16 of 16 Contract NIST Jobs in London

architectural assessment using tools like IriusRisk Strong knowledge of compliance benchmarks (e.g., CIS, GDPR, PCI-DSS, ISO standards) and industry cloud security standards (e.g., NIST, CSA) Proficiency in coding and workload languages (e.g., Python, Java, .NET) and practical understanding of various cloud models (IaaS, PaaS, SaaS) Excellent documentation, presentation, and ...

Desirable - Experience as a Security Manager, Senior Security Consultant, or Information Security Lead Familiarity with standards and frameworks such as: ISO/IEC 27001 NIST Government security policy frameworks Exposure to insider threat, personnel security, or hybrid risk domains Security clearance (SC) or eligibility Why Join - Work on complex, high ...

containers, Jenkins, CI/CD and IaC , and embedding CyberArk Conjur into these pipelines. Strong awareness of security and audit standards (NCSC, ISO 27001, NIST, FCA/financial, government). Excellent communication and stakeholder management skills, able to articulate PAM and secrets architecture to both technical and non-technical audiences. ...

environments Implement Infrastructure as Code and Policy as Code (Terraform, CloudFormation) Conduct cloud threat modelling, risk assessments and design reviews Ensure compliance with CIS, NIST, GDPR, PCI-DSS and ISO standards Collaborate with engineering, DevOps and security stakeholders Required Skills & Experience Strong experience as a Cloud Security Engineer or DevSecOps ...

Defender, Sentinel, ELK, and Tenable Threat Modeling System solutions. Demonstrable knowledge of cybersecurity frameworks and standards, including the NCSC Cyber Assessment Framework, ISO 27001, NIST, and COBIT Experience in risk and threat modeling within a high-threat government environment. Preferred Qualifications: Industry certifications such as CompTIA Security+, CISSP, CISM ...

tenders. Skills and Experience Experience in an information security or IT risk role. Working knowledge of frameworks such as ISO/IEC 27001, NIST, PCI-DSS, or Cyber Essentials. Strong communication and stakeholder engagement skills. Ability to manage multiple priorities in a fast-paced environment. ...

ability to work effectively within a collaborative SOC team Desirable Skills Experience with incident documentation and reporting Familiarity with security frameworks (MITRE ATT&CK, NIST, ISO 27001) Ability to adapt quickly to new tools, threats, and operational priorities Any relevant certifications (e.g., Security+, CySA+, Microsoft SC-series, GIAC ...

ability to work effectively within a collaborative SOC team Desirable Skills Experience with incident documentation and reporting Familiarity with security frameworks (MITRE ATT&CK, NIST, ISO 27001) Ability to adapt quickly to new tools, threats, and operational priorities Any relevant certifications (e.g., Security+, CySA+, Microsoft SC-series, GIAC ...

cloud transitions. Secure Architecture Design: Ability to create architecture patterns for hybrid environments (on-premises, cloud) and enforce secure-by-design principles (e.g., NIST, ISO 27001). ITHC Leadership: CREST/CHECK-accredited experience conducting or supporting pre- and post-deployment security assessments, vulnerability management, and remediation planning. Technical Experience ...

technologies. Professional Requirements Proven experience leading technical design authority sessions. Strong documentation skills (HLDs, LLDs, Build Guides). Knowledge of security frameworks (CIS, STIG, NIST). Relevant certifications (e.g., CISSP, CCNP) highly desirable. This is a fantastic opportunity to work on a mission-critical programme in a secure environment. ...

technologies. Professional Requirements Proven experience leading technical design authority sessions. Strong documentation skills (HLDs, LLDs, Build Guides). Knowledge of security frameworks (CIS, STIG, NIST). Relevant certifications (e.g., CISSP, CCNP) highly desirable. This is a fantastic opportunity to work on a mission-critical programme in a secure environment. ...

needed to be managed holistically (not just at a technical-control level). Knowledge of relevant security standards or frameworks (e.g., NCSC, ISO 27001, NIST, etc.) is a plus. ...

reliable and relevant evidence. Operate: Have a proven track record in security and information risk management. Have knowledge and experience of the following: ISO27001, NIST Cyber Security Framework (CSF), National Cyber Security Centre (NCSC) and National Protective Security Authority (NPSA) Standards and Guidance. MANDATORY experience required: Security clearance to BPSS ...

Need: Clearance: Active SC. Experience: Proven track record in information assurance on large-scale HMG or government contracts. Standards: Strong knowledge of ISO27001, NIST, NCSC, and NPSA standards. Communication: Ability to influence stakeholders and build trusted customer relationships. Preferred: Experience with the Telecoms Security Act (TSA) or auditing. Why Apply ...

projects and workstreams. Programme & Project Manager skills, with either MSP, PRINCE2 Practitioner or PMP. Some appreciation of security or regulatory frameworks such as ISO27001, NIST, SOX, etc. Delivery and management of programme budgets, often in excess of £5m. Delivery of large company rollout of Microsoft core technologies. Programme planning tools ...

costs to Class 4 estimate). Delivery Project Plan (work breakdown structure, stage gates, dependencies, critical path). Security & Compliance Controls mapping (ISO 27001, NIST, GDPR alignment). Risk Register and Mitigation Plan (including security risks during migration). Stakeholder Engagement & Governance Plan (EICTH Futures tollgates, comms plan). Migration … costs to Class 4 estimate). Delivery Project Plan (work breakdown structure, stage gates, dependencies, critical path). Security & Compliance Controls mapping (ISO 27001, NIST, GDPR alignment). Risk Register and Mitigation Plan (including security risks during migration). Stakeholder Engagement & Governance Plan (EICTH Futures tollgates, comms plan). Migration ...