1 to 25 of 65 NIST Jobs in the South West

such as CompTIA A+, Network+ • Cyber certifications such as CISM, CISA, CEH, or CompTIA Security+ Understanding of regulatory frameworks and industry standards (e.g., NIS, NIST, ISO 27001, GDPR). Experience in scripting or programming languages including PowerShell for automating security tasks. Person Specification: Communication. Structures and conveys information and ideas More ❯

efforts for security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30/53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/ More ❯

efforts for security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30/53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138/ More ❯

of secure network architectures for on-premises, cloud, and hybrid environments. Define network security standards, frameworks, and policies aligned with industry best practices (e.g., NIST, ISO 27001, CIS). Develop and maintain secure designs for firewalls, VPNs, intrusion prevention systems (IPS/IDS), network segmentation, and zero trust network access More ❯

in a hands-on Cyber Security focused role, primarily in the data security domain. A strong & demonstratable knowledge of security frameworks, standards and regulations (NIST, GDPR for example). Familiarity with cloud security principles and experience working with cloud platforms such as AWS and Snowflake. A clear and demonstratable understanding More ❯

AD CS, Entrust Security Manager HSMs (Thales Luna, EnTrust nCipher), Fortanix DSM Familiarity with cloud infrastructure experience (AWS, Azure). Familiarity with regulatory frameworks: NIST, GDPR, etc. Proficiency in technical documentation (MS Word, Visio, PowerPoint, Excel). Soft Skills and Experience Essential: Experience of leading a team Strong stakeholder engagement More ❯

at rest throughout the transition Develop and validate security requirements for cloud platforms (e.g., Azure, AWS) Ensure alignment with regulatory requirements (e.g., ISO 27001, NIST, GDPR) and internal governance policies Collaborate with infrastructure, network, cloud, and application teams to embed security by design in the migration process Oversee security tool More ❯

Develop and validate security requirements for cloud platforms (e.g., Azure, AWS) and associated services being adopted. Ensure alignment with regulatory requirements (e.g., ISO 27001, NIST, GDPR) and internal governance policies. Collaborate with infrastructure, network, cloud, and application teams to embed security by design in the migration process. Oversee security tool More ❯

to troubleshoot complex system issues, perform root cause analysis, and apply timely solutions. Security Awareness : Expertise in security frameworks and compliance standards (e.g., ISO27001, NIST, GDPR) and best practises for securing large-scale infrastructure. Monitoring Tools: Proficiency with monitoring and logging tools (e.g., Splunk, Grafana, ELK stack). Interpersonal Skills More ❯

security technologies including Defender for Office 365, Microsoft Purview, Entra ID (formerly Azure AD), and Intune. Strong knowledge of security frameworks (e.g., Zero Trust, NIST, ISO 27001, CIS), regulatory compliance (e.g., GDPR, HIPAA), and risk management. Solid understanding of cloud identity models, conditional access, MFA, RBAC, and privileged access management. More ❯

architecture and contributing to design processes, including risk assessments Consulting on security component architectures (e.g., SIEM, IAM, gateways) Evaluating architectures against policies and standards (NIST, ISO, JSP) Justifying architectural decisions Coordinating across multidisciplinary teams Presenting solutions to stakeholders and technical teams Security-related tasks involve: Producing engineering reports, specifications, and More ❯

technical knowledge or experience will be helpful for some of our projects: Expertise in consultancy. Knowledge of secure by design. Cybersecurity industry standards (e.g. NIST, ISO 27001, ISA/IEC 62443, etc). An understanding of cloud-native infrastructure (e.g. microservices, containerisation, Kubernetes, serverless computing). An understanding and/ More ❯

li> Collaborate with IT and DevOps teams to harden systems and networks Support compliance efforts (e.g., ISO 27001, NIST, GDPR) Contribute to threat intelligence and detection rule tuning Participate in red/blue team exercises and More ❯

Security, System Hardening, Cryptographic Controls (PKI, Data at Rest/In Transit), Protective Monitoring, and Security Auditing. Strong understanding of the ISO 27000 series, NIST Cyber Security & Risk Management Frameworks, NCSC CAF, and other industry standards. Familiarity with NCSC guidance and legacy Information Assurance (IA) standards. Experience with MOD security More ❯

security assessments, audits & penetration testing What You’ll Bring CISSP or equivalent + 6-7 years in InfoSec Experience maturing security programs & frameworks ( ISO27001, NIST CAF, OWASP ) Strong knowledge of SIEM, IDS/IPS, RBAC, vulnerability management Understanding of cloud, COTS/SaaS platforms & IoT security Ability to communicate risks More ❯

