14 of 14 Remote/Hybrid NIST Jobs in the South West

Lead experience MOD/GDS Secure by Design Familiarity with: JSP440, JSP604/453, JSP490 Supplier Chain Assurance GDPR, PCI DSS, ICO ISO 27001, NIST CSF, CIS Controls v8 Skills in: Threat modelling (kill chain, attack trees, etc.) Cloud security (AWS, Azure), containerisation, firewalls Secure SDLC HLD/LLD review ...

strong professional development opportunities. Skills Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and ...

and wider UK as required. Bristol/Corsham access would be ideal. Key experience areas include: Security Architecture Secure by Design NCSC CAF/NIST/ISO27001 Threat modelling and risk assessment Cloud Security (AWS/Azure/GCP) Security assurance and accreditation activities Defence or wider Public Sector environments ...

Provide security advisory services across complex programmes that support critical UK public sector initiatives. Advise clients on regulatory and compliance frameworks, including ISO 27001, NIST, GDPR, and PCI-DSS. Communicate secure design principles and risk mitigation strategies to both technical and non-technical stakeholders. Research and develop innovative approaches ...

Familiarity with government and defence security standards such as: HMG/NCSC IA Policies and Guidelines JSP440 and other MoD IA standards Cyber Essentials NIST, NIS-D You will ideally hold CISM/CISSP or similar higher level recognised and current Information Security or Assurance certification Excellent stakeholder communication skills ...

stakeholders, and communicate findings effectively. Proven expertise in Cyber Security Auditing, with strong knowledge of: NCSC Cyber Assessment Framework (CAF). ISO 27000 series, NIST Cyber Security & Risk Management Frameworks. Legacy IA standards and NCSC guidance. Technical understanding of: Defensive Cyber principles. Enterprise Architecture and Secure Systems. Network & Cloud Security ...

vulnerability management, firewalls and network security Good understanding of risk management, vendor security assessments and compliance Understanding of UK regulations, including Cyber Essentials, ISO27001, NIST On Offer: Salary up to £65,000 Hybrid working - approximately 2 days a week in office (Chippenham) 25 days annual leave plus bank holidays Private ...

communication skills, with the ability to turn technical security concerns into clear, actionable decisions. Familiarity with recognised frameworks or certifications such as ISO 27001, NIST CSF or similar would be helpful. Experience in a product, platform or SaaS business. Experience in high-trust, regulated or mission-critical environments would ...

ISO27001 standard that you have the proven, battle-tested experience of achieving from the ground up. Aligning global security protocols with regional requirements, including NIST (Americas) and Essential 8 (Australia). Acting as the sole, energetic technical lead for vulnerability management and endpoint security across the worldwide estate. ...

/CISA/CIPT/ISO27001 Lead Auditor Experience working in a MoD restricted environment and knowledge of MoD security standards. Familiarity with the NIST/CSM V4 framework. What you'll get in return: Salary of between £60k-£65k 25 days annual leave + bank holidays - additional gained with ...

maintaining quality and managing stakeholder expectations.* Willingness and flexibility to travel throughout the UK (and occasionally overseas) as required.* Relevant professional certifications (e.g., ISO27000, NIST Cyber Security Professional, CISMP, CISM, CISSP, CCSP, Chartered Cyber Security Professional) are highly desirable. Solid understanding of ‘Secure by Design’ methodology. Commitment to ongoing professional … and help them deploy that technology in live OT/ICS environments. Familiarity with OT cyber security standards or regulatory frameworks (e.g., IEC 62443, NIST CSF, NIS Regulations, HSE OG-0086).* Relevant OT cyber security qualifications (e.g., GICSP, IEC/ISA 62443). Membership of recognised security professional bodies ...

work across a varied portfolio of programmes, supporting clients with governance, risk and compliance activities aligned to frameworks and standards including ISO 27001, NIST, CAF, Secure by Design, JSP440 and JSP604. The environment is fast‐moving, collaborative and highly consultative. Beyond delivery, you’ll also contribute to pre‐sales activity … Lead experience within MOD environments will be especially well suited. Key Experience Security assurance and accreditation within Defence environments JSP440/JSP604 ISO 27001, NIST, CAF and Secure by Design Cyber risk assessments and gap analysis Working across cloud, SaaS and traditional infrastructure Stakeholder engagement and consultancy delivery MOD Security ...

work across a varied portfolio of programmes, supporting clients with governance, risk and compliance activities aligned to frameworks and standards including ISO 27001, NIST, CAF, Secure by Design, JSP440 and JSP604. The environment is fast-moving, collaborative and highly consultative. Beyond delivery, you'll also contribute to pre-sales activity … Lead experience within MOD environments will be especially well suited. Key Experience: Security assurance and accreditation within Defence environments JSP440/JSP604 ISO 27001, NIST, CAF and Secure by Design Cyber risk assessments and gap analysis Working across cloud, SaaS and traditional infrastructure Stakeholder engagement and consultancy delivery MOD Security ...

assessments Produce and maintain accreditation documentation including RMADS, SyOps, security cases and risk registers Apply and advise on frameworks including ISO/IEC 27001, NIST SP 800-53 and JSP 440/JSP 604 Engage confidently with programme teams, risk owners, SROs and accrediting authorities Own client workstreams and deliverables … experience in information assurance, security assurance or GRC Proven delivery in defence or central government environments Strong working knowledge of ISO/IEC 27001, NIST SP 800-53 and the Cyber Assessment Framework Practical experience with defence accreditation frameworks - JSP 440 and JSP 604 Experience producing RMADS, SyOps and supporting ...