51 to 75 of 83 NIST Jobs in the City of London

Required Skills/Experience: - Professional certifications such as CISA, CISM, CISSP or similar credentials are preferred. - Strong knowledge of information security principles, best practices, and standards (e.g., ISO 27001, NIST). - Experience in co-ordinating and participating in Security audits. - Experience in conducting vendor risk assessments and project security risk assessments Information Security Officer More ❯

Required Skills/Experience: - Professional certifications such as CISA, CISM, CISSP or similar credentials are preferred. - Strong knowledge of information security principles, best practices, and standards (e.g., ISO 27001, NIST). - Experience in co-ordinating and participating in Security audits. - Experience in conducting vendor risk assessments and project security risk assessments Information Security Officer More ❯

Required Skills/Experience: Hands-on experience with disaster recovery, failover testing, and operational resilience in IT infrastructure. Solid understanding of business continuity and security frameworks (e.g. ISO27001, ISO23001 NIST) and how to evidence controls. Experience producing and maintaining high-quality technical documentation and runbooks. Proficiency with infrastructure tooling and at least one scripting language (PowerShell or Python preferred). More ❯

Required Skills/Experience: Hands-on experience with disaster recovery, failover testing, and operational resilience in IT infrastructure. Solid understanding of business continuity and security frameworks (e.g. ISO27001, ISO23001 NIST) and how to evidence controls. Experience producing and maintaining high-quality technical documentation and runbooks. Proficiency with infrastructure tooling and at least one scripting language (PowerShell or Python preferred). More ❯

/or C# LangChain, AutoGen, or similar orchestration frameworks Azure AI Search, Form Recognizer, and Language Services GitHub Actions, CI/CD, and DevSecOps practices Responsible AI frameworks (e.g., NIST AI RMF, ISO/IEC 42001) GDPR, data residency, and DLP policies Azure DevOps, ARM/Bicep, or Terraform Proven track record delivering agent-based or GenAI solutions in enterprise More ❯

compliance controls. Acting as a primary point of contact for AI audits, RFPs/RFIs, and customer assurance queries. Tracking and aligning with emerging AI regulations (EU AI Act, NIST AI RMF, OECD principles, and beyond). Driving continuous improvement across AI governance, data management, and assurance processes. What you'll bring Ideally experience delivering ISO certifications (ISO/IEC More ❯

compliance controls. Acting as a primary point of contact for AI audits, RFPs/RFIs, and customer assurance queries. Tracking and aligning with emerging AI regulations (EU AI Act, NIST AI RMF, OECD principles, and beyond). Driving continuous improvement across AI governance, data management, and assurance processes. What you'll bring Ideally experience delivering ISO certifications (ISO/IEC More ❯

feedback shapes product roadmap, pricing strategy, and company direction Become a category expert: You'll learn AI risk, regulatory frameworks (ISO 42001, CSA, EU AI Act, DORA, GDPR, MIT, NIST AI, SIG), and financial risk management at a depth that makes you genuinely valuable to clients, and highly marketable in your career The impact? Your first 5 clients don't More ❯

feedback shapes product roadmap, pricing strategy, and company direction Become a category expert: You'll learn AI risk, regulatory frameworks (ISO 42001, CSA, EU AI Act, DORA, GDPR, MIT, NIST AI, SIG), and financial risk management at a depth that makes you genuinely valuable to clients, and highly marketable in your career The impact? Your first 5 clients don't More ❯

solutions design, ensuring the confidentiality, integrity, and availability of corporate systems and data. Define, design, and implement enterprise-grade security controls and reference architectures, aligned with frameworks such as NIST, ISO27001, and CIS. Conduct security design and architecture reviews for technology projects, integrations, and third-party solutions. Lead security assurance for cloud transformation initiatives, promoting best practices such as zero … design principles, IAM, encryption, API security, and application security. Experience performing threat modelling, security risk assessments, and control design validation. In-depth knowledge of industry standards and frameworks (ISO27001, NIST CSF, PCI DSS, CIS Controls). Minimum of 5 years’ experience in information security roles, ideally within financial services or large-scale digital environments. Professional certifications such as CISSP, SABSA More ❯

solutions design, ensuring the confidentiality, integrity, and availability of corporate systems and data. Define, design, and implement enterprise-grade security controls and reference architectures, aligned with frameworks such as NIST, ISO27001, and CIS. Conduct security design and architecture reviews for technology projects, integrations, and third-party solutions. Lead security assurance for cloud transformation initiatives, promoting best practices such as zero … design principles, IAM, encryption, API security, and application security. Experience performing threat modelling, security risk assessments, and control design validation. In-depth knowledge of industry standards and frameworks (ISO27001, NIST CSF, PCI DSS, CIS Controls). Minimum of 5 years’ experience in information security roles, ideally within financial services or large-scale digital environments. Professional certifications such as CISSP, SABSA More ❯

