16 of 16 NIST Jobs in the East of England

Lead beneficial MOD/GDS Secure by Design Familiarity with JSP440, JSP604/453, JSP490, Supplier Chain Assurance, GDPR, PCI DSS, ICO, ISO 27001, NIST CSF, CIS Controls v8 Certifications (Desirable) CIISEC UK Cyber Security Council registration (Chartered or Principal) AWS/Azure Security (Professional) CCSP, CISSP, CISM ...

drive cyber security governance, risk management, and compliance activities across the organisation. Maintain and enhance security controls aligned to recognised frameworks including ISO 27001, NIST Cybersecurity Framework, CIS Controls, and other relevant standards. Manage security incidents, major cyber events, and crisis response activities. Build strong relationships with internal stakeholders, ensuring ...

Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within ...

within cybersecurity, IT or technology risk Understanding of key security areas such as SOC, incident response, GRC, data protection and frameworks (e.g. ISO 27001, NIST) Experience working across multiple teams in a complex organisation Strong organisational skills with the ability to manage multiple priorities Clear communication skills and ability ...

management skills and/or techniques. Experience of Threat Hunting and Intelligence gathering along with associated methodologies. Good understanding of ISO 27001, 27002, GDPR, NIST, CSF, OWASP & ATT&CK Framework. IT security assessment and risk management using best practice IT security standards Experience in working with SIEM tools, Microsoft Defender ...

leader with expertise in: Cybersecurity Strategy & Risk Management Microsoft 365, Entra ID & Azure Security Incident Response & Vulnerability Management Microsoft Defender, Intune & Conditional Access ISO27001, NIST & Security Governance Key Responsibilities Define and execute the organisation's cybersecurity strategy, roadmap, and operating model. Own the cybersecurity risk register and provide clear reporting ...

PowerShell, KQL, Python). Knowledge of ransomware recovery patterns (immutable backups, restore validation, offline documentation). Exposure to audit/compliance requirements (ISO 27001, NIST, CIS) and evidence collection. ...

SIEM (Sentinel), EDR/XDR, firewalls, IDS) Experience working in a SOC/NOC or similar environment Good understanding of security frameworks (ISO 27001, NIST, GDPR etc.) Ability to investigate threats and respond to incidents effectively Bonus points for: Security certifications (Security+, CEH, CISM, CISA) Scripting/automation experience (e.g. ...

collaborating in a team environment Ability to work under pressure and to deadlines DESIRABLE REQUIREMENTS: Understanding of regulatory frameworks and industry standards (e.g., NIS, NIST, ISO 27001, GDPR). Experience in scripting or programming languages including PowerShell for automating security tasks. Cyber certifications such as CISM, CISA, CEH, or CompTIA ...

Ping, or preferably Microsoft Entra ID. Ability to define standards, partner cross-functionally (IT, GRC, Engineering), and drive risk reduction through threat modelling, compliance (NIST, ISO, GDPR), and ongoing optimisation of identity systems. Experience working with cloud identity (Azure, AWS, or GCP). What you'll get in return: This ...

opportunity to influence how we operate. Qualifications You will thrive in this role if you have: Knowledge of GRC frameworks such as ISO 27001, NIST CSF, Cyber Essentials or DPA Experience in risk management, governance or cyber/security assurance The ability to analyse complex information and turn it into ...

opportunity to influence how we operate. Qualifications You will thrive in this role if you have: Knowledge of GRC frameworks such as ISO 27001, NIST CSF, Cyber Essentials or DPA Experience in risk management, governance or cyber/security assurance The ability to analyse complex information and turn it into ...

multiple systems and locations Understanding of cybersecurity principles, identity management and data protection, with exposure to frameworks such as Cyber Essentials Plus, CIS or NIST Familiarity with IT service management practices (e.g. ITIL) and managing support tickets against SLAs Experience working with endpoint protection or MDR solutions (e.g. SentinelOne) Excellent ...

clearly with both technical and non-technical audiences. Strong knowledge of security architecture principles and frameworks, including SABSA and guidance from organisations such as NIST and NCSC. Experience designing and documenting effective security controls aligned to business objectives using a risk-based approach. Strong leadership, influencing, and stakeholder management skills. … such as CISSP, CCSK, CCSP, TOGAF, or SABSA. It would be great if you had: Cloud security reference architectures, such as AWS and Azure. NIST Cybersecurity Framework and SP 800-53 controls. NCSC guidance and standards. Secure-by-Design methodologies. Specialist security domains such as Identity and Access Management, Infrastructure ...

A+, Network+ (desirable) ESSENTIALREQUIREMENTS: Hands-on experience managing or supporting compliance programmes, such as: ISO/IEC 27001,Cyber Essentials/Cyber Essentials Plus, NIST frameworks, EASA Part-IS (for aviation), GDPR/data protection compliance & DFARS/CMMC Awareness of security protocols, cryptography, and security technologies Ability to analyse ...

/Type 2 compliance track via a GRP automation platform. Own the internal execution, documentation, and C3PAO assessment preparation for CMMC Level 2 (NIST SP (Apply online only)) utilising a secure proxy architecture. - Budget Ownership & Cost Consolidation: Take immediate custody of the IT OPEX budget. Ruthlessly consolidate a fragmented … SOC2 & CMMC Tracking: Direct experience personally driving a SOC2 audit to completion and a deep, non-advisory familiarity with CMMC Level 2/NIST SP (Apply online only) compliance paths. Strong competence utilising GRC automation tools and encrypted enclave/secure proxy solution - Emerging Tech Literacy: A clear, practical understanding ...