1 to 25 of 72 Permanent NIST Jobs in the City of London

compensating controls. Maintain asset inventories and ensure patching and configuration baselines are followed. Security Governance & Compliance Contribute to maintaining security standards and aligning with frameworks such as ISO 27001, NIST, CIS, or SOC 2. Support audits, evidence collection, and compliance reporting (e.g., GDPR, PCI-DSS). Develop and maintain documentation for policies, procedures, architecture, and runbooks. Collaboration & Knowledge Sharing Work More ❯

concepts that clearly communicate value and differentiation. Solution Architecture Design comprehensive security architectures across network, endpoint, identity, cloud, and data protection domains. Ensure alignment with industry frameworks such as NIST, ISO, and CIS, and compliance with regulatory standards (PCI-DSS, HIPAA, etc.). Produce proposals, Bills of Materials (BOMs), high-level designs, and Statements of Work (SOWs). Vendor & Partner More ❯

Proven experience defining and implementing AI security frameworks and risk management processes. Deep knowledge of adversarial machine learning and AI threat modelling. Familiarity with key security frameworks such as NIST, ISO 27001, TOGAF, SABSA . Current certifications such as CISSP, CISM, or equivalent . Experience with cloud environments (Azure, AWS, GCP) and DevSecOps for AI pipelines. Strong understanding of data More ❯

Proven experience defining and implementing AI security frameworks and risk management processes. Deep knowledge of adversarial machine learning and AI threat modelling. Familiarity with key security frameworks such as NIST, ISO 27001, TOGAF, SABSA . Current certifications such as CISSP, CISM, or equivalent . Experience with cloud environments (Azure, AWS, GCP) and DevSecOps for AI pipelines. Strong understanding of data More ❯

or related field (master’s preferred). Experience in cybersecurity with 3+ years in a security architect or solution designer role. Familiarity with industry standards and frameworks such as NIST, ISO 27001, TOGAF. Strong documentation skills with experience writing SDDs, architecture diagrams, and technical specifications. Certifications such as CISSP, SABSA, TOGAF, CCSP, or AWS/Azure Security are a plus. More ❯

or related field (master’s preferred). Experience in cybersecurity with 3+ years in a security architect or solution designer role. Familiarity with industry standards and frameworks such as NIST, ISO 27001, TOGAF. Strong documentation skills with experience writing SDDs, architecture diagrams, and technical specifications. Certifications such as CISSP, SABSA, TOGAF, CCSP, or AWS/Azure Security are a plus. More ❯

related to information security or IT as directed. Qualifications and Experience Experience in managing or supporting an Information Security Management System (ISMS) based on frameworks such as ISO 27001, NIST, or SOC2. Professional certification in information security governance and management (e.g., CISSP, CISM, CISA) preferred. Minimum of 2 years’ experience in information security, including carrying out reviews and supporting improvements More ❯

related to information security or IT as directed. Qualifications and Experience Experience in managing or supporting an Information Security Management System (ISMS) based on frameworks such as ISO 27001, NIST, or SOC2. Professional certification in information security governance and management (e.g., CISSP, CISM, CISA) preferred. Minimum of 2 years’ experience in information security, including carrying out reviews and supporting improvements More ❯

architecture. Strong knowledge of AI/ML concepts, risks, and security controls. Experience designing secure AI architectures and pipelines. Understanding of data privacy and regulatory frameworks (GDPR, ISO 27001, NIST). DevSecOps and cloud security expertise across Azure, AWS, or GCP. Professional certifications such as CISSP or CISM. Eligible for UK Security Clearance (SC). About the Company A global More ❯

architecture. Strong knowledge of AI/ML concepts, risks, and security controls. Experience designing secure AI architectures and pipelines. Understanding of data privacy and regulatory frameworks (GDPR, ISO 27001, NIST). DevSecOps and cloud security expertise across Azure, AWS, or GCP. Professional certifications such as CISSP or CISM. Eligible for UK Security Clearance (SC). About the Company A global More ❯

cybersecurity experience with proven AI/ML security expertise. Deep understanding of AI/ML concepts, algorithms, and regulations (EU AI Act, GDPR). Strong knowledge of security frameworks (NIST, ISO 27001, TOGAF, SABSA). Proven experience in adversarial machine learning and ethical AI governance. DevSecOps expertise for AI/ML pipelines and cloud security (Azure, AWS, GCP). Driven More ❯

cybersecurity experience with proven AI/ML security expertise. Deep understanding of AI/ML concepts, algorithms, and regulations (EU AI Act, GDPR). Strong knowledge of security frameworks (NIST, ISO 27001, TOGAF, SABSA). Proven experience in adversarial machine learning and ethical AI governance. DevSecOps expertise for AI/ML pipelines and cloud security (Azure, AWS, GCP). Driven More ❯

