1 to 25 of 33 Contract NIST Jobs in the UK excluding London

Architecture roles. 5+ years of hands-on cloud security experience (AWS, Azure, or GCP multi-cloud preferred). In-depth understanding of financial services compliance requirements and frameworks (e.g., NIST CSF, ISO 27001, CSA CCM, PCI DSS). Expert-level knowledge of IAM, network security, encryption, API and application security, container security, and SIEM strategies. Proven leadership in DevSecOps practices More ❯

from on-prem to cloud solutions. Strong analytical skills for complex technical issues. Proven ability in designing cyber security systems and governance. Familiar with tools and frameworks (e.g. NCSC, NIST, MITRE, GDPR, PCI DSS). Deep understanding of security controls (e.g. firewalls, SIEM, SOC, DLP). Proficient in leading and coordinating incident response. Effective at managing multiple priorities under pressure. More ❯

hunting, and forensic investigations Maintaining and enhancing SOC documentation, SOPs, and playbooks Collaborating with cross-functional teams and contributing to security strategy Ensuring security policies align with standards like NIST, ISO 27001, MITRE ATT&CK We're Looking for Someone With: Expert-level SIEM experience (Azure Sentinel highly preferred) Strong knowledge of Kusto Query Language (KQL) Demonstrated experience in cybersecurity More ❯

enterprise networks. Implement secure identity and access management using Azure AD and Microsoft Entra. Consulting & Advisory: Provide expert guidance to clients on cybersecurity best practices, compliance (e.g., ISO 27001, NIST), and risk mitigation. Conduct assessments and audits of existing network and cloud security postures. Deliver workshops and training sessions on M365 and Azure security capabilities. Incident Response & Monitoring: Collaborate with More ❯

to enhance incident response and cyber resilience. Candidates will have; Experience in a cyber security risk management role. Strong understanding of cyber security frameworks and standards (ISO 27001, SOC2, NIST, GDPR). Excellent analytical, communication, and stakeholder engagement skills. Proficient in risk assessment tools and methodologies. Professional certifications such as CRISC, CISM or CISSP are desirable. Bright Purple is an More ❯

response and vulnerability management processes. Essential Skills Minimum 5 years’ experience as a Security Architect, with a strong focus on Azure environments. Deep understanding of cloud security frameworks (e.g., NIST, CIS, ISO 27001). Hands-on experience with the Microsoft security stack (Defender, Sentinel, Entra, Purview). Familiarity with Zero Trust architecture, identity and access management, and network security. Excellent More ❯

as a Cloud Security Architect with a focus on Microsoft Azure Strong understanding of Azure security services, network security, and identity & access management Familiarity with cloud security frameworks (e.g., NIST, CIS, ISO 27001) Experience in enterprise-scale environments and regulated industries Excellent communication and stakeholder engagement skills If you're an Azure security expert looking for your next challenge, we More ❯

and KQL Strong knowledge of Active Directory, Windows/Linux systems, and cloud platforms (Azure, AWS, GCP) Proficiency in scripting (PowerShell, Python) Familiarity with security frameworks (MITRE ATT&CK, NIST, Kill Chain) Experience with EDR, DLP, Proxy, and SEG tools Desirable Qualifications Certifications: AZ-500, SC-200, SC-900, CompTIA Security+, CISSP, GCIA, GCIH, GCFA, CCSP Experience with SOAR playbooks More ❯

join one of our Global Insurance Clients on a 6 month contract. Please note the role is Inside IR35. Experience Required: Strong knowledge of risk and control frameworks (e.g., NIST, ISO 27001, COBIT). Deep understanding of IT general controls, cyber security principles, and technology risk domains. Experience in control ownership, control testing, and remediation planning. Familiarity with GRC platforms More ❯

billable utilisation. * Secure Architecture and DevSecOps Integration o Define and govern secure architecture standards across development teams, ensuring alignment with enterprise security policies, regulatory requirements, and industry frameworks (e.g., NIST, OWASP, ISO 27001). o Lead the strategic integration of security into DevOps pipelines, embedding security controls and automated testing into CI/CD workflows to enable secure-by-design More ❯

focus on Microsoft Azure. Deep understanding of Azure security architecture, governance, and compliance. Hands-on experience with Azure-native security tools and services. Familiarity with security frameworks such as NIST, ISO 27001, CIS Benchmarks, and Zero Trust principles. Azure certifications such as AZ-500 (Azure Security Engineer Associate) or SC-100 (Cybersecurity Architect Expert) are highly desirable. Excellent communication and More ❯

etc.) . Familiarity with cloud migration strategies and hybrid logging environments . Strong documentation skills and attention to detail . Experience with security frameworks such as MITRE ATT&CK, NIST, and CAF . Ability to troubleshoot complex ingestion or parsing issues and resolve at speed Essential Skills . Proven experience onboarding and managing log sources in Azure Sentinel . Hands More ❯

