24 of 24 Contract NIST Jobs in the UK excluding London

action items for continuous improvement. 8. Compliance and Risk Management Ensure all incident response activities align with industry standards, regulations, and best practices (e.g., NIST, ISO 27001, GDPR, HIPAA). Work with legal and compliance teams to manage incidents within the scope of data privacy laws and regulations. Your Profile ...

e.g., Rapid7, Nessus, Qualys, OpenVAS). Knowledge in scripting languages (e.g., Python, PowerShell) for automation. Knowledge of security standards and frameworks (e.g., ISO 27001, NIST, CIS Controls). Skills & Competencies Analytical Skills Ability to conduct risk assessments and prioritise vulnerabilities based on business impact. Experience in creating and interpreting metrics ...

and change environments Ability to translate security risks into clear, business-focused language Strong stakeholder and vendor management skills Desirable Experience with ISO 27001, NIST, or similar frameworks Knowledge of cloud security (AWS, Azure, or GCP) Relevant certifications (e.g. CISSP, CISM, ISO 27001 Lead Implementer ...

encryption algorithms, hashing, and key management. Experience designing secure solutions in hybrid or cloud environments such as Azure or AWS. Familiarity with standards including NIST, FIPS, ISO 27001 and other compliance frameworks. Certifications such as CISSP, CISM, GIAC , or Microsoft identity qualifications are desirable. Shape secure digital services and lead ...

planning Experience assessing supplier and third-party cybersecurity risk across the supply chain Strong understanding of recognised security frameworks and standards (e.g. ISO 27001, NIST, NIS2, TISAX, Cyber Essentials) Ability to engage confidently with senior executives and technical teams, providing clear, pragmatic security advice Excellent written and verbal communication skills ...

tenders. Skills and Experience Experience in an information security or IT risk role. Working knowledge of frameworks such as ISO/IEC 27001, NIST, PCI-DSS, or Cyber Essentials. Strong communication and stakeholder engagement skills. Ability to manage multiple priorities in a fast-paced environment. ...

cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application. ...

stakeholder communication skills Comfortable working onsite within a secure client environment Nice to Have Exposure to telecoms or critical national infrastructure environments Familiarity with NIST or ISO-aligned incident response frameworks This is a delivery-focused SOC role. It is not advisory, not GRC, and not theoretical. You will ...

business impact and risk Scripting experience using Python and or PowerShell Experience collaborating with SOC, Cloud, and Engineering teams Working knowledge of ISO27001, NIST, and CIS frameworks Strong communication skills and stakeholder management capability Nice to Have Experience in regulated or large-scale enterprise environments Exposure to vulnerability analytics ...

technologies. Professional Requirements Proven experience leading technical design authority sessions. Strong documentation skills (HLDs, LLDs, Build Guides). Knowledge of security frameworks (CIS, STIG, NIST). Relevant certifications (e.g., CISSP, CCNP) highly desirable. This is a fantastic opportunity to work on a mission-critical programme in a secure environment. ...

similar solutions. Significant demonstrable experience in understanding and administration of PKI Hierarchy. Demonstrable experience of security policy frameworks including, but not limited to, NIST CSF, ISO 27001 and MOD-specific concepts including MoD Secure by Design (SbD). Experience in providing security engineering input to the implementation of: Virtualisation technologies ...

VMware ESXi/vCenter) Network security experience including Cisco IOS-XE, ASA, VPNs, BGP, VRF/MPLS Experience working with security frameworks such as NIST CSF and ISO 27001 Excellent communication skills and ability to work across multi-disciplinary team Contract Details Duration: 6 months Rate: £525 per day (Inside ...

