201 to 225 of 525 NIST Jobs in England

risks and technologies What you bring: Significant experience in security operations across both cloud and on-premise environments In-depth understanding of security monitoring solutions, frameworks, and standards (e.g., NIST, ISO 27001, CIS) Proficiency with automation and scripting to streamline security processes Background in Infrastructure as Code (ideally Terraform), audit/compliance activities, and securing CI/CD pipelines Strong More ❯

systems. Experience creating Functional Design Specifications and Detailed Infrastructure, Network and Cyber Security Specifications. Demonstrated experience conducting system assessments and security audits in alignment with technical security frameworks, including NIST 800-53/800-82, ISO 27001, IEC 62433, HSE OG-86, NIS-R, and others We appreciate your CV may not be up to date. No problem, just apply More ❯

custom automation. Supporting live environments with monitoring, troubleshooting, performance tuning, and cost optimisation. Key Requirements: Hands-on AWS experience across core services. Strong understanding of cloud security standards (CIS, NIST, ISO27001). DevOps knowledge: Git, CI/CD pipelines, and testing workflows. Excellent communication skills and the ability to work independently. If this sounds like you, or someone in your More ❯

custom automation. Supporting live environments with monitoring, troubleshooting, performance tuning, and cost optimisation. Key Requirements: Hands-on AWS experience across core services. Strong understanding of cloud security standards (CIS, NIST, ISO27001). DevOps knowledge: Git, CI/CD pipelines, and testing workflows. Excellent communication skills and the ability to work independently. If this sounds like you, or someone in your More ❯

management principles. Experience in conducting security assessments and producing assurance reports. Ability to engage and influence stakeholders at all levels. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls). Excellent communication, planning, and organisational skills. Experience managing teams and developing talent. Ability to interpret complex technical and business information to assess risk. Experience in supply chain More ❯

management principles. Experience in conducting security assessments and producing assurance reports. Ability to engage and influence stakeholders at all levels. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls). Excellent communication, planning, and organisational skills. Experience managing teams and developing talent. Ability to interpret complex technical and business information to assess risk. Experience in supply chain More ❯

design through deployment, oversee secure coding and testing, and drive operational maturity and resilience against evolving threats What you'll do: Define and govern secure architecture standards, aligned with NIST, OWASP, ISO 27001, and enterprise policies Lead DevSecOps integration, embedding automated security testing (SAST, DAST, SCA, container security) into CI/CD pipelines Oversee large-scale secure development programs, ensuring More ❯

information security risk management and a working knowledge of cybersecurity technologies Knowledge of common information security management frameworks, such as ISO/IEC 27001, as well as those from NIST, including 800-53 and Cybersecurity Framework Desirable: Relevant accreditations including Cyber Essentials, Cyber Assured, etc. In terms of personal qualities, we will look for a high level of personal integrity More ❯

experience to develop pragmatic solutions and resolve complex issues. Certifications such as CISSP, CEH, OSCP, or GSEC are preferred. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview process More ❯

experience to develop pragmatic solutions and resolve complex issues. Certifications such as CISSP, CEH, OSCP, or GSEC are preferred. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview process More ❯

experience to develop pragmatic solutions and resolve complex issues. Certifications such as CISSP, CEH, OSCP, or GSEC are preferred. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview process More ❯

experience to develop pragmatic solutions and resolve complex issues. Certifications such as CISSP, CEH, OSCP, or GSEC are preferred. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview process More ❯

help shape secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider More ❯

help shape secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider More ❯

help shape secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider More ❯

help shape secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider More ❯

help shape secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider More ❯

of clearance. Key Responsibilities: Design, build, and manage AWS cloud infrastructure in a secure, scalable, and resilient environments. Implement security best practices and ensure compliance with relevant frameworks (CIS, NIST, ISO27001). Develop and maintain infrastructure as code (IaC) using Terraform or CloudFormation. Automate deployment and configuration processes using Python, PowerShell, or other scripting tools. Integrate AWS security logs and More ❯

