22 of 22 Contract NIST Jobs in the UK excluding London

Lead the design and implementation of secure network architectures for on-premises, cloud, and hybrid environments. Define network security standards, frameworks, and policies aligned with industry best practices (e.g., NIST, ISO 27001, CIS). Develop and maintain secure designs for firewalls, VPNs, intrusion prevention systems (IPS/IDS), network segmentation, and zero trust network access (ZTNA). Collaborate with IT More ❯

security testing (AWS, Azure, or Google Cloud). * Certifications such as ISTQB, CISSP, CISM, or CyberArk Defender are a plus. * Knowledge of security compliance standards (e.g., ISO 27001, GDPR, NIST, PCI-DSS). All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful More ❯

ensure proper actions are taken to block further attacks. 5. Compliance and Risk Management: o Ensure all incident response activities align with industry standards, regulations, and best practices (e.g., NIST, ISO 27001, GDPR, HIPAA). o Work with legal and compliance teams to manage incidents within the scope of data privacy laws and regulations. Key Skills & Experience: o Proficient in More ❯

ensure proper actions are taken to block further attacks. 5. Compliance and Risk Management: o Ensure all incident response activities align with industry standards, regulations, and best practices (e.g., NIST, ISO 27001, GDPR, HIPAA). o Work with legal and compliance teams to manage incidents within the scope of data privacy laws and regulations. Key Skills & Experience: o Proficient in More ❯

with specific experience in testing cloud security controls. Professional certification such as CISA, CISM, CISSP, ISO 27001 Lead Auditor, or equivalent. Knowledge of industry standards and frameworks such as NIST 800-53, ISO 27001/27002, CIS Controls, COBIT. Experience with current automated and manual industry methods for evaluating security controls on Perm and in cloud environments. Capable of communicating More ❯

essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO/IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed … documentation and controls are in place and effective. Essential Skills & Experience: Proven experience in information assurance, cyber security, or risk management roles. Strong knowledge and practical experience with ISO27001, NIST, PRISMA, and CoBIT frameworks. Demonstrated ability to design and implement ISMS in complex, multi-stakeholder environments. Excellent communication and stakeholder engagement skills. Relevant certifications such as CISSP, CISM, ISO27001 Lead More ❯

solution designs aligned with Microsoft security capabilities Conduct capability assesments across Microsoft security tools (i.e Defender, E5, Endpoint, CrowdStrike Evaluate security architecture using industry frameworks (i.e ISO 27001, CIS, NIST) Produce architecture dcumentation, risk assessments and design decision Experience required: Expertise in Microsoft Security Stack (E5 Security, Defender, Endpoint, Sentinel) Strong knowledge of Microsoft Licensing and governance Experiecne designing reusable More ❯

and IaC tools Apply advanced container security and runtime protection strategies Lead threat modeling, risk assessment, and identity governance in the cloud Develop reusable security patterns aligned with CIS, NIST, ISO 27001 standards Successful Candidate Will Need: Hands-on CNAPP experience (CSPM, CWPP, CIEM, DSPM, KSPM) Architect-level cloud certifications + CISSP/CISM Strong knowledge of containers, serverless, and More ❯

of Microsoft security products, including Defender and Sentinel. Solid understanding of endpoint, server, and network security. Experience developing security policies and processes aligned with best practice frameworks (ISO 27001, NIST CSF, etc.). Excellent problem-solving and communication skills — able to explain complex information clearly to non-technical stakeholders. Role details: Job role: Cyber Security Team Lead Job type: Contract More ❯

or commercial systems. Degree in engineering, computer science, or related field. Certified security professional (e.g. CISSP, NCSC Certified Professional). Familiar with UK/NATO IA standards (ISO 27000, NIST SP800, JSP440, etc.). Experience with accreditation, security evaluation, and cryptographic systems. Strong communication, leadership, and collaboration skills. Eligible for SC clearance (UK-only caveat). Desirable: DV clearance Understanding More ❯

with stakeholders and deliver clear, actionable insights What You Bring: 8+ years in InfoSec/IT, with 3+ years in control testing or IT audit Strong knowledge of frameworks (NIST, ISO 27001, CIS, COBIT) Certifications: CISA, CISSP, CISM, or ISO 27001 Lead Auditor Excellent analytical, communication, and stakeholder engagement skills Nice to Have: Experience with Sailpoint, Rapid7, Wiz.io, RSA Archer More ❯

into business processes and IT operations. Required Skills & Qualifications: * 3-5 years of experience in cyber security roles, with hands-on involvement in ensuring compliance to security frameworks (ISO27001, NIST, eCAF). * Proven experience in implementing security systems and/or monitoring tools. * Strong knowledge of SIEM, Vulnerability Management, Threat Intelligence, and IAM systems. * Experience contributing to enterprise-level security More ❯

access control, authentication, and encryption standards across platforms. Work with data scientists and engineers to embed security into model development. Stay current on evolving AI regulations (EU AI Act, NIST AI RMF, GDPR, etc.). Support adversarial testing, model bias assessments, and trustworthiness evaluations. Contribute to training and awareness initiatives on AI/ML security best practices. Act as a More ❯

