1 to 25 of 62 Permanent NIST Jobs in London

security evaluations, with the ability to analyse events and deliver effective remediation. Solid understanding of the cyber threat landscape, incident/breach management, and industry frameworks such as ISO27001, NIST CSF, PCI-DSS and the likes. Excellent analytical, communication, and stakeholder engagement skills, with the ability to influence decision-making across technical and non-technical teams. Committed to continuous learning More ❯

Linux), network protocols, and packet analysis tools. Familiarity with scripting languages (Python, Bash, PowerShell). Experience with cloud security monitoring (AWS, Azure, GCP). Knowledge of frameworks such as NIST and MITRE ATT&CK. Qualifications Bachelor’s degree in Cyber Security, IT, or related field. 3–5 years in SOC operations, incident response, or threat intelligence. Practical experience with forensic More ❯

workflows. Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Operationalize policy enforcement through automated controls More ❯

workflows. * Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. * Compliance, Governance & Risk Management: * Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. * Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. * Operationalize policy enforcement through automated controls More ❯

services. Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Implement automated compliance controls and continuous More ❯

Profile: Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure, AWS), on-premise networks, and hybrid architectures. Strong experience in Zero Trust security models. Experienced in security More ❯

Profile: Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure, AWS), on-premise networks, and hybrid architectures. Strong experience in Zero Trust security models. Experienced in security More ❯

similar role Strong understanding of networking, Windows/Linux, and cybersecurity fundamentals Experience with SIEM (e.g., Sentinel, Splunk), EDR tools, and vulnerability platforms Understanding of security frameworks (ISO 27001, NIST, CIS) Working knowledge of Microsoft InTune Familiarity with GDPR and data protection requirements Desirable Certifications such as Security+, CEH, GIAC Experience with cloud security (Azure/AWS/GCP) Exposure More ❯

similar role Strong understanding of networking, Windows/Linux, and cybersecurity fundamentals Experience with SIEM (e.g., Sentinel, Splunk), EDR tools, and vulnerability platforms Understanding of security frameworks (ISO 27001, NIST, CIS) Working knowledge of Microsoft InTune Familiarity with GDPR and data protection requirements Desirable Certifications such as Security+, CEH, GIAC Experience with cloud security (Azure/AWS/GCP) Exposure More ❯

Detection and Response), and network architecture. Practical experience managing cyber incidents and implementing secure configurations. Excellent analytical and problem-solving skills, with clear documentation and communication abilities. Familiarity with NIST, ISO 27001, and CIS Controls frameworks. Ability to work under pressure, prioritise effectively, and maintain attention to detail. Desirable: Professional certifications such as GSEC, CISSP, OSCP, CISA, CompTIA Sec+, or More ❯

Detection and Response), and network architecture. Practical experience managing cyber incidents and implementing secure configurations. Excellent analytical and problem-solving skills, with clear documentation and communication abilities. Familiarity with NIST, ISO 27001, and CIS Controls frameworks. Ability to work under pressure, prioritise effectively, and maintain attention to detail. Desirable: Professional certifications such as GSEC, CISSP, OSCP, CISA, CompTIA Sec+, or More ❯

threats, secure architecture, identity, and data protection. Establish metrics and reporting to demonstrate effectiveness, risk reduction, and compliance with regulatory requirements (e.g., National Institute of Standards Cyber Security Framework (NIST CSF), Digital Operations Resilience Act (DORA), New Tork State Department of Financial Services (NYDFS), Sarbanes-Oxyley (SOX), and the Financia Conduct Authority(FCA). Cyber Engineering Oversight Lead engineering teams More ❯

Improved audit ratings and team engagement What We're Looking For Senior leadership experience in cyber/security CISSP, CISM, CISA or equivalent Strong track record with ISO 27001, NIST, PCI DSS, Cyber Essentials Plus Hands-on background across Azure, AWS, hybrid infrastructure, and modern security tooling Strong communicator with excellent stakeholder influence What's on Offer Up to More ❯

/AWS/GCP telemetry, threat intelligence platforms. * Expertise in metrics-driven monitoring: defining, tracking, and reporting MTTD, MTTR, false positive rates, and coverage completeness. * Familiarity with frameworks like NIST CSF, MITRE ATT&CK, and ISO 27001, with experience applying these to monitoring. * Experience in threat hunting, anomaly detection, and behavioral analytics. * Strong leadership skills: able to recruit, mentor, and More ❯

of solution designs. Collaborate with cloud infrastructure teams to implement IAM and AI security design patterns. Ensure AI security controls are appropriately implemented in our environment and align with NIST and CIS benchmarks. Validate effectiveness of implemented security controls through technical analysis. Perform residual IAM risk assessments and document acceptance/rejection rationale. Scope and manage AI security testing including More ❯

