Responsibilities Cybersecurity & Compliance Ensure compliance with MOD, NATO, EU, and host-nation defence standards (e.g. JSP 604, DEFCON 658, NIST 800-171, ISO/IEC 27001). assist in implementing zero-trust architecture principles and oversee secure-by-design implementation in all IT systems. Lead cyber risk governance, red team … EU). Demonstrated competence with secure environments (e.g. IL3/IL4/IL5, SCIF, air-gapped systems). Deep knowledge of: MOD and NATO security policies (JSPs, DEFCONs, STANAGs), NIST, CIS, ISO/IEC 27001 frameworks, UK NCSC principles and secure-by-design methodologies. Competent with cross-border IT operations, including data sovereignty, dual-use controls, and export classification. Strong More ❯

to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance with ISO 27001 other relevant frameworks and standards (NIST CSF, IEC 62443, CIS, GDPR etc.) Maintain the department’s information security procedures, including but not limited to information security incident response and business continuity management, conducting tabletop exercises to … information security management and/or security awareness. In-depth expert knowledge of industry standard frameworks and best practices – ISO 27001: 2022, ISO 27002:2022, ISO 27005, ISO 31000, NIST and their practical application in a corporate environment to ensure all elements of integrity, availability and confidentiality are adhered to. Extensive experience conducting information security risk assessments, reporting risks Experience More ❯

incident management, and play a key role in safeguarding our organisation’s digital environment. Communications with key business partners is key regarding risks, threats and SOC performance. Familiarity with NIST Cybersecurity, MITRE ATT&CK, Splunk, Sentinel and ISO27001 is vital What you will be doing: Lead, mentor, and develop SOC analysts and incident responders. Provide technical direction, conduct performance reviews … analysts, building high-performing teams, and managing effective shift models. Confident communicator with the ability to translate complex technical risks into clear business impacts for senior stakeholders. Familiarity with NIST Cybersecurity Framework and MITRE ATT&CK. Understanding of ISO 27001 standards and compliance best practices. Working knowledge of the CREST SOC Maturity Model. Experience applying ITIL processes across incident, problem More ❯

Sky's privileged security baseline. Be familiar designing and implementing closed loop credential management workflows. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Design, implement, and manage the PAM system to ensure the confidentiality, integrity, and … Expertise in cross platform scripting (Powershell, bash etc.). Be a subject matter expert on both legacy and modern authentication protocols. Have excellent security awareness including standards e.g., IS027001, NIST and CIS. Have a good understanding of Web APIs including SOAP, REST and GraphQL architectures. Have experience with threat modelling methodologies e.g., STRIDE. Have a good understanding of Access Controls More ❯