1 to 25 of 38 Contract NIST Jobs in England

risk registers. o Working knowledge of risk assessment methodologies (e.g. ISO 31000, FAIR, OWASP risk rating). o Strong understanding of Gov Assure, CAF, ISO 27001, Cyber Essentials, and NIST frameworks. o Experience conducting or supporting security audits and implementing remediation plans. o Proficiency in assessing and securing platforms such as Entra ID (Azure AD), Microsoft 365 E5, Azure IaaS More ❯

load balancing, firewalls, proxies (F5, Palo Alto, Forcepoint, Cisco ASA). Strong knowledge of wireless networking design and optimisation. Security integration: Zero Trust, segmentation, NAC; familiarity with ISO 27001, NIST, PCI-DSS, GDPR. Cloud & Virtualisation: AWS, Azure, or GCP networking services; understanding of hybrid/multi-cloud; automation tools (Terraform, Ansible, Python). Monitoring & Management: Network management systems (SolarWinds, Cisco More ❯

Ensure alignment of security measures with compliance standards (GDPR, HIPAA, PCI DSS). Conduct regular security audits and assessments to identify and remediate risks. Apply industry frameworks such as NIST Cybersecurity Framework, ISO 27001, CIS Controls . Oversee and enhance security technologies: SIEM, vulnerability management, cloud security (OCI/Azure/AWS), PKI, cryptography, web/email security, logging and More ❯

as CyberArk, BeyondTrust, or Delinea Strong understanding of Active Directory, LDAP, and authentication protocols Experience with scripting (PowerShell, Python) for automation and reporting Familiarity with compliance frameworks (ISO 27001, NIST, GDPR) Excellent problem-solving, communication, and documentation skills Desirable Skills/Experience: Although not essential, the following skills are desired by the client: Preferred Qualifications Relevant certifications (e.g., CyberArk Defender More ❯

compliance standards and regulations (e.g., GDPR, HIPAA, PCI DSS). Conduct regular security audits and assessments to identify and address compliance gaps. Familiarity with industry standards and frameworks like NIST Cybersecurity Framework, ISO 27001, and CIS Critical Security Controls. Familiarity with the use of standard security technology solutions and processes such as user provisioning, directory, SIEM, vulnerability management, Cloud Security More ❯

CEH, CASP+, or SIEM-specific training. Strong knowledge of SIEM, SOAR, EDR, IDS/IPS, NAC, DLP, and related security technologies. Familiarity with frameworks such as MITRE ATT&CK, NIST, CIS, and ISO/IEC 27001/27002. Hands-on experience with tools such as FortiSIEM, Q-Radar, Microsoft Defender, Darktrace, Microsoft Sentinel, or similar platforms. Experience in forensic analysis More ❯

CEH, CASP+, or SIEM-specific training. Strong knowledge of SIEM, SOAR, EDR, IDS/IPS, NAC, DLP, and related security technologies. Familiarity with frameworks such as MITRE ATT&CK, NIST, CIS, and ISO/IEC 27001/27002. Hands-on experience with tools such as FortiSIEM, Q-Radar, Microsoft Defender, Darktrace, Microsoft Sentinel, or similar platforms. Experience in forensic analysis More ❯

Cloud & Engineering teams Communicate complex technical security topics to non-technical audience Provide guidance/training to internal teams Maintain updated documentation & security configuration baselines Industry Standards Knowledge Preferred NIST ISO 27001 CIS Controls Certifications (Preferred but not mandatory) Palo Alto – PCNSA/PCNSE, F5, CompTIA, Zscaler, Azure, AWS, CISSP, CCSP, ISSAP, ITIL etc. More ❯

understanding of Azure services, including Azure AD, Defender for Cloud, and Logic Apps. • Experience with SIEM/SOAR platforms, KQL, and automation workflows. • Familiarity with compliance frameworks: ISO 27001, NIST, PCI-DSS, GDPR. • Excellent communication and stakeholder engagement skills. • Certifications such as SC-100, AZ-500, MS-500, or equivalent are highly desirable. InterQuest Group is acting as an employment More ❯

security expertise Familiarity with telemetry and observability stacks Solid grasp of networking, firewalls, and core security principles Knowledge of container security tools (Aqua, Twistlock, Trivy) Understanding of frameworks like NIST or ISO 27001 Excellent analytical and communication skills Bonus Points Certifications such as CISSP, CISM, or CKS Experience building MVPs or working in agile, early-stage environments Cloud security knowledge More ❯

such as LogRhythm, Semperis. Understanding of NCSC cyber security principles and good practice. Familiarity with change and configuration management from a cyber perspective. Working knowledge of ISO 27001 or NIST standards. Relevant certifications (e.g., Security+, CySA+, CISMP) are desirable. If you are interested, please apply at first instance More ❯

secure network architectures including firewalls, VPNs, switching, routing, and load balancing (HAProxy). Monitor, analyse, and optimise network performance and security posture. Implement security policies aligned with ISO 27001, NIST, and CIS frameworks. Produce detailed documentation for configurations, processes, and troubleshooting. Collaborate with global cloud, security, and infrastructure teams for consistent, secure operations. Support incident response, root cause analysis, and More ❯

