151 to 175 of 385 NIST Jobs in England

experience to develop pragmatic solutions and resolve complex issues. Certifications such as CISSP, CEH, OSCP, or GSEC are preferred. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview process More ❯

experience to develop pragmatic solutions and resolve complex issues. Certifications such as CISSP, CEH, OSCP, or GSEC are preferred. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview process More ❯

help shape secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider More ❯

help shape secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider More ❯

help shape secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider More ❯

help shape secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider More ❯

help shape secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider More ❯

of clearance. Key Responsibilities: Design, build, and manage AWS cloud infrastructure in a secure, scalable, and resilient environments. Implement security best practices and ensure compliance with relevant frameworks (CIS, NIST, ISO27001). Develop and maintain infrastructure as code (IaC) using Terraform or CloudFormation. Automate deployment and configuration processes using Python, PowerShell, or other scripting tools. Integrate AWS security logs and More ❯

Azure. Lead the architecture and implementation of complex greenfield Azure environments from the ground up. Design and deploy secure, compliant cloud services aligned with industry regulations (e.g., ISO 27001, NIST, GDPR). Configure and harden Azure services including Azure AD, Key Vault, Defender for Cloud, Sentinel, and more. Collaborate with cross-functional teams to integrate security into CI/CD More ❯

and AWS. Conduct posture assessments, gap analyses, and configuration reviews. Design secure architectures aligned with NCSC, CIS, and ISO 27001. Advise on governance, compliance (ISO 27001, Cyber Essentials Plus, NIST). Collaborate with SOC and engineering teams to strengthen detection and identity controls. You’ll need: 4+ years’ experience in security consulting, architecture, or engineering. Strong technical knowledge of Azure More ❯

in cloud environments is a plus Cloud Security skills (desired): Secure software development practices, including SecDevOps Sound knowledge of applicable frameworks & standards, including OWASP, MITRE ATT@CK & D3FEND, CIS, NIST CSF, CSA CCM & ISO 27107 Relevant industry certifications including CSCP Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001/2, PCI, CIS 18, CMMC … Sound knowledge of applicable laws, compliance regulations, and industry standards as it relates to privacy, security, and compliance Sound knowledge of applicable frameworks, including MITRE ATT@CK & D3FEND, CIS, NIST CSF, CSA CCM Strong communication and presentation skills Cyber Risk Management skills (desired) : Experience in threat modelling & application security risk assessments, secure software development practices, including SecDevOps FAIR Open certified More ❯

in cloud environments is a plus Cloud Security skills (desired): Secure software development practices, including SecDevOps Sound knowledge of applicable frameworks & standards, including OWASP, MITRE ATT@CK & D3FEND, CIS, NIST CSF, CSA CCM & ISO 27107 Relevant industry certifications including CSCP Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001/2, PCI, CIS 18, CMMC … Sound knowledge of applicable laws, compliance regulations, and industry standards as it relates to privacy, security, and compliance Sound knowledge of applicable frameworks, including MITRE ATT@CK & D3FEND, CIS, NIST CSF, CSA CCM Strong communication and presentation skills Cyber Risk Management skills (desired) : Experience in threat modelling & application security risk assessments, secure software development practices, including SecDevOps FAIR Open certified More ❯

in cloud environments is a plus Cloud Security skills (desired): Secure software development practices, including SecDevOps Sound knowledge of applicable frameworks & standards, including OWASP, MITRE ATT@CK & D3FEND, CIS, NIST CSF, CSA CCM & ISO 27107 Relevant industry certifications including CSCP Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001/2, PCI, CIS 18, CMMC … Sound knowledge of applicable laws, compliance regulations, and industry standards as it relates to privacy, security, and compliance Sound knowledge of applicable frameworks, including MITRE ATT@CK & D3FEND, CIS, NIST CSF, CSA CCM Strong communication and presentation skills Cyber Risk Management skills (desired) : Experience in threat modelling & application security risk assessments, secure software development practices, including SecDevOps FAIR Open certified More ❯

management, cloud security, endpoint protection, and SOC/SIEM operations. Translate client business and technical requirements into end-to-end architectures that are aligned with compliance standards (ISO 27001, NIST, Cyber Essentials Plus, GDPR, PCI DSS). Ensure proposed solutions are practical, deliverable, and differentiated within competitive bid scenarios. Develop reusable solution artefacts, templates, and standard responses for future bids. … SOC/SIEM. Experience designing solutions incorporating technologies from leading vendors (eg, Microsoft, Palo Alto, Cisco, AWS, Azure, Splunk). Familiarity with regulatory frameworks and compliance standards (ISO 27001, NIST, GDPR, Cyber Essentials Plus, PCI DSS). Understanding of cyber risk management and governance principles. Soft Skills Excellent written communication skills, with the ability to craft persuasive proposal content. Strong More ❯