to infrastructure and security architecture within financial services or other regulated sectors. Expertise across cloud (Azure, AWS) and on-premise hybrid infrastructure environments. Strong understanding of security frameworks (e.g. NIST, ISO 27001, CIS) and architectural best practices. Experience with network design, identity and access management, endpoint protection, and cloud security controls. Strong stakeholder engagement and communication skills, with the ability More ❯

to infrastructure and security architecture within financial services or other regulated sectors. Expertise across cloud (Azure, AWS) and on-premise hybrid infrastructure environments. Strong understanding of security frameworks (e.g. NIST, ISO 27001, CIS) and architectural best practices. Experience with network design, identity and access management, endpoint protection, and cloud security controls. Strong stakeholder engagement and communication skills, with the ability More ❯

enterprise environments. If you enjoy simplifying regulatory challenges, designing pragmatic governance models, and influencing security strategy at scale this could be your next move. Key Responsibilities Translate international standards (NIST CSF, ISO 27001, GDPR, SOC 2, PCI DSS, CSA CCM) into actionable policies and controls. Design and implement unified compliance frameworks across cloud, hybrid, and enterprise systems. Lead internal and More ❯

ISO 27001 certification. What You Bring Deep hands-on expertise across EDR, SIEM, NAC, MFA, PAM, and cloud security environments. Proven experience with security frameworks such as ISO 27001, NIST, CIS, and PCI-DSS. Certifications like CISSP, CPSA, or Palo Alto Certified Security Operations Professional. A collaborative mindset, a passion for innovation, and the confidence to take the lead in More ❯

providers. Key responsibilities include: Defining and delivering a security strategy in partnership with management and stakeholders Designing and executing security programmes aligned to frameworks such as ISO 27001 and NIST Developing policies, standards, and procedures Leading the security team, fostering a culture of high performance Overseeing security systems, incident response, and vendor management Reporting on security posture, risks, and incidents More ❯

providers. Key responsibilities include: Defining and delivering a security strategy in partnership with management and stakeholders Designing and executing security programmes aligned to frameworks such as ISO 27001 and NIST Developing policies, standards, and procedures Leading the security team, fostering a culture of high performance Overseeing security systems, incident response, and vendor management Reporting on security posture, risks, and incidents More ❯

effective communication and solution integration. Ensure compliance with industry standards, regulatory requirements, and legal frameworks such as IPA 2016 and GDPR, as well as security standards including ISO 27001, NIST, and TSA. Skills and Experience: experience of delivering complex technical solutions in telecoms or enterprise environments, including authoring HLDs, LLDs, and interface specifications. Proven ability to design and integrate IT More ❯

effective communication and solution integration. Ensure compliance with industry standards, regulatory requirements, and legal frameworks such as IPA 2016 and GDPR, as well as security standards including ISO 27001, NIST, and TSA. Skills and Experience: experience of delivering complex technical solutions in telecoms or enterprise environments, including authoring HLDs, LLDs, and interface specifications. Proven ability to design and integrate IT More ❯

service and automation initiatives to improve user experience. Security and Risk Management Develop, implement, and manage robust cybersecurity frameworks. Establish and enforce IT security policies aligned with ISO27001 and NIST standards. Conduct regular risk assessments and ensure data confidentiality and system integrity. Lead incident response and manage business continuity and disaster recovery plans. Vendor and Stakeholder Management Evaluate and manage More ❯

challenges to a range of stakeholders. Requirements: Experience in cyber strategy, cyber risk, cyber maturity, security architecture, cyber transformation, or regulatory compliance. Knowledge of standards and regulations such as NIST CSF, ISO27001, GDPR, NIS2, or NCSC CAF. Strong problem-solving skills, attention to detail, and excellent communication with both technical and business stakeholders. Relevant certifications (CISSP, CISM, CISA, M.Inst.ISP) or More ❯

project scope and priorities Experience with security tools and technologies such as SIEM (Splunk), vulnerability management (Tenable), and PAM Strong understanding of security frameworks and standards (e.g., ISO 27001, NIST), as well as asset management and risk assessment solutions It would be a real bonus if you have: Master's degree in Computer Science, Information Security, or a related field More ❯

detail and direction. What You’ll Be Doing Lead the organisation’s security posture across technology and engineering. Set and deliver security strategy and best practice frameworks (ISO 27001, NIST, AWS Well-Architected). Oversee incident response, risk assessments, and vulnerability management. Drive a positive security culture across technical and non-technical teams. Partner with senior stakeholders to ensure security More ❯

detail and direction. What You’ll Be Doing Lead the organisation’s security posture across technology and engineering. Set and deliver security strategy and best practice frameworks (ISO 27001, NIST, AWS Well-Architected). Oversee incident response, risk assessments, and vulnerability management. Drive a positive security culture across technical and non-technical teams. Partner with senior stakeholders to ensure security More ❯