1 to 25 of 41 Permanent NIST Jobs in Portsmouth

security policies, standards, and procedures Work with IT and development teams to implement secure system designs and configurations Support compliance initiatives (e.g., ISO 27001, NIST, GDPR, PCI-DSS) by assisting with audits and documentation Conduct security awareness training and phishing simulations for employees Keep up-to-date with the latest More ❯

CI/CD pipelines for secrets management. Familiarity with other PAM tools (e.g., BeyondTrust, Thycotic) is a plus. Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001). Soft Skills: Strong communication and interpersonal skills. Ability to work independently and as part of a team. Detail-oriented with a focus More ❯

leadership and stakeholders. Bachelor’s degree (or higher) in Information Technology or a related field. Strong expertise in cybersecurity regulations and frameworks, including FCA, NIST, and GDPR. Experience in systems architecture, application security, or infrastructure planning. Proven track record in delivering effective security awareness programs. Exceptional verbal, written, and interpersonal More ❯

of delivering cloud focused security solutions with a solid understanding of modern cyber threats and threat modelling techniques (preferred) Good understanding of security frameworks (NIST CSF, Mitre ATT&CK) (essential) What You’ll Get in Return: We are committed to recognising and rewarding hard work and offer a competitive salary More ❯

of cyber security controls demonstrated by attainment of appropriate qualifications e.g. CISSP, ISO27001 Lead Implementor or relevant SANS GIAC or equivalent Knowledge of the NIST framework, PCI DSS, GDPR and NIS as well as NCSC cyber guidance. Experience working in an agile delivery environment would be highly advantageous. Specific cyber More ❯

Proven experience as a Senior Project Manager in Cyber Risk Management , Information Security, or a related field. Strong understanding of cyber risk frameworks (e.g., NIST, ISO 27001, CIS, FAIR). Experience working with risk categorization and governance processes. Demonstrated ability to engage with senior stakeholders and influence decision-making. Strong More ❯

Proven experience as a Senior Project Manager in Cyber Risk Management , Information Security, or a related field. Strong understanding of cyber risk frameworks (e.g., NIST, ISO 27001, CIS, FAIR). Experience working with risk categorization and governance processes. Demonstrated ability to engage with senior stakeholders and influence decision-making. Strong More ❯

Technical knowledge and experience with SIEM, SOAR, IDPS, DDoS, Malware Protection, Vulnerability Management, and Application Security tooling, etc. Knowledge of Information Security frameworks (CIS, NIST, NCSC CAF), supporting processes and toolsets. Ability to breakdown and solve complex problems across multiple domains and successfully lead the recovery of major and/ More ❯

Proven experience as a Senior Project Manager in Cyber Risk Management , Information Security, or a related field. Strong understanding of cyber risk frameworks (e.g., NIST, ISO 27001, CIS, FAIR). Experience working with risk categorization and governance processes. Demonstrated ability to engage with senior stakeholders and influence decision-making. Strong More ❯

security support responsibilities Collaborate with Engineering, Platform and Development teams to address security issues and implement best practices Develop and maintain security documentation; ISO, NIST and CIS. Stay updated on the latest security trends, vulnerabilities, and technologies to ensure robust protection against evolving threats What You'll Bring: Design and More ❯

IAM principles, including authentication, authorization, role-based access control (RBAC), and identity governance. Experience in system security, risk management, and compliance frameworks (e.g., GDPR, NIST, ISO 27001). Excellent problem-solving skills and the ability to manage complex technical issues under pressure. Strong communication skills, with the ability to explain More ❯

in this role? Industry experience in an Information/Cyber Security role Experience in information security management: This includes using industry-standard frameworks like NIST CSF, ISO 27001, or SOC2 Familiarity with SDLC Knowledge of completing security audits i.e Cyber Essentials or ISO 27001 Technical knowledge and experience in Windows More ❯

security tools to optimize detection, response, and reporting functions. Skills & Knowledge Solid understanding of SOC best practices, incident response, and regulatory frameworks (e.g., GDPR, NIST, ISO 27001). Hands-on experience with security technologies such as SIEM, IDS/IPS, EDR, etc. Excellent communication skills, including the ability to explain More ❯

