126 to 148 of 148 NIST Jobs in London

Proven experience in Information Security risk management Hands-on experience owning and running risk processes end-to-end Strong knowledge of frameworks (ISO 27005, NIST CSF, NIST 800-53) Understanding of GDPR and emerging AI risk considerations Ability to present to and challenge senior leadership (ExCo level) Strong analytical and ...

risk trends, control effectiveness, and emerging threats, providing insights to senior stakeholders Support compliance programmes, ensuring adherence to regulatory and industry standards (e.g. ISO27001, NIST CSF) Coordinate internal and external audits, including evidence gathering and action tracking Contribute to governance policies, standards, and procedures development and review Produce clear governance … Analyst: 4–5 years’ experience in governance, risk, or compliance roles within regulated or critical environments Strong understanding of frameworks such as ISO27001 and NIST CSF Experience supporting audits, compliance reporting, and evidence management Ability to interpret regulatory requirements into practical controls and processes Excellent communication and stakeholder engagement skills ...

and reference designs that engineering teams can implement. Enhance governance and compliance by aligning solutions and controls to various frameworks and standards such as NIST 800, ISO 27001 and NIS2. Support client workshops, design reviews and technical discussions. Contribute to internal knowledge sharing, reusable assets and capability development within … of: Network and cloud fundamentals Identity and access management concepts Secure system design principles Working knowledge of any cybersecurity framework or standard such as NIST or ISO 27001. Experience using architecture and design tools. Willingness to travel for client delivery (domestic and international as required). Ideally, You’ll Also ...

with clients, delivery teams, and senior stakeholders to embed security into solution design Standards & Compliance - Ensure adherence to industry standards such as ISO 27001, NIST, and government security policies Skills and Experience: Experience working as a Security Architect or in a senior security role within complex environments Strong practical experience … experience conducting threat modelling (e.g. STRIDE, attack trees) and risk analysis Strong understanding of security frameworks and best practice such as ISO 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure/NCSC CAF, HMG Security Policy Framework. ...

exception management, ensuring alignment to business objectives and regulatory expectations. Establish and maintain a risk‐based control environment aligned to recognized frameworks such as NIST CSF, ISO 27001 and other applicable regulatory requirements. Direct enterprise cyber risk assessments, risk treatment planning, control testing and issue remediation tracking. Oversee internal and … stakeholder groups. Proven experience leading cybersecurity governance, risk and compliance programs in a complex enterprise environment. Strong knowledge of cybersecurity and control frameworks, including NIST CSF 2.0, ISO 27001, SOC 2 and relevant regulatory expectations. Demonstrated experience with cyber risk assessments, policy governance, control assurance, audit management and issue remediation. ...

security audit, the organisation is now focused on implementing a series of security recommendations as part of a wider security improvement programme aligned to NIST and ISO27001 frameworks. This role will be instrumental in delivering those improvements and helping shape the future security architecture and governance standards across the business. … Sentinel Microsoft Purview Strong understanding of cloud security best practices and security frameworks Experience implementing security controls following audits or gap assessments Knowledge of NIST and/or ISO27001 Experience with: Conditional Access, Identity & Access Management (IAM), Privileged Access, Management (PAM), SIEM, monitoring, Endpoint security Key Responsibilities of the Cloud ...

with senior decision-makers A robust understanding of modern cyber threats and the application of recognised security standards and best-practice controls - ISO 27001, NIST CSF, CIS Controls, GDPR etc Hands-on exposure to risks arising from cloud adoption, digital platforms and the protection of identities and sensitive data Awareness … better way for us to communicate, please do let us know. Security, Cyber, Risk, Compliance, Governance, Advisory, Consulting, Consultant, Roadmaps, Incidents, 27001, NIST CSF, PCI DSS, GDPR, SOC2, CIS, CISSP, CISM, Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus ...

frameworks such as GovAssure, JSP 604 and support the client in securing Authority to Operate status. Implement and manage security risk processes such as NIST RMF, producing assurance and risk artefacts, and embedding a culture of continuous risk management. Collaborate with clients to understand their security needs, provide solution advice … trusted advisor, and shape solutions that embed Secure by Design principles from inception. Lead security maturity assessments against ISO 27001, NIST CSF, DevSecOps practices and deliver remediation roadmaps to uplift client cyber resilience and support external audit requirements. Job Benefits We are always listening to our growing teams and evolving ...

cloud environments. Utilise expertise in IAM, cryptography, secure development, information management, and cloud security to strengthen security posture and support compliance with ISO 27001, NIST, and PCI DSS. What you'll do: Design secure solutions across applications, networks, and cloud environments, ensuring security standards and controls are built into delivery. … understanding of key security domains including IAM, network security, cryptography, endpoint security, and information management. Familiarity with security frameworks and standards including ISO 27001, NIST, PCI DSS, COBIT, and OWASP. Relevant certifications such as CISSP, CISM, CCSP, CEH, or OSCP are advantageous. Experience working within public and/or private ...

programme end-to-end, driving Type I readiness and laying the operational foundations for Type II. Crucially, the environment needs to be architected against NIST SP 800-53 from day one, so the controls implemented now can later support frameworks such as FedRAMP, TX-RAMP and broader US public-sector … Lead Vanta implementation, continuous monitoring and audit preparation Select and manage the external auditor relationship Build a reusable control framework mapped across SOC 2, NIST 800-53, HIPAA, GDPR and ISO 13485 Mature engineering governance around secure SDLC, CI/CD, IaC, change management and release controls Strengthen identity and ...

Privacy Manager/Senior Manager - Cyber Strategy & Transformation Overview Data privacy is a critical business priority and a key enabler for organisations seeking to grow in increasingly data-driven environments. This role focuses on shaping ...

