10 of 10 Permanent NIST Jobs in the City of London

level within complex organisations. Key Skills & Experience Proven experience developing and delivering cyber security strategies Strong understanding of security frameworks such as ISO 27001, NIST, Cyber Essentials Expertise in risk management, vulnerability assessment, and incident response Experience with enterprise security tools (e.g. SIEM, IDS, firewalls, encryption technologies) Knowledge of cloud ...

transformation programmes Provide security consultancy into complex IT and digital initiatives Advise clients on cyber risk, governance and regulatory compliance frameworks including: ISO 27001 NIST GDPR PCI-DSS Conduct threat modelling and identify security vulnerabilities within solution designs Recommend pragmatic risk mitigation strategies to technical and non-technical stakeholders Support ...

queries, PowerShell, or CLI commands. Exposure to automation or playbooks (Logic Apps, Defender workflows). Knowledge of frameworks such as MITRE ATT&CK or NIST CSF. Relevant certifications such as: SC‐900, SC‐200 (or working toward), AZ‐900, AZ‐500 CISSP, CIPP/E, CompTIA Security+ Foundation‐level data ...

security architectures across cloud, network, and enterprise systems Advising on secure design, risk, and compliance across complex IT estates Applying frameworks like ISO 27001, NIST, GDPR, PCI-DSS in real environments Running threat modelling and identifying architectural vulnerabilities Working closely with architects, engineers, and stakeholders to influence secure solutions Translating ...

security assessments and producing assurance reports. Ability to engage and influence stakeholders at all levels. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls). Excellent communication, planning, and organisational skills. Experience managing teams and developing talent. Ability to interpret complex technical and business information to assess ...

prioritised roadmaps for resilience capability uplift, aligned to organisational goals and risk appetite. Robust knowledge of relevant security and resilience frameworks and regulations (e.g., NIST CSF, NIS/NIS2, sector‐specific resilience expectations), and practical experience translating these into implementable capabilities and controls. Strong stakeholder management experience across C‐suite ...

Experience working within complex, matrixed organisations Desirable Industry certifications such as CISSP, CCSP, CISM or similar Knowledge of compliance frameworks (e.g. GDPR, ISO27001, NIST) What's on Offer Opportunity to work on large, complex Microsoft Security programmes Access to extensive training and certification support Strong career development framework and leadership ...

improvement Remaining hands-on with: Terraform & Infrastructure-as-Code CI/CD pipelines and automation Reusable modules and engineering patterns Embedding security-by-design (NIST, ISO, GDPR principles) Acting as a senior escalation point for incidents and outages Leading FinOps practices – cost control, optimisation and transparency Managing and directing ...

oversight, Annex III high-risk obligations, Articles 17 and 43 conformity regime) — UK FCA SM&CR Section 36 and Consumer Duty — ISO 42001 and NIST AI Risk Management Framework — Model risk management (SR 11-7, PRA SS1/23) — UK GDPR Article 22 and the ICO AI Auditing Framework ...

and network segmentation strategies Work with clients across critical infrastructure sectors (energy, utilities, transport, etc.) Apply frameworks such as NIS/CAF, IEC 62443, NIST CSF, ISO 27001 Engage with stakeholders from technical teams through to senior leadership What Were Looking For Experience in OT/ICS cyber security ...