14 of 14 Contract NIST Jobs in the North of England

role focuses on aligning platforms to security frameworks and managing vulnerability lifecycles across hybrid and cloud environments. Key Skills Required Security Controls Framework mapping (NIST, ISO 27001, NHS DSP Toolkit, NCSC CAF) Strong exposure to vulnerability risk management across hybrid and cloud estates (AWS, Azure) Governance oversight of vulnerability burn ...

Familiarity with common vulnerabilities and exploits affecting older systems (legacy OS, unsupported software) is beneficial. Knowledge of cyber risk frameworks and standards (such as NIST, ISO27001) and basic concepts of risk assessment is expectedxxiv. Qualifications & Certifications: Education: Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field. ...

financial services or other regulated industries Ability to produce high-quality architectural documentation Confidence engaging with senior stakeholders and regulatory bodies Familiarity with NIST, SANS, ITU frameworks Experience in threat modelling, risk assessment, and audit engagement Technical areas you'll influence: Application security & secure SDLC Network/app segmentation & micro ...

Active, current Developed Vetting (DV) clearance Proven background in OT architecture within a defence, CNI, or regulated industrial environment Strong familiarity with IEC 62443, NIST SP 800-82, and/or equivalent OT security frameworks Experience with SCADA, ICS, PLC, or embedded/real-time systems architecture Solid understanding of ...

etc.). Experience with Microsoft Graph, automation (PowerShell), or deployment pipelines. Familiarity with tenant security hardening frameworks (CIS, NIST, Zero Trust). What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call ...

eg. endpoint, network, cryptography and IAM. The nice to haves: • Awareness of industry related security standards such as ISO 27000 series, PCI DSS, COBIT, NIST, OWASP. • Certifications in security management eg. CISSP/CISM/CCSP or equivalent. • Certifications in technical security domains eg. CEH/OSCP or equivalent. • Experience ...

assure non-functional requirements (availability, scalability, performance, security, operability) Maintain architecture diagrams, security workflows, threat models, and integration contracts aligned with governance standards (e.g. NIST, ISO 27001) 3. Engineering Quality, Automation & DevSecOps Make automation the default through security-as-code, GitOps, and CI/CD practices Lead code reviews ...

Familiarity with common vulnerabilities and exploits affecting older systems (Legacy OS, unsupported software) is beneficial. Knowledge of cyber risk frameworks and standards (such as NIST, ISO27001) and basic concepts of risk assessment is expectedxxiv. Technical Proficiency: Ability to work with various technology inventories and tools. Comfort with spreadsheets, databases ...

profiling, and TrustSec policies. Implement configuration management using Ansible , Terraform, and/or Cisco NSO. Ensure adherence to industrial cybersecurity standards: IEC 62443, NIST SP 800-82, NIS2 . Monitor and troubleshoot network issues across Layers 2–7 and SCADA/ICS environments (Ignition, Wonderware, Siemens TIA Portal, Rockwell FactoryTalk ...

maintain traceability and prove value delivered by remediation. Responsibilities Requirements & analysis: elicit and document user journeys, process maps and control requirements; maintain traceability to NIST CSF categories and regulatory obligations. Story writing and acceptance: write clear user stories with measurable acceptance criteria; orchestrate UAT and evidence packs. Service process alignment ...

traceable, measurable, and aligned to risk reduction outcomes. Responsibilities include: * Elicit and document user journeys, process maps, and control requirements * Maintain traceability to NIST CSF categories and regulatory obligations * Write clear user stories with measurable acceptance criteria * Lead UAT coordination and evidence pack preparation * Map as-is/ ...

security workflow specifications (e.g., threat models, security control frameworks, policy decision flows), security architecture diagrams, and governance framework documentation aligned with industry standards (NIST, ISO 27001, CIS Controls). Desired Knowledge - Knowledge of DevSecOps tooling, GitOps for security-as-code, CI/CD pipelines for security policy deployment, Infrastructure … SASE), zero trust network access platforms, security posture management, and cloud IAM integration. Compliance and Regulatory Controls - Strong knowledge of security frameworks and standards (NIST Cybersecurity Framework, ISO 27001/27002, PCI-DSS, SOC 2) and experience designing and implementing solutions using commercial and open-source security tools for lifecycle ...

driven access control. Knowledge of segmentation strategies, firewall technologies, threat intelligence integration, and security policy modelling. Familiarity with governance frameworks and standards such as NIST, ISO 27001, and CIS Controls . Desirable Skills & Experience DevSecOps & Cloud Security Experience with security-as-code, GitOps, CI/CD security pipelines, and Infrastructure … security platforms (CASB, SASE, ZTNA platforms, cloud firewalls, IAM integration, security posture management). Compliance & Risk Knowledge of security and compliance frameworks such as NIST CSF, ISO 27001/27002, PCI-DSS, SOC 2 . Understanding of ITIL, risk management frameworks, and enterprise security governance processes. Agile Delivery Experience working ...

across the full system lifecycle, ensuring compliance with JSP 440 (Leaflet 5C), JSP 453 and alignment to the National Institute of Standards and Technology (NIST) RMF and CSF frameworks. Key Responsibilities Lead continuous risk management within agreed risk appetite. Develop and maintain security artefacts (SMP, SAL, Risk Assessments, IR & Vulnerability … and audit remediation. Engage senior stakeholders and translate cyber risk into business impact. Essential Experience Proven cyber security risk or governance background. Strong knowledge of NIST RMF/CSF and MOD policy (JSP 440 & 453). Experience delivering risk assessments, health checks and remediation. Stakeholder management within MOD or Government ...