log analysis of Networking, Windows, Mac and Linux and Cloud. Understanding of evidence collection process based on priority. Strong understanding of incident response following NIST 800-61 guidelines incorporating containment, eradication and recovery phases. Experience with digital forensics and investigations, including evidence collection and chain-of-custody protocols. Should have More ❯

and Exchange Online projects through their design and deployment stages. Develop and maintain security configurations and baselines in line with industry standards (e.g., NIST, CIS, ISO 27001). Configure and manage Microsoft Defender for Office 365/Cloud/Endpoint/Servers, Purview (Information Protection, Data Loss Prevention), and Microsoft More ❯

Responsibilities: Design and implement secure Azure architectures across IaaS, PaaS, and SaaS. Define and enforce security best practices, frameworks, and policies (e.g., Zero Trust, NIST, CIS). Perform threat modeling, risk assessments, and security reviews for cloud solutions. Implement and manage tools such as Microsoft Defender for Cloud, Sentinel, Azure More ❯

incidents, risks, and compliance status About You 3-5 years of experience in cyber security roles, with hands-on involvement in implementing frameworks like NIST, eCAF, or ISO27001 Experience in SIEM, Vulnerability Management, Threat Intelligence, and IAM tools Background in supporting enterprise-level security initiatives aligned with regulatory or certification More ❯

emerging threats, vulnerabilities, and ensuring swift action 📄 Supporting alignment with future certification frameworks such as GovAssure, NCSC CAF, ISO27001 Requirements: 🧠 In-depth knowledge of NIST, ISO27001, ISO27701, NCSC, and Cabinet Office security best practices ✅ Proven track record across full security lifecycle: risk management, governance, incidents, pen testing 🏛️ Experience working in More ❯

IDS/IPS, and firewall technologies. Experience in incident response, threat intelligence, and forensic analysis . Proficiency in security frameworks like MITRE ATT&CK, NIST, ISO 27001, and CIS . Background in an MSP or MSSP environment is highly desirable. Experience managing multi-tenant SOC environments is a big plus. More ❯

IDS/IPS, and firewall technologies. Experience in incident response, threat intelligence, and forensic analysis . Proficiency in security frameworks like MITRE ATT&CK, NIST, ISO 27001, and CIS . Background in an MSP or MSSP environment is highly desirable. Experience managing multi-tenant SOC environments is a big plus. More ❯

IDS/IPS, and firewall technologies. Experience in incident response, threat intelligence, and forensic analysis . Proficiency in security frameworks like MITRE ATT&CK, NIST, ISO 27001, and CIS . Background in an MSP or MSSP environment is highly desirable. Experience managing multi-tenant SOC environments is a big plus. More ❯

SEC 508, SEC 511, or LDR 551. Experience within a Managed Security Services (MSSP/MSP) environment. Familiarity with frameworks like MITRE ATT&CK, NIST, CIS, and ISO 27001. 🎓 Qualifications & Certifications Bachelor’s degree in Cybersecurity, IT, or a related field – or equivalent experience. Certifications such as GIAC GMON, GCIA More ❯

SEC 508, SEC 511, or LDR 551. Experience within a Managed Security Services (MSSP/MSP) environment. Familiarity with frameworks like MITRE ATT&CK, NIST, CIS, and ISO 27001. 🎓 Qualifications & Certifications Bachelor’s degree in Cybersecurity, IT, or a related field – or equivalent experience. Certifications such as GIAC GMON, GCIA More ❯

cross-functional cyber transformation programs including external vendors Align security initiatives with business and compliance needs Oversee risk management and adherence to standards (e.g., NIST, IEC 62443) Promote cyber awareness and cultural change across teams Collaborate with stakeholders and report to senior leadership Deep knowledge of SCADA, ICS, IT infrastructure More ❯

Technical Expertise: Strong understanding of OT systems, IT/OT integration challenges, and associated technologies. Familiarity with security and compliance standards for OT (e.g., NIST, IEC 62443). Project Management Skills: Proficiency in project management methodologies (Agile, Waterfall, PRINCE2, or PMP). Strong financial management and budgeting capabilities. Sector Knowledge More ❯