1 to 25 of 29 NIST Jobs in the East of England

SOC environment. Desirable * IT certifications such as CompTIA A+, Network+ * Cyber certifications such as CISM, CISA, CEH, or CompTIA Security+ * Understanding of regulatory frameworks and industry standards (e.g., NIS, NIST, ISO 27001, GDPR). * Experience in scripting or programming languages including PowerShell for automating security tasks. Person Specification: * Communication. Structures and conveys information and ideas effectively. Communicates to ensure they More ❯

and procedures, including internal security processes, phishing response procedures, and vendor security evaluation protocols. •Consult with the IT Security Team on policy development and maintenance, particularly in alignment with NIST 800-171 and Microsoft best practices. Drive effective and reasonable policies and practices to secure protected and sensitive data and ensure information security and compliance with relevant legislation. Monitor compliance … areas including firewalls, IDS/IPS, VPN, remote access, security logging, vulnerability management, security incident response, and penetration testing. •Preferred qualifications include relevant Information Security Certifications, and experience with NIST 800-171, and HECVAT. •A demonstrated ability to analyze and respond to security incidents, incident evaluation, and detect patterns in complex security data sets. •Experience providing analysis and detecting trends More ❯

to manage external security operations. Desirable Certifications: Azure Security Engineer Associate, CISSP, OSCP (Offensive Security Certified Professional), CCSP, or equivalent. Experience with container security (Docker, Kubernetes). Knowledge of NIST, ISO 27001, SOC 2 compliance frameworks. Familiarity with Zero Trust security principles. Other Stuff NB: Please only apply if you are able to work from their Debden (IG10) offices Monday More ❯

Lead the design and implementation of secure network architectures for on-premises, cloud, and hybrid environments. Define network security standards, frameworks, and policies aligned with industry best practices (e.g., NIST, ISO 27001, CIS). Develop and maintain secure designs for firewalls, VPNs, intrusion prevention systems (IPS/IDS), network segmentation, and zero trust network access (ZTNA). Collaborate with IT More ❯

risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to communicate risks associated with More ❯

and Compliance, IT Infrastructure, Engineering, Compliance and AI teams to integrate security tooling and sophisticated security capabilities into business-critical systems. Define frameworks and standards aligned with industry standards (NIST, MITRE ATT&CK) and semiconductor-specific regulatory requirements including export control and SoX compliance. Drive innovation by utilising AI and machine learning technologies to enhance threat detection, incident response, and … Technology or Semiconductor industries. Proven expertise in cloud security architecture and deployments, particularly in AWS, Azure, and/or Google Cloud Platform. Solid understanding of security frameworks such as NIST, MITRE ATT&CK, and relevant semiconductor industry standards. Excellent leadership skills with a track record of building and managing high-performing technical teams. Exceptional interpersonal skills with the ability to More ❯

. Expertise in identity and access management (IAM), including RBAC, ABAC, JWT and Cookie based authentication. Incident detection and response in MOD environments. Security compliance and regulatory frameworks (e.g., NIST, CIS Benchmarks). Experience working with Kubernetes at an administrative level Soft Skills Strong leadership and mentoring abilities. Effective communication with development, operations, and security teams. Ability to advocate for More ❯

and maintain clear, concise reports, metrics, and documentation related to security incidents, risks, and controls. What we need from you; Practical experience of ISO27001/27004/27005 and NIST Risk Management Framework (RMF) Demonstrable experience of writing IA Technical Risk Assessments and the management of these Assessments Good understanding and appreciation of the Engineering development lifecycles and how the … and maintain clear, concise reports, metrics, and documentation related to security incidents, risks, and controls. What we need from you; Practical experience of ISO27001/27004/27005 and NIST Risk Management Framework (RMF) Demonstrable experience of writing IA Technical Risk Assessments and the management of these Assessments . click apply for full job details More ❯

Provide technical escalation support in the absence of a cybersecurity specialist, particularly in coordination with the Security Operations Centre (SOC). - Support compliance with relevant standards (e.g. ISO 27001, NIST, UK GDPR). - Review security aspects of tenders and conduct third-party/vendor risk assessments to ensure alignment with organisational security requirements. - Perform additional security-related tasks as directed … and cloud security. - Ability to assess and communicate technical vulnerabilities in business terms. - Experience working with or within a SOC environment. - Familiarity with risk management frameworks?(e.g. ISO 27005, NIST RMF). - Excellent communication and reporting skills. - Relevant certifications (e.g. CISSP, CISM, CRISC, CEH). - Experience with GRC tools and risk registers. - Knowledge of regulatory requirements and data protection laws. More ❯

Project Management experience Proven experience Penetration Testing, cybersecurity, or related fields. Understanding of Penetration Testing process and lifecycle, OWASP Application vulnerabilities and IT systems. Knowledge of Cybersecurity frameworks (e.g., NIST, ISO 27001) and compliance regulations (e.g., DORA, GDPR, Cyber Essentials). Familiarity with Security tooling and vulnerability Scanning e.g. Qualys, Nessus, Burpsuite Digital Forensics or Discovery experience Basic understanding of More ❯

willing to undergo DBS and Counter Terrorist Check. It would be great if you had: Certifications such as CISSP, or other relevant qualifications. Experience with additional frameworks (e.g., SOC2, NIST, NCSC CAF). More than 2 years’ experience delivering IT or cybersecurity solutions. Benefits: 30 days annual leave + 8 bank holidays Additional day off for your birthday 3% employer More ❯

