Permanent NIST Jobs in London

1 to 25 of 165 Permanent NIST Jobs in London

Cyber Security Analyst New London - Commercial

London, United Kingdom
Economist Group
or a related field with a focus on cloud security Familiarity with cloud computing platforms (AWS, Azure, Google Cloud, etc.). Knowledge of security standards such as ISO 27001, NIST, and SOC2. Experience with security tools such as vulnerability scanners, intrusion detection or prevention systems, and SIEM solutions. Experience with Vulnerability Management Excellent analytical and problem-solving skills. Strong communication More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Senior Information Security Manager

London, United Kingdom
Hybrid / WFH Options
Mimecast Services Ltd
and improve the organization's defences. Policy and Compliance: Establish and enforce security policies, standards, and guidelines to ensure compliance with regulatory requirements and industry frameworks (e.g., ISO 27001, NIST, GDPR). Conduct regular audits and assessments to identify gaps and ensure adherence to security policies. Reporting and Communication: Provide regular updates to senior leadership on the organization's security More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Head of Information Security, Europe

London, United Kingdom
TMX Group
successful participation in certification audits. Strong understanding of financial services regulations and their impact on information security. In-depth knowledge of information security frameworks, standards, and best practices (e.g., NIST, CIS). Experience with secure software development practices and application security testing. Strong technical understanding of network security, system security, and security architecture. Experience with risk management methodologies and tools. More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Security Engineering Manager

London, United Kingdom
Pacific Asset Management, LLC
AWS/Azure), incident response, and governance. Hands-on experience with SIEM, EDR, vulnerability management tools, and cloud-native security services. Familiarity with regulatory frameworks and industry standards (e.g., NIST, CIS, etc.). Strong analytical and problem-solving skills. Excellent communication and collaboration abilities. Prefer certifications such as GIAC, CISSP, etc. Prefer Bachelor's degree in Information Technology or related More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Cloud Security Lead

London, United Kingdom
Tokio Marine HCC
/CD pipelines and cloud deployments. Manage output from cloud-native security tools (e.g., AWS GuardDuty, Azure Defender). Ensure compliance with industry regulations and standards (e.g., ISO 27001, NIST, GDPR, HIPAA). Provide security guidance on architecture, design reviews, and cloud migrations. Create and maintain cloud security documentation, training materials, and incident response playbooks. Stay current on emerging cloud More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Vulnerability Management Analyst

London, United Kingdom
ION Group
an existing vulnerability management program Strong technical expertise in implementing a Prioritizationformula to vulnerabilities and misconfigurations and translating these into risks Excellent knowledge of Vulnerability Management frameworks such as NIST/SANS The following general characteristics are required: A team player with the ability to work independently and unsupervised Ability to own delegated tasks and see them through to completion More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Information Security Manager

London, United Kingdom
Hybrid / WFH Options
Ravelin Technology Ltd
Extensive practical experience implementing and maintaining an ISO 27001 compliant ISMS. Demonstrable experience with PCI DSS compliance, including preparing for and undergoing assessments. Familiarity with information security frameworks (e.g., NIST, CIS). Proficiency in risk management methodologies. Knowledge of common security technologies (e.g., firewalls, EDR, SIEM, vulnerability scanners). Exceptional analytical, problem-solving, and decision-making abilities. Excellent communication (written More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Product Security Engineer - Lead

London, United Kingdom
Smarsh, Inc
infrastructure-as-code security (Terraform, CloudFormation) and cloud security posture management. Strong understanding of identity & access management (OAuth, OIDC, SAML, JWT) and API security. Knowledge of industry frameworks like NIST, ISO 27001, and SOC 2. Experience driving developer enablement and security training initiatives. Excellent communication and collaboration skills to engage with engineering, product, and leadership teams. Preferred Qualifications Security certifications More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Lead Security Architect

London, United Kingdom
Hybrid / WFH Options
N Consulting Limited
experience in information security, with a focus on network security and architecture. Strong knowledge of malicious lateral movement techniques and mitigation strategies. Experience with security frameworks and standards (e.g., NIST, ISO 27001). Excellent communication and leadership skills. Relevant certifications such as CISSP, CISM, or TOGAF are highly desirable. Previous job roles that may indicate success include Information Security Architect More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Cyber & Technology Security Manager - Data Center

City of London, London, United Kingdom
AirSearch
regulators, auditors, and third-party assessments. About You: Proven track record in cybersecurity management, including threat detection, incident response, and vulnerability management. Strong knowledge of security frameworks (ISO 27001, NIST, CIS Controls) and regulatory compliance requirements (GDPR, NIS2). Hands-on expertise with firewalls, SIEM, IAM, IDS/IPS, and cloud security. Strong understanding of networking, infrastructure, and application security. More ❯
Posted:

Cyber & Technology Security Manager - Data Center

London Area, United Kingdom
AirSearch
regulators, auditors, and third-party assessments. About You: Proven track record in cybersecurity management, including threat detection, incident response, and vulnerability management. Strong knowledge of security frameworks (ISO 27001, NIST, CIS Controls) and regulatory compliance requirements (GDPR, NIS2). Hands-on expertise with firewalls, SIEM, IAM, IDS/IPS, and cloud security. Strong understanding of networking, infrastructure, and application security. More ❯
Posted:

Information Security Analyst

London, United Kingdom
Vastbouw
requirements. Develop and maintain the ISMS manual and associated procedures. Align security strategies with business continuity and data protection programmes. Interpret IT governance and control frameworks such as: ITGC, NIST, COBIT, CSTAR, ITIL , and other standards to shape policy and monitor conformance. Analyse threat intelligence and risk trends to anticipate and prevent security breaches and advise on emerging technologies and More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Principal Security Engineer

London, United Kingdom
Hybrid / WFH Options
Orgvue Limited
dotted-line relationship with the VP of TechOps. Responsibilities Security Strategy & Governance - Define and continuously refine the technical security roadmap that aligns with business objectives, industry best practice (e.g., NIST CSF, OWASP SAMM), and compliance frameworks (SOC 2, ISO 27001, GDPR). Secure SDLC & DevSecOps - Build and maintain guardrails for static/dynamic analysis, container and IaC scanning, SBOM management More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Information Security Manager

City of London, London, United Kingdom
Prism Digital
ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP, CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with More ❯
Posted:

Information Security Manager

London Area, United Kingdom
Prism Digital
ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP, CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with More ❯
Posted:

Global Platform Team Lead and Senior Director - IT Security

London, UK
Boston Consulting Group
workflows. Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Operationalize policy enforcement through automated controls More ❯
Employment Type: Full-time
Posted:

Security Architecture and Engineering Senior Manager

East London, London, United Kingdom
Hybrid / WFH Options
A&O Shearman
is a core part of our technology services structure with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where More ❯
Employment Type: Permanent, Work From Home
Posted:

Security Architecture and Engineering Senior Manager

London, United Kingdom
Hybrid / WFH Options
Allen & Overy LLP
is a core part of our technology services structure with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearman's strategy to lead More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Senior Security and Infrastructure Engineer

London, South East, England, United Kingdom
Hybrid / WFH Options
Robert Half
controls, including RBAC and Conditional Access, within Azure AD and Microsoft 365. Collaborate with Risk and Compliance teams to ensure infrastructure aligns with enterprise security frameworks (e.g. ISO 27001, NIST, CIS). Support incident response, vulnerability remediation, and disaster recovery planning. Promote a culture of continuous improvement and secure-by-design principles across the technology team. Provide technical leadership and More ❯
Employment Type: Full-Time
Salary: £70,000 - £80,000 per annum
Posted:

Identity and Access Management (IAM) Specialist

London, United Kingdom
Vastbouw
reporting activities. Implement and enforce access control policies aligned with corporate governance. Design and review workflows for joiners, movers, and leavers. Maintain compliance with standards such as ISO 27001, NIST, and GDPR. Apply IAM theory to support zero-trust security models and defence-in-depth strategies. Evaluate complex access scenarios and formulate risk mitigation strategies. Understand integration concepts with federated More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Manager - Principal Security Architect: Secure Design (IC)

London, United Kingdom
London Stock Exchange Group
common and emerging vulnerabilities including their manifestation in different architectures (web applications, thick clients, APIs, networked infrastructure etc) Familiarity with industry standard guidance OWASP Top 10, SANS Top 25, NIST/CSC, CIS, NCSC etc. Applied understanding of topics such as authentication, access control, encryption, cloud security, operating system security, network security, database security. Experience of writing succinct, reader oriented More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Information Security Engineer

London, United Kingdom
Hybrid / WFH Options
Ashdown Group
this role you must have demonstrable hands-on expertise with monitoring and securing enterprise class technology estates. You will have proven experience with Cyber Security best practice including the NIST Cloud Security guidelines. You will support ISO 27001 compliance and have strong documentation skills. Experience in the Telco sector and knowledge of the UK Telecom Security Act would be advantageous More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Cyber Security Consultant

City of London, London, United Kingdom
Hybrid / WFH Options
Anson McCade
environments to solve real-world security challenges Key Skills & Experience Cyber Security: Experience in cyber strategy, risk management, security architecture, transformation programmes, and regulatory compliance Knowledge of relevant standards: NIST CSF, ISO27001, NCSC CAF, GDPR, NIS2, etc. Certifications such as CISSP, CISM, CISA, M.Inst.ISP, or MSc in Cyber Security Hands-on experience in areas like GRC, cyber threat management, vulnerability More ❯
Posted:

Cyber Security Consultant

London Area, United Kingdom
Hybrid / WFH Options
Anson McCade
environments to solve real-world security challenges Key Skills & Experience Cyber Security: Experience in cyber strategy, risk management, security architecture, transformation programmes, and regulatory compliance Knowledge of relevant standards: NIST CSF, ISO27001, NCSC CAF, GDPR, NIS2, etc. Certifications such as CISSP, CISM, CISA, M.Inst.ISP, or MSc in Cyber Security Hands-on experience in areas like GRC, cyber threat management, vulnerability More ❯
Posted:

Technical Cyber Risk Assessment Manager

London, United Kingdom
Hybrid / WFH Options
Deloitte LLP
risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to communicate risks associated with More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:
NIST
London
10th Percentile
£56,250
25th Percentile
£70,000
Median
£87,500
75th Percentile
£105,000
90th Percentile
£122,500