1 to 25 of 85 NIST Jobs in London

application designs, supporting secure architecture and delivery from the outset. Compliance & Framework Alignment: Ensure security operations align with regulatory standards and frameworks such as NIST, ISO 27001, and NCSC CAF. Person SpecificationEssential: Demonstrated experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability ...

cybersecurity or information security roles Leadership experience within a complex, multinational business Experience managing global teams across multiple regions Strong knowledge of ISO 27001, NIST, CIS Controls or similar frameworks Proven experience in security operations, risk management and compliance Experience handling security incidents and crisis management Strong commercial awareness and ...

will be doing: 1. Governance & Strategy Develop, maintain, and oversee the Information Security and ICT Risk Management Frameworks in line with DORA, ISO 27001, NIST, and other applicable standards. Establish, maintain, and enforce security policies, standards, and procedures. Provide independent second-line challenge to first-line controls and risk management ...

protect network integrity. Enforce robust security policies to maintain system security standards. Compliance and Audit Support Ensure adherence to compliance standards including ISO27001, NIST, and GDPR through regular audits and risk assessments. Support audit processes by providing necessary documentation and evidence of compliance. Security Awareness and Training Conduct regular training ...

cloud infrastructure teams to implement IAM and AI security design patterns. Ensure AI security controls are appropriately implemented in our environment and align with NIST and CIS benchmarks. Validate effectiveness of implemented security controls through technical analysis. Perform residual IAM risk assessments and document acceptance/rejection rationale. Scope and ...

of Operating System security and system hardening concepts such as CIS Benchmarks. Experience in working with information security frameworks and regulatory requirements including ISO27001, NIST, PCI DSS, GDPR, Cyber Essentials. Experience of general IT Audit processes and conducting risk assessments. You will be a proactive self starter with strong communication ...

Compliance & Audit Support internal and external audits and remediate IAM control gaps Demonstrate compliance with FCA/PRA expectations, GDPR, SOX, ISO 27001, and NIST Partner with Risk and Compliance teams to improve identity-related risk posture Stakeholder & Vendor Management Engage senior stakeholders including CIO, CISO, and Head of Risk ...

rules, analytics, baselines and security automation Run vulnerability scanning using tools like Tenable, Pentera, Varonis, Secure Score Support compliance work (ISO 27001, Cyber Essentials, NIST, SOC2) Contribute to threat hunting, threat intelligence application and proactive monitoring Support operational resilience: scenario testing, DR exercises, post-incident reviews Assist with security tooling ...

infrastructure, cloud environments, and sensitive data.* Lead incident response, threat intelligence, and vulnerability management programs.* Maintain compliance with global standards (e.g., ISO 27001, NIST, GDPR, HIPAA).**Governance, Risk & Compliance*** Develop and enforce enterprise-wide security policies and procedures.* In alignment with the business ethics team, ensure compliance with pharmaceutical ...

risk, cyber maturity, security architecture, cyber transformation and regulatory compliance for cyber. Experience of various recognised cyber security relevant standards and regulations, such as NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR and NIS2. Experience working in a variety of environments or organisational contexts to develop cyber strategy and manage cyber ...

management, cyber risk, security target operating model, governance, compliance, cyber security maturity assessment, metrics and C-level dashboards) and leading industry-based practices (e.g. NIST CSF, ISO 2700x) Managing the coordination and communication of key findings and results of engagements, producing written reports and supporting oral presentations to senior client ...

preferred). Experience in cybersecurity with 3+ years in a security architect or solution designer role. Familiarity with industry standards and frameworks such as NIST, ISO 27001, TOGAF. Strong documentation skills with experience writing SDDs, architecture diagrams, and technical specifications. Certifications such as CISSP, SABSA, TOGAF, CCSP, or AWS/ ...

systems, and associated cyber risks. Experience with cloud platforms (AWS, Azure, or GCP) and cloud-native security architecture. Strong familiarity with security frameworks (e.g., NIST, ISO 27001, CIS). Experience implementing security controls including IAM, encryption, endpoint protection, and monitoring solutions. Proficiency in scripting or programming (e.g., Python, PowerShell, Bash ...

Target operating Model and Cyber Security StrategyGovernance, Regulatory & Compliance* Oversee cyber security policies, standards, and control frameworks aligned with ISO 27001, SOC, DORA, NIST, and other related standard and frameworks and financial services best practices* Ensure compliance with global regulatory requirements (e.g., GDPR, DORA, KSA, UAE, MASA, FCA, CSSF ...

implementation of the Operational Technology security strategy across engineering and operational teams. Assist in applying recognised cyber security frameworks such as National Institute of Standards and Technology Cyber Security Framework and IEC 62443 to operational environments. Work with engineering teams to understand how operational systems such as Supervisory Control and ...

theory, but having been in the room when something went wrong Knowledge of common security frameworks and standards (e.g. NCSC Cyber Essentials, ISO 27001, NIST, SOC 2) Highly Desirable ISO 27001 Lead Implementer or Lead Auditor certification, or hands‐on experience leading an ISO 27001 certification programme Experience ...

Actions, Concourse, CircleCI) Familiarity with maintaining HIDS systems (Wazuh preferred). NICE TO HAVE Knowledge of security standards and governance frameworks (e.g., CIS Benchmarks, NIST, SOC2, ISO 27001, PCI DSS) and how to operationalize them. Hands-on experience with building and maintaining a SIEM comprised of open-source and hosted ...

CFOs, CISOs, and Audit Committees on cybersecurity strategy, governance, and compliance. · Oversee delivery of cybersecurity assessments, remediation programs, and regulatory compliance engagements (ISO 27001, NIST, SEC Cyber Rules). · Ensure projects meet quality standards, timelines, and client expectations. Operational & Financial Management · Monitor financial performance of the UK cybersecurity practice, including ...

prioritised roadmaps for resilience capability uplift, aligned to organisational goals and risk appetite. Robust knowledge of relevant security and resilience frameworks and regulations (e.g., NIST CSF, NIS/NIS2, sector‐specific resilience expectations), and practical experience translating these into implementable capabilities and controls. Strong stakeholder management experience across C‐suite ...

Coordinating and integrating public sector/defence digital services. Leverage AI for public benefit and strengthen digital infrastructure. Manage incident response with knowledge of NIST, ISO 27001, etc. Recruit, mentor, and influence SOC teams. Duration: 6 months Location: Fully remote (with occasional onsite meetings 1–2x per month) Start date ...

cybersecurity or security operations Strong experience with Microsoft security stack (Defender, Sentinel, Entra ID, Intune) Good knowledge of cloud security and frameworks (ISO 27001, NIST) Strong communication and problem-solving skills This role is a hybrid position in Central London. Please apply with your latest CV for consideration. ...

Strong executive communication and stakeholder management skills Experience leading and scaling teams within a consulting environment Knowledge of security frameworks (e.g. GDPR, NIST, ISO27001, SOC2) You will gain exposure with: Enterprise-scale Microsoft Security transformation programmes Strategic collaboration across global Microsoft-focused teams Design and delivery of managed security services ...

security assessments and producing assurance reports. Ability to engage and influence stakeholders at all levels. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls). Excellent communication, planning, and organisational skills. Experience managing teams and developing talent. Ability to interpret complex technical and business information to assess ...

ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality ...

advisory, and compliance roles * Be comfortable interpreting vulnerability reports/logs and translating findings into action * Have knowledge of security frameworks such as ISO27001, NIST, or similar * Demonstrate experience in risk assessments, policy development, and security governance * Ideally hold or be working towards certifications such as CISM, CISSP, or CISA ...