5 of 5 NIST Jobs in Gloucestershire

strong professional development opportunities. Skills Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration testing, and remediation concepts Persuasive communication skills across technical and ...

Familiarity with industry standards, guidelines, and regulatory compliance requirements related to information security and cloud computing such as GDPR, ISO 27001, Cloud Security Alliance, NIST 800-53, PCI DSS, ISA/IEC 62443, NERC CIP, HIPAA, etc. Knowledge of public cloud environments Azure, AWS or Google Cloud If interested, please ...

Document findings clearly, prioritise risks, and contribute to client-ready reports. Work with consultants to map findings to frameworks and standards (e.g. ISO 27001, NIST, CIS). Help develop internal tools, scripts, or automation to improve testing efficiency. Participate in threat research and stay current with emerging vulnerabilities and attack ...

industries, frameworks, and environments - ideal if you're looking to broaden your experience. Key Responsibilities: Conduct security audits and assessments against recognised frameworks (ISO27001, NIST, NCSC) Support risk management activities and improve security posture across client environments Assist with information governance processes and reporting Deliver client projects within agreed scope … cyber security/IT security role Experience in security assurance, audits, or compliance-focused work Good understanding of frameworks such as ISO27001, NIST, NCSC Knowledge of risk management and information governance Familiarity with regulations like GDPR/Data Protection Act Strong communication skills - comfortable working with clients and stakeholders Ability ...

resilience maturity assessments and tabletop exercises; identify and prioritise gaps in recovery capabilities. Design recovery playbooks: Create actionable recovery and communication plans aligned with NIST, ISO 22301, and industry best practice. Test and validate: Lead scenario‐based simulations and recovery testing to validate processes, people, and technology readiness. Integrate with … complex enterprise environments. Practical understanding of incident response , crisis management , and cyber recovery operations . Familiarity with frameworks and standards such as ISO 22301 , NIST CSF , NIST SP 800-34 , and BS 65000 . Proven ability to engage at all levels — from technical recovery teams to C‐suite executives. Experience ...