1 to 25 of 34 Permanent NIST Jobs in the Thames Valley

CISM, CISA, or equivalent Higher education sector experience Multi-tenant SaaS architecture security experience DevSecOps and CI/CD security integration knowledge Security frameworks: NIST, CIS Controls, OWASP Multi-jurisdictional data protection knowledge Enterprise sales cycle support experience Key Attributes: Strategic thinker who can balance security with business needs Pragmatic ...

CISM, CISA, or equivalent Higher education sector experience Multi-tenant SaaS architecture security experience DevSecOps and CI/CD security integration knowledge Security frameworks: NIST, CIS Controls, OWASP Multi-jurisdictional data protection knowledge Enterprise sales cycle support experience Key Attributes: Strategic thinker who can balance security with business needs Pragmatic ...

architectures integrating on-premises, legacy, and multi-cloud systems, maintaining security consistency and compliance Knowledgeable in security standards and frameworks, such as ISO 27001, NIST CSF, SOC 2, CIS Benchmarks, GDPR, and NHS DSPT Familiar with AI security and data governance principles, including data minimisation, secure model access, and ...

architectures integrating on-premises, legacy, and multi-cloud systems, maintaining security consistency and compliance Knowledgeable in security standards and frameworks, such as ISO 27001, NIST CSF, SOC 2, CIS Benchmarks, GDPR, and NHS DSPT Familiar with AI security and data governance principles, including data minimisation, secure model access, and ...

architectures integrating on-premises, legacy, and multi-cloud systems, maintaining security consistency and compliance Knowledgeable in security standards and frameworks, such as ISO 27001, NIST CSF, SOC 2, CIS Benchmarks, GDPR, and NHS DSPT Familiar with AI security and data governance principles, including data minimisation, secure model access, and ...

architectures integrating on-premises, legacy, and multi-cloud systems, maintaining security consistency and compliance Knowledgeable in security standards and frameworks, such as ISO 27001, NIST CSF, SOC 2, CIS Benchmarks, GDPR, and NHS DSPT Familiar with AI security and data governance principles, including data minimisation, secure model access, and ...

experience in an equivalent role in the technology industry Knowledge and experience with Information Security and Risk Management standards and frameworks such as NIST, ISO 27001/27002 and modern development practices and supporting toolsets (e.g. Agile, DevOps) Ability to understand complex technical systems and the business processes they support ...

practices. Experience in designing secure architectures in hybrid or cloud environments. Knowledge of compliance and regulatory standards such as PCI DSS, HIPAA, SOX, GDPR, NIST 800-53. Preferred Qualifications: Certifications: CISSP, CISM, CEH, GIAC, Microsoft Certified: Identity and Access, or other IDAM equivalent Technologies. Experience with Zero Trust Architecture ...

governance, or assurance role A professional qualification (e.g., CISSP, CISM) or relevant degree Strong knowledge of frameworks such as Cyber Essentials, GDPR, ISO27001, and NIST Technical expertise in Cloud, Data Analytics, Microsoft/AWS/Azure environments Experience managing change projects and influencing cross-functional teams Excellent communication and stakeholder ...

proactive cyber security culture. About You: Strong advisory background in cyber security within complex enterprise environments. Knowledge of frameworks and standards such as ISO27001, NIST, NIS Regulations. Understanding of infrastructure, networks, applications and cloud security principles. Excellent communicator with proven stakeholder management experience. Passionate about innovation, problem solving and continuous ...

Proven experience in Information Security Management or similar Professional qualification (CISSP, CISM) or relevant degree Strong knowledge of frameworks: Cyber Essentials, GDPR, ISO27001, NIST Technical expertise in Cloud, Data Analytics, Security Technologies Experience managing security within business and tech-led projects Excellent communication skills – able to make complex concepts simple ...

risk concerns. Present findings to technical teams and management stakeholders. Testing Methodology and Tool Management Follow industry-standard penetration testing methodologies (e.g., OWASP, PTES, NIST). Maintain and update penetration testing tools and exploitation frameworks. Stay current with the latest attack techniques, vulnerabilities, and security research. Client Engagement and Support ...

risk concerns. Present findings to technical teams and management stakeholders. Testing Methodology and Tool Management Follow industry-standard penetration testing methodologies (e.g., OWASP, PTES, NIST). Maintain and update penetration testing tools and exploitation frameworks. Stay current with the latest attack techniques, vulnerabilities, and security research. Client Engagement and Support ...

risk concerns. Present findings to technical teams and management stakeholders. Testing Methodology and Tool Management Follow industry-standard penetration testing methodologies (e.g., OWASP, PTES, NIST). Maintain and update penetration testing tools and exploitation frameworks. Stay current with the latest attack techniques, vulnerabilities, and security research. Client Engagement and Support ...

risk concerns. Present findings to technical teams and management stakeholders. Testing Methodology and Tool Management Follow industry-standard penetration testing methodologies (e.g., OWASP, PTES, NIST). Maintain and update penetration testing tools and exploitation frameworks. Stay current with the latest attack techniques, vulnerabilities, and security research. Client Engagement and Support ...

owners and stakeholders to gather evidence, clarify control objectives, and support the smooth execution of testing activities. Stay informed on relevant cybersecurity frameworks (e.g., NIST CSF, CIS Controls) and industry best practices to support the evolution of the control testing programme. To thrive in this role, the essential criteria ...

and support teams throughout implementation SC Cleared Cloud Security Architect - Required Experience Active SC Clearance (essential) 5+ years' in cloud security architecture. Security Compliance (NIST, NCSC, GDPR etc.) Oracle Cloud Infrastructure (nice to have) Excellent stakeholder engagement & communication skills Interviews: November 2025 Start Date: December 2025 How to Apply: Apply ...

and support teams throughout implementation SC Cleared Cloud Security Architect - Required Experience Active SC Clearance (essential) 5+ years' in cloud security architecture. Security Compliance (NIST, NCSC, GDPR etc.) Oracle Cloud Infrastructure (nice to have) Excellent stakeholder engagement & communication skills Interviews: November 2025 Start Date: December 2025 How to Apply: Apply ...

and support teams throughout implementation SC Cleared Cloud Security Architect - Required Experience Active SC Clearance (essential) 5+ years' in cloud security architecture. Security Compliance (NIST, NCSC, GDPR etc.) Oracle Cloud Infrastructure (nice to have) Excellent stakeholder engagement & communication skills Interviews: November 2025 Start Date: December 2025 How to Apply: Apply ...

Extras: Relevant vendor certifications (e.g., Microsoft, Cisco, VMware, Fortinet). Pre-sales or sales engineering background. Experience in cyber security frameworks (ISO27001, Cyber Essentials, NIST). Track record of exceeding new business targets or KPIs in a technical sales role. Ready to become the authoritative voice that enables our sales ...

Skills and Experience Good network security control knowledge — architecture, segmentation, enforcement points (firewalls, WAF, IDS/IPS, DDoS). Experience mapping controls against frameworks (NIST CSF, CIS v8, ISO 27001) and identifying gaps. Understanding of financial services regulatory environments – ideally exposure to DORA, HKMA, MAS, RBI, FFIEC, PRA/FCA. ...

Skills and Experience Good network security control knowledge — architecture, segmentation, enforcement points (firewalls, WAF, IDS/IPS, DDoS). Experience mapping controls against frameworks (NIST CSF, CIS v8, ISO 27001) and identifying gaps. Understanding of financial services regulatory environments – ideally exposure to DORA, HKMA, MAS, RBI, FFIEC, PRA/FCA. ...

Skills and Experience Good network security control knowledge — architecture, segmentation, enforcement points (firewalls, WAF, IDS/IPS, DDoS). Experience mapping controls against frameworks (NIST CSF, CIS v8, ISO 27001) and identifying gaps. Understanding of financial services regulatory environments – ideally exposure to DORA, HKMA, MAS, RBI, FFIEC, PRA/FCA. ...

paced and evolving environment. Relevant professional certifications (e.g., CISA, CRISC, CGRC, GRCP, ISO 31000) Strong knowledge of industry standards and frameworks (e.g., ISO 27001, NIST, COBIT, ITIL) and technology risk principles. Professional English language skills (written and verbal) What We Offer We put you in control of career We give ...

and evolving environment. Relevant professional certifications (e.g., CISA, CRISC, CGRC, GRCP, ISO 31000) Strong knowledge of industry standards and frameworks (e.g., ISO 27001, ITIL, NIST, CIS, COBIT) and technology risk principles. Professional English language skills (written and verbal) What We Offer We put you in control of career We give ...