26 to 50 of 155 NIST Jobs in London

Experience with vulnerability scanning tools (e.g., Nessus, Qualys, OpenVAS) and penetration testing tools (e.g., Metasploit, Burp Suite, Kali Linux). Familiarity with common security frameworks and compliance requirements (e.g., NIST, ISO 27001, GDPR, PCI-DSS) Relevant certifications (e.g., CEH, OSCP, CISSP, CISM, GIAC) are strongly preferred. More ❯

risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to communicate risks associated with More ❯

practises. Experience with security assessment and risk management methodologies. Proficiency in cloud security, particularly with Azure security tools and services. Familiarity with security standards and frameworks (e.g., ISO 27001, NIST, CIS). Knowledge of security technologies such as firewalls and web proxies; experience with ZTNA, CTI, and threat modelling is beneficial. Excellent communication and interpersonal skills. Ability to work effectively More ❯

security strategy, policies, and controls across a multi-regional environment. Lead global security operations, including threat detection, incident response, and risk mitigation. Manage compliance with standards such as ISO27001, NIST, Cyber Essentials+, and GDPR. Build and develop a high-performing cyber team spanning multiple international offices. Collaborate with senior leadership, risk committees, and external vendors to ensure alignment on cyber More ❯

e.g., Zscaler, Cisco Umbrella, Infoblox) and their role in threat containment Deep knowledge of Zero Trust Architecture, lateral movement prevention, and alignment to frameworks like MITRE ATT&CK and NIST CSF Excellent communication skills with the ability to influence technical and business stakeholders across all levels of an organization Experience supporting RFP/RFI processes, technical solution documentation, and bill More ❯

e.g., Zscaler, Cisco Umbrella, Infoblox) and their role in threat containment Deep knowledge of Zero Trust Architecture, lateral movement prevention, and alignment to frameworks like MITRE ATT&CK and NIST CSF Excellent communication skills with the ability to influence technical and business stakeholders across all levels of an organization Experience supporting RFP/RFI processes, technical solution documentation, and bill More ❯

Relationship building across teams Set Yourself Apart With Security Certifications: CISSP, CCSP, CISA, CISM, ITIL GCP certifications: Professional Cloud Architect, Professional Cloud Security Engineer Knowledge of standards like ISO, NIST, CSA Experience in regulated environments Experience with Azure security design Development experience in Python, Node Desire to learn and contribute Additional Information Our hybrid work policy requires employees to be More ❯

network observability and predictive analytics to proactively prevent outages. Security, Compliance & Risk Management: Drive zero-trust security frameworks, ensuring secure and resilient network access. Ensure adherence to ISO 27001, NIST, SOC 2, GDPR, and industry best practices. Collaborate with cybersecurity teams to enhance network threat detection and mitigation. Implement automated security policy enforcement, reducing human intervention in risk mitigation. Financial More ❯

and a solid technical understanding are essential. Responsibilities: Regulatory Compliance & Framework Development: Support the implementation of a comprehensive business resilience framework aligned with DORA and other regulatory requirements (e.g., NIST, ISO 22301, ISO 27001). Develop training materials, policies, controls, and risk assessment methodologies to ensure adherence to regulatory standards. Support key pillars of the DORA program, including ICT Risk … in cybersecurity, operational resilience, systems architecture, or related fields, with extensive exposure to Operational Resilience, particularly DORA . Strong understanding of UK regulatory requirements and frameworks such as DORA, NIST, ISO 22301, and ISO 27001. Proven experience conducting risk assessments, regulatory compliance reviews, and resilience testing . Ability to translate regulatory requirements into actionable plans and track them to completion. More ❯

complex organisations Strong understanding of cyber risk, threat management, and technical security controls Excellent stakeholder management and communication skills Experience with governance, risk, and compliance frameworks (e.g., ISO 27001, NIST, GDPR) PRINCE2, PMP, or similar project management certification desirable Knowledge of cloud security (Azure/AWS) a plus Reasonable Adjustments: Respect and equality are core values to us. We are More ❯

Collaborating with risk, compliance, internal stakeholders, and executive leadership. Leading cyber operations including incident response, threat monitoring, detection, and recovery. Ensuring compliance with relevant standards and frameworks including ISO27001, NIST, GDPR, and Cyber Essentials+. Overseeing security architecture, tooling, and controls including Microsoft Defender, Sentinel, CrowdStrike, and Azure. Skills you’ll need to demonstrate: 5+ Years experience in a cyber security More ❯

Drive continuousenhancements to the CMDB, improvingvisibility, compliance, and lifecycle managementof IT assets. Security, Compliance & Risk Management: Embedsecurity and compliance into operational workflowswith automated security controls. Ensure adherence toISO 27001, NIST, SOC 2, GDPR, and cloud security best practices. Collaborate withcybersecurity teamsto integratezero-trust security models. Driveresiliency planning, disaster recovery, and business continuity initiatives. Financial & Vendor Management: Optimize IT operational budgets More ❯

and Azure tools, AWS security services. Familiarity with Cyber Essentials guidelines and verification. Strategic, innovative mindset and adaptability in fast-paced environments. Desirable Qualifications Experience with regulatory compliance (ISO27001, NIST) in an agile scale-up. Certifications like CCSP, CISSP, SSCP. Understanding of financial regulations, blockchain, security operations, and back-office systems. Interest in offensive security and PKI. Why Join Fnality More ❯

security protocols, standards, and best practices. Strong knowledge of network security, application security, and cloud security, specifically with Azure. Experience with security frameworks and compliance standards (e.g., ISO 27001, NIST, GDPR). Familiarity with penetration testing and vulnerability assessment tools. Hands-on experience with security incident response and forensic analysis ECS Recruitment Group Ltd is acting as an Employment Agency More ❯

closely with DevOps to embed security in CI/CD pipelines and infrastructure-as-code processes - