19 of 19 NIST Jobs in the City of London

Cybersecurity Awareness : Understanding of sector-specific, national, and global cybersecurity challenges. Regulatory & Compliance Knowledge : Expertise in frameworks like GDPR, ISO 27001, Cyber Essentials, and NIST (CSF). Technology Insight : Familiarity with emerging trends and advancements in cybersecurity. Compliance & Risk Management : Hands-on experience ensuring legal and regulatory adherence in information More ❯

Cybersecurity Awareness : Understanding of sector-specific, national, and global cybersecurity challenges. Regulatory & Compliance Knowledge : Expertise in frameworks like GDPR, ISO 27001, Cyber Essentials, and NIST (CSF). Technology Insight : Familiarity with emerging trends and advancements in cybersecurity. Compliance & Risk Management : Hands-on experience ensuring legal and regulatory adherence in information More ❯

strategy, cyber risk, cyber maturity, security architecture, cyber transformation, and regulatory compliance for cyber. Experience with recognised cyber security standards and regulations, such as NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR, and NIS2. Experience working in various environments or organisational contexts to develop cyber strategy and manage cyber risk. A More ❯

protection, identity & access management) Familiarity with Microsoft security technologies and cloud platforms (Azure preferred) Understanding of key security frameworks and standards (e.g., ISO 27001, NIST, CIS Benchmarks) Ability to analyse technical threats and drive prompt, effective resolution Excellent documentation skills with the ability to communicate complex technical solutions clearly Relevant More ❯

Responsibility: Regulatory Implementation & Frameworks Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management, scenario-based testing, and More ❯

cloud migrations, ideally Azure (some AWS experience also fine) Experience supporting enterprise platforms like IIS & SQL Familiarity with compliance standards (ISO 27001, Cyber Essentials, NIST) Excellent problem solving and communication skills There’s no on call requirement, though some flexibility around out of hours work may occasionally be needed. This More ❯

tools & IAM Experience with Okta , service mesh, observability tooling Hands-on with SAST/DAST , secure development and vulnerability testing Familiar with ISO 27001, NIST, CIS Benchmarks, OWASP Top 10 Comfortable with Python, JavaScript or similar scripting Strong communicator technical and non-technical audiences Bonus Points For Fintech or regulated More ❯

design . Strong understanding of TCP/IP, DNS, DHCP, and LAN/WAN concepts . Familiarity with security standards such as ISO 27001, NIST, or CIS Controls. 🎯 Virtualization & Storage: Proficiency with Hyper-V, VMware , and related virtualization technologies. Experience with SAN/NAS storage solutions and disaster recovery planning. More ❯

or within a SOC/NOC environment Strong knowledge of Microsoft Defender, EDR, and network architecture Understanding of security frameworks (e.g., MITRE ATT&CK, NIST, ISO 27001) Excellent communication and teamwork skills Relevant certifications (e.g., Sec+, OSCP, CISA) are a plus In our company values we aim for equity at More ❯

to implement and monitor new solutions. Role Requirements Relevant certifications (e.g., CISSP, CISM, etc.). Strong familiarity with GDPR, ISO 27001, Cyber Essentials , and NIST (CSF) frameworks. In-depth understanding of networking , operating systems , cloud platforms , and cloud computing . Expertise in Application and Web security , identity and access management More ❯

to implement and monitor new solutions. Role Requirements Relevant certifications (e.g., CISSP, CISM, etc.). Strong familiarity with GDPR, ISO 27001, Cyber Essentials , and NIST (CSF) frameworks. In-depth understanding of networking , operating systems , cloud platforms , and cloud computing . Expertise in Application and Web security , identity and access management More ❯

using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. Oversee endpoint security, cloud network and API security … Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO More ❯

such as CISSP, CESG Certified Professional (CCP), ISACA, CISM) and ideally have experience with Information Security management frameworks, such as ISO2700x, ITIL, COBIT or NIST or Cyber Security accreditations. Working knowledge of security tools used in the organisation such as Trend Micro, Windows Defender, Proofpoint, Zscaler and Rapid7 is desirable. More ❯

such as CISSP, CESG Certified Professional (CCP), ISACA, CISM) and ideally have experience with Information Security management frameworks, such as ISO2700x, ITIL, COBIT or NIST or Cyber Security accreditations. Working knowledge of security tools used in the organisation such as Trend Micro, Windows Defender, Proofpoint, Zscaler and Rapid7 is desirable. More ❯

department functions. Experience of Risk Management at either a Project, Programme or Department level. Working knowledge of a recognised Risk Management Framework, such as NIST, or as part of a more general framework such as ITIL 4 Process driven mentality Good general communication skills, with an ability to author technical More ❯

design patterns Familiar with fallback controls such as WAF's, API gateways Experience using SIEM/logging tools to track API threats Familiarity with NIST, OWASP SAMM, or internal security frameworks Experience producing risk dashboards/reports for API's Able to translate technical risks into business language, collaborating with More ❯

and plans, including strategic, tactical and project plans. You will also have experience with information security management frameworks, such as ISO2700, ITIL, COBIT or NIST, (knowledge of the ISF Standard of Good Practice would be an advantage) and have an understanding of Service Delivery frameworks such as ITIL. You will More ❯

design patterns Familiar with fallback controls such as WAF's, API gateways Experience using SIEM/logging tools to track API threats Familiarity with NIST, OWASP SAMM, or internal security frameworks Experience producing risk dashboards/reports for API's Able to translate technical risks into business language, collaborating with More ❯

design patterns Familiar with fallback controls such as WAF's, API gateways Experience using SIEM/logging tools to track API threats Familiarity with NIST, OWASP SAMM, or internal security frameworks Experience producing risk dashboards/reports for API's Able to translate technical risks into business language, collaborating with More ❯