18 of 18 Contract NIST Jobs in the South East

Architecture roles. 5+ years of hands-on cloud security experience (AWS, Azure, or GCP multi-cloud preferred). In-depth understanding of financial services compliance requirements and frameworks (e.g., NIST CSF, ISO 27001, CSA CCM, PCI DSS). Expert-level knowledge of IAM, network security, encryption, API and application security, container security, and SIEM strategies. Proven leadership in DevSecOps practices More ❯

skills. Ability to work under pressure and manage multiple priorities effectively. Experience in regulated industries (e.g., finance, healthcare, critical infrastructure). Knowledge of compliance frameworks such as ISO 27001, NIST, GDPR, or CIS Familiarity with scripting or automation for incident response or scanning processes. Click Apply now/Contact Lianne to be considered for the Security Operations Centre (SOC) Manager More ❯

hunting, and forensic investigations Maintaining and enhancing SOC documentation, SOPs, and playbooks Collaborating with cross-functional teams and contributing to security strategy Ensuring security policies align with standards like NIST, ISO 27001, MITRE ATT&CK We're Looking for Someone With: Expert-level SIEM experience (Azure Sentinel highly preferred) Strong knowledge of Kusto Query Language (KQL) Demonstrated experience in cybersecurity More ❯

reference architectures for hybrid and cloud-native systems. - Lead threat modelling, architecture reviews, and risk assessments across cloud platforms. - Ensure compliance with regulatory frameworks (PSD2, ISO 27001, PCI DSS, NIST CSF, CSA CCM). - Integrate security into CI/CD and Infrastructure-as-Code workflows (DevSecOps). - Design and guide implementation of secure cloud infrastructure and services. - Champion Zero Trust More ❯

and KQL Strong knowledge of Active Directory, Windows/Linux systems, and cloud platforms (Azure, AWS, GCP) Proficiency in scripting (PowerShell, Python) Familiarity with security frameworks (MITRE ATT&CK, NIST, Kill Chain) Experience with EDR, DLP, Proxy, and SEG tools Desirable Qualifications Certifications: AZ-500, SC-200, SC-900, CompTIA Security+, CISSP, GCIA, GCIH, GCFA, CCSP Experience with SOAR playbooks More ❯

meet stringent regulatory compliance requirements relevant to the financial industry in Europe (e.g., data residency, privacy, operational resilience). Develop and implement security controls that align with frameworks like NIST CSF, ISO 27001, PCI DSS, and CSA CCM. DevSecOps & Automation: Champion the integration of security into the entire SDLC (DevSecOps), promoting automated security testing, continuous compliance, and secure configuration management. … and Event Management (SIEM) and logging strategies. Zero Trust Architecture principles. Proven experience with DevSecOps methodologies and securing CI/CD pipelines. Strong understanding of security frameworks such as NIST CSF, ISO 27001, CSA CCM, and experience in translating these into practical architectural designs. Hands-on experience with security tools and technologies for vulnerability management, secrets management, cloud security posture More ❯

privacy policies and regulations General knowledge of security technology Nice to have: Experience with PowerBI Programming skills and experience (python, java, SQL) Technical network skills Knowledge of OWASP, SANS, NIST, ISO 27001, ISF or other security-related practices Previous Banking/Financial Industry experience CISSP, CISA, CRISC, CSSLP, SABSA certifications Skills & Competencies: Vulnerability management Risk reporting Programming Data management Please More ❯

access control, authentication, and encryption standards across platforms. Work with data scientists and engineers to embed security into model development. Stay current on evolving AI regulations (EU AI Act, NIST AI RMF, GDPR, etc.). Support adversarial testing, model bias assessments, and trustworthiness evaluations. Contribute to training and awareness initiatives on AI/ML security best practices. Act as a More ❯