Support security risk assessments, threat modelling, and mitigation planning Ensure compliance with MOD security policies and frameworks including JSP 440, JSP 604, ISO 27001, NIST Contribute to accreditation and assurance activities, including security documentation and evidence packs Review system designs, architectures, and operational processes from an information security perspective Work ...

management, and hardware security modules (HSMs) Familiarity with relevant standards and policies such as X.509, RFC5280, TLS, FIPS 140-3, and NCSC or NIST identity guidance Background delivering within high-assurance, disconnected, or restricted network environments This contract offers the chance to take technical ownership of critical design elements within ...

based on feedback, performance data, and evolving threat landscapes Skills & Experience Required Essential: Proven experience in cyber security governance, risk, and control frameworks (e.g. NIST, ISO 27001, CIS, COBIT) Strong experience with cyber assessment frameworks and control lifecycle management Experience operating within large, complex, or regulated enterprise environments Ability ...

system designs, solutions, and integrations Conduct threat modelling, risk assessments, and security design reviews Ensure compliance with relevant frameworks including JSP 440, JSP 604, NIST, ISO 27001, and MOD security policies Work closely with enterprise architects, solution architects, and engineering teams Support accreditation and assurance activities, including engagement with ...

supporting the installation, configuration, administration, and support of secure infrastructure solutions. Strong understanding and administration of PKI hierarchies . Knowledge of security frameworks including NIST CSF , ISO 27001 , and MOD Secure by Design (SbD) . Experience providing security input to: Virtualisation technologies (VMware ESXi 8, vCentre 8) Network infrastructure (Cisco ...

experience in edge AI or constrained/offline deployments. MLOps experience (Sagemaker, Kubeflow, ZenML). Experience building RESTful services around AI pipelines. ISO 27001, NIST SSDF, OWASP SAMM, or GDPR compliance literacy. Experience with AWS Karpenter, Prometheus, or similar observability stacks. Soft Skills Research-driven mindset, eager to experiment and ...

holding Active MOD DV clearance (must be current) Desirable (Not Essential) Experience supporting security accreditation or assurance activities Familiarity with MOD standards (e.g. JSPs, NIST, ISO 27001) PRINCE2/Agile/MSP (useful but not mandatory) Technical background in cyber, infrastructure, or secure systems Additional Notes No remote working - onsite ...

within an Agile Scrum environment, the Technical Security Architect will play a vital part in shaping secure platforms by applying Secure by Design and NIST principles throughout the delivery lifecycle. What you'll do as a Technical Security Architect Lead the design and delivery of secure infrastructure solutions across large ...

lifecycle according to the Security by Design framework and principles. Ensure knowledge and application of relevant standards, including but not limited to (ISO 44001, NIST 800-53, (Apply online only), (Apply online only), NIS2, DEFSTAN, JSP's). Define and follow secure development guidelines. Collaborate with development teams to embed ...

ability to improve collaboration across the programme. - Expert knowledge and practical application of major IT Assurance frameworks and standards (such as ISO 44001, NIST 800-53, NIST 800-171, NIST 800-172, NIS2, DEFSTAN, JSP) - Strong understanding and experience in implementing the Security by Design framework across the full development ...

Cyber Security Architect to join a newly formed Agile Release Train and ensure the solution being delivered is secure, practical, and aligned to NIST and wider HMG standards. You will work across several scrums, providing clear technical guidance, shaping controls, and enabling secure design in a fast moving environment with … limited runway. Key Responsibilities Translate NIST controls into practical cloud design and implementation guidance. Lead the design of an ABAC access model using Open Policy Agent. Shape an IdP approach that links human identity to ABAC policies. Advise on delegation of authority models for security systems. Assure security decisions across ...

will own end-to-end security solution design , producing high-quality architecture artefacts aligned to enterprise standards, regulatory expectations, and security frameworks (e.g. NIST ). You will work closely with CTO and network engineering teams, regulatory stakeholders, and delivery teams to ensure solutions are secure, compliant, and fit for purpose. … Audit findings and remediation Strong stakeholder engagement and communication skills Proven ability to produce clear, high-quality architecture documentation Frameworks & tools Strong understanding of NIST and related security frameworks Experience with architecture modelling tools (BizzDesign, Archi, UML or similar) Jira and Confluence for delivery tracking and documentation Qualifications (preferred) Degree ...