14 of 14 Permanent NIST Jobs in Oxfordshire

security policies, standards, and procedures Work with IT and development teams to implement secure system designs and configurations Support compliance initiatives (e.g., ISO 27001, NIST, GDPR, PCI-DSS) by assisting with audits and documentation Conduct security awareness training and phishing simulations for employees Keep up-to-date with the latest More ❯

CI/CD pipelines for secrets management. Familiarity with other PAM tools (e.g., BeyondTrust, Thycotic) is a plus. Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001). Soft Skills: Strong communication and interpersonal skills. Ability to work independently and as part of a team. Detail-oriented with a focus More ❯

implement best practices for compliance, data privacy, and protection, while integrating tools and frameworks to assess APIs against OWASP and other relevant security standards (NIST, ISO-27001, PCI-DSS, HIPAA, FedRAMP) Automate security and compliance controls into the platform for continuous monitoring and reporting. Execute MySQL queries to ensure data More ❯

implement best practices for compliance, data privacy, and protection, while integrating tools and frameworks to assess APIs against OWASP and other relevant security standards (NIST, ISO-27001, PCI-DSS, HIPAA, FedRAMP) Automate security and compliance controls into the platform for continuous monitoring and reporting. Execute MySQL queries to ensure data More ❯

architecture frameworks (e.g., TOGAF). • Certifications such as AWS Certified Solutions Architect or Azure Solutions Architect Expert. • Familiarity with security and compliance frameworks (ISO, NIST). • Experience with Agile methodologies and DevOps environments. Additional Information • Private healthcare for you and your family. • 25 days annual leave plus a bonus half More ❯

IAM principles, including authentication, authorization, role-based access control (RBAC), and identity governance. Experience in system security, risk management, and compliance frameworks (e.g., GDPR, NIST, ISO 27001). Excellent problem-solving skills and the ability to manage complex technical issues under pressure. Strong communication skills, with the ability to explain More ❯

log analysis of Networking, Windows, Mac and Linux and Cloud. Understanding of evidence collection process based on priority. Strong understanding of incident response following NIST 800-61 guidelines incorporating containment, eradication and recovery phases. Experience with digital forensics and investigations, including evidence collection and chain-of-custody protocols. Should have More ❯

and Exchange Online projects through their design and deployment stages. Develop and maintain security configurations and baselines in line with industry standards (e.g., NIST, CIS, ISO 27001). Configure and manage Microsoft Defender for Office 365/Cloud/Endpoint/Servers, Purview (Information Protection, Data Loss Prevention), and Microsoft More ❯

software applications demonstrably more secure and robust. Good understanding of common information security management standards, frameworks, and laws/regulations: e.g . ISO 27001 , NIST , GDPR . Experience of open-source security tools and how they could be used in an enterprise. Experience of securing Azure cloud workloads and environments. More ❯

as Microsoft Sentinel, CrowdStrike, Defender, or equivalent Strong technical writing skills for producing post-incident reports Understanding of security frameworks like MITRE ATT&CK, NIST, or similar Eligibility for UK Security Clearance Benefits: Remote role Monday to Friday schedule High-impact position with autonomy and visibility Salary More ❯

networking (especially Azure). Deep expertise with Cisco, Fortinet, Meraki and ideally some Palo Alto and Aruba. Understanding of network security frameworks (ISO 27001, NIST and PCI-DSS). Industry certifications like CCNP, CCIE or PCNSE is preferred Please call Edward here at ISR on 07436 071 872 to learn More ❯

vulnerability assessment and a penetration test in the context of assessment scope, objectives, and deliverables. Working knowledge of information security frameworks such as ISO27001, NIST, and CIS. If this sounds like a good opportunity, apply today. Unfortunately no sponsorship is on offer at this stage for this role. More ❯

design patterns Familiar with fallback controls such as WAF's, API gateways Experience using SIEM/logging tools to track API threats Familiarity with NIST, OWASP SAMM, or internal security frameworks Experience producing risk dashboards/reports for API's Able to translate technical risks into business language, collaborating with More ❯

influence. What You'll Be Working On: You’ll support key client projects across a diverse and exciting portfolio, including: Framework Compliance : ISO 27001, NIST, PCI-DSS Security Assurance : Audit, controls assessment, reporting Third-Party Risk Assurance : Vendor risk reviews, supply chain assessments Cloud Security Advisory : Azure, AWS, Office … finish. You’ll Need: Proven experience in a security consulting role (client-facing or internal consulting) Strong understanding of Information Security frameworks (ISO 27001, NIST, PCI-DSS) Hands-on experience delivering security assessments, audits, or assurance reviews Awareness or experience with cloud platforms (Azure, AWS, Office 365) Ability to engage More ❯