1 to 25 of 41 Contract NIST Jobs in the UK

action items for continuous improvement. 8. Compliance and Risk Management Ensure all incident response activities align with industry standards, regulations, and best practices (e.g., NIST, ISO 27001, GDPR, HIPAA). Work with legal and compliance teams to manage incidents within the scope of data privacy laws and regulations. Your Profile ...

architectural assessment using tools like IriusRisk Strong knowledge of compliance benchmarks (e.g., CIS, GDPR, PCI-DSS, ISO standards) and industry cloud security standards (e.g., NIST, CSA) Proficiency in coding and workload languages (e.g., Python, Java, .NET) and practical understanding of various cloud models (IaaS, PaaS, SaaS) Excellent documentation, presentation, and ...

e.g., Rapid7, Nessus, Qualys, OpenVAS). Knowledge in scripting languages (e.g., Python, PowerShell) for automation. Knowledge of security standards and frameworks (e.g., ISO 27001, NIST, CIS Controls). Skills & Competencies Analytical Skills Ability to conduct risk assessments and prioritise vulnerabilities based on business impact. Experience in creating and interpreting metrics ...

and change environments Ability to translate security risks into clear, business-focused language Strong stakeholder and vendor management skills Desirable Experience with ISO 27001, NIST, or similar frameworks Knowledge of cloud security (AWS, Azure, or GCP) Relevant certifications (e.g. CISSP, CISM, ISO 27001 Lead Implementer ...

Required Skills And Experience: Expertise: Strong knowledge of enterprise security architecture, cloud security (Azure, AWS), and multi-tenant environments. Frameworks: Familiarity with Zero Trust, NIST, ISO 27001, and CIS benchmarks. Technical Skills: Proficiency in identity management, network security, encryption, and secure onboarding processes. All profiles will be reviewed against ...

encryption algorithms, hashing, and key management. Experience designing secure solutions in hybrid or cloud environments such as Azure or AWS. Familiarity with standards including NIST, FIPS, ISO 27001 and other compliance frameworks. Certifications such as CISSP, CISM, GIAC , or Microsoft identity qualifications are desirable. Shape secure digital services and lead ...

Desirable - Experience as a Security Manager, Senior Security Consultant, or Information Security Lead Familiarity with standards and frameworks such as: ISO/IEC 27001 NIST Government security policy frameworks Exposure to insider threat, personnel security, or hybrid risk domains Security clearance (SC) or eligibility Why Join - Work on complex, high ...

containers, Jenkins, CI/CD and IaC , and embedding CyberArk Conjur into these pipelines. Strong awareness of security and audit standards (NCSC, ISO 27001, NIST, FCA/financial, government). Excellent communication and stakeholder management skills, able to articulate PAM and secrets architecture to both technical and non-technical audiences. ...

security architecture for large, complex environments Deep understanding of security and privacy risk (CIA, non-repudiation, privacy) Hands-on experience with standards such as NIST, ISO, CIS, Cyber Essentials Security assurance, audit, and risk management expertise Preferred Certifications SC-100, SC-200, SC-300, SC-400/SC-401 (CISSP ...

DevOps, and application teams to ensure alignment with CNI policies and controls. CNI-Specific Security & Compliance o Apply CNI security frameworks (eg, NCSC, NIST, ISO27001, FCA/Financial) in threat modelling, control selection, and architecture decisions. o Perform assessments, audits, and vulnerability analyses to maintain compliance with critical infrastructure regulations. ...

environments Implement Infrastructure as Code and Policy as Code (Terraform, CloudFormation) Conduct cloud threat modelling, risk assessments and design reviews Ensure compliance with CIS, NIST, GDPR, PCI-DSS and ISO standards Collaborate with engineering, DevOps and security stakeholders Required Skills & Experience Strong experience as a Cloud Security Engineer or DevSecOps ...

