101 to 125 of 155 NIST Jobs in London

strategies. Deploy, configure, and manage security tools to optimize detection, response, and reporting functions. Skills & Knowledge Solid understanding of SOC best practices, incident response, and regulatory frameworks (e.g., GDPR, NIST, ISO 27001). Hands-on experience with security technologies such as SIEM, IDS/IPS, EDR, etc. Excellent communication skills, including the ability to explain technical topics to non-technical More ❯

across multiple projects and programmes Design and implement Sentinel playbooks to automate detection and response Lead on PSN audit readiness and ensure compliance with key frameworks (Cyber Essentials, ISO27001, NIST, GDPR) Conduct cyber risk assessments, maintain the risk register, and drive remediation activity Provide regular reports and updates to senior stakeholders on cyber posture, risks, and progress Support and mentor … within a Local Government environment (this is essential) Direct experience supporting or leading PSN audits and wider compliance activities Strong working knowledge of core security frameworks: ISO27001, Cyber Essentials, NIST, GDPR Excellent stakeholder management and reporting skills, with the ability to operate independently in a complex environment CISSP certification is required Please only apply if you have Local Government experience More ❯

hands-on approach to vendor relationship management. Youll have strong knowledge and experience of the following: Payment Card Industry Data Security Standard (PCI-DSS) General Data Protection Regulation (GDPR) NIST Cybersecurity Framework (CSF) Critical Security Controls (CIS) Cyber Essential Plus (CEP) With proven experience in managing and delivering complex Security Operations activities within a fast-paced and dynamic security domain More ❯

and standards such as NIS, GDPR, PCI DSS etc. • Knowledge of topic-specific framework & methodologies in areas such as Risk Management (ISO 31000) IT management (e.g. COBIT) Information Security (NIST, ISF, ISO 27001), Service Delivery (e.g. ITIL) etc. What we can offer you Business Area Primary Location More ❯

implementation/operations/consulting of Security and Compliance frameworks 4+ years of experience building security controls across cloud environments or experience with security protocols and standards such as NIST, IPCI-DSS, ISO27001, ISO27701, ISO42001, NIST 800-53 Experience in internal enterprise or external customer-facing environment as a security technical lead Experience in Security operations such as vulnerability management More ❯

to drive higher maturity. What You'll Be Doing: Develop and implement information security policies, standards, and guidance in collaboration with stakeholders. Ensure compliance with industry standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC 2. Coordinate responses to internal and external audits and liaise with key stakeholders. Develop and deliver security policy awareness and training programs. Assess … in information security, ideally in a public tech company or regulated industry. Experience in developing and implementing information security policies, standards and procedures. Familiarity with security standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC2. Strong skills in security metrics and reporting. Ability to engage collaboratively with technical and non-technical stakeholders. Excellent written and verbal communication skills. More ❯

Cloud engineering experience with security tooling and cloud workload protection Skilled in DevOps, AWS, Infrastructure as Code (Terraform), and scripting (Python, Bash) Knowledge of secure engineering standards (OWASP, CIS, NIST) and Agile/DevOps practices Experienced with CSPM, CNAPP, security incident response, and SIEM tools Ability to evaluate and recommend new security technologies Clear communicator focused on enhancing developer experience More ❯

and systems. - Assess and remediate gaps in security practices and influence operational teams to adopt security-first approaches. - Drive adherence to industry standards and frameworks such as ISO 27001, NIST, or similar. - Provide expert input to enhance security frameworks, policies, and procedures. - Lead and support security awareness initiatives across business units. What We’re Looking For - Strong understanding of information … security principles, particularly in GRC. - Hands-on experience with ISO 27001, NIST, or similar standards. - Excellent communication and stakeholder engagement skills - able to translate technical security concepts into clear business language. - Proven ability to embed governance and compliance into large, complex organisations. - Ability to balance technical, operational, and business priorities. Why Apply? This is more than a technical role - it More ❯

e.g., Zscaler, Cisco Umbrella, Infoblox) and their role in threat containment Deep knowledge of Zero Trust Architecture, lateral movement prevention, and alignment to frameworks like MITRE ATT&CK and NIST CSF Excellent communication skills with the ability to influence technical and business stakeholders across all levels of an organization Experience supporting RFP/RFI processes, technical solution documentation, and bill More ❯

track record of using tools such as Snyk, Trivy, Checkov, OPA/Gatekeeper/OWASP ZAP, or similar to enforce pipeline and platform security. Familiarity with compliance requirements (e.g., NIST, ISO 27001, CIS Benchmarks) and their implementation via code. Ability to lead and mentor teams on secure coding, threat modelling, and secure architecture patterns. Experience with monitoring, logging, and security More ❯

business goals Required Skills & Experience Proven experience in senior security consultancy or architecture roles Strong understanding of cloud security (AWS), SOC design, and threat detection Familiarity with security frameworks (NIST CSF, ISO 27001) and red teaming approaches Excellent communication skills with ability to influence technical and executive stakeholders Preferred Background Experience in software or SaaS environments Previous consulting/advisory More ❯

