1 to 25 of 43 Contract NIST Jobs in England

Experience with public cloud security (AWS, Azure, GCP) and an understanding of security best practices in those environments Understanding of enterprise security standards and frameworks such as ISO 27001, NIST CSF, OWASP Top 10 Strong communication skills, with an ability to convey technical security issues to non-technical stakeholders Exposure to security architecture frameworks (e.g., TOGAF, SABSA) Hands-on experience More ❯

reports and identify vulnerabilities are essential, along with excellent communication, teamwork, multitasking, and attention to detail. Familiarity with compliance standards such as GDPR, HIPAA, PCI-DSS, and frameworks like NIST and ISO 27001 is also important. A Security Logging Specialist requires a bachelor's degree in a relevant field (or equivalent experience) and preferred certifications (e.g., CISSP, CISM, CISA, GSEC More ❯

CISSP – Certified Information Systems Security Professional CCSP – Certified Cloud Security Professional CISM or SSCP – Highly desirable Bonus Skills & Knowledge Awareness of compliance and risk frameworks such as ISO 27001, NIST, and CIS Benchmarks. Ability to support threat modelling, cloud risk assessment, and incident response planning. Exposure to Infrastructure-as-Code (IaC) security using tools like Terraform, ARM templates, or Bicep. More ❯

to work under pressure and manage multiple priorities effectively. Preferred Skills: Experience in regulated industries (e.g., finance, healthcare, critical infrastructure). Knowledge of compliance frameworks such as ISO 27001, NIST, GDPR, or CIS Familiarity with scripting or automation for incident response or scanning processes. Please feel free to contact myself - Daisy Nguyen at Gibbs Consulting/Atrium UK for a More ❯

Architecture roles. 5+ years of hands-on cloud security experience (AWS, Azure, or GCP multi-cloud preferred). In-depth understanding of financial services compliance requirements and frameworks (e.g., NIST CSF, ISO 27001, CSA CCM, PCI DSS). Expert-level knowledge of IAM, network security, encryption, API and application security, container security, and SIEM strategies. Proven leadership in DevSecOps practices More ❯

hunting, and forensic investigations Maintaining and enhancing SOC documentation, SOPs, and playbooks Collaborating with cross-functional teams and contributing to security strategy Ensuring security policies align with standards like NIST, ISO 27001, MITRE ATT&CK We're Looking for Someone With: Expert-level SIEM experience (Azure Sentinel highly preferred) Strong knowledge of Kusto Query Language (KQL) Demonstrated experience in cybersecurity More ❯

penetration testing, threat detection , and incident response Hands-on experience with Burp Suite, Kali Linux, Metasploit, Python , and Qualys/Nessus Familiarity with frameworks such as MITRE ATT&CK, NIST , and regulatory standards (eg ISO 27001, PCI-DSS) Experience with SIEM implementation and analysis Comfortable working in fast-paced, cross-functional environments Excellent documentation and reporting skills for audit, compliance More ❯

perform forensics, and communicate findings clearly Strong documentation, analytical, and communication skills Desirable Experience in managed services or multi-tenant environments Familiarity with compliance frameworks (ISO 27001, PCI-DSS, NIST) Relevant certifications (CEH, CISSP, Security+/CySA+, etc.) Knowledge of ITIL and experience with change-controlled environments Security Clearance (SC) or ability to be cleared More ❯

networking, storage, and identity management across multi-cloud environments. Collaborate with risk, compliance, and governance teams to ensure alignment with relevant industry regulations and frameworks , such as ISO 27001, NIST, or CIS. Where applicable, assess and enhance the security configuration of Salesforce , ensuring effective data protection and access management. Desirable Skills and Experience: 6+ years of experience in cloud security More ❯

response and vulnerability management processes. Essential Skills Minimum 5 years’ experience as a Security Architect, with a strong focus on Azure environments. Deep understanding of cloud security frameworks (e.g., NIST, CIS, ISO 27001). Hands-on experience with the Microsoft security stack (Defender, Sentinel, Entra, Purview). Familiarity with Zero Trust architecture, identity and access management, and network security. Excellent More ❯

and KQL Strong knowledge of Active Directory, Windows/Linux systems, and cloud platforms (Azure, AWS, GCP) Proficiency in scripting (PowerShell, Python) Familiarity with security frameworks (MITRE ATT&CK, NIST, Kill Chain) Experience with EDR, DLP, Proxy, and SEG tools Desirable Qualifications Certifications: AZ-500, SC-200, SC-900, CompTIA Security+, CISSP, GCIA, GCIH, GCFA, CCSP Experience with SOAR playbooks More ❯

and KQL Strong knowledge of Active Directory, Windows/Linux systems, and cloud platforms (Azure, AWS, GCP) Proficiency in scripting (PowerShell, Python) Familiarity with security frameworks (MITRE ATT&CK, NIST, Kill Chain) Experience with EDR, DLP, Proxy, and SEG tools Desirable Qualifications Certifications: AZ-500, SC-200, SC-900, CompTIA Security+, CISSP, GCIA, GCIH, GCFA, CCSP Experience with SOAR playbooks More ❯

focus on Microsoft Azure. Deep understanding of Azure security architecture, governance, and compliance. Hands-on experience with Azure-native security tools and services. Familiarity with security frameworks such as NIST, ISO 27001, CIS Benchmarks, and Zero Trust principles. Azure certifications such as AZ-500 (Azure Security Engineer Associate) or SC-100 (Cybersecurity Architect Expert) are highly desirable. Excellent communication and More ❯

threats. Key Responsibilities: Conduct security audits, risk assessments, and penetration tests to evaluate and strengthen our security posture Develop and implement security policies aligned with Cyber Essentials, ISO 27001, NIST, and GDPR Configure and deploy essential tools: firewalls, IDS/IPS, endpoint protection, and encryption Overhaul Active Directory, Group Policies, and server configurations Lead incident response, forensic analysis, and threat More ❯

threats. Key Responsibilities: Conduct security audits, risk assessments, and penetration tests to evaluate and strengthen our security posture Develop and implement security policies aligned with Cyber Essentials, ISO 27001, NIST, and GDPR Configure and deploy essential tools: firewalls, IDS/IPS, endpoint protection, and encryption Overhaul Active Directory, Group Policies, and server configurations Lead incident response, forensic analysis, and threat More ❯

privacy policies and regulations General knowledge of security technology Nice to have: Experience with PowerBI Programming skills and experience (python, java, SQL) Technical network skills Knowledge of OWASP, SANS, NIST, ISO 27001, ISF or other security-related practices Previous Banking/Financial Industry experience CISSP, CISA, CRISC, CSSLP, SABSA certifications Skills & Competencies: Vulnerability management Risk reporting Programming Data management Please More ❯

embed security best practices. Define and maintain security policies, standards, and reference architectures. Support incident response and cloud forensics as needed. Ensure alignment with security frameworks (e.g., ISO 27001, NIST, CIS). Essential Skills 5+ years in security architecture roles, with a strong AWS focus. Deep knowledge of AWS services (IAM, KMS, VPC, CloudTrail, GuardDuty, etc.). Experience with Infrastructure More ❯

years' experience in a Security Analyst or SOC-type role Strong understanding of vulnerability management, EDR/SIEM alert triage, and incident response Experience with compliance frameworks (ISO 27001, NIST, etc.) A working knowledge of VMware, AD, Windows Server, Linux Comfort handling multiple tools - Elastic, Tenable, CrowdStrike (or comparable alternatives) Bonus points for: CEH/Security+/CISSP/Fortinet More ❯

engaging with executive leadership and external stakeholders. What Were Looking For: Extensive experience in Information and Cyber Security, with strong strategic thinking and operational delivery. Familiarity with frameworks like NIST, Cyber Essentials Plus, and GovAssure. Proven leadership and people management skills in fast-paced environments. Experience in project delivery, risk management, and supplier negotiations. Excellent stakeholder engagement, especially at senior More ❯

engaging with executive leadership and external stakeholders. What Were Looking For: Extensive experience in Information and Cyber Security, with strong strategic thinking and operational delivery. Familiarity with frameworks like NIST, Cyber Essentials Plus, and GovAssure. Proven leadership and people management skills in fast-paced environments. Experience in project delivery, risk management, and supplier negotiations. Excellent stakeholder engagement, especially at senior More ❯

ISC2 Certified Information System Security Professional. Knowledge of UK/NATO Information Assurance standards, procedures & systems, including Government Functional Standard GovS 007: Security, HMG IS1&2, ISO27000 series standards, NIST SP800 series standards, JSP440, JSP604, guidance material provided by NCSC, CPNI and NIST. Practical experience of producing Security Accreditation documentation. Practical experience of NCSC and Common Criteria security evaluation techniques. More ❯

track record of using tools such as Snyk, Trivy, Checkov, OPA/Gatekeeper/OWASP ZAP, or similar to enforce pipeline and platform security. Familiarity with compliance requirements (e.g., NIST, ISO 27001, CIS Benchmarks) and their implementation via code. Ability to lead and mentor teams on secure coding, threat modelling, and secure architecture patterns. Experience with monitoring, logging, and security More ❯

access control, authentication, and encryption standards across platforms. Work with data scientists and engineers to embed security into model development. Stay current on evolving AI regulations (EU AI Act, NIST AI RMF, GDPR, etc.). Support adversarial testing, model bias assessments, and trustworthiness evaluations. Contribute to training and awareness initiatives on AI/ML security best practices. Act as a More ❯

business goals Required Skills & Experience Proven experience in senior security consultancy or architecture roles Strong understanding of cloud security (AWS), SOC design, and threat detection Familiarity with security frameworks (NIST CSF, ISO 27001) and red teaming approaches Excellent communication skills with ability to influence technical and executive stakeholders Preferred Background Experience in software or SaaS environments Previous consulting/advisory More ❯

with security automation; scripting in Python is a strong advantage. Solid understanding of incident response processes, threat intelligence, and security monitoring. Familiarity with frameworks such as MITRE ATT&CK, NIST, and OWASP. Exposure to secure coding practices and DevSecOps environments is a strong plus (not mandatory) Experience working in large enterprise environments and supporting complex infrastructure. Must have the legal More ❯