Opportunity - Remote Based This is an outstanding opportunity to join a dynamic and fast-growing global technology organisation at a pivotal stage in its cloud transformation journey. As Director of Azure Cloud Services , youll step into a senior leadership position More ❯

a diverse range of information/cyber security projects and challenges, preferably over a number of industry domains Strong understanding of leading cybersecurity frameworks and standards such as ISO27001, NIST, Cyber Essentials+, CAF, CIS, SOC 2, etc. Up-to-date knowledge of cyber/information security, concepts, risk, controls, and industry trends Experience of working on e.g., security governance models … and frameworks, policies and procedures, information risk assessments, third-party risk assessments, data protection/privacy gap analysis and implementation, audits, including ISO:27001; ISO:23001; NIST CSF; CAF; CIS; IRAP and more Effective stakeholder engagement and communication skills to actively contribute to the development of customer relationships A high performing and proficient consultant with a deep theoretical understanding of More ❯

a diverse range of information/cyber security projects and challenges, preferably over a number of industry domains Strong understanding of leading cybersecurity frameworks and standards such as ISO27001, NIST, Cyber Essentials+, CAF, CIS, SOC 2, etc. Up-to-date knowledge of cyber/information security, concepts, risk, controls, and industry trends Experience of working on e.g., security governance models … and frameworks, policies and procedures, information risk assessments, third-party risk assessments, data protection/privacy gap analysis and implementation, audits, including ISO:27001; ISO:23001; NIST CSF; CAF; CIS; IRAP and more Effective stakeholder engagement and communication skills to actively contribute to the development of customer relationships A high performing and proficient consultant with a deep theoretical understanding of More ❯

accounts. • Managing sales, pre-sales and delivery team of consultants for all regional engagements • Designing solutions related to Cyber Risk engagement on assessment and implementation of frameworks such as NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K • Designing solutions related to advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy … services (preferable candidates from Big4 organizations) • Capabilities of executing atleast 3-4 advisory/consulting engagements. • Technical Knowledge around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance … Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS) TPRM • Business Resiliency & Cyber Recovery, ZTA • GRC Project & Program Management • Excellent written and verbal communications skills • Should be able to travel 70%-80% on short as well as long term engagements. PLATFORM/TOOL EXPERTISE • Experience on the below mentioned tools is not mandated More ❯

AD, Okta, and SailPoint for OT environments. Apply Zero Trust principles and industry-standard security framework controls to IAM processes. Compliance & Security: Ensure IAM solutions adhere to CAF, eCAF, NIST, and other regulatory frameworks. Conduct access audits, identity risk assessments, and compliance reporting. Work closely with cybersecurity, risk, and compliance teams to align IAM strategies with regulatory requirements. Collaboration & Documentation … IdentityIQ – access reviews, lifecycle automation, compliance workflows, and enterprise application integration. Privileged Access Management: CyberArk – Vault administration, credential rotation, JIT access, session monitoring, compliance reporting. Security & Compliance: CAF, eCAF, NIST frameworks; IAM controls for critical infrastructure; incident response and threat detection. Preferred Certifications: Microsoft Certified: Identity and Access Administrator Associate Okta Certified Administrator/Professional SailPoint IdentityNow/IdentityIQ Engineer More ❯

AD, Okta, and SailPoint for OT environments. Apply Zero Trust principles and industry-standard security framework controls to IAM processes. Compliance & Security: Ensure IAM solutions adhere to CAF, eCAF, NIST, and other regulatory frameworks. Conduct access audits, identity risk assessments, and compliance reporting. Work closely with cybersecurity, risk, and compliance teams to align IAM strategies with regulatory requirements. Collaboration & Documentation … IdentityIQ – access reviews, lifecycle automation, compliance workflows, and enterprise application integration. Privileged Access Management: CyberArk – Vault administration, credential rotation, JIT access, session monitoring, compliance reporting. Security & Compliance: CAF, eCAF, NIST frameworks; IAM controls for critical infrastructure; incident response and threat detection. Preferred Certifications: Microsoft Certified: Identity and Access Administrator Associate Okta Certified Administrator/Professional SailPoint IdentityNow/IdentityIQ Engineer More ❯

Job Title: Group IT & Security Manager Salary: £ 70,000–£ 80,000 + Benefits Location: West London – Hybrid (3 days p/w in-office) Tech: AWS, Azure, Networking, ISO27001, NIST, ITIL The Company: Immersum are supporting the continued growth of a leading property group that’s reshaping how people, data, and technology power the housing sector. Operating across several high … group’s technology roadmap aligned with business growth plans Managing IT infrastructure across cloud (AWS/Azure), networking, and end-user environments Implementing and maintaining strong security frameworks (ISO27001, NIST) Overseeing internal and external audits, risk assessments, and disaster recovery plans Driving continuous improvement in IT service delivery and user support Managing vendors, budgets, and contracts to optimise cost and More ❯

Job Title: Group IT & Security Manager Salary: £ 70,000–£ 80,000 + Benefits Location: West London – Hybrid (3 days p/w in-office) Tech: AWS, Azure, Networking, ISO27001, NIST, ITIL The Company: Immersum are supporting the continued growth of a leading property group that’s reshaping how people, data, and technology power the housing sector. Operating across several high … group’s technology roadmap aligned with business growth plans Managing IT infrastructure across cloud (AWS/Azure), networking, and end-user environments Implementing and maintaining strong security frameworks (ISO27001, NIST) Overseeing internal and external audits, risk assessments, and disaster recovery plans Driving continuous improvement in IT service delivery and user support Managing vendors, budgets, and contracts to optimise cost and More ❯

Partner with third-party security service providers and managed services Align regional security operations with global CISO strategy Operational Excellence Enhance detection and monitoring capabilities aligned to NIS2/NIST frameworks Drive continuous improvement of security tools, processes, and procedures Ensure appropriate balance between local autonomy and corporate alignment Contribute to broader security strategy and roadmap development Essential Requirements Technical … Expertise Demonstrable expertise in security incident investigation, detection, response, and recovery (NIST/NIS2 frameworks) Strong foundation in security operations, but with strategic vision beyond SOC alert handling Experience with security telemetry, SIEM platforms, and threat detection technologies Understanding of enterprise security architecture in complex, matrixed organisations Experience & Background Proven track record maturing incident response and tabletop exercise programs Experience More ❯

Partner with third-party security service providers and managed services Align regional security operations with global CISO strategy Operational Excellence Enhance detection and monitoring capabilities aligned to NIS2/NIST frameworks Drive continuous improvement of security tools, processes, and procedures Ensure appropriate balance between local autonomy and corporate alignment Contribute to broader security strategy and roadmap development Essential Requirements Technical … Expertise Demonstrable expertise in security incident investigation, detection, response, and recovery (NIST/NIS2 frameworks) Strong foundation in security operations, but with strategic vision beyond SOC alert handling Experience with security telemetry, SIEM platforms, and threat detection technologies Understanding of enterprise security architecture in complex, matrixed organisations Experience & Background Proven track record maturing incident response and tabletop exercise programs Experience More ❯

organization to provide those parts and then define the proper 3rd party assessment and requirements we would like to see in our suppliers in line with the cyber laws (NIST, ISO 27001 etc) The role of Digital Product Manager - Cyber Security is to manage the life cycle (aligned to the PLP) of their digital products in order to generate maximum … Excellent communication skills particularly in English (fluently spoken and written) in addition to any local language spoken at the place of work. Currently working on Cyber Security related projects (NIST, ISO 27001) The ability and motivation to persistently pursue and achieve/drive effective results which drive the business forward. Collaboration and Influencing with a Global mindset, cultural awareness. Proven More ❯

organization to provide those parts and then define the proper 3rd party assessment and requirements we would like to see in our suppliers in line with the cyber laws (NIST, ISO 27001 etc) The role of Digital Product Manager - Cyber Security is to manage the life cycle (aligned to the PLP) of their digital products in order to generate maximum … Excellent communication skills particularly in English (fluently spoken and written) in addition to any local language spoken at the place of work. Currently working on Cyber Security related projects (NIST, ISO 27001) The ability and motivation to persistently pursue and achieve/drive effective results which drive the business forward. Collaboration and Influencing with a Global mindset, cultural awareness. Proven More ❯

OT & IT Security Monitoring: Continuously monitor the security of both OT and IT environments, including SCADA systems and Industrial Control System (ICS) Governance and compliance of all OT systems - NIST 800-82, IEC 62443, OG86, NERC-CIP, SOCI, NIST-CSF, NIS2 Taking a proactive role in threat hunting, incident response from a Collaborating with the IT Security team and wider … technology teams User training/awareness Key skills needed are: 3+ years in a cyber security role with a good level of exposure to OT security Knowledge of NIST and IEC 62443 OT frameworks Knowledge of the Microsoft security stack and wider IT security experience highly desirable Knowledge of NERC CIP and/or SOCI standards desirable Role is based More ❯

OT & IT Security Monitoring: Continuously monitor the security of both OT and IT environments, including SCADA systems and Industrial Control System (ICS) Governance and compliance of all OT systems - NIST 800-82, IEC 62443, OG86, NERC-CIP, SOCI, NIST-CSF, NIS2 Taking a proactive role in threat hunting, incident response from a Collaborating with the IT Security team and wider … technology teams User training/awareness Key skills needed are: 3+ years in a cyber security role with a good level of exposure to OT security Knowledge of NIST and IEC 62443 OT frameworks Knowledge of the Microsoft security stack and wider IT security experience highly desirable Knowledge of NERC CIP and/or SOCI standards desirable Role is based More ❯