Information Assurance Risk Assessment and Risk Treatment Plans Establish security requirements for cloud-based solutions by evaluating business strategies and requirements, implementing security standards such as ISO 27000 series, NIST, CSF, and CSA Identify and deliver appropriate controls based on industry standards (e.g. CCM) to drive cloud and customer security solutions framework based on business risk and cloud native threats. More ❯

to undergo DV clearance/UK Citizen/residing in UK Strong working knowledge of: JSP440, JSP604/453, JSP490 MOD/GDS Secure by Design principles ISO 27001, NIST CSF, CIS Controls v8 HMG, NPSA, NCSC policies and guidance Cloud security (Azure, AWS), containerisation, KMS, WAFs Event-driven microservices, network infrastructure, IDS/IPS AI security (ISO42001 desirable), ITHC More ❯

Deep understanding of AWS security services and architectural best practices. Expertise in IAM, encryption, network security, and secure cloud design. Strong familiarity with security standards and frameworks such as NIST, CIS Benchmarks, and the Cloud Security Alliance (CSA). Certifications such as AWS Certified Security – Specialty, AWS Certified Solutions Architect (Professional or Associate), or equivalent. Excellent stakeholder engagement, documentation, and More ❯

or related field (master’s preferred). Experience in cybersecurity with 3+ years in a security architect or solution designer role. Familiarity with industry standards and frameworks such as NIST, ISO 27001, TOGAF. Strong documentation skills with experience writing SDDs, architecture diagrams, and technical specifications. Certifications such as CISSP, SABSA, TOGAF, CCSP, or AWS/Azure Security are a plus. More ❯

and reports for suspicious activity and potential threats. 3. Compliance & Audit: Ensure the organization's adherence to relevant information security regulations, laws, and industry standards (e.g. HIPAA, PCI DSS, NIST, CIS, ISO 27001, Cyber Essentials+). Coordinate and participate in internal and external security audits, provide evidence, and ensure timely remediation of audit findings. Develop and implement security awareness training … or a related field (or equivalent practical experience). Demonstrable experience in information security. Experience creating Cyber Security roadmaps. Strong understanding of information security principles, frameworks (e.g., ISO 27001, NIST, Cyber Essentials), and best practices. Hands-on experience with security technologies such as firewalls, SIEM, IDS/IPS, vulnerability scanners, endpoint detection and response (EDR), and identity management solutions. Experience More ❯

or related field (master's preferred). Experience in cybersecurity with 3+ years in a security architect or solution designer role. Familiarity with industry standards and frameworks such as NIST, ISO 27001, TOGAF. Strong documentation skills with experience writing SDDs, architecture diagrams, and technical specifications. Certifications such as CISSP, SABSA, TOGAF, CCSP, or AWS/Azure Security are a plus More ❯

s information security governance framework across all offices and platforms Maintain and enhance the ISO 27001-aligned Information Security Management System (ISMS) Ensure compliance with frameworks including CIS Controls, NIST, ISO 27701, and GDPR Oversee incident response, threat detection, and access governance across systems such as iManage, Intapp, Aderant, Microsoft 365, and Azure Drive firm-wide security awareness and training More ❯

effective communication and solution integration. Ensure compliance with industry standards, regulatory requirements, and legal frameworks such as IPA 2016 and GDPR, as well as security standards including ISO 27001, NIST, and TSA. Skills and Experience: experience of delivering complex technical solutions in telecoms or enterprise environments, including authoring HLDs, LLDs, and interface specifications. Proven ability to design and integrate IT More ❯

Outlook. A collaborative mindset and ability to thrive under pressure. QualificationsAnd Knowledge Strong understanding of key cybersecurity standards and best practices. Familiarity with leading information security frameworks such as NIST CSF, ISO 27001, and Cyber Essentials. Governance-focused certifications are advantageous, including CISMP, CISM, CISSP, or CompTIA A+. Awareness of regulatory and compliance requirements impacting cybersecurity, such as DORA and More ❯

Outlook. A collaborative mindset and ability to thrive under pressure. QualificationsAnd Knowledge Strong understanding of key cybersecurity standards and best practices. Familiarity with leading information security frameworks such as NIST CSF, ISO 27001, and Cyber Essentials. Governance-focused certifications are advantageous, including CISMP, CISM, CISSP, or CompTIA A+. Awareness of regulatory and compliance requirements impacting cybersecurity, such as DORA and More ❯