23 of 23 Permanent NIST 800 Jobs in England

Azure Security Engineer responsible for designing and deploying secure, compliant Azure platforms in highly regulated environments, aligned to NIST 800-53 or similar standards. The role focuses on security-by-design implementation across core Azure services, networking, identity, and automation using Terraform and CI/… highly regulated, mission critical environments.? Why this role You will own the secure design and deployment of Azure services in environments governed by NIST 800-53 (or ISO 27001, MITRE, SOC2 similar standards), embedding "security by design" into everything you deliver. Partnering closely with engineering, security ...

Operations and ensuring the highest level of security for the customer. The Cyber Security Consultant leads detailed risk assessments, implements industry-standard frameworks (NIST, NCSC, NIS2), and actively manages SIEM/XDR tools such as IBM QRadar, Microsoft Sentinel, and Defender XDR. This role involves deeper client interaction … strengthen client relationships with regular strategic interactions. Lead comprehensive cybersecurity risk assessments aligned to industry standards. Conduct environment reviews, ensuring compliance with NIST frameworks and related standards. Oversee and implement SIEM/XDR deployments, custom rule development, and incident response processes. Provide guidance on best practices for SIEM ...

Operations and ensuring the highest level of security for the customer. The Cyber Security Consultant leads detailed risk assessments, implements industry-standard frameworks (NIST, NCSC, NIS2), and actively manages SIEM/XDR tools such as IBM QRadar, Microsoft Sentinel, and Defender XDR. This role involves deeper client interaction … strengthen client relationships with regular strategic interactions. Lead comprehensive cybersecurity risk assessments aligned to industry standards. Conduct environment reviews, ensuring compliance with NIST frameworks and related standards. Oversee and implement SIEM/XDR deployments, custom rule development, and incident response processes. Provide guidance on best practices for SIEM ...

nuclear and cyber security standards, which could include: ISO/IEC 27001 (Information Security Management) UK NIS 18 regulations NCSC guidance NIST SP 800 Series Codes and Standards for the Cyber Security of AI (2025 ) - DSIT ONR Security Assessment Principles (SyAPs) Develop and maintain the Information ...

Engineering and open architecture development. Ideal Candidate: Strong defence sector background with experience in security frameworks such as ISO27001, IS1&2, NIST SP 800-53, and others. Proven track record of delivering security designs through accreditation into operational support. Familiarity with large-scale, complex systems ...

Engineering and open architecture development. Ideal Candidate: Strong defence sector background with experience in security frameworks such as ISO27001, IS1&2, NIST SP 800-53, and others. Proven track record of delivering security designs through accreditation into operational support. Familiarity with large-scale, complex systems ...

Engineering and open architecture development. Ideal Candidate: Strong defence sector background with experience in security frameworks such as ISO27001, IS1&2, NIST SP 800-53, and others. Proven track record of delivering security designs through accreditation into operational support. Familiarity with large-scale, complex systems ...

retention). Gold Image Management. AppVolumes Management + Application Management. Experience with the hardening of Virtualisation Infrastructures using CIS Benchmarks or NIST SP 800-53 controls. Experienced with build alongside the implementation of the failover and disaster recovery of Virtualisation services. Experience of certificate management ...

major transformation projects. Main responsibilities: Leading security assurance, assessments, and advisory for IT and business projects (both Cloud and On-Prem), aligned to NIST 800-53 standards. Partnering with security architecture and other teams to define and embed security patterns and controls. Developing non-functional security … bring: Experience with AppSec and DevSecOps. Hands-on knowledge of Azure, AWS, and/or Google Cloud. Familiarity with standards like ISO2700X, ISO31000, NIST800, PCI-DSS. Certifications such as CISSP, CCSP, CRISC, CISM, or SABSA. Why QBE? At My Best? At QBE, we want our people to feel rewarded ...

supplier engagements based on IT Security Certifications and to drive improvements where required. Manage the relevant Certifications. Primarily ISO 27001, Cyber Essentials and NIST 800-171 (ISO 27001 critical, training available for NIST). Contribute to awareness activities. Supporting the management of Risk. Supporting … where necessary. Policies, Awareness and Risk across the business Experience Required - Previous knowledge and responsibility for ISO 27001. Good knowledge of Cyber Essentials (NIST an advantage). Data Protection or similar compliance qualification. Understanding of Risk Management methodologies. Experience of creating and managing an ISMS. Demonstrable knowledge ...