Azure. Lead the architecture and implementation of complex greenfield Azure environments from the ground up. Design and deploy secure, compliant cloud services aligned with industry regulations (e.g., ISO 27001, NIST, GDPR). Configure and harden Azure services including Azure AD, Key Vault, Defender for Cloud, Sentinel, and more. Collaborate with cross-functional teams to integrate security into CI/CD More ❯

and AWS. Conduct posture assessments, gap analyses, and configuration reviews. Design secure architectures aligned with NCSC, CIS, and ISO 27001. Advise on governance, compliance (ISO 27001, Cyber Essentials Plus, NIST). Collaborate with SOC and engineering teams to strengthen detection and identity controls. You’ll need: 4+ years’ experience in security consulting, architecture, or engineering. Strong technical knowledge of Azure More ❯

in cloud environments is a plus Cloud Security skills (desired): Secure software development practices, including SecDevOps Sound knowledge of applicable frameworks & standards, including OWASP, MITRE ATT@CK & D3FEND, CIS, NIST CSF, CSA CCM & ISO 27107 Relevant industry certifications including CSCP Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001/2, PCI, CIS 18, CMMC … Sound knowledge of applicable laws, compliance regulations, and industry standards as it relates to privacy, security, and compliance Sound knowledge of applicable frameworks, including MITRE ATT@CK & D3FEND, CIS, NIST CSF, CSA CCM Strong communication and presentation skills Cyber Risk Management skills (desired) : Experience in threat modelling & application security risk assessments, secure software development practices, including SecDevOps FAIR Open certified More ❯

in cloud environments is a plus Cloud Security skills (desired): Secure software development practices, including SecDevOps Sound knowledge of applicable frameworks & standards, including OWASP, MITRE ATT@CK & D3FEND, CIS, NIST CSF, CSA CCM & ISO 27107 Relevant industry certifications including CSCP Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001/2, PCI, CIS 18, CMMC … Sound knowledge of applicable laws, compliance regulations, and industry standards as it relates to privacy, security, and compliance Sound knowledge of applicable frameworks, including MITRE ATT@CK & D3FEND, CIS, NIST CSF, CSA CCM Strong communication and presentation skills Cyber Risk Management skills (desired) : Experience in threat modelling & application security risk assessments, secure software development practices, including SecDevOps FAIR Open certified More ❯

in cloud environments is a plus Cloud Security skills (desired): Secure software development practices, including SecDevOps Sound knowledge of applicable frameworks & standards, including OWASP, MITRE ATT@CK & D3FEND, CIS, NIST CSF, CSA CCM & ISO 27107 Relevant industry certifications including CSCP Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001/2, PCI, CIS 18, CMMC … Sound knowledge of applicable laws, compliance regulations, and industry standards as it relates to privacy, security, and compliance Sound knowledge of applicable frameworks, including MITRE ATT@CK & D3FEND, CIS, NIST CSF, CSA CCM Strong communication and presentation skills Cyber Risk Management skills (desired) : Experience in threat modelling & application security risk assessments, secure software development practices, including SecDevOps FAIR Open certified More ❯

management, cloud security, endpoint protection, and SOC/SIEM operations. Translate client business and technical requirements into end-to-end architectures that are aligned with compliance standards (ISO 27001, NIST, Cyber Essentials Plus, GDPR, PCI DSS). Ensure proposed solutions are practical, deliverable, and differentiated within competitive bid scenarios. Develop reusable solution artefacts, templates, and standard responses for future bids. … SOC/SIEM. Experience designing solutions incorporating technologies from leading vendors (eg, Microsoft, Palo Alto, Cisco, AWS, Azure, Splunk). Familiarity with regulatory frameworks and compliance standards (ISO 27001, NIST, GDPR, Cyber Essentials Plus, PCI DSS). Understanding of cyber risk management and governance principles. Soft Skills Excellent written communication skills, with the ability to craft persuasive proposal content. Strong More ❯

management, cloud security, endpoint protection, and SOC/SIEM operations. Translate client business and technical requirements into end-to-end architectures that are aligned with compliance standards (ISO 27001, NIST, Cyber Essentials Plus, GDPR, PCI DSS). Ensure proposed solutions are practical, deliverable, and differentiated within competitive bid scenarios. Develop reusable solution artefacts, templates, and standard responses for future bids. … SOC/SIEM. Experience designing solutions incorporating technologies from leading vendors (eg, Microsoft, Palo Alto, Cisco, AWS, Azure, Splunk). Familiarity with regulatory frameworks and compliance standards (ISO 27001, NIST, GDPR, Cyber Essentials Plus, PCI DSS). Understanding of cyber risk management and governance principles. Soft Skills Excellent written communication skills, with the ability to craft persuasive proposal content. Strong More ❯