12 of 12 Contract NIST Jobs in the North West

Active, current Developed Vetting (DV) clearance Proven background in OT architecture within a defence, CNI, or regulated industrial environment Strong familiarity with IEC 62443, NIST SP 800-82, and/or equivalent OT security frameworks Experience with SCADA, ICS, PLC, or embedded/real-time systems architecture Solid understanding of ...

Docker/Kubernetes), and serverless design patterns. Expertise in integration patterns (REST, GraphQL, Event Driven Architecture, messaging queues). Knowledge of security frameworks (ISO27001, NIST, Zero Trust), identity management (OAuth, SSO, Azure AD). Familiarity with CI/CD pipelines, DevOps toolchains, infrastructure as code, and environment strategy. Ability ...

etc.). Experience with Microsoft Graph, automation (PowerShell), or deployment pipelines. Familiarity with tenant security hardening frameworks (CIS, NIST, Zero Trust). What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call ...

modelling, risk assessments, and architectural reviews. Guide engineering teams on hardening patterns, remediation activities, and secure deployment practices. Ensure alignment with compliance standards (ISO, NIST, CIS benchmarks). Technical Components: Expertise with Azure AD/Entra, Defender suite, Sentinel, NSGs/ASGs, WAF, Azure Firewall, Key Vault, and managed identities. ...

modelling, risk assessments, and architectural reviews. Guide engineering teams on hardening patterns, remediation activities, and secure deployment practices. Ensure alignment with compliance standards (ISO, NIST, CIS benchmarks). Technical Components: Expertise with Azure AD/Entra, Defender suite, Sentinel, NSGs/ASGs, WAF, Azure Firewall, Key Vault, and managed identities. ...

and ransomware containment strategies. Experience with cloud-native resilience (availability zones, DR strategy, replicated storage, service failover). Familiarity with compliance frameworks such as NIST CSF, NCSC CAF, ISO27035 All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only ...

assure non-functional requirements (availability, scalability, performance, security, operability) Maintain architecture diagrams, security workflows, threat models, and integration contracts aligned with governance standards (e.g. NIST, ISO 27001) 3. Engineering Quality, Automation & DevSecOps Make automation the default through security-as-code, GitOps, and CI/CD practices Lead code reviews ...

maintain traceability and prove value delivered by remediation. Responsibilities Requirements & analysis: elicit and document user journeys, process maps and control requirements; maintain traceability to NIST CSF categories and regulatory obligations. Story writing and acceptance: write clear user stories with measurable acceptance criteria; orchestrate UAT and evidence packs. Service process alignment ...

traceable, measurable, and aligned to risk reduction outcomes. Responsibilities include: * Elicit and document user journeys, process maps, and control requirements * Maintain traceability to NIST CSF categories and regulatory obligations * Write clear user stories with measurable acceptance criteria * Lead UAT coordination and evidence pack preparation * Map as-is/ ...

security workflow specifications (e.g., threat models, security control frameworks, policy decision flows), security architecture diagrams, and governance framework documentation aligned with industry standards (NIST, ISO 27001, CIS Controls). Desired Knowledge - Knowledge of DevSecOps tooling, GitOps for security-as-code, CI/CD pipelines for security policy deployment, Infrastructure … SASE), zero trust network access platforms, security posture management, and cloud IAM integration. Compliance and Regulatory Controls - Strong knowledge of security frameworks and standards (NIST Cybersecurity Framework, ISO 27001/27002, PCI-DSS, SOC 2) and experience designing and implementing solutions using commercial and open-source security tools for lifecycle ...

driven access control. Knowledge of segmentation strategies, firewall technologies, threat intelligence integration, and security policy modelling. Familiarity with governance frameworks and standards such as NIST, ISO 27001, and CIS Controls . Desirable Skills & Experience DevSecOps & Cloud Security Experience with security-as-code, GitOps, CI/CD security pipelines, and Infrastructure … security platforms (CASB, SASE, ZTNA platforms, cloud firewalls, IAM integration, security posture management). Compliance & Risk Knowledge of security and compliance frameworks such as NIST CSF, ISO 27001/27002, PCI-DSS, SOC 2 . Understanding of ITIL, risk management frameworks, and enterprise security governance processes. Agile Delivery Experience working ...

across the full system lifecycle, ensuring compliance with JSP 440 (Leaflet 5C), JSP 453 and alignment to the National Institute of Standards and Technology (NIST) RMF and CSF frameworks. Key Responsibilities Lead continuous risk management within agreed risk appetite. Develop and maintain security artefacts (SMP, SAL, Risk Assessments, IR & Vulnerability … and audit remediation. Engage senior stakeholders and translate cyber risk into business impact. Essential Experience Proven cyber security risk or governance background. Strong knowledge of NIST RMF/CSF and MOD policy (JSP 440 & 453). Experience delivering risk assessments, health checks and remediation. Stakeholder management within MOD or Government ...