Data Lake, and Cortex XSOAR. Solid understanding of cloud security, network/system security fundamentals, and scripting for automation. Desirable Qualifications Familiarity with compliance and security standards (GDPR, HIPAA, NIST). Familiarity with Infrastructure as Code SC Cleared Cyber Security Engineer- 3 months+ - £600-650pd Inside IR35 - Hybrid ( 1-2 days on site in London) Damia Group Limited acts More ❯

e.g. Entra ID, CyberArk, BeyondTrust). Hands-on with Azure AD/Entra ID , Conditional Access & Identity Protection. Understanding of OAuth2.0, SAML, OpenID Connect . Familiarity with ISO 27001, NIST CSF, CAF & GDPR . Experience leading or overseeing MSPs. Current SC clearance . Desirable: Knowledge of Microsoft Sentinel, Splunk, or Elastic SIEM . Experience in SOC build or cyber transformation More ❯

Management, Compliance, Business Continuity/DR, Cloud Security gained in a previous delivery capacity. Experience in delivering assignments using well known security frameworks, standards and methodologies such as ISO27001, NIST CSF, CIS Top 18 and COBIT. Industry certifications such as CISSP/CISA/CRISC/CISM/CISMP. More ❯

and communication skills. You have: Active Security Clearance (e.g., SC/DV). Proven experience in Security Assurance, Information Assurance, or Cyber Risk Management. Strong understanding of security frameworks (NIST, ISO 27001, MoD JSPs, CAF, etc.). Excellent reporting and documentation skills – able to translate complex technical findings into actionable insights. Knowledge of cloud, network, or application security principles. A More ❯

balancing, firewalls, proxy solutions (F5, Palo Alto, Cisco ASA) Skilled in wireless networking design, optimization, troubleshooting Understanding of security integration: Zero Trust, segmentation, NAC Familiar with frameworks: ISO 27001, NIST, PCI-DSS, GDPR Track record ensuring compliance in network designs Experience with cloud networking (AWS Transit Gateway, Azure VNet, GCP VPC, ExpressRoute) Interested!?! Please send your up to date CV More ❯

of clearance. Key Responsibilities: Design, build, and manage AWS cloud infrastructure in a secure, scalable, and resilient environments. Implement security best practices and ensure compliance with relevant frameworks (CIS, NIST, ISO27001). Develop and maintain infrastructure as code (IaC) using Terraform or CloudFormation. Automate deployment and configuration processes using Python, PowerShell, or other scripting tools. Integrate AWS security logs and More ❯

Azure. Lead the architecture and implementation of complex greenfield Azure environments from the ground up. Design and deploy secure, compliant cloud services aligned with industry regulations (e.g., ISO 27001, NIST, GDPR). Configure and harden Azure services including Azure AD, Key Vault, Defender for Cloud, Sentinel, and more. Collaborate with cross-functional teams to integrate security into CI/CD More ❯

ML systems, with experience embedding security and compliance into product design. Expert-level knowledge of Microsoft Purview for data governance, classification, and compliance. Familiarity with AI governance frameworks (e.g., NIST AI RMF, ISO/IEC 42001, Microsoft Responsible AI Standard). Azure AI services, Microsoft Copilot Studio, and Power Platform Secure deployment tools (e.g., Azure Key Vault, RBAC, CI/ More ❯

and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application. More ❯

and support. Experience in conducting data analysis to support policy development.. Experience in providing advice, guidance and assuring documentation against security standards. Experience of Cyber Standards and Frameworks (ISO27001, NIST, CAF To apply, please submit your latest CV for review. More ❯

existing applications. Working with client project manager and support planning work breakdown steps Proficient in stakeholder management. Knowledge of government security standards and processes such as ISO27001 standards, NNPPI, NIST & Cyber Essentials Plus & GDPR. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications More ❯

AWS CodePipeline) Desirable AWS Security Specialty or Solutions Architect certification Experience working within regulated industries (e.g., finance, insurance or public sector) Knowledge of compliance frameworks such as ISO 27001, NIST or CIS Benchmarks Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from More ❯

Knowledge of certificate auto-enrolment, key management, and hardware security modules (HSMs) Familiarity with relevant standards and policies such as X.509, RFC5280, TLS, FIPS 140-3, and NCSC or NIST identity guidance Background delivering within high-assurance, disconnected, or restricted network environments This contract offers the chance to take technical ownership of critical design elements within a secure Defence platform. More ❯