and one of LinkedIn's Top Companies 2024 Do you have proven experience in cyber security, information assurance or resilience management? If you have a strong working knowledge of the NIST Cyber Security Framework then this could be your chance to join us! We're looking for someone with excellent communication skills to work across the business to provide assurance … on Clarion's cybersecurity strategy, ensuring alignment with the National Institute of Standards and Technology (NIST) Cyber Security Framework. Familiar with UK housing sector regulation, applicable standards and data protection requirements (e.g. GDPR, ISO27001, ISO27002, ISO27701) you'll be responsible cyber assurance to support the security posture across systems and services that support tenants and operations. You'll communicate the More ❯

and one of LinkedIn's Top Companies 2024 Do you have proven experience in cyber security, information assurance or resilience management? If you have a strong working knowledge of the NIST Cyber Security Framework then this could be your chance to join us! We're looking for someone with excellent communication skills to work across the business to provide assurance … on Clarion's cybersecurity strategy, ensuring alignment with the National Institute of Standards and Technology (NIST) Cyber Security Framework. Familiar with UK housing sector regulation, applicable standards and data protection requirements (e.g. GDPR, ISO27001, ISO27002, ISO27701) you'll be responsible cyber assurance to support the security posture across systems and services that support tenants and operations. You'll communicate the More ❯

and how product security specialism is aligned. Engineering degree with minimum 5 years' experience in product security and CISSP, CISM or equivalent qualification Practical experience of risk management frameworks (NIST SP800-37, ISO27001) Practical experience of risk assessment processes (NIST SP800-30 and ISO 27005) Practical experience of applying security controls (NIST SP800-53 and ISO27002) Practical experience of Secure More ❯

IT, identify gaps, propose holistic solutions and achieve group-wide endorsement. Continuously evaluate and identify new risks and mitigation, based on CTI and industry best practices including (ISO 270xx, NIST frameworks, OWASP and CIS) Your profile A university degree in computer science, information technology, or cybersecurity. At least 5 years of hands-on experience designing cloud security architecture (technical design More ❯

and implement scalable monitoring, alerting, and auditability solutions to support a secure, multi-cloud, geo-distributed workforce. Design, implement, and continuously improve Roku's Zero Trust Architecture, aligning with NIST SP 800-207 and SP 1800-35 guidance. Collaborate with IT, Networking, and Security teams to troubleshoot identity-related issues and support global infrastructure initiatives. Identify and implement automation opportunities … AWS; GCP is a plus Solid understanding of SaaS platforms and their identity integration Understanding of Zero Trust Architecture principles Familiarity with IT security frameworks and compliance standards (e.g., NIST, GDPR, SOC 2, PCI DSS, HIPAA) Awareness of logging, monitoring, and alerting practices related to identity and access events Basic understanding of email security and DNS Backup and recovery awareness More ❯

you should HODL 7+ years in security engineering or technical external audit/advisory, including hands-on experience with industry frameworks (e.g. ISO 27001, SOC 2, PCI DSS, FedRAMP, NIST). Strong long-form and asynchronous writing skills for a fully remote, globally distributed team. Built and/or made substantial contributions to a common controls framework. Knowledge of infrastructure More ❯

Ability to lead technical conversations, influence customer decisions, and deliver trusted advisory services Existing SC clearance or eligibility to apply Desirable Skills & Certifications Familiarity with industry security frameworks (e.g., NIST, ISO 27001, CIS Controls) Cloud security experience across major hyperscalers More ❯

and threat intelligence drive delivery alongside great response to incidents as they emerge, including in partnership with 3rd parties. Familiar with the application of security certifications such as ISO27001, NIST to global organisations with significant outsourced value stream activities Leadership of information security, data privacy and data handling issues in organisations with significant outsourced value stream activities In the field More ❯

as required by the IT Manager. Suitable applicants should ideally have: Minimum 3 years experience working in an IT-related capacity Familiar with security best practices and standards, including NIST, CIS, and ISO, and how to follow these. Fundamentals of IT including an understanding of LAN and WAN networks, Operating Systems, Active Directory and authentication systems, Cloud Computing and basic More ❯

we're looking for: Demonstrable experience of effective and efficient cyber security delivery, project management or security engineering. Strong understanding of vulnerability management, secure software development, and compliance frameworks (NIST CSF 2.0, GDPR, ISO 27001). Strong examples of cross-functional stakeholder management, being a knowledgeable bridge between technical cyber security teams and non-cyber security colleagues. Proven track record More ❯

Security Architecture function coupled with experience of leading large client engagements. Proficient with Security Architecture principles, such as SABSA, and published frameworks or guidelines from organisations such as from NIST and NCSC. The ability to design and document effective security controls aligned to business objectives using a risk based approach. Excellent analytical and problem-solving skills. It would be great More ❯

Security Architecture function coupled with experience of leading large client engagements. Proficient with Security Architecture principles, such as SABSA, and published frameworks or guidelines from organisations such as from NIST and NCSC. The ability to design and document effective security controls aligned to business objectives using a risk based approach. Excellent analytical and problem-solving skills. It would be great More ❯

e.g. ISC2Certified Information System Security Professional. Knowledge of UK/NATO Information Assurance standards, procedures & systems, including Government Functional Standard GovS 007: Security, HMG IS1&2, ISO27000 series standards, NIST SP800 series standards, JSP440, JSP604, guidance material provided by NCSC, CPNI and NIST. Practical experience of producing Security Accreditation documentation Practical experience of NCSC and Common Criteria security evaluation techniques. More ❯

Jobs Reference V/13462 Job Description Our client is currently seeking to appoint an experienced Security & Network Engineer to strengthen their team in their Ipswich offices. You will be member of the IT Operations team, supporting the delivery of More ❯