15 of 15 NIST Jobs in the East of England

MOD/GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). More ❯

MOD/GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). More ❯

/SOAR tooling, preferably Splunk or Microsoft Sentinel. A passion for developing teams — coaching analysts and building collaborative, high-performing cultures. Strong understanding of frameworks and standards such as NIST, MITRE ATT&CK, ISO 27001, CREST, and ITIL. Excellent communication skills, with the ability to translate technical risks into clear business impacts. Desirable Vendor certifications such as Splunk Certified or More ❯

MOD/GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). More ❯

ability to influence and align technical and business stakeholders. Preferred Qualifications Experience in a global manufacturing organization. Relevant certifications (e.g., CISSP, CISM, CCSP). Familiarity with frameworks such as NIST CSF, ITIL, ISO 27001, HIPAA, FedRamp. Work Location & Flexibility At Brooks, we aim to foster a collaborative and engaging environment while offering flexibility where possible. Work arrangements may include a More ❯

for data extraction and transformation. Prior experience with Data warehousing and Data modelling (Star Schema or Snowflake Schema). Skilled in security frameworks such as GDPR, HIPAA, ISO 27001, NIST, SOX, and PII, with expertise in IAM, KMS, and RBAC implementation. Cloud automation and orchestration tools like Terraform and Airflow. Strong analytical skills to assess data quality, identify inconsistencies, and More ❯

leadership What You Bring Experience in defence, government, secure manufacturing or similar Strong working knowledge of GovS 007, JSP 440, DEFSTAN & protective security frameworks Familiarity with ISO 27001/NIST/GDPR Experience handling sensitive/classified information Excellent communication & stakeholder engagement skills Ability to work autonomously and influence at senior level DISA/vetting-related accreditation beneficial Why This More ❯

or scripting languages (Python, PySpark, SQL). Solid understanding of data warehousing and data modelling techniques (Star Schema, Snowflake Schema). Familiarity with security frameworks (GDPR, HIPAA, ISO 27001, NIST, SOX, PII) and AWS security features (IAM, KMS, RBAC). Knowledge of Azure data engineering tools (ADF, Azure DB, Azure Synapse, Azure Data Lake, Azure Monitor) for hybrid migration scenarios. More ❯

Content experience should involve: Strong hands-on experience leading SIEM engineering projects using platforms such as Splunk, Sentinel or QRadar. A deep understanding of cybersecurity frameworks and best practice (NIST, ISO, CIS, PCI DSS). Scripting ability in Python, PowerShell and Regex for tuning and automation. Excellent communication skills and the ability to collaborate across teams and projects. This is More ❯

technologies such as Splunk, Sentinel, and QRadar. Thorough grasp of security standard methodologies and protocols, for instance ISO 27001/27002, PCI DSS. Familiarity with security frameworks such as NIST, ISO, and CIS. Experience with programming languages such as Python, PowerShell, and regex. If you are interested in this role but not sure if your skills and experience are exactly More ❯

with SIEM tools like Splunk, Sentinel or QRadar. A good grip on security best practices and standards (ISO 27001/27002, PCI DSS). Familiarity with frameworks such as NIST, ISO and CIS. Comfortable scripting in Python, PowerShell and regex. The ability to work across multiple projects and still keep the detail sharp. This is a SIEM Content Engineer role More ❯

toolkit implementation Your Required Skills: Proven leadership in threat intelligence and vulnerability management Strong knowledge of threat actor TTPs, IoCs, and threat hunting methodologies Familiarity with TIPs, security frameworks (NIST, ISO), and OT/ICS environments Excellent stakeholder engagement skills across corporate and operational domains Ability to communicate technical controls to senior leadership Experience influencing security culture and behaviour within More ❯

to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance with ISO 27001 other relevant frameworks and standards (NIST CSF, IEC 62443, CIS, GDPR etc.) Maintain the department’s information security procedures, including but not limited to information security incident response and business continuity management, conducting tabletop exercises to … information security management and/or security awareness. In-depth expert knowledge of industry standard frameworks and best practices – ISO 27001: 2022, ISO 27002:2022, ISO 27005, ISO 31000, NIST and their practical application in a corporate environment to ensure all elements of integrity, availability and confidentiality are adhered to. Extensive experience conducting information security risk assessments, reporting risks Experience More ❯

security risks. Support AI and automation initiatives to streamline GRC processes. Key Requirements Proven hands-on experience with ServiceNow IRM and risk quantification methodologies. Strong knowledge of ISO 27001, NIST CSF, and NIST SP800-53. Certifications such as CRISC, CISM, CISSP, or FAIR are desirable. Excellent stakeholder management and communication skills. Experience in third-party cyber risk management and post More ❯

incident management, and play a key role in safeguarding our organisation’s digital environment. Communications with key business partners is key regarding risks, threats and SOC performance. Familiarity with NIST Cybersecurity, MITRE ATT&CK, Splunk, Sentinel and ISO27001 is vital What you will be doing: Lead, mentor, and develop SOC analysts and incident responders. Provide technical direction, conduct performance reviews … analysts, building high-performing teams, and managing effective shift models. Confident communicator with the ability to translate complex technical risks into clear business impacts for senior stakeholders. Familiarity with NIST Cybersecurity Framework and MITRE ATT&CK. Understanding of ISO 27001 standards and compliance best practices. Working knowledge of the CREST SOC Maturity Model. Experience applying ITIL processes across incident, problem More ❯