9 of 9 NIST Jobs in Gloucestershire

security controls within cloud-based infrastructure (e.g Azure, AWS, GCP). This may include design, configuration, or protective monitoring. You have experience working with security control frameworks e.g. ISO27001, NIST, CAF or others. You have demonstrable continuous personal development with relevant certifications and accreditations. You have strong interpersonal skills You have UK security clearance at SC or above or are More ❯

or a related area, or otherwise demonstrable experience in a related field. You have working knowledge and/or experience of best practice industry frameworks and standards, such as NIST, CAF and ISO27001. You demonstrate continued personal development through relevant certifications, academic qualifications, hobbies, and/or wider interests. You have strong interpersonal skills. You have UK security clearance at More ❯

communicate technical risks to a range of audiences. Experience with: SIEM/SOC. RMM/XDR/EDR, and vulnerability scanning platforms. Cloud security. CNAPP. Cyber Essentials, ISO27001, or NIST frameworks. Patch/vulnerability management governance. Threat detection and analysis. Network Security. Desirable Relevant industry experience. Experience delivering or auditing compliance frameworks. Exposure to BCP/DR and tabletop exercises. More ❯

or defence-focused discipline. Recognised cybersecurity certifications: CompTIA, CISSP, CISM, CRISC, ISO 27001 Lead Auditor/Implementer, or equivalent. Familiarity with MOD, maritime, or defence-specific frameworks: JSPs, DEFSTAN, NIST, IEC 62443, IMO or ISO/IEC 27001. DV clearance (or eligibility to obtain DV as a minimum) is required. Evidence of ongoing professional development aligned with cybersecurity assurance, defence More ❯

ideally within the built environment or critical infrastructure . Strong understanding of cyber-physical systems , OT environments , and connected infrastructure . Experience applying assurance frameworks and technical standards (e.g. NIST, ISO27001, CAF). Background in governance, risk, and compliance (GRC) functions. Excellent communication and stakeholder engagement skills. Agile, analytical, and solutions-focused mindset. Experience in sectors such as energy, water More ❯

starting individual with strong technical knowledge across on-prem and cloud environments, and ideally experience in areas such as: Network security, IAM, SIEM, and threat detection Compliance frameworks (e.g. NIST, ISO 27001, CIS Controls) Security automation and scripting Producing security artefacts and documentation Experience in Operational Technology would be an added bonus Due to the nature of the work, upper More ❯

system development and will be a key member of the change advisory board and business risk steering committee. Main responsibilities include - Assist with the continued certification of ISO27001, CMMC (NIST), Cyber Essentials, etc. Responsible for the delivery of the company cyber security strategy . Work with external partners to ensure their work meets the relevant standards, legislation and regulation. Give More ❯

up. Key Responsibilities: Identify and integrate security requirements throughout the product and system development lifecycle. Lead threat modelling and risk assessments, applying frameworks such as ISO/IEC 27001, NIST 800-30/53, and ISO 31000. Advise on secure architectures and develop strategies to mitigate identified information risks. Collaborate with multi-disciplinary teams to ensure compliance with MOD and … the Defence, Aerospace, or National Security sectors. Deep understanding of HMG Security Policy Framework and MOD-specific standards. Familiarity with risk management methodologies (ISO 27001/2, ISO 27005, NIST frameworks). Strong analytical and problem-solving abilities - able to assess complex data and provide actionable insights. A collaborative communicator who can balance technical assurance with business priorities. Ability to More ❯

/Information Security Management System. Manage supplier engagements based on IT Security Certifications and to drive improvements where required. Manage the relevant Certifications. Primarily ISO 27001, Cyber Essentials and NIST 800-171 (ISO 27001 critical, training available for NIST). Contribute to awareness activities. Supporting the management of Risk. Supporting the daily maintenance activities and response where necessary. Policies, Awareness … and Risk across the business Experience Required - Previous knowledge and responsibility for ISO 27001. Good knowledge of Cyber Essentials (NIST an advantage). Data Protection or similar compliance qualification. Understanding of Risk Management methodologies. Experience of creating and managing an ISMS. Demonstrable knowledge of Policy production, management and promulgation. This is a great chance to join a global company that More ❯