business goals Required Skills & Experience Proven experience in senior security consultancy or architecture roles Strong understanding of cloud security (AWS), SOC design, and threat detection Familiarity with security frameworks (NIST CSF, ISO 27001) and red teaming approaches Excellent communication skills with ability to influence technical and executive stakeholders Preferred Background Experience in software or SaaS environments Previous consulting/advisory More ❯

with security automation; scripting in Python is a strong advantage. Solid understanding of incident response processes, threat intelligence, and security monitoring. Familiarity with frameworks such as MITRE ATT&CK, NIST, and OWASP. Exposure to secure coding practices and DevSecOps environments is a strong plus (not mandatory) Experience working in large enterprise environments and supporting complex infrastructure. Must have the legal More ❯

ll be doing * Designing robust, secure-by-design architectures aligned to MOD and wider government standards * Writing and maintaining formal security policies and documentation * Managing risk using frameworks like NIST 800-53 and producing key security artefacts (RMAs, Security Aspects, Test Plans, etc.) * Working with cross-functional teams including DevSecOps, Software, Infrastructure and Agile delivery * Leading on security assurance processes More ❯

Maintain detailed project documentation, including risk assessments, change logs, and status reports. Support incident response efforts and post-incident reviews during off-hours. Ensure adherence to cybersecurity frameworks (e.g., NIST, ISO 27001) and regulatory requirements. Provide leadership and mentorship to junior team members during shifts. More ❯

maturity tracking. Knowledge: Experience of working in an engineering environment. Experience of Test Equipment design. The applicant having an understanding of the cyber security controls as set out in NIST SP (Apply online only) and how they affect application development. Experience in setting up Microsoft Windows security policies An understanding of IT infrastructure and terminology More ❯

integration of network infrastructures. This role is crucial for ensuring the security integrity of our projects, working within an Agile Scrum framework and adhering to Secure by Design and NIST methodologies. Contract Rate : £600 per day Location : Basingstoke Job Type : Contractor (On-site) Contract Duration: ASAP until 31/12/2025Clearance Required: DV Clearance active is mandatory Day-to More ❯

immediately available and ready to make a significant impact in a hands-on, project-focused environment. What You’ll Do: - Enhance IAM frameworks and workflows aligned with best practices (NIST, ISO, CIS). - Act as the IAM expert on key projects, ensuring secure, scalable access design across hybrid environments. - Drive implementation of identity lifecycle solutions, MFA/SSO, and access More ❯

across multiple projects and programmes Design and implement Sentinel playbooks to automate detection and response Lead on PSN audit readiness and ensure compliance with key frameworks (Cyber Essentials, ISO27001, NIST, GDPR) Conduct cyber risk assessments, maintain the risk register, and drive remediation activity Provide regular reports and updates to senior stakeholders on cyber posture, risks, and progress Support and mentor … within a Local Government environment (this is essential) Direct experience supporting or leading PSN audits and wider compliance activities Strong working knowledge of core security frameworks: ISO27001, Cyber Essentials, NIST, GDPR Excellent stakeholder management and reporting skills, with the ability to operate independently in a complex environment CISSP certification is required Please only apply if you have Local Government experience More ❯

and systems. - Assess and remediate gaps in security practices and influence operational teams to adopt security-first approaches. - Drive adherence to industry standards and frameworks such as ISO 27001, NIST, or similar. - Provide expert input to enhance security frameworks, policies, and procedures. - Lead and support security awareness initiatives across business units. What We’re Looking For - Strong understanding of information … security principles, particularly in GRC. - Hands-on experience with ISO 27001, NIST, or similar standards. - Excellent communication and stakeholder engagement skills - able to translate technical security concepts into clear business language. - Proven ability to embed governance and compliance into large, complex organisations. - Ability to balance technical, operational, and business priorities. Why Apply? This is more than a technical role - it More ❯

Job Title: Zscaler Consultant Day Rate: £500-600 per day (Outside IR35) Duration: 6 months Location: Fully remote/WFH Overview: As Zscaler Consultant you will be a senior member of the team responsible for designing, configuring, implementing, and optimizing More ❯