101 to 125 of 146 NIST Jobs in London

similar lockdown tools. Experience working with high-security MOD systems and secure design principles. Familiarity with security and compliance documentation (e.g. RMADS, SyOPs, NIST frameworks). Core Technologies Microsoft: Windows Server 2019/2022/2025 Active Directory, Group Policy, DNS, DHCP Exchange Server 2019, SQL Server, SharePoint 2019 VMware ...

DORA. Solid grasp of Foundation Models (FMs), RAG, and the risks of non-deterministic agentic behavior. Mastery of OWASP LLM Top 10 and the NIST AI Risk Management Framework. Hands-on experience securing AWS Bedrock and governing the full AI model lifecycle. Ability to translate 'AI Red Teaming' outcomes into ...

DORA. Solid grasp of Foundation Models (FMs), RAG, and the risks of non-deterministic agentic behavior. Mastery of OWASP LLM Top 10 and the NIST AI Risk Management Framework. Hands-on experience securing AWS Bedrock and governing the full AI model lifecycle. Ability to translate "AI Red Teaming" outcomes into ...

and risk appetite. Lead the development and maintenance of Information Security policies, standards, and controls, ensuring alignment with frameworks such as ISO27001, SOC2, and NIST CSF. Lead compliance efforts across GDPR, PCI DSS, and other applicable regulations. Embed secure‐by‐design principles and DevSecOps practices across engineering and delivery teams. … team. Qualifications Security certifications such as CISSP, CISM, or equivalent. A strong working knowledge of cyber and information security standards such as ISO 27001, NIST, CIS, PCI DSS, and GDPR. Experience leading cyber assurance or risk programmes at a strategic level. Strong technical grounding across key security domains: network, cloud ...

security strategies, frameworks, and best practices Conduct security risk assessments, gap analyses, and audits Support clients in achieving and maintaining compliance (e.g. ISO 27001, NIST, GDPR) Develop and review security policies, procedures, and documentation Perform vulnerability assessments and coordinate remediation efforts Deliver threat modelling workshops and support secure solution design … security into business processes Required Skills & Experience Proven experience in an Information Security Consultant or similar role Strong understanding of security frameworks (ISO 27001, NIST, CIS Controls) Experience conducting threat modelling exercises and risk-based security assessments Knowledge of AI security principles, AI governance, or securing AI-enabled solutions Knowledge ...

management. AI/ML Depth: Strong grasp of FMs, RAG, tool-use, and the failure modes of agentic workflows. Security & Compliance: Deep knowledge of NIST AI RMF, OWASP LLM Top 10, and UK/EU financial regulations (FCA/DORA). Testing Automation: Proven ability to build measurement frameworks ...

management. AI/ML Depth: Strong grasp of FMs, RAG, tool-use, and the failure modes of agentic workflows. Security & Compliance: Deep knowledge of NIST AI RMF, OWASP LLM Top 10, and UK/EU financial regulations (FCA/DORA). Testing Automation: Proven ability to build measurement frameworks ...

architectures. Responsibilities include designing secure solutions, conducting risk analysis, and supporting governance compliance. Candidates need demonstrable experience in cybersecurity and knowledge of frameworks like NIST or ISO 27001. This role offers competitive remuneration and the opportunity to work in a dynamic team focused on growth and innovation. #J-18808-Ljbffr ...

Greater London is hiring a Contract Cloud Security Consultant to support their Cyber Transformation Programme. The role involves ensuring security alignment with standards like NIST CSF 2.0, leading threat modelling and risk assessments, and promoting best security practices within a matrixed environment. Ideal candidates will have deep knowledge in DevSecOps ...

deterministic agents, and complex tool-use. Secure AI: Expert-level knowledge of OWASP LLM Top 10 and Agentic AI threats . Familiarity with NIST AI RMF is a massive plus! Your Mission: Identity & Access Specialist As our Identity Lead, you'll be the gatekeeper for our autonomous agents. You will ...

/ML Core: Mastery of FMs, RAG, tool-use, and non-deterministic agent logic. Security Frameworks: Proficiency in OWASP LLM Top 10 and NIST AI RMF . Role 1: Identity Expert Mission: Secure the "Human-to-Agent" and "Agent-to-Resource" identity chain. Key Tasks: Lead SPIFFE/SPIRE rollouts ...

energised by that Useful but not essential Experience in AI, governance, compliance, or RegTech Awareness of the EU AI Act, FCA guidance, NIST, MIT, ISO 42001, Agent Security or similar frameworks Why join AI controls are shifting from a nice-to-have immature standard to a core regulatory and business ...

management. AI/ML Depth: Strong grasp of FMs, RAG, tool-use, and the failure modes of agentic workflows. Security & Compliance: Deep knowledge of NIST AI RMF, OWASP LLM Top 10, and UK/EU financial regulations (FCA/DORA). Testing Automation: Proven ability to build measurement frameworks ...

management. AI/ML Depth: Strong grasp of FMs, RAG, tool-use, and the failure modes of agentic workflows. Security & Compliance: Deep knowledge of NIST AI RMF, OWASP LLM Top 10, and UK/EU financial regulations (FCA/DORA). Testing Automation: Proven ability to build measurement frameworks ...

cloud provider's data and ML tooling stack well enough to know where common gaps appear. Some exposure to EU AI Act, GDPR, or NIST AI RMF is useful but not essential at Baseline. Governance and policy - you may have written operational policies and procedures that actually got used ...

