21 of 21 NIST Jobs in the Thames Valley

and security gap analyses across infrastructure and application layers Define and enforce security standards, reference architectures, and policy controls aligned with frameworks such as NIST, ISO/IEC 27001, and CIS Evaluate, select, and integrate security technologies including: Identity and Access Management (IAM) Security Information and Event Management (SIEM) Endpoint ...

risk assessments, and security gap analyses across infrastructure and application layers Define security standards, reference architectures, and policy controls based on industry frameworks (e.g., NIST, ISO/IEC 27001, CIS) Evaluate and integrate security technologies, including IAM, SIEM, EDR, DLP, WAF, and encryption solutions Collaborate with engineering, DevOps, and ...

Strong understanding of Active Directory, LDAP, and authentication protocols Experience with scripting (PowerShell, Python) for automation and reporting Familiarity with compliance frameworks (ISO 27001, NIST, GDPR) Excellent problemsolving, communication, and documentation skills ...

GCIH, GCIA, GREM), SC-200 or SC-300 Experience in cloud security operations Background in MSSP or consulting environments Familiarity with frameworks such as NIST, ISO27001, or ITIL Key Competencies Strong technical depth with the ability to simplify complex concepts Excellent analytical and problem-solving skills under pressure Confident communicator ...

GCIH, GCIA, GREM), SC-200 or SC-300 Experience in cloud security operations Background in MSSP or consulting environments Familiarity with frameworks such as NIST, ISO27001, or ITIL Key Competencies Strong technical depth with the ability to simplify complex concepts Excellent analytical and problem-solving skills under pressure Confident communicator ...

GCIH, GCIA, GREM), SC-200 or SC-300 Experience in cloud security operations Background in MSSP or consulting environments Familiarity with frameworks such as NIST, ISO27001, or ITIL Key Competencies Strong technical depth with the ability to simplify complex concepts Excellent analytical and problem-solving skills under pressure Confident communicator ...

and vulnerability management Maintain and manage the IT risk framework and risk register Ensure alignment with regulatory requirements and industry frameworks (e.g. ISO 27001, NIST, DORA) Partner with senior leadership to embed security and risk awareness across the organisation Provide regular reporting to executive stakeholders on security posture and technology ...

required Troubleshoot provisioning, synchronisation, and access-related issues Produce and maintain technical documentation, configurations, and operational runbooks Ensure identity controls align with ISO 27001, NIST CSF, and organisational security standards Essential Skills & Experience Hands-on experience implementing IGA platforms (SailPoint, Saviynt, Omada, One Identity, or equivalent) Proven experience integrating ...

security assurance/risk/governance roles Proven background in secure cloud or infrastructure design (Azure/M365) Experience with risk frameworks (ISO 31000, NIST, OWASP etc.) Knowledge of GovAssure, CAF, ISO27001, Cyber Essentials Entra ID/Azure/M365 SIEM/EDR/vulnerability management tools Access control models ...

. Excellent communication, presentation, and negotiation skills for C-level and technical audiences. Technical & Industry Knowledge: Understanding of cybersecurity frameworks and compliance (ISO 27001, NIST, GDPR). Familiarity with threat detection, MDR/EDR/XDR, SIEM, email security, and identity management solutions. Awareness of current threat landscape and MSSP ...

tools such as Riverbed, ExtraHop, A10, Arbor Networks Experience contributing to technical strategy, whitepapers, or solution design documentation Understanding of cybersecurity frameworks such as NIST or ISO 27001 Pre-sales methodology training (e.g. Sandler, Afterburner) Additional Information This is a remote-based role; however, the successful candidate must be comfortable ...

Windows Server and Linux/Unix environments Network device onboarding into PAM Credential vaulting and session management Understanding of ISO 27001 and/or NIST CSF Strong troubleshooting and problem-solving skills Ability to obtain SC clearance Desirable Experience with leading PAM platforms (e.g. BeyondTrust, CyberArk, Delinea) Scripting skills (PowerShell ...

lifecycle, access governance). Experience implementing MFA, SSO, IGA and PAM solutions. Delivery across global organisations. Knowledge of security frameworks and standards (ISO 27001, NIST CSF, CIS, GDPR, SOC 2, IEC62443). Strong governance, risk and stakeholder management capability. Core Skills Programme leadership with strong commercial and budget oversight. Ability ...

