19 of 19 Permanent NIST Jobs in Central London

threat detection, and security engineering Desirable: Certifications such as CISSP, CEH, CISM, or similar Knowledge of OS hardening and CIS Benchmarks Familiarity with ISO27001, NIST, PCI DSS, GDPR, Cyber Essentials Experience with IT audit processes and risk assessments Exposure to Threat Intelligence platforms, DFIR tooling, or SIR frameworks ...

control environment meets regulatory expectations, supports operational resilience, and enables secure business growth. Champion & Ensure delivery against compliance requirements like the Apex Gold standard, NIST, DORA, SOC1 and SOC 2, ISO27001 and all relevant group controls. Liaising with key stakeholders, partners and group entities, internal and external. Key Responsibilities Technology ...

rules, analytics, baselines and security automation Run vulnerability scanning using tools like Tenable, Pentera, Varonis, Secure Score Support compliance work (ISO 27001, Cyber Essentials, NIST, SOC2) Contribute to threat hunting, threat intelligence application and proactive monitoring Support operational resilience: scenario testing, DR exercises, post-incident reviews Assist with security tooling ...

management, cyber risk, security target operating model, governance, compliance, cyber security maturity assessment, metrics and C-level dashboards ) and leading industry-based practices (e.g. NIST CSF, ISO 2700x ) Managing the coordination and communication of key findings and results of engagements, producing written reports and supporting oral presentations to senior client ...

Support clients in defining business led security requirements and secure-by-design solutions Interpret and apply frameworks such as ISO 27001/ISO 27002, NIST, NCSC CAF, and MOD security frameworks Engage confidently with technical and non-technical stakeholders, including senior leaders What You’ll Bring Strong experience in security ...

security assessments and producing assurance reports. Ability to engage and influence stakeholders at all levels. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls). Excellent communication, planning, and organisational skills. Experience managing teams and developing talent. Ability to interpret complex technical and business information to assess ...

Auditor, CLAS etc Extensive experience in information security or IT governance within large, complex environments Strong knowledge of security frameworks (ISO/IEC 27001, NIST CSF, CIS Controls, Cyber Essentials) Proven track record in risk management, policy development, and security awareness initiatives Excellent communication, leadership, and influencing skills Very strong ...

resilience advisory role within complex environments Strong understanding of risk management, resilience, and secure-by-design principles Familiar with frameworks such as ISO 27001, NIST, and NIS Regulations Broad technical knowledge across infrastructure, cloud, networks, and applications Confident engaging with stakeholders and translating technical concepts into clear guidance Additional Information ...

methods, tools, and technologies across both cloud-based and on-premise environments In-depth knowledge of established security standards and frameworks, including ISO 27001, NIST, and CIS benchmarks Experience securing infrastructure within DevOps environments, with a focus on secure development practices, automation, and enterprise monitoring/reporting—particularly within Microsoft ...

improvement Remaining hands‐on with: Terraform & Infrastructure‐as‐Code CI/CD pipelines and automation Reusable modules and engineering patterns Embedding security‐by‐design (NIST, ISO, GDPR principles) Acting as a senior escalation point for incidents and outages Leading FinOps practices – cost control, optimisation and transparency Managing and directing ...

improvement Remaining hands-on with: Terraform & Infrastructure-as-Code CI/CD pipelines and automation Reusable modules and engineering patterns Embedding security-by-design (NIST, ISO, GDPR principles) Acting as a senior escalation point for incidents and outages Leading FinOps practices – cost control, optimisation and transparency Managing and directing ...

product goals. Preferred Qualifications: Previous experience within the identity management, verification, or adjacent industries. Familiarity with global regulations around identity verification (e.g., eIDAS, NIST, AML/KYC compliance). Fluency in Spanish language is preferred Please note this is a hybrid role with 3 days in our London office ...

platform evolves. Embed security by design across the platform, owning cloud security controls, policies, and technical guardrails in line with standards such as NIST and ISO. Lead cloud cost management and FinOps practices, ensuring performance, availability, and spend are optimised and transparent. Act as the senior technical escalation point ...

consultancy position. You’ll lead client engagements across UK NCSC Cyber Assessment Framework (CAF), ISO 27001 (including full end-to-end implementation), ISO 42001, NIST Cyber Security Framework v2.0 and Cyber Incident Exercising, advising on governance, risk and assurance challenges. You’ll take ownership of delivery from scoping through ...

management, controls, and incident response. The ability to clearly communicate security risks to both technical and non-technical audiences. Knowledge of frameworks such as NIST or CIS Experience working across multiple regions in a global organisation. Relevant certifications such as CISSP, CISA, or CRISC If you are interested ...

Understanding of secure system design within MOD or high-security environments Familiarity with Ivanti or similar endpoint control tools Awareness of compliance frameworks (e.g. NIST, RMADS, SyOPs ) If this Infrastructure Engineer role is of interest apply ...

Understanding of secure system design within MOD or high-security environments Familiarity with Ivanti or similar endpoint control tools Awareness of compliance frameworks (e.g. NIST, RMADS, SyOPs ) If this Infrastructure Engineer role is of interest apply ...

processes within a regulated, safety-critical environment. You ll work closely with senior stakeholders to maintain alignment with frameworks such as ISO 27001 and NIST CSF, ensuring controls remain effective and audit-ready. Key Responsibilities of the Governance, Risk & Compliance Officer: • Manage and maintain the organisation s risk management framework … organisation. Key Requirements of the Governance, Risk & Compliance Officer: • Experience in GRC within a regulated or critical services environment. • Strong understanding of ISO 27001, NIST CSF, and wider risk management frameworks. • Experience supporting audits, compliance, and regulatory reporting. • Ability to translate regulatory requirements into practical controls and processes. • Strong stakeholder ...

assessments, and advisory outputs. * Collaborate with technical and business stakeholders to design or enhance security control environments aligned to frameworks such as ISO 27001, NIST CSF, CIS Controls, and Cyber Essentials. Required Skills: * Experience within cyber security consulting, security auditing, or risk advisory roles. * Experience in delivering client-facing cyber … risk advisory services. * Experience delivering assessments aligned with industry standards such as ISO 27001, NIST, CIS, NCSC 10 Steps, and GDPR. * Strong written and verbal communication skills, able to clearly articulate technical jargon to non-technical audiences and write impactful deliverables. * Experience planning and delivering engagements independently and as part ...