Rapid7, Tanium, Axonius, Armis, or other. Experience applying the following models to an enterprise security program: CMMI, ISO/IEC 2700, OWASP SAMM, NIST, SMM SANS Security Maturity Model. Experience developing security reports, trends, and metrics analysis. Experience with the application of some of the following frameworks - SANS … NIST 800-61, CVSS, CIS, OSSTM, ISO 27001, MITRE ATT&CK, PCI, HIPAA, GDPR or similar. Experience with cloud security practices Experience with business and technical requirements analysis, business process modeling/mapping, methodology development, and data mapping Additional Information Benefits package includes: Great compensation package ...

architecture, compliance, monitoring, incident response Develop attack scenarios using MITRE ATT&CK for ICS Conduct risk assessments and support standards like IEC 62443 & NIST SP800-82 Collaborate with stakeholders and contribute to training, reporting, and continuous improvement ✅ What You’ll Bring: 3–5 years in cyber security, ideally ...

security of both OT and IT environments, including SCADA systems and Industrial Control System (ICS) Governance and compliance of all OT systems - NIST 800-82, IEC 62443, OG86, NERC-CIP, SOCI, NIST-CSF, NIS2 Taking a proactive role in threat hunting, incident response from … awareness Key skills needed are: 3+ years in a cyber security role with a good level of exposure to OT security Knowledge of NIST and IEC 62443 OT frameworks Knowledge of the Microsoft security stack and wider IT security experience highly desirable Knowledge of NERC CIP and/ ...

security of both OT and IT environments, including SCADA systems and Industrial Control System (ICS) Governance and compliance of all OT systems - NIST 800-82, IEC 62443, OG86, NERC-CIP, SOCI, NIST-CSF, NIS2 Taking a proactive role in threat hunting, incident response from … awareness Key skills needed are: 3+ years in a cyber security role with a good level of exposure to OT security Knowledge of NIST and IEC 62443 OT frameworks Knowledge of the Microsoft security stack and wider IT security experience highly desirable Knowledge of NERC CIP and/ ...

throughout the product and system development lifecycle . Lead threat modelling and risk assessments , applying recognised frameworks such as ISO/IEC 27001, NIST 800-30/53, and ISO 31000. Use and configure industry-standard threat-modelling tools (e.g., STRIDE-based tools, attack-tree tooling … understanding of HMG Security Policy Framework and MOD security standards. Familiarity with security and risk management methodologies (ISO 27001/2, ISO 27005, NIST frameworks). Analytical, structured problem-solver able to assess complex scenarios and provide actionable guidance. Collaborative communicator who can balance technical assurance with delivery ...

quality standards Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework Excellent stakeholder management skills High level of personal integrity, as well as the ability to professionally handle ...

quality standards Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework Excellent stakeholder management skills High level of personal integrity, as well as the ability to professionally handle ...

Treatment Plans Establish security requirements for cloud-based solutions by evaluating business strategies and requirements, implementing security standards such as ISO 27000 series, NIST, CSF, and CSA Identify and deliver appropriate controls based on industry standards (e.g. CCM) to drive cloud and customer security solutions framework based … best practices for delivering security across IaaS, PaaS, SaaS and Serverless architectures Implementing Information Security and Privacy Standards and Frameworks (e.g. ISO 27k, NIST800-53, CIS, GDPR) Leading security working groups and external security testing (ITHC, Penetration Testing, etc) of cloud solutions at high HMG classification levels (OFFICIAL required, SECRET ...

intelligence. Your Profile Essential skills/knowledge/experience: Experience in SOC, IR, or Threat Hunting roles. Strong understanding of MITRE ATT&CK, NIST 800-61, and PCI DSS frameworks. Experience with Rapid7 InsightIDR or any other MDR solution (rule creation, tuning, and dashboarding). Certifications ...

migration, security compliance, and post-upgrade validation •CyberArk Safe Design & Policy Enforcement Define and maintain Safes, RBAC structures, and master policies aligned to NIST 800-53 and Zero Trust principles •Automation Write scripts for automated onboarding of privileged accounts into CyberArk safes. •3rd party non-standard ...

migration, security compliance, and post-upgrade validation •CyberArk Safe Design & Policy Enforcement Define and maintain Safes, RBAC structures, and master policies aligned to NIST 800-53 and Zero Trust principles •Automation Write scripts for automated onboarding of privileged accounts into CyberArk safes. •3rd party non-standard ...

experience with risk assessment methodologies, risk quantification and ServiceNow IRM. Deep knowledge of security technologies and control frameworks such as ISO 27001, NIST CSF and NIST SP800-53. Experience in third-party security risk management-comfortable leading assessments, influencing decisions, and challenging skilfully. Confident working with ...

contexts. • Experience in regulated sectors (financial services, public sector, critical infrastructure). • Knowledge of standards/frameworks: ISO 27001/2, CE+, NIST CSF/800‐53, CIS Controls, SOC 2, PCI‐DSS. ...