25 of 25 NIST Jobs in the City of London

ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP, CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with More ❯

ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP, CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with More ❯

background in Security Risk and Governance with hands-on experience in Archer (experience with other GRC tools is also valuable). Solid understanding of risk assessment methodologies, security frameworks (NIST, ISO (phone number removed , and compliance requirements (GDPR, PCI DSS, SOX). Strong written communication skills, able to produce clear technical reports and risk documentation. Excellent stakeholder management, able to More ❯

processes. Promote a positive and proactive cyber security culture. About You: Strong advisory background in cyber security within complex enterprise environments. Knowledge of frameworks and standards such as ISO27001, NIST, NIS Regulations. Understanding of infrastructure, networks, applications and cloud security principles. Excellent communicator with proven stakeholder management experience. Passionate about innovation, problem solving and continuous improvement. Qualifications & Experience: Degree (or More ❯

fast-paced, client-facing environments. What We’re Looking For 5+ years in cyber strategy, transformation, risk management, or cyber maturity assessments. Knowledge of industry standards and regulations (e.g. NIST CSF, ISO27001, GDPR, NIS2). Strong consulting skills — stakeholder management, project delivery, and team leadership. Relevant certifications (CISSP, CISM, CISA, MSc Cyber Security, or equivalent) are desirable. Excellent communication skills More ❯

fast-paced, client-facing environments. What We’re Looking For 5+ years in cyber strategy, transformation, risk management, or cyber maturity assessments. Knowledge of industry standards and regulations (e.g. NIST CSF, ISO27001, GDPR, NIS2). Strong consulting skills — stakeholder management, project delivery, and team leadership. Relevant certifications (CISSP, CISM, CISA, MSc Cyber Security, or equivalent) are desirable. Excellent communication skills More ❯

preferred). Strong knowledge of log parsing, SIEM query languages (KQL, SPL, AQL), and automation with Python/PowerShell. Deep understanding of incident response, threat detection, and frameworks (MITRE, NIST, CIS). Knowledge of vulnerability scanning, penetration testing, and network traffic analysis. Familiarity with ITIL processes (Incident, Problem, Change). Excellent stakeholder communication, with the ability to mentor and lead More ❯

this position must have: Hands-on experience with disaster recovery, failover testing, and operational resilience in IT infrastructure. Solid understanding of business continuity and security frameworks (e.g. ISO27001, ISO23001 NIST) and how to evidence controls. Experience producing and maintaining high-quality technical documentation and runbooks. Strong coordination skills with cross-functional teams. Proficiency with infrastructure tooling and at least one More ❯

this position must have: Hands-on experience with disaster recovery, failover testing, and operational resilience in IT infrastructure. Solid understanding of business continuity and security frameworks (e.g. ISO27001, ISO23001 NIST) and how to evidence controls. Experience producing and maintaining high-quality technical documentation and runbooks. Strong coordination skills with cross-functional teams. Proficiency with infrastructure tooling and at least one More ❯

Manage programmes that align cyber initiatives with broader business goals and digital transformation. Skills & Experience: Solid experience in cyber strategy, risk, maturity, transformation, and knowledge of standards such as NIST, ISO27001, GDPR, and NIS2 expected of a Strategy and Transformation Specialist. Relevant certifications like CISSP, CISM, CISA, M.Inst.ISP, or MSc-level education in cyber security or related fields. Demonstrated ability More ❯

Strong understanding of mail filtering technologies • Strong understanding of Cloud infrastructure technologies, including encryption • Demonstrable experience of working with Microsoft Sentinel, Defender and Purview • Excellent understanding of security frameworks (NIST and Cyber Essentials) • Ability to lead and manage third party providers • Strong understanding of incident response processes and methodologies including leading and managing incidents • Lead on root cause analysis, providing More ❯

systems. * Experience with firewalls, intrusion detection systems, antivirus software, authentication systems, content filtering, and log management. * Experience with network security and networking technologies. * Knowledge of security frameworks and certifications - NIST, ISO27001, Cyber Essentials etc * Tech stack experience: Extreme Networks Switches & Wireless, Silver Peak Aruba SD-WAN, Check Point firewalls, NetScaler load balancers, Tenable Nessus vulnerability scanner, Rapid7 SIEM, Forcepoint Stonesoft More ❯

deliver the strategic roadmap for global Cyber GRC. Lead and develop a high-performing team across multiple regions. Oversee risk management, assurance, and compliance aligned with frameworks such as NIST, ISO27001 and CIS. Drive third-party and M&A cyber risk management. Deliver clear, data-driven insights and dashboards for senior stakeholders. Champion a strong security culture and continuous improvement More ❯