Defender, Sentinel, ELK, and Tenable Threat Modeling System solutions. Demonstrable knowledge of cybersecurity frameworks and standards, including the NCSC Cyber Assessment Framework, ISO 27001, NIST, and COBIT Experience in risk and threat modeling within a high-threat government environment. Preferred Qualifications: Industry certifications such as CompTIA Security+, CISSP, CISM ...

planning Experience assessing supplier and third-party cybersecurity risk across the supply chain Strong understanding of recognised security frameworks and standards (e.g. ISO 27001, NIST, NIS2, TISAX, Cyber Essentials) Ability to engage confidently with senior executives and technical teams, providing clear, pragmatic security advice Excellent written and verbal communication skills ...

tenders. Skills and Experience Experience in an information security or IT risk role. Working knowledge of frameworks such as ISO/IEC 27001, NIST, PCI-DSS, or Cyber Essentials. Strong communication and stakeholder engagement skills. Ability to manage multiple priorities in a fast-paced environment. ...

ability to work effectively within a collaborative SOC team Desirable Skills Experience with incident documentation and reporting Familiarity with security frameworks (MITRE ATT&CK, NIST, ISO 27001) Ability to adapt quickly to new tools, threats, and operational priorities Any relevant certifications (e.g., Security+, CySA+, Microsoft SC-series, GIAC ...

ability to work effectively within a collaborative SOC team Desirable Skills Experience with incident documentation and reporting Familiarity with security frameworks (MITRE ATT&CK, NIST, ISO 27001) Ability to adapt quickly to new tools, threats, and operational priorities Any relevant certifications (e.g., Security+, CySA+, Microsoft SC-series, GIAC ...

cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application. ...

stakeholder communication skills Comfortable working onsite within a secure client environment Nice to Have Exposure to telecoms or critical national infrastructure environments Familiarity with NIST or ISO-aligned incident response frameworks This is a delivery-focused SOC role. It is not advisory, not GRC, and not theoretical. You will ...

business impact and risk Scripting experience using Python and or PowerShell Experience collaborating with SOC, Cloud, and Engineering teams Working knowledge of ISO27001, NIST, and CIS frameworks Strong communication skills and stakeholder management capability Nice to Have Experience in regulated or large-scale enterprise environments Exposure to vulnerability analytics ...

technologies. Professional Requirements Proven experience leading technical design authority sessions. Strong documentation skills (HLDs, LLDs, Build Guides). Knowledge of security frameworks (CIS, STIG, NIST). Relevant certifications (e.g., CISSP, CCNP) highly desirable. This is a fantastic opportunity to work on a mission-critical programme in a secure environment. ...

technologies. Professional Requirements Proven experience leading technical design authority sessions. Strong documentation skills (HLDs, LLDs, Build Guides). Knowledge of security frameworks (CIS, STIG, NIST). Relevant certifications (e.g., CISSP, CCNP) highly desirable. This is a fantastic opportunity to work on a mission-critical programme in a secure environment. ...

needed to be managed holistically (not just at a technical-control level). Knowledge of relevant security standards or frameworks (e.g., NCSC, ISO 27001, NIST, etc.) is a plus. ...

similar solutions. Significant demonstrable experience in understanding and administration of PKI Hierarchy. Demonstrable experience of security policy frameworks including, but not limited to, NIST CSF, ISO 27001 and MOD-specific concepts including MoD Secure by Design (SbD). Experience in providing security engineering input to the implementation of: Virtualisation technologies ...

content inspection, application control, and integration with monitoring and incident response systems. Knowledge of standards and best practices in this area (e.g., IEC 62443, NIST) . Experience working with devices from various vendors such as Cisco, Juniper, Fortinet, and Palo Alto is highly desirable. Preferred certifications include Cisco CCNP Security ...

VMware ESXi/vCenter) Network security experience including Cisco IOS-XE, ASA, VPNs, BGP, VRF/MPLS Experience working with security frameworks such as NIST CSF and ISO 27001 Excellent communication skills and ability to work across multi-disciplinary team Contract Details Duration: 6 months Rate: £525 per day (Inside ...