1 to 25 of 32 Contract NIST Jobs in the UK

security engineering. Strong experience in procedural writing and documentation creation. Experience developing and maintaining Cyber Security Management Systems (CSMS). Proven application of security standards and best practices including NIST CSF, ISO 27001, IEC 62443, and NIS regulations. Strong understanding of OT systems, networks, architecture, protocols, and vulnerabilities. Experience in: Developing OT security procedures and processes. End-to-end risk More ❯

understanding of Azure services, including Azure AD, Defender for Cloud, and Logic Apps. • Experience with SIEM/SOAR platforms, KQL, and automation workflows. • Familiarity with compliance frameworks: ISO 27001, NIST, PCI-DSS, GDPR. • Excellent communication and stakeholder engagement skills. • Certifications such as SC-100, AZ-500, MS-500, or equivalent are highly desirable. InterQuest Group is acting as an employment More ❯

IaaS, PaaS, SaaS, hybrid and multi-cloud models. Familiar with common industry cloud providers - AWS, GCP, Azure, OCI. Practical understanding of industry cloud security principles and their application - NCSC, NIST, CSA. Familiarity with common cloud related compliance Benchmarks - CIS, GDPR, PCI-DSS, ISO27001, ISO27017, ISO27018, TSR, OFCOM. Strong documentation, design and presentation skills with the ability to create management reporting More ❯

smart cards . Understanding of encryption algorithms, hashing, and key management. Experience designing secure solutions in hybrid or cloud environments such as Azure or AWS. Familiarity with standards including NIST, FIPS, ISO 27001 and other compliance frameworks. Certifications such as CISSP, CISM, GIAC , or Microsoft identity qualifications are desirable. Shape secure digital services and lead critical cryptographic design as a More ❯

or SIEM certifications. Strong knowledge of log correlation, analysis, forensics, and chain of custody requirements. Familiarity with regulatory frameworks (NCSC CAF, ISO/IEC 27001/27002, GDPR, CIS, NIST). Practical knowledge of SIEM, SOAR, EDR, AV, IDS/IPS, NAC, AD, DLP, web/email filtering, behavioural analytics, TCP/IP and OT protocols, and security applications. Understanding More ❯

scripting. Security Use Cases & Threat Detection Build and maintain SIEM use cases, alerts, and dashboards for threat detection. Map detection rules to frameworks like MITRE ATT&CK, STRIDE, and NIST CSF. Collaborate with SOC teams to refine incident response workflows. Governance & Compliance Align SIEM architecture with Secure by Design and Zero Trust principles. Support compliance with ISO 27001, PCI DSS More ❯

in Insurance and/or Financial Services sector(s) Strong academic background in IT/Information Security/Cyber Security/Risk Management or a related field Familiarity with NIST Framework (for Cyber) Immediate availability Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this More ❯

as CISSP, CISM, ISO27001 Lead Auditor, CLAS etc Extensive experience in information security or IT governance within large, complex environments. Strong knowledge of security frameworks (ISO/IEC 27001, NIST CSF, CIS Controls, Cyber Essentials). Proven track record in risk management, policy development, and security awareness initiatives. Excellent communication, leadership, and influencing skills. Very strong experience of driving 3rd More ❯

leadership What You Bring Experience in defence, government, secure manufacturing or similar Strong working knowledge of GovS 007, JSP 440, DEFSTAN & protective security frameworks Familiarity with ISO 27001/NIST/GDPR Experience handling sensitive/classified information Excellent communication & stakeholder engagement skills Ability to work autonomously and influence at senior level DISA/vetting-related accreditation beneficial Why This More ❯

and communication skills. You have: Active Security Clearance (e.g., SC/DV). Proven experience in Security Assurance, Information Assurance, or Cyber Risk Management. Strong understanding of security frameworks (NIST, ISO 27001, MoD JSPs, CAF, etc.). Excellent reporting and documentation skills able to translate complex technical findings into actionable insights. Knowledge of cloud, network, or application security principles. A More ❯

Excellent communication skills and the ability to work effectively within a collaborative SOC team Desirable Skills Experience with incident documentation and reporting Familiarity with security frameworks (MITRE ATT&CK, NIST, ISO 27001) Ability to adapt quickly to new tools, threats, and operational priorities Any relevant certifications (e.g., Security+, CySA+, Microsoft SC-series, GIAC More ❯

OSCE, CREST CRT/CCT, GPEN. Bonus Points For: Cloud & container testing experience (AWS/Azure/GCP, Docker, Kubernetes), familiarity with standards such as PCI-DSS, ISO 27001, NIST, DORA, NIS2, exceptional communication skills and experience leading client engagements. More ❯

OSCE, CREST CRT/CCT, GPEN. Bonus Points For: Cloud & container testing experience (AWS/Azure/GCP, Docker, Kubernetes), familiarity with standards such as PCI-DSS, ISO 27001, NIST, DORA, NIS2, exceptional communication skills and experience leading client engagements. More ❯

2nd line or similar). Strong hands-on experience in threat investigation, log analysis, and remediation . Good understanding of common security frameworks and practices (e.g., MITRE ATT&CK, NIST, ISO 27001). Familiarity with a range of security tools and platforms – experience with Microsoft Sentinel is desirable but not essential. Excellent communication skills – able to liaise confidently between technical More ❯

focused security advice. What they're looking for: Strong technical security and GRC experience. Experience in project delivery and stakeholder engagement (not hands-off). Knowledge of ISO 27001, NIST, or similar frameworks. Excellent communication, analytical, and problem-solving skills. Contract Details: Location: London (2 days p/week onsite) Duration: 6-12 month initial If interested, please send your More ❯

Candidates should have proven experience within an MOD/Defence Digital environment. And also hold Some/Several of the following Accreditations and Qualifications: CCP SIRA qualified Ex CLAS NIST CISSP, CISSM, ISO27001 SC as a minimum and Ideally DV Clearance will be required prior to starting, as such all candidates should either hold existing clearance or be willing and More ❯

critical infrastructure. Responsibilities Define and deliver logical and physical architectures, integration patterns, and data flows. Establish and maintain architectural roadmaps, ensuring adherence to recognized industry standards (e.g., IEC 62443, NIST). Collaborate with multi-disciplinary teams to translate business requirements into secure and resilient technical solutions. Provide architectural guidance in vendor selection, governance reviews, and operational acceptance processes. Skills & Experience More ❯

premise infrastructure , networking, security, and core IT platforms. Strong experience designing templates and documentation. Understanding of APIs, integration patterns, microservices, and modern application architectures. Strong understanding of Security Standards (NIST) is essential Familiarity with enterprise architecture frameworks (e.g., TOGAF , Zachman ) is a plus. Experience across multiple cloud platforms (AWS/GCP) beneficial but not essential. Key Responsibilities of the Cloud More ❯

IAM/PAM incidents & root-cause analysis Required Skills Strong CyberArk experience (architecture + administration) Identity lifecycle, authentication protocols: LDAP, OAuth, SAML, MFA Knowledge of security standards – ISO 27001, NIST Scripting: PowerShell, Python Strong communication, stakeholder collaboration & leadership abilities Preferred CyberArk Certifications – Defender, Sentry, Guardian Experience handling large enterprise-scale IAM environments More ❯

of work. Practical experience creating and conducting risk assessments, including project risk and third-party/vendor risk. Solid understanding of security frameworks and assessment methodologies (e.g., ISO 27001, NIST, CSA, CIS). Exposure to cloud security, ideally Azure, and working knowledge of security considerations for AI-driven initiatives. Comfortable working in complex, multi-project environments with competing priorities. Key More ❯

experience, including integration and deployment API integration experience Previous experience with SaaS products (e.g. Salesforce, ServiceNow, M365, Snowflake, Workday) Strong understanding of industry security frameworks and benchmarks such as NIST and CIS Significant experience with Security Engineering Desirable Skills/Preferred Qualifications: Awareness of Enterprise Security and Cyber Security domains Experience with Atlassian stack (Confluence, JIRA, BitBucket) Hands-on skills More ❯

. We're looking for candidates with active DV Clearance and MOD experience - ideally within security assurance/GRC , working with MOD policies/standards (JSP's), ISO27001 and NIST . Any CISSP/CISM certifications would be ideal. You'll be working part of a team but this role is very much a Consultant role - looking into the back More ❯

Experience in regulatory compliance environment Experience working in API testing , Network technologies and cloud solutions Have a good practical understanding of firewalls technologies, WAP and OWASP Understanding of CAF , NIST and NCSC Understanding of Cloud platform, Linux OS, OpenShift, Kubernetes More ❯

of complex network infrastructures. Working within an Agile Scrum environment, the Technical Security Architect will play a vital part in shaping secure platforms by applying Secure by Design and NIST principles throughout the delivery lifecycle. What you'll do as a Technical Security Architect Lead the design and delivery of secure infrastructure solutions across large-scale programmes. Integrate security controls More ❯

understanding of Agile, Scrum, Kanban, Waterfall, and hybrid delivery methods . Expertise in RAID management, financial governance, and stakeholder engagement at senior levels. Familiarity with MOD, GDS, ISO, and NIST frameworks . Certifications such as MSP, PRINCE2 Practitioner, ITIL, or PMI-ACP are desirable. This role offers the opportunity to lead programmes of national importance, influence strategic delivery, and contribute More ❯