21 of 21 Permanent NIST 800 Jobs in the UK excluding London

Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23/09 Secure by Design Knowledge of security frameworks, such as ISO/IEC 27001, NIST 800-30, NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further More ❯

Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23/09 Secure by Design Knowledge of security frameworks, such as ISO/IEC 27001, NIST 800-30, NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further! Product Security Architect Permanent role Based in Bristol Offering circa 80,000 Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource More ❯

uphold the highest standards of cyber assurance. Key Responsibilities Design and develop secure architectures for MOD platforms, systems, and networks. Align solutions with frameworks such as NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance. Produce and maintain documentation: Security Architecture Documents, Risk Assessments, and Security Management Plans. Lead and … by Design and security compliance (ISO 27001, CE/CE+). Experience producing security artefacts for MOD assurance. Working knowledge of risk management frameworks (HMG IS1/IS2, NIST RMF). Excellent communication skills – confident engaging with technical and non-technical stakeholders. Must hold ACTIVE SC Clearance – applicants without current clearance cannot be considered. Preferred Certifications Certified Information More ❯

You will be involved in: Design, develop, and maintain secure system architectures for MOD platforms, applications, and networks Ensure alignment with relevant standards and frameworks including; NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance Produce and maintain security documentation including; Security Architecture Documents, Security Risk Assessments, and Security Management … of systems engineering principles and secure development lifecycles Experience developing artefacts to support MOD security assurance Hands-on knowledge of risk management frameworks (e.g. HMG IS1/IS2, NIST RMF) Excellent communication skills, both written and verbal – able to present to technical and non-technical stakeholders Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) SABSA More ❯

for cloud deployments, ensuring security, compliance, performance, and maintainability. Lead the design and architecture of complex cloud solutions, considering factors such as security controls, compliance requirements (e.g., FedRAMP, NIST, ITAR), data sovereignty, and resilience in highly sensitive environments. Oversee the creation of detailed architectural diagrams, documentation, and specifications for cloud infrastructure and applications. Provide architectural guidance and oversight … platforms (e.g., AWS GovCloud, Azure Government, Google Cloud Platform Assured Workloads, private clouds). Security frameworks and compliance standards relevant to defenceand national security (e.g., NCSC best practices, NIST 800-53, DISA STIGs, SOC 2, ISO 27001). Secure cloud architecture patterns (e.zero trust, micro-segmentation, data loss prevention, encryption at rest and in transit). … ability to articulate complex technical solutions to clients and secure new business. Deep understanding of security frameworks and compliance standards relevant to defenceand national security (e.g., NCSC patterns, NIST 800-53, DISA STIGs). Technical Skills Expert-level knowledge of major cloud platforms (e.g.AWS, Azure, GCP) and their services, particularly in their government or secure offerings More ❯

regulatory frameworks, including NIS2, GDPR, ISO 27001, and sector-specific compliance obligations (eg, energy). Proven experience with vendor risk management frameworks such as SIG questionnaires, NIST SP 800-161, and third-party risk scoring methodologies. Strong background in contractual and SLA analysis, particularly around security clauses, data protection, and breach management. Hands-on experience conducting More ❯

IOT Security SME Role: 10+ years of experience in Cyber security Designing & implementation on ICS/OT network Architectures, Cybersecurity frameworks for ICS/OT environments NIST SP 800-82 and c, OT Network Communication Protocols (e.g., Ethernet, Modbus, OPC, IEC-101/104 etc.), Information Event Management (SIEM). Key Responsibilities: Designing and implementing technical More ❯

days onsite. Requirement: 10+ years of experience in Cyber security Designing & implementation on ICS/OT network Architectures, Cybersecurity frameworks for ICS/OT environments NIST SP 800-82 and c, OT Network Communication Protocols (e.g., Ethernet, Modbus, OPC, IEC-101/104 etc.), Information Event Management (SIEM). Key Responsibilities: Designing and implementing technical solutions More ❯

and compliance standards Conduct threat modelling, risk assessments, and recommend effective security controls following "Secure by Design" principles Develop security documentation, reference architectures, and governance frameworks aligned with NIST, NCSC, and ISO standards Collaborate with stakeholders across all defence lines to ensure regulatory, privacy, and risk compliance Mentor junior consultants and support the growth of the Security Practice … through knowledge sharing and proposal development Drive continuous improvement through the review of existing controls, KPIs, and compliance measures What you'll bring: Knowledge of frameworks such as NIST CSF, NIST 800-53, and NCSC CAF Strong understanding of networking, cloud security (AWS/Azure), IAM, and vulnerability management Familiarity with ISO 27001/ More ❯

and the confidence to engage at every level. Ideally, youll have: Strong experience in cybersecurity risk management or GRC roles A solid understanding of industry frameworks such as NIST CSF, NIST 800-53, or SOC 2 Hands-on involvement in audit or certification readiness programmes Excellent communication skills with the ability to translate security More ❯

Securing IT/OT communications and real-time/performance-sensitive systems. Documentation : Experience creating Functional Design and Cyber Security Specifications. Security Standards : Familiarity with frameworks such as NIST 800-53/800-82, ISO 27001, IEC 62433, NIS-R, etc. Stakeholder Management : Proven ability to manage relationships at all levels. Customer Focus : Commitment More ❯

CISM qualifications. Experience required: Security assurance, working with JSP440, JSP604/453. Security accreditation. Implementation of Secure by Design. Implementing security standards and frameworks, such as ISO 27001, NIST 800 and CAF. Conducting Cyber Security risk assessments and managing risk management activities. Experience of working within highly classified environments, implementing, and ensuring compliance with Above Secret … and SaaS. Working as a Security Assurance Co-Ordinator Working with various technical teams. Conducting Cyber Security assessments and gap analysis against various frameworks. Qualifications they look For: NIST Foundation/Practitioner CISM CRISC CISSP CISMP Senior Security Consultant – DV Cleared – up to £75,000 + bonus - Corsham - On-Site 2 days per week More ❯

day-to-day operations to major transformation projects. Main responsibilities: Leading security assurance, assessments, and advisory for IT and business projects (both Cloud and On-Prem), aligned to NIST 800-53 standards. Partnering with security architecture and other teams to define and embed security patterns and controls. Developing non-functional security requirements and guiding their integration … to finish. Bonus points if you bring: Experience with AppSec and DevSecOps. Hands-on knowledge of Azure, AWS, and/or Google Cloud. Familiarity with standards like ISO2700X, ISO31000, NIST800, PCI-DSS. Certifications such as CISSP, CCSP, CRISC, CISM, or SABSA. Why QBE? At My Best? At QBE, we want our people to feel rewarded and inspired to perform at More ❯

Key Responsibilities: Identify and integrate security requirements throughout the product and system development lifecycle. Lead threat modelling and risk assessments, applying frameworks such as ISO/IEC 27001, NIST 800-30/53, and ISO 31000. Advise on secure architectures and develop strategies to mitigate identified information risks. Collaborate with multi-disciplinary teams to ensure compliance … Defence, Aerospace, or National Security sectors. Deep understanding of HMG Security Policy Framework and MOD-specific standards. Familiarity with risk management methodologies (ISO 27001/2, ISO 27005, NIST frameworks). Strong analytical and problem-solving abilities — able to assess complex data and provide actionable insights. A collaborative communicator who can balance technical assurance with business priorities. Ability More ❯

Secure by Design principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001/2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and/or system development environments Effective communication and report More ❯

Secure by Design principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001/2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and/or system development environments Effective communication and report More ❯

functions, and key management practices. Experience in designing secure architectures in hybrid or cloud environments. Knowledge of compliance and regulatory standards such as PCI DSS, HIPAA, SOX, GDPR, NIST 800-53. Preferred Qualifications: Certifications: CISSP, CISM, CEH, GIAC, Microsoft Certified: Identity and Access, or other IDAM equivalent Technologies. Experience with Zero Trust Architecture and Identity More ❯

complex software products in the Defence, Automotive, Aerospace or Telecoms sectors (or a similar field) Experience of software security with knowledge of industry security standards, and best practices ( NIST 800-53/(Apply online only), IECIEC 62443, Def Stan 00-55/00-56, ISO/IECIEC 27001/27034) A natural collaborator who is a More ❯

integrity and traceability across multiple design layers. Support architecture reviews and governance boards , providing modelling best practices and technical guidance. Ensure all artefacts comply with MODAF, TOGAF, or NIST 800-207 frameworks and defence security standards. Work securely, following strict configuration, classification, and change control procedures. Skills & Experience Essential: Active UKSV DV clearance (current and in More ❯

risks. Support AI and automation initiatives to streamline GRC processes. Key Requirements Proven hands-on experience with ServiceNow IRM and risk quantification methodologies. Strong knowledge of ISO 27001, NIST CSF, and NIST SP800-53. Certifications such as CRISC, CISM, CISSP, or FAIR are desirable. Excellent stakeholder management and communication skills. Experience in third-party cyber risk More ❯

security risk management and a working knowledge of cybersecurity technologies Knowledge of common information security management frameworks, such as ISO/IEC 27001, as well as those from NIST, including 800-53 and Cybersecurity Framework Desirable: Relevant accreditations including Cyber Essentials, Cyber Assured, etc. In terms of personal qualities, we will look for a high level More ❯