13 of 13 NIST Jobs in the City of London

level within complex organisations. Key Skills & Experience Proven experience developing and delivering cyber security strategies Strong understanding of security frameworks such as ISO 27001, NIST, Cyber Essentials Expertise in risk management, vulnerability assessment, and incident response Experience with enterprise security tools (e.g. SIEM, IDS, firewalls, encryption technologies) Knowledge of cloud ...

transformation programmes Provide security consultancy into complex IT and digital initiatives Advise clients on cyber risk, governance and regulatory compliance frameworks including: ISO 27001 NIST GDPR PCI-DSS Conduct threat modelling and identify security vulnerabilities within solution designs Recommend pragmatic risk mitigation strategies to technical and non-technical stakeholders Support ...

queries, PowerShell, or CLI commands. Exposure to automation or playbooks (Logic Apps, Defender workflows). Knowledge of frameworks such as MITRE ATT&CK or NIST CSF. Relevant certifications such as: SC‐900, SC‐200 (or working toward), AZ‐900, AZ‐500 CISSP, CIPP/E, CompTIA Security+ Foundation‐level data ...

security architectures across cloud, network, and enterprise systems Advising on secure design, risk, and compliance across complex IT estates Applying frameworks like ISO 27001, NIST, GDPR, PCI-DSS in real environments Running threat modelling and identifying architectural vulnerabilities Working closely with architects, engineers, and stakeholders to influence secure solutions Translating ...

security assessments and producing assurance reports. Ability to engage and influence stakeholders at all levels. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls). Excellent communication, planning, and organisational skills. Experience managing teams and developing talent. Ability to interpret complex technical and business information to assess ...

prioritised roadmaps for resilience capability uplift, aligned to organisational goals and risk appetite. Robust knowledge of relevant security and resilience frameworks and regulations (e.g., NIST CSF, NIS/NIS2, sector‐specific resilience expectations), and practical experience translating these into implementable capabilities and controls. Strong stakeholder management experience across C‐suite ...

Experience working within complex, matrixed organisations Desirable Industry certifications such as CISSP, CCSP, CISM or similar Knowledge of compliance frameworks (e.g. GDPR, ISO27001, NIST) What's on Offer Opportunity to work on large, complex Microsoft Security programmes Access to extensive training and certification support Strong career development framework and leadership ...

improvement Remaining hands-on with: Terraform & Infrastructure-as-Code CI/CD pipelines and automation Reusable modules and engineering patterns Embedding security-by-design (NIST, ISO, GDPR principles) Acting as a senior escalation point for incidents and outages Leading FinOps practices – cost control, optimisation and transparency Managing and directing ...

senior stakeholders Strong stakeholder management skills, with the ability to influence across technical and business teams Familiarity with frameworks such as ISO 27001, NIST, or similar Why Apply? Opportunity to shape and evolve cyber resilience within a critical national infrastructure environment High-visibility role with direct impact on enterprise-wide ...

oversight, Annex III high-risk obligations, Articles 17 and 43 conformity regime) — UK FCA SM&CR Section 36 and Consumer Duty — ISO 42001 and NIST AI Risk Management Framework — Model risk management (SR 11-7, PRA SS1/23) — UK GDPR Article 22 and the ICO AI Auditing Framework ...

and network segmentation strategies Work with clients across critical infrastructure sectors (energy, utilities, transport, etc.) Apply frameworks such as NIS/CAF, IEC 62443, NIST CSF, ISO 27001 Engage with stakeholders from technical teams through to senior leadership What Were Looking For Experience in OT/ICS cyber security ...

risks, and mitigations. Define and implement second-line assurance processes, reporting, and governance approaches. Ensure alignment with cyber security frameworks and standards including ISO27001, NIST, CIS, GDPR, and Cyber Essentials Plus. Act as an Intelligent Customer (IC) for cyber security requirements delivered by third parties and suppliers. Review, challenge, and … Strong experience in cyber security assurance, governance, and deployed control validation. Recognised cyber security certifications or established industry credentials. Good working knowledge of: ISO27001 NIST CIS Controls GDPR Cyber Essentials Plus Familiarity with risk assessment methodologies including ISO27005 and NIST frameworks. Experience with Microsoft security technologies including: Microsoft Defender Defender ...

scheme Broad familiarity with UK Government physical and personnel security such as NPSA and UKSV Risk assessment using recognised standards such as IS1 and NIST SP800-30 Able to express yourself effectively, with a high degree of clarity, in English, especially when justifying and explaining required security measures Able … prioritise and manage your time to achieve multiple different tasks (Desirable) Familiarity with broader international security standards such as ISO27001, CMMC, and the NIST Cyber Security Framework (especially SP800-30 and SP800-53) (Desirable) Familiarity with UK nuclear regulations such as the ONR SyAPs (Desirable) Familiarity with the AtkinsRéalis corporate ...