15 of 15 NIST Jobs in Gloucestershire

architectures integrating on-premises, legacy, and multi-cloud systems, maintaining security consistency and compliance Knowledgeable in security standards and frameworks, such as ISO 27001, NIST CSF, SOC 2, CIS Benchmarks, GDPR, and NHS DSPT Familiar with AI security and data governance principles, including data minimisation, secure model access, and ...

architectures integrating on-premises, legacy, and multi-cloud systems, maintaining security consistency and compliance Knowledgeable in security standards and frameworks, such as ISO 27001, NIST CSF, SOC 2, CIS Benchmarks, GDPR, and NHS DSPT Familiar with AI security and data governance principles, including data minimisation, secure model access, and ...

related field CISSP, CEH, OSCP, or equivalent security certifications Experience with SIEM systems for hybrid environments Familiarity with incident response frameworks (e.g., NIST CSF, ISO 27035) Knowledge of penetration testing frameworks Strong scripting skills in languages like Python, Bash or PowerShell Experience with big data analytics and visualization tools Benefits ...

risk concerns. Present findings to technical teams and management stakeholders. Testing Methodology and Tool Management Follow industry-standard penetration testing methodologies (e.g., OWASP, PTES, NIST). Maintain and update penetration testing tools and exploitation frameworks. Stay current with the latest attack techniques, vulnerabilities, and security research. Client Engagement and Support ...

and support teams throughout implementation SC Cleared Cloud Security Architect - Required Experience Active SC Clearance (essential) 5+ years' in cloud security architecture. Security Compliance (NIST, NCSC, GDPR etc.) Oracle Cloud Infrastructure (nice to have) Excellent stakeholder engagement & communication skills Interviews: November 2025 Start Date: December 2025 How to Apply: Apply ...

and support teams throughout implementation SC Cleared Cloud Security Architect - Required Experience Active SC Clearance (essential) 5+ years' in cloud security architecture. Security Compliance (NIST, NCSC, GDPR etc.) Oracle Cloud Infrastructure (nice to have) Excellent stakeholder engagement & communication skills Interviews: November 2025 Start Date: December 2025 How to Apply: Apply ...

cybersecurity certifications: CompTIA, CISSP, CISM, CRISC, ISO 27001 Lead Auditor/Implementer, or equivalent. Familiarity with MOD, maritime, or defence-specific frameworks: JSPs, DEFSTAN, NIST, IEC 62443, IMO or ISO/IEC 27001. DV clearance (or eligibility to obtain DV as a minimum) is required. Evidence of ongoing professional development ...

critical infrastructure . Strong understanding of cyber-physical systems , OT environments , and connected infrastructure . Experience applying assurance frameworks and technical standards (e.g. NIST, ISO27001, CAF). Background in governance, risk, and compliance (GRC) functions. Excellent communication and stakeholder engagement skills. Agile, analytical, and solutions-focused mindset. Experience in sectors ...

Skills and Experience Good network security control knowledge — architecture, segmentation, enforcement points (firewalls, WAF, IDS/IPS, DDoS). Experience mapping controls against frameworks (NIST CSF, CIS v8, ISO 27001) and identifying gaps. Understanding of financial services regulatory environments – ideally exposure to DORA, HKMA, MAS, RBI, FFIEC, PRA/FCA. ...

Familiarity with government and defence security standards such as: HMG/NCSC IA Policies and Guidelines JSP440 and other MoD IA standards Cyber Essentials NIST, NIS-D ISO - lead auditor/lead implementor cert preferred Excellent stakeholder communication skills - you can clearly explain complex security concepts to both technical and ...

knowledge across on-prem and cloud environments, and ideally experience in areas such as: Network security, IAM, SIEM, and threat detection Compliance frameworks (e.g. NIST, ISO 27001, CIS Controls) Security automation and scripting Producing security artefacts and documentation Experience in Operational Technology would be an added bonus ...

member of the change advisory board and business risk steering committee. Main responsibilities include - Assist with the continued certification of ISO27001, CMMC (NIST), Cyber Essentials, etc. Responsible for the delivery of the company cyber security strategy . Work with external partners to ensure their work meets the relevant standards, legislation ...

and risk management. You will define and maintain security standards, oversee incident response, and ensure compliance with frameworks such as ISO27001, Cyber Essentials, CIS, NIST, and GDPR. A key part of this role involves leading and mentoring apprentices, designing structured training pathways, and helping shape the organisation's long term … Strong experience across IT operations and cybersecurity, including incident response, risk management, and policy creation Working knowledge of security frameworks such as ISO27001, CIS, NIST, GDPR, and Cyber Essentials Cybersecurity certifications such as CISSP, Security+, CEH or equivalent Proven leadership and team development experience, ideally including apprenticeship support Ability ...

integrate security requirements throughout the product and system development lifecycle. Lead threat modelling and risk assessments, applying frameworks such as ISO/IEC 27001, NIST 800-30/53, and ISO 31000. Advise on secure architectures and develop strategies to mitigate identified information risks. Collaborate with multi-disciplinary teams … Security sectors. Deep understanding of HMG Security Policy Framework and MOD-specific standards. Familiarity with risk management methodologies (ISO 27001/2, ISO 27005, NIST frameworks). Strong analytical and problem-solving abilities - able to assess complex data and provide actionable insights. A collaborative communicator who can balance technical assurance ...

Manage supplier engagements based on IT Security Certifications and to drive improvements where required. Manage the relevant Certifications. Primarily ISO 27001, Cyber Essentials and NIST 800-171 (ISO 27001 critical, training available for NIST). Contribute to awareness activities. Supporting the management of Risk. Supporting the daily maintenance activities and … response where necessary. Policies, Awareness and Risk across the business Experience Required - Previous knowledge and responsibility for ISO 27001. Good knowledge of Cyber Essentials (NIST an advantage). Data Protection or similar compliance qualification. Understanding of Risk Management methodologies. Experience of creating and managing an ISMS. Demonstrable knowledge of Policy ...