years of relevant experience. In-depth knowledge of cloud platforms such as AWS and Microsoft Azure, as well as Microsoft Entra ID and M365. Familiarity with frameworks such as NIST CSF, Cyber Assessment Framework (CAF), and NCSC Cloud Security Principles. Proven ability to influence stakeholders and support secure delivery in large, complex environments. Excellent communication skills and ability to collaborate More ❯

threats. Key Responsibilities: Conduct security audits, risk assessments, and penetration tests to evaluate and strengthen our security posture Develop and implement security policies aligned with Cyber Essentials, ISO 27001, NIST, and GDPR Configure and deploy essential tools: firewalls, IDS/IPS, endpoint protection, and encryption Overhaul Active Directory, Group Policies, and server configurations Lead incident response, forensic analysis, and threat More ❯

threats. Key Responsibilities: Conduct security audits, risk assessments, and penetration tests to evaluate and strengthen our security posture Develop and implement security policies aligned with Cyber Essentials, ISO 27001, NIST, and GDPR Configure and deploy essential tools: firewalls, IDS/IPS, endpoint protection, and encryption Overhaul Active Directory, Group Policies, and server configurations Lead incident response, forensic analysis, and threat More ❯

with EU AI Act, FCA cybersecurity principles, and oversight of critical systems Worked directly with cybersecurity and compliance teams in regulated deployments Implemented or maintained controls under ISO 27001, NIST, or SOC2 frameworks Technical Skills & Technologies: Languages & Frameworks Python (FastAPI), LangChain, Google AI SDK, Azure Open AI SDK Cloud & AI Platforms GCP: Vertex AI, Gemini API, Cloud Run, GCS, IAM More ❯

s cyber security controls, processes, and systems. It supports informed assurance by: Evaluating control effectiveness through testing, validation, and review against defined security frameworks (e.g., NCSC CAF, ISO 27001, NIST). Conducting assurance reviews across systems, suppliers, and internal functions to identify risks, control gaps, and areas for improvement. Driving remediation by working with control owners and delivery teams to More ❯

plus. In-depth knowledge of cyber security principles, frameworks and best practices. Experience with risk assessment tools and methodologies. Familiarity with relevant regulations and compliance standards (ISO 27001, SOC2, NIST, GDPR, etc.). Interviews will be taking place from w/c 18 th August onwards. Apply online or call Alasdair Walker from Be-IT. More ❯

ML systems, with experience embedding security and compliance into product design. Expert-level knowledge of Microsoft Purview for data governance, classification, and compliance. Familiarity with AI governance frameworks (e.g., NIST AI RMF, ISO/IEC 42001, Microsoft Responsible AI Standard). Hands-on experience with: Azure AI services, Microsoft Copilot Studio, and Power Platform Secure deployment tools (e.g., Azure Key More ❯

with: LangChain, AutoGen, or similar orchestration frameworks Azure AI Search, Form Recognizer, and Language Services GitHub Actions, CI/CD, and DevSecOps practices Familiarity with: Responsible AI frameworks (e.g., NIST AI RMF, ISO/IEC 42001) GDPR, data residency, and DLP policies Azure DevOps, ARM/Bicep, or Terraform Proven track record delivering agent-based or GenAI solutions in enterprise More ❯

should have: A strong technical background in AI/ML systems with experience embedding security and compliance. Expert-level knowledge of Microsoft Purview. Familiarity with AI governance frameworks (e.g., NIST AI RMF, ISO/IEC 42001). Hands-on experience with Azure AI services, secure deployment tools, and data protection controls. Knowledge of regulatory frameworks, including the EU AI Act More ❯

as the EU AI Act, FCA cybersecurity principles, and oversight of critical systems. Previous collaboration with cybersecurity and compliance teams in regulated environments. Knowledge of controls under ISO 27001, NIST, or SOC2 frameworks. Candidates will need to show evidence of the above in their CV in order to be considered. If you feel you have the skills and experience and More ❯

ll be doing * Designing robust, secure-by-design architectures aligned to MOD and wider government standards * Writing and maintaining formal security policies and documentation * Managing risk using frameworks like NIST 800-53 and producing key security artefacts (RMAs, Security Aspects, Test Plans, etc.) * Working with cross-functional teams including DevSecOps, Software, Infrastructure and Agile delivery * Leading on security assurance processes More ❯

and human-to-machine) Knowledge/understanding of hardware security modules (HSMs) for storing cryptographic keys securely, including integration with enterprise applications for key generation and usage.? Familiarity with NIST's Post-Quantum Cryptography (PQC) standardization efforts and practical approaches for transitioning to quantum-resistant encryption schemes.? Knowledge of FIPS 140-2 and FIPS 140-3 validated cryptographic modules and More ❯

articulating risks in business terms and advising on mitigation. Excellent stakeholder communication skills, up to C-level. Strong analytical and reporting abilities. Familiarity with risk management frameworks (ISO 3100X, NIST 800 series, ENISA, EBIOS, OCTAVE, FAIR). Preferred: Background in information security and security frameworks (eg, MITRE ATT&CK, ISO 2700X). Experience working in multinational environments. Knowledge of AI More ❯