12 of 12 Permanent NIST Jobs in Bristol

proven experience gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF ...

secure remote access). Knowledge of IAM (MFA, RBAC, conditional access) and data protection (classification, encryption) policies. Experience aligning builds to recognised frameworks (e.g., NIST, CIS Controls, ISO 27001, Cyber Essentials Plus). Implementing monitoring/logging/alerting and vulnerability management tools including SIEM. Ability to define security configurations ...

ability to interpret technical and procedural evidence. Ability to work collaboratively within a multidisciplinary team. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls). Attention to detail and commitment to producing high-quality documentation. What's in it for You Remote first role with very occasional ...

assessments and ISO 27001 implementations to developing full ISMS frameworks and supporting clients through accreditation. You'll provide expert guidance across standards such as NIST, CAF, and Secure by Design. This role is highly client-facing, requiring excellent communication skills and the ability to collaborate with technical teams. ...

security experience, spanning security operations, architecture, governance, and strategy. Key responsibilities: Develop and implement security policies, standards, and controls, ensuring compliance with ISO 27001, NIST, COBIT, and other industry frameworks. Advise on SecOps strategies, perform threat hunting, vulnerability management, and SOC maturity assessments. Design and review security architectures ...

stakeholders, and communicate findings effectively. Proven expertise in Cyber Security Auditing, with strong knowledge of: NCSC Cyber Assessment Framework (CAF). ISO 27000 series, NIST Cyber Security & Risk Management Frameworks. Legacy IA standards and NCSC guidance. Familiarity with MOD security frameworks (e.g., JSP 453, JSP 440, JSP 902, DEFCON 659A ...

Security, System Hardening, Cryptographic Controls (PKI, Data at Rest/In Transit), Protective Monitoring, and Security Auditing. Strong understanding of the ISO 27000 series, NIST Cyber Security & Risk Management Frameworks, NCSC CAF, and other industry standards. Familiarity with NCSC guidance and legacy Information Assurance (IA) standards. Experience with MOD security ...

and resolve complex issues. Certifications such as CISSP, CEH, OSCP, or GSEC are preferred. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. ...

communication skills with the ability to produce documentation for technical and non-technical audiences Familiarity with ITIL v4, ISO 27001, Cyber Essentials Plus, and NIST frameworks Our company: Peace is not a given, Freedom is not a given, Sovereignty is not a given MBDA is a leading defence organisation. ...

architecture solutions. Strong understanding of UK Government secure data design principles, including Secure by Design. Awareness of relevant security & regulatory frameworks (NCSC, ISO 27001, NIST, GDPR). Ability to explain complex concepts to non - technical audiences. Ability to influence diverse stakeholders including senior leadership. Collaborative and inclusive mindset. Experience with ...

Responsibilities Security Governance & Information Assurance Develop, implement and maintain security policies, standards and control frameworks Ensure adherence to recognised standards such as ISO 27001, NIST and related frameworks Conduct and support security audits, assessments and assurance activities Ensure compliance with regulatory, contractual and organisational security requirements Security Operations & Technical Oversight … experience in this industry Broad background in cyber security, with demonstrable experience across information assurance and technical security domains Strong knowledge of ISO 27001, NIST, and related governance frameworks Experience operating within security operations environments, including SOC interaction Proven involvement in security strategy development and delivery Solid understanding of security ...

requirements throughout the product and system development lifecycle . Lead threat modelling and risk assessments , applying recognised frameworks such as ISO/IEC 27001, NIST 800-30/53, and ISO 31000. Use and configure industry-standard threat-modelling tools (e.g., STRIDE-based tools, attack-tree tooling). Provide expert … Strong understanding of HMG Security Policy Framework and MOD security standards. Familiarity with security and risk management methodologies (ISO 27001/2, ISO 27005, NIST frameworks). Analytical, structured problem-solver able to assess complex scenarios and provide actionable guidance. Collaborative communicator who can balance technical assurance with delivery and ...