deliver the strategic roadmap for global Cyber GRC. Lead and develop a high-performing team across multiple regions. Oversee risk management, assurance, and compliance aligned with frameworks such as NIST, ISO27001 and CIS. Drive third-party and M&A cyber risk management. Deliver clear, data-driven insights and dashboards for senior stakeholders. Champion a strong security culture and continuous improvement More ❯

of the role you must be eligible for SC Clearance. Desirable Requirements: Experience in a Cyber Security environment Understanding of the NCSC Cyber Assurance Framework (CAF) Understanding of the NIST Cyber Security Framework (CSF) and mapping to CAF About us: At Peregrine, we see beyond the immediate and look to the horizon. We build lasting, meaningful partnerships with our clients More ❯

meet information and data privacy objectives What we’re looking for: At least 3 years’ experience with ISO27001 certification Solid understanding of information security and data privacy frameworks (ISO27001, NIST, ISO27701) Experience in risk management processes Strong organisational and documentation skills, with the ability to manage multiple projects Clear communicator, able to collaborate across stakeholders and build strong working relationships More ❯

tools such as Illumio or Guardicore Desirable Experience with legacy infrastructure and operational technology (OT) Understanding of asset management and BAU handover processes Awareness of Zero Trust principles and NIST frameworks Exposure to cloud networking (Azure, AWS, GCP) If this is of interest, please apply with your latest CV and I’ll be in touch. More ❯

strategy development. Experienced Required 10+ years of experience in IT Risk, Internal/External Audit, or Risk Management (preferably within insurance). Strong understanding of industry frameworks such as NIST, ISO 27001, COBIT, or COSO. Proven ability to work independently while managing senior-level stakeholder relationships. Demonstrable experience with global regulatory environments (e.g., PRA/FCA, BMA, CBI). Strong More ❯

strategy development. Experienced Required 10+ years of experience in IT Risk, Internal/External Audit, or Risk Management (preferably within insurance). Strong understanding of industry frameworks such as NIST, ISO 27001, COBIT, or COSO. Proven ability to work independently while managing senior-level stakeholder relationships. Demonstrable experience with global regulatory environments (e.g., PRA/FCA, BMA, CBI). Strong More ❯

In depth knowledge of third-party regulations across UK and EU such as ECB's EBA, DORA and related standards Information and Cyber Security Frameworks and industry Standards (e.g., NIST/ISO 27001/COBIT/ITIL) Experience creating and delivering presentations and concise writing skills to produce clear documentation (security policy, senior management posture reports) Excellent inter-personal communication More ❯

Expertise * Strong understanding of cyber security principles and risk management. * Hands-on experience with cloud security, particularly Azure services and tools. * Familiarity with security frameworks such as ISO 27001, NIST, or CIS. * Knowledge of security technologies (firewalls, remote access, ZTNA). * Exposure to threat modelling and cyber threat intelligence is advantageous. Core Skills * Excellent communication and stakeholder engagement abilities. * Analytical … treated in the strictest confidence and we would always speak to you before discussing your CV with any potential employer. Keywords: Cyber Security, Azure Security, Cloud Security, ISO 27001, NIST, CIS, ZTNA, Threat Modelling, CISSP, CISM, CEH, Risk Management, Security Consultant, Information Security More ❯

ahead of the evolving threat landscape What we’re looking for Strong understanding of risk, and how security interacts with different platforms and projects. Experience with frameworks like ISO, NIST, CIS, PCI, OWASP, OSINT Technical know-how (cloud, apps, networks, or systems) Excellent communicator who can bridge the gap between tech and business Why join us? Salary up to More ❯

ahead of the evolving threat landscape What we’re looking for Strong understanding of risk, and how security interacts with different platforms and projects. Experience with frameworks like ISO, NIST, CIS, PCI, OWASP, OSINT Technical know-how (cloud, apps, networks, or systems) Excellent communicator who can bridge the gap between tech and business Why join us? Salary up to More ❯

skills to inspire others. You should have: A track record of consulting and delivering a wide range of cyber engagements — both GRC and technical. Strong understanding of frameworks like NIST, ISO 27001, CIS, and a pragmatic view on applying them. Familiarity with technical tooling for assessments, vulnerability analysis, and cloud reviews (you don’t need to be an engineer — but More ❯

skills to inspire others. You should have: A track record of consulting and delivering a wide range of cyber engagements — both GRC and technical. Strong understanding of frameworks like NIST, ISO 27001, CIS, and a pragmatic view on applying them. Familiarity with technical tooling for assessments, vulnerability analysis, and cloud reviews (you don’t need to be an engineer — but More ❯