IAM configurations. Strong understanding of IAM concepts (authentication, authorization, provisioning, SSO, MFA, PAM). Familiarity with directories (Active Directory, LDAP). Knowledge of industry security frameworks and compliance (e.g., NIST, ISO 27001). Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from More ❯

the Security Assurance Team (SAT), providing risk management and assurance of programme artefacts. Responsibilities and Tasks Support delivery of secure Releases and Features aligned with the relevant legacy or NIST assurance processes through Security Assurance stories agreed with nominated team Scrum Master Create security assurance case for releases, including risk assessments and mitigations for identified defects and vulnerabilities Liaise with … and security training and briefings Support development of relevant security documentation; including RMADS, CoCo, RAR, SSP, POAM, OSMP (including SyOps). Knowledge, Experience and Capabilities Cyber Security Assurance ISO27001 NIST 800-53 series MOD Secure by Design Information assurance Risk management High quality of written and verbal communication skills Experience of working in Secure environments (Highly desirable) Experience in Safe More ❯

Security Lead; day to day work is managed by allocated team Scrum Master. Responsibilities and Tasks Support delivery of secure Releases and Features aligned with the relevant legacy or NIST assurance processes through Security Assurance stories agreed with nominated team Scrum Master Create security assurance case for releases, including risk assessments and mitigations for identified defects and vulnerabilities Liaise with … the Authority Escalate relevant security issues via the Security Lead or Security Assurance Lead for resolution at the security working group Knowledge, Experience and Capabilities Cyber Security Assurance ISO27001 NIST 800-53 series MOD Secure by Design Information assurance Risk management High quality of written and verbal communication skills Experience of working in Secure environments (Highly desirable) Experience in Safe More ❯

Security Lead; day to day work is managed by allocated team Scrum Master. Responsibilities and Tasks * Support delivery of secure Releases and Features aligned with the relevant legacy or NIST assurance processes through Security Assurance stories agreed with nominated team Scrum Master * Create security assurance case for releases, including risk assessments and mitigations for identified defects and vulnerabilities * Liaise with … the Authority * Escalate relevant security issues via the Security Lead or Security Assurance Lead for resolution at the security working group Knowledge, Experience and Capabilities * Cyber Security Assurance * ISO27001 * NIST 800-53 series * MOD Secure by Design * Information assurance * Risk management * High quality of written and verbal communication skills * Experience of working in Secure environments (Highly desirable) * Experience in Safe More ❯

response and contribute to security awareness across teams. Clearly communicate risks to technical and non-technical stakeholders. What We're Looking For Essential Experience: Deep understanding of security frameworks: NIST (especially 800-30, 800-53) , ISO27001/2, ISO27005, and OWASP. Experience with Secure by Design principles and MOD-specific guidelines (e.g. JSP, Def Stan 05-138/139). More ❯

and resolve infrastructure and deployment issues efficiently. Collaborate with developers to ensure smooth integration of code and infrastructure. Implement and maintain technical security controls aligned to frameworks such as NIST 800-53, CIS Benchmarks, and JSP standards. Maintain technical documentation and contribute to the infrastructure knowledge base. Support backup and disaster recovery processes and ensure business continuity measures are in … and orchestration using Docker and Kubernetes. Experience working with DevOps tools such as Jenkins, Azure DevOps, Artifactory, and Git. Understanding of secure system design and relevant security standards (e.g. NIST, NCSC, CIS, JSP). Familiarity with virtualization platforms (e.g., Nutanix, VMware). Working knowledge of monitoring and security tools (e.g., Wazuh, Nessus, PRTG, Microsoft Defender). Ability to quickly absorb More ❯

Management with a deep understanding of security policies, risk mitigation, and incident response . Experience as a Security Officer (STRAPSO highly desirable) with strong asset management skills. MUST have NIST 800 53 Secure by Design (SbD) experience Strong leadership skills , capable of working across teams and disciplines to enhance security operations. Expertise in incident classification, response, and reporting , with the More ❯

to evolving user requirements. Creation and ownership of all related documentation artefacts relating to work packages including HLD, LLD, Installation guides. Desirable - Experience across technologies such as: Familiarity with NIST post-quantum cryptography standardization & migration efforts; Familiarity with NIST Cryptographic Standards and Guidelines; Familiarity with IETF RFC standard and guidelines for PKI; Experience in the development and delivery of software More ❯

with business, security, and technical teams Ability to assess, design, and govern architectural security controls across enterprise systems Desirable: Experience working with defence or national security organisations Familiarity with NIST, ISO 27001, or other recognised security standards TOGAF or similar architecture certifications (in addition to SABSA) This is a high-impact role for someone looking to work at the intersection More ❯