management, cloud security, endpoint protection, and SOC/SIEM operations. Translate client business and technical requirements into end-to-end architectures that are aligned with compliance standards (ISO 27001, NIST, Cyber Essentials Plus, GDPR, PCI DSS). Ensure proposed solutions are practical, deliverable, and differentiated within competitive bid scenarios. Develop reusable solution artefacts, templates, and standard responses for future bids. … SOC/SIEM. Experience designing solutions incorporating technologies from leading vendors (eg, Microsoft, Palo Alto, Cisco, AWS, Azure, Splunk). Familiarity with regulatory frameworks and compliance standards (ISO 27001, NIST, GDPR, Cyber Essentials Plus, PCI DSS). Understanding of cyber risk management and governance principles. Soft Skills Excellent written communication skills, with the ability to craft persuasive proposal content. Strong More ❯

in a Team Lead or Manager capacity. You possess deep, hands-on expertise in areas like Application Security (AppSec), Cloud Security, and DevSecOps. You have experience with security frameworks (NIST, ISO 27001) and a proven track record of securing large-scale, high-availability systems. You are adept at threat modelling, security architecture review, and penetration testing concepts. Prior experience in More ❯

projects and modernizing OT systems. Technical Expertise: Strong understanding of OT systems, IT/OT integration challenges, and associated technologies. Familiarity with security and compliance standards for OT (e.g., NIST, IEC 62443). Project Management Skills: Proficiency in project management methodologies (Agile, Waterfall, PRINCE2, or PMP). Strong financial management and budgeting capabilities. Sector Knowledge: In-depth understanding of the More ❯

developing complex software products in the Defence, Automotive, Aerospace or Telecoms sectors (or a similar field) Experience of software security with knowledge of industry security standards, and best practices ( NIST 800-53/(Apply online only), IECIEC 62443, Def Stan 00-55/00-56, ISO/IECIEC 27001/27034) A natural collaborator who is a technical leader, with More ❯

background in Cyber Governance, Risk & Compliance or Information Security . Experience building management and board-level reports . Familiarity with CAF , SCF , or other security control frameworks (ISO 27001, NIST, etc.). Good understanding of risk management and supplier assurance . Excellent communication and stakeholder management skills. Comfortable working in a hybrid model - 3 days per week in Birmingham . More ❯

background in Cyber Governance, Risk & Compliance or Information Security . Experience building management and board-level reports . Familiarity with CAF , SCF , or other security control frameworks (ISO 27001, NIST, etc.). Good understanding of risk management and supplier assurance . Excellent communication and stakeholder management skills. Comfortable working in a hybrid model - 3 days per week in Birmingham . More ❯

qualifications (ISO 9001, ISO 22301, ISO 27701, ISO 20000-1). Experience auditing in data-intensive sectors such as finance, healthcare, or public sector. Technical knowledge of cybersecurity frameworks (NIST CSF, CIS, Cyber Essentials Plus). Membership in a professional body (BCS, ISACA, IIA, IISP, etc.). More ❯

to business operations. Security and Compliance Implement and enforce network security policies and procedures to safeguard the integrity and confidentiality of organizational data. Ensure compliance with industry standards, including NIST, PCI-DSS, and GDPR, by enforcing firewall, VPN, and other security measures. Collaboration and Leadership Work closely with cross-functional teams, including cybersecurity, cloud architects, systems engineers, and external vendors More ❯

security in agile development environments Hands-on knowledge of cloud platforms , CI/CD pipelines , and scripting (PowerShell, YAML, JSON, etc.) Familiarity with frameworks and standards such as OWASP , NIST SSDF , ISO27001 , or NCSC Practical experience with threat modelling , security tooling , and risk assessments Excellent communication skills, able to influence and engage at all levels from developers to execs A More ❯

security in agile development environments Hands-on knowledge of cloud platforms , CI/CD pipelines , and scripting (PowerShell, YAML, JSON, etc.) Familiarity with frameworks and standards such as OWASP , NIST SSDF , ISO27001 , or NCSC Practical experience with threat modelling , security tooling , and risk assessments Excellent communication skills, able to influence and engage at all levels from developers to execs A More ❯

Experience in writing content/polices for monitoring in line with MITRE ATT&CK framework Familiarity with regulatory requirements such as GDPR, HIPAA, PCI DSS, and industry standards like NIST Cybersecurity Framework. More ❯