Enhancement: Contribute to the development and refinement of enterprise security architecture methodologies, such as TOGAF and SABSA and Framework adoption such as those in NIST 2.0. Security Tooling Roadmaps: Create detailed roadmaps for security tooling, incorporating vendor investment tracking, horizon scanning, and global threat landscape changes, and communicate … Attack Surface Management. Cloud Security & Risk applied to all service and deployment ISO standards including 27001, 27002, 27005, 270017, 27018, 22301 and NIST CSF 2.0. Technical Security within one or many of the following domains:

Identity and Access Management: Expertise in PAM … Control). Microsoft Cybersecurity Expert incl. M365 Security, Azure Security, Identity & Access Management and Security Operations. AWS Security. NIST Cybersecurity Professional (NCSP) Practitioner. ISO27001. Vendor Qualifications - Cisco, VMware, Fortinet, Checkpoint etc. Chartered membership in professional security bodies. More ❯

of delivering security solutions for large-scale infrastructure, transformation or integration programmes Practical knowledge and understanding of industry security frameworks and guidance such as NIST CSF, NIST 800-53, NCSC CAF and other NCSC guidelines Good knowledge of networking (switching, routing, firewalls) Experience with the design concepts associated with adoption More ❯

networking technologies, vendors, and solutions. Provide guidance and mentorship to network engineers and operational teams. Ensure compliance with security and regulatory requirements (ISO 27001, NIST, PCI-DSS, etc.). Troubleshoot complex networking issues and drive continuous service improvements. Key Skills & Experience Proven experience as a Network Architect or senior-level More ❯

Analysts/Engineers unless you have Architecture/Design experience. Strong stakeholder engagement and internal consultancy skills Familiarity with standards and frameworks such as NIST CSF, ISO27001, and regulatory frameworks including DORA, FCA, or BOE Knowledge or experience with GenAI security is highly desirable Industry certifications such as CISSP, CISM More ❯

EntraID or similar platforms. Ddemonstrated ability to engage with auditors, compliance teams, and key business stakeholders. Knowledge of industry frameworks such as ISO 27001, NIST, or other security governance models. Privileged Access Management (PAM) experience. Benefits Motability Operations is a unique organisation, virtually one of a kind. We combine a More ❯

site Support the creation of project-specific security documentation and assurance strategies Skills & Experience: Experience leading ISO 27001 and cybersecurity governance Strong knowledge of NIST CSF, ISO 27005, and DCPP frameworks Confident communicator with a security-first mindset Comfortable being both strategic and hands-on Qualifications like CISSP (preferred), CISM More ❯

site Support the creation of project-specific security documentation and assurance strategies Skills & Experience: Experience leading ISO 27001 and cybersecurity governance Strong knowledge of NIST CSF, ISO 27005, and DCPP frameworks Confident communicator with a security-first mindset Comfortable being both strategic and hands-on Qualifications like CISSP (preferred), CISM More ❯

will be a bonus Experience working with secure coding practices and vulnerabilities (OWASP Top 10, SANS Top 25) Security compliance and regulatory frameworks (e.g., NIST, CIS Benchmarks) Experience working with DevOps tools (e.g. Kubernetes, CI/CD pipelines, Ansible, Terraform) Any scripting experience would be a huge bonus (ideally Python More ❯

awareness across teams. Clearly communicate risks to technical and non-technical stakeholders. What We're Looking For Essential Experience: Deep understanding of security frameworks: NIST (especially 800-30, 800-53) , ISO27001/2, ISO27005, and OWASP. Experience with Secure by Design principles and MOD-specific guidelines (e.g. JSP, Def Stan More ❯

Familiarity with government and defence security standards such as: HMG/NCSC IA Policies and Guidelines JSP440 and other MoD IA standards Cyber Essentials NIST, NIS-D ONR SyAPs (Security Assessment Principles) Excellent stakeholder communication skills – you can clearly explain complex security concepts to both technical and non-technical audiences. More ❯