articulating risks in business terms and advising on mitigation. Excellent stakeholder communication skills, up to C-level. Strong analytical and reporting abilities. Familiarity with risk management frameworks (ISO 3100X, NIST 800 series, ENISA, EBIOS, OCTAVE, FAIR). Preferred: Background in information security and security frameworks (eg, MITRE ATT&CK, ISO 2700X). Experience working in multinational environments. Knowledge of AI More ❯

with security automation; scripting in Python is a strong advantage. Solid understanding of incident response processes, threat intelligence, and security monitoring. Familiarity with frameworks such as MITRE ATT&CK, NIST, and OWASP. Exposure to secure coding practices and DevSecOps environments is a strong plus (not mandatory) Experience working in large enterprise environments and supporting complex infrastructure. Must have the legal More ❯

non-technical stakeholders. Act as a trusted advisor in customer-facing engagements. What You Bring Proven experience with multiple cyber domains including IAM technologies and GRC frameworks (ISO 27001, NIST, GDPR). Strong stakeholder management and interpersonal skills. Excellent communication skills - both written and verbal. Experience in customer-facing roles with technical and business advisory responsibilities. A collaborative mindset and More ❯

Job Title: Zscaler Consultant Day Rate: £500-600 per day (Outside IR35) Duration: 6 months Location: Fully remote/WFH Overview: As Zscaler Consultant you will be a senior member of the team responsible for designing, configuring, implementing, and optimizing More ❯

Job Title: Zscaler Consultant Day Rate: £500-600 per day (Outside IR35) Duration: 6 months Location: Fully remote/WFH Overview: As Zscaler Consultant you will be a senior member of the team responsible for designing, configuring, implementing, and optimizing More ❯

regulatory drivers (e.g., FCA/PRA Operational Resilience Policy, DORA, SYSC 8, PS 21/3, CP4/24) and relevant industry frameworks (COBIT, ITIL, ISO 27001/22301, NIST CSF). Strong analytical skills with the ability to translate complex technical issues into clear, business-focused recommendations. Possession of strong team working and leadership skills, including the ability to More ❯

on experience with ITGCs, ITACs (manual, semi-automated, automated), IPE financial reports testing, SOD/SA design, and transitioning to automated controls Understanding of IT control frameworks (e.g., SOx, NIST, ISO 2700x), risk management, and regulatory compliance, with expertise across multiple technologies (Cloud, SDLC, Cybersecurity, AI) Project management, interpersonal, and communication skills, with the ability to engage senior stakeholders, make More ❯

a strong plus Familiarity with cloud deployments , including architecture, security, and integration (e.g. APIs, SSO) General awareness of industry standards and regulations such as ISO 27001, PCI-DSS, GDPR, NIST Ability to learn and adapt to new technologies independently in a dynamic environment Excellent interpersonal, communication, and collaboration skills with a strong customer-centric approach Fluent in English and French More ❯

scale-up or transformation environment. Excellent negotiation skills, with a proven track record of delivering cost savings and strategic value Understanding of third-party risk frameworks such as ISO27001, NIST, and operational resilience best practices Strong commercial acumen and attention to detail in contract management and risk mitigation The organisation is committed to diversity and inclusion. By providing equal opportunities More ❯

the DORA framework and know how to translate requirements into business deliverables • Track record of implementing and managing IT and cybersecurity control frameworks • Experience with security certification processes (ISO27001, NIST, etc.) • Demonstrated success in remediation of audit findings and control gaps • History of leading security awareness programs and training initiatives • Experience working with external auditors • Familiarity with cloud environments and More ❯

operational controls (such as back-ups, resilient design, anti-virus) are essential * Knowledge of Threat modelling, control frameworks and Risk assessment techniques (such as ISO2700x, COBIT, COSO, ITIL and NIST Cyber Security Framework) is desirable * Knowledge of Cloud Security practices is desirable Experience in the following areas would be beneficial- * Security Design in projects (setting requirements, reviewing architecture) * Risk assessment More ❯

of automation testing in an Agile Software environment Close familiarity with some or all of: Network management and optimisation Postgresql Database management and optimisation With common security frameworks CIS, NIST, OWASP Familiarity with Public Cloud Services like AWS GCP Azure Familiarity with co-located physical infrastructure (we're currently hybrid) Solid understanding of Continuous Integration (CI) and Continuous Deployment (CD More ❯

and manage comprehensive security programmes tailored to diverse environments, including hybrid IT/OT settings. Deliver projects aligned with industry frameworks and compliance requirements, such as NIST800-53, ISO27001, NIST CSF, NIS 2, DORA. Leverage emerging technologies such as AI, IoT, cloud solutions, and advanced threat detection systems. Advise on their application, assess their suitability for specific environments, and determine More ❯

Maintain detailed project documentation, including risk assessments, change logs, and status reports. Support incident response efforts and post-incident reviews during off-hours. Ensure adherence to cybersecurity frameworks (e.g., NIST, ISO 27001) and regulatory requirements. Provide leadership and mentorship to junior team members during shifts. More ❯