Security, Firewalls, Load Balancers & Endpoint Security - Knowledge of cloud security within Azure & AWS environments - Knowledge of cyber security principles, methods, technologies, and standards like NIST, SOC2, ISO 27001 Location: Hybrid - 1 - 2 days per week in Oxford Salary: £60,000 - £75,000 per annum plus benefits Apply now for immediate ...

Microsoft-centric environments. * Strong understanding of hybrid cloud infrastructure, Azure services, and modern workplace technologies. * Familiarity with security, resilience, and operational frameworks (e.g. ISO27001, NIST, ITIL). * Experience in agile and traditional delivery models, with the ability to work across project and BAU contexts. * Demonstrable experience delivering infrastructure change ...

traceable to MOD security policies and risk appetite. Assurance Activities (Compliance, Risk, Accreditation) Risk & Compliance Conduct risk assessments using MOD-approved methodologies (e.g., NIST, ISO 27005). Produce and maintain Security Risk Assessments (SRAs) and Risk Treatment Plans (RTPs). Identify non-compliances and propose compensating controls. Accreditation & Governance Support ...

communication protocols (e.g. A2A) Familiarity with MCPs for tool and context integration in agentic systems Familiarity with secure-by-design development principles (ISO 27001, NIST, OWASP) Experience in defence, national security, or similarly regulated environments Contributions to open-source AI/ML projects Soft Skills Delivery-focused - you ship working ...

industry methodologies. Lead or contribute to security assurance activities, including audits, reviews, and remediation planning. Apply and interpret security frameworks such as ISO 27001, NIST, CAF, Cyber Essentials, and GovAssure. Assess and secure platforms including Entra ID (Azure AD), Microsoft 365 E5, Azure IaaS/PaaS, and Windows/Linux … disciplines. Strong knowledge of risk assessment methodologies (ISO 31000, FAIR, OWASP risk rating). Hands-on experience with enterprise security frameworks including ISO 27001, NIST, CAF, and Cyber Essentials. Experience conducting security audits and implementing remediation strategies. Technical expertise across cloud and enterprise platforms (Azure, M365, operating systems). Familiarity ...

knowledge of risk assessment methodologies (e.g. ISO 31000, FAIR, OWASP risk rating). Strong understanding of Gov Assure, CAF, ISO 27001, Cyber Essentials, and NIST frameworks. Experience conducting or supporting security audits and implementing remediation plans. Proficiency in assessing and securing platforms such as Entra ID (Azure AD), Microsoft … design,CAF and GovAssure Conduct internal technical assurance reviews aligned to GovAssure/CAF/ISO27001 domains Maintain traceability of security controls to frameworks (NIST, CE+, NCSC), Evaluate Suppliers against internal and external risk criteria for Assurance. Contribute to the adoption of Zero Trust principles in platform design Provide secure ...

of actionable insights that help clients strengthen cyber resilience Framework and Methodology Apply structured frameworks such as Cyber Essentials, CIS Controls (v8), CAF and NIST Contribute to the refinement of Saepio’s assessment methodology and supporting materials Maintain awareness of emerging threats, technologies, and regulatory requirements Collaboration and Development Work … technical information clearly Analytical and organised approach with strong attention to detail Eagerness to develop expertise in cyber resilience consultancy Familiarity with Cyber Essentials, NIST CSF, or CIS Controls Experience using common cyber security or IT management tools Exposure to governance, compliance, or policy development processes Certifications such as CISSP ...

policies and standards Establish governance processes aligned to enterprise security frameworks Conduct OT risk assessments and gap analyses against recognised standards (e.g. IEC 62443, NIST CSF, CAF) Identify and oversee implementation of security controls across OT environments Provide technical oversight when working with managed service providers and third-party vendors … critical infrastructure environments Strong background in defining and implementing OT security strategies, policies, and standards Deep understanding of OT security frameworks (IEC 62443, NIST CSF, CAF, ISO 27001) Experience conducting OT risk assessments, gap analysis, and remediation planning Knowledge of OT networks, segmentation, and industrial protocols Experience working closely with ...