Senior Cyber Security Engineer Glasgow or London | Hybrid | 12-Month Fixed-Term Contract Competitive Salary + Benefits| No Sponsorship Available VIQU have partnered with an established professional services organisation undergoing a significant cloud transformation programme. ...

Managing relationships with third-party security providers and ensuring recommendations are delivered effectively Supporting compliance initiatives across standards including ISO 27001, SOC 2 and NIST Acting as an escalation point for significant security incidents when required Driving security awareness and embedding best practice across the wider organisation Supporting alignment of … scripting or automation experience using Python, Bash or similar tools Experience supporting audits, certifications and compliance frameworks including ISO 27001, SOC 2 and NIST Knowledge of security methodologies such as MITRE ATT&CK Excellent communication and stakeholder management skills Experience operating within high-growth or evolving organisations French language skills ...

cybersecurity consultancy services across SME client environments Conduct risk assessments, gap analyses, and vulnerability assessments Provide strategic recommendations aligned to frameworks such as ISO27001, NIST, CIS, and Cyber Essentials Lead and manage multiple client engagements simultaneously Act as a trusted advisor to stakeholders, including senior leadership and C-level contacts … management and client engagement skills Experience supporting pre-sales activities and working alongside commercial/sales teams Strong understanding of cybersecurity frameworks including ISO27001, NIST, CIS, and Cyber Essentials Experience conducting security assessments, governance reviews, and remediation planning Excellent communication skills with the ability to explain complex concepts to technical ...

Governance Define and execute the enterprise-wide AI & Intelligent Automation strategy Establish frameworks for Responsible AI, ethics, and model governance (e.g. EU AI Act, NIST AI RMF) Act as executive sponsor for AI architecture, operating model, and adoption roadmap AI & GenAI Ecosystem Lead the design and deployment of scalable … Power BI, Looker) Enable predictive modelling and optimisation using modern ML toolkits Security, Compliance & Responsible AI Ensure alignment with enterprise security standards (SOC2, ISO27001, NIST) Champion explainability, bias mitigation, and ethical AI practices Leadership & Talent Build and lead high-performing global teams across AI, data, and automation Foster a culture ...

clients. Role Tasks and Responsibilities Managing and delivering client projects Delivering projects (e.g., conducting asset identification exercises, cyber risk assessments against ISO and NIST CSF 2.0 standards, and demonstrating cyber audit expertise). Managing different types of client meetings and maintaining positive and respectful client relationships. Line management and upskilling … delivering cyber security risk assessments within an established global consultancy. Proven experience in delivering risk assessments for several different clients against industry standards (NIST CSF, 800‐53 and ISO27001). An excellent knowledge of IT and network infrastructure, alongside cyber security best practices for securing networks. The ability to explain ...

modelling frameworks such as MITRE ATT and CK, DEF3ND, or EMB3D Awareness of industrial control systems or operational technology environments Working knowledge of the NIST Cyber Security Framework To Be Considered Please either apply through this advert or email me directly via . For further information please call … required skills, your application to our client in conjunction with this vacancy only. Key Skills Product Cyber Security Specialist, Cyber Risk Management, Threat Modelling, NIST CSF, Industrial Control Systems, Secure by Design, Defence ...

Security Architect London (Hybrid) Position Permanent role Languages Python Bash Tech Stack Cyber Security Bash Python ISO27001 Azure NIST Cyber Essentials ISO27001 SOC 2 Azure Sentinel IAM SOAR SIEM Security Standards NIST Cyber Essentials Plus NCSC Security Guidelines ISO... Compensation Competitive Role type Full time Visa sponsorship Not provided Company ...

Execute vendor security assessments by collecting, analysing, and documenting supplier control evidence, audit reports, and risk findings against defined frameworks including ISO 27001 and NIST CSF. Identify and document third-party security risks, recommending proportionate risk treatment options aligned to JET's risk appetite. Support threat modelling, secure design reviews … security risk assessments and vendor reviews end-to-end, including evidence collection, gap analysis, and documented findings. Working knowledge of security frameworks such as NIST CSF, ISO 27001, or CIS Controls applied in a product or engineering context. Ability to communicate security risk clearly to both technical and non-technical ...

Execute vendor security assessments by collecting, analysing, and documenting supplier control evidence, audit reports, and risk findings against defined frameworks including ISO 27001 and NIST CSF. Identify and document third-party security risks, recommending proportionate risk treatment options aligned to JET's risk appetite. Support threat modelling, secure design reviews … security risk assessments and vendor reviews end-to-end, including evidence collection, gap analysis, and documented findings. Working knowledge of security frameworks such as NIST CSF, ISO 27001, or CIS Controls applied in a product or engineering context. Ability to communicate security risk clearly to both technical and non-technical ...

Execute vendor security assessments by collecting, analysing, and documenting supplier control evidence, audit reports, and risk findings against defined frameworks including ISO 27001 and NIST CSF. Identify and document third-party security risks, recommending proportionate risk treatment options aligned to JET's risk appetite. Support threat modelling, secure design reviews … security risk assessments and vendor reviews end-to-end, including evidence collection, gap analysis, and documented findings. Working knowledge of security frameworks such as NIST CSF, ISO 27001, or CIS Controls applied in a product or engineering context. Ability to communicate security risk clearly to both technical and non-technical ...

Qodea is seeking a Senior Security Consultant to lead and deliver cybersecurity and governance consulting engagements across public and private sectors in Greater London. This role requires experience in GRC, risk management, and cybersecurity frameworks ...

evolving AI regulations and AI risk frameworks, with ability to translate them into practical governance, controls, and operating model requirements (e.g., EU AI Act, NIST AI RMF; familiarity with NIST/ISO is beneficial). Experience in a regulated environment is preferred (including roles within major cloud/service providers ...