AISPM Platforms Exposure to Financial Services Regulatory Environments (eg DORA, FCA/PRA, MAS, JFSA, EU AI Act) Knowledge of Secure Development Frameworks (e.g. NIST SSDF, SABSA) Experience with AI Red-Teaming & Adversarial Testing Evidence of External Thought Leadership in AppSec or AI Security Why This Role is Exciting!! Build ...

basics Experience with: Third-party risk/supplier assurance Policy management Risk and compliance processes Understanding of frameworks such as: ISO 27001/NIST/CIS (basic awareness is fine) Comfortable working in a delivery-focused, directive environment Someone practical, reliable and detail oriented Reasonable Adjustments: Respect and equality ...

Guardrails, Agents, and Knowledge Bases (RAG) . AI Security & Fundamentals: Solid understanding of Foundation Models, tool use (function calling), OWASP LLM Top 10 , and NIST AI RMF . Automation Stack: Strong Python development skills, experience with AI eval tools (Garak, Pyrit, Ragas), and building complex CI/CD test pipelines. ...

Guardrails, Agents, and Knowledge Bases (RAG) . AI Security & Fundamentals: Solid understanding of Foundation Models, tool use (function calling), OWASP LLM Top 10 , and NIST AI RMF . Automation Stack: Strong Python development skills, experience with AI eval tools (Garak, Pyrit, Ragas), and building complex CI/CD test pipelines. ...

with clients, delivery teams, and senior stakeholders to embed security into solution design Standards & Compliance - Ensure adherence to industry standards such as ISO 27001, NIST, and government security policies Skills and Experience: Experience working as a Security Architect or in a senior security role within complex environments Strong practical experience … experience conducting threat modelling (e.g. STRIDE, attack trees) and risk analysis Strong understanding of security frameworks and best practice such as ISO 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure/NCSC CAF, HMG Security Policy Framework. ...

guidance to ensure security risks are understood, managed and remediated in line with organisational risk appetite and recognised best practice frameworks (e.g. ISO 27001, NIST, CIS Controls). Key Responsibilities Deliver security risk identification, assessment, analysis and logging activities, ensuring risks are clearly articulated, consistently scored and recorded in approved … evidence. Excellent written and verbal communication skills. Ability to work collaboratively within a multidisciplinary team. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls). Attention to detail and commitment to producing high‐quality documentation. Inclusive Hiring We understand that one size doesn’t fit all. ...

operating FIM, DLP, and UBA controls, including triage, investigation, and policy refinement. Conducting risk assessments and shaping robust security policies aligned to ISO 27001, NIST and PCI-DSS. Monitoring security systems and responding to incidents across DLP, FIM, Email Security and Web Security. Identifying vulnerabilities and enhancing the organisation … environments. Hands-on experience with FIM, DLP, and User Behaviour Analytics as core responsibilities. Solid understanding of risk management and security frameworks (ISO 27001, NIST, PCI-DSS). Experience with enterprise security tooling - Qualys, Splunk, Forcepoint preferred (others considered). Strong analytical and problem-solving skills with the ability ...

expertise across Windows infrastructure technologies Solid understanding of virtualisation (VMware stack) Experience working in secure or MOD environments Knowledge of compliance frameworks such as NIST, RMADS, SyOPs A proactive, problem-solving mindset with strong ownership Why Join? Work on high-impact, secure government projects Be part of a collaborative and ...

scoping, risk treatment, Statement of Applicability, internal audits, management review and external audit defence. Apply additional frameworks where they strengthen the group’s posture — NIST CSF, CIS Controls, NCSC Cyber Assessment Framework — and embed them into operational practice. Act as the group’s Data Protection Lead (not a statutory … wider stack — Salesforce, SimPRO, Unleashed, Supabase, Cloudflare, Microsoft Fabric. Hands‐on experience with KnowBe4 (or equivalent security awareness and phishing simulation platforms). NIST CSF, CIS Controls or NCSC CAF practical experience. Benefits This is a chance to own cyber security and data protection end-to-end for a three ...

Proven experience in Information Security risk management Hands-on experience owning and running risk processes end-to-end Strong knowledge of frameworks (ISO 27005, NIST CSF, NIST 800-53) Understanding of GDPR and emerging AI risk considerations Ability to present to and challenge senior leadership (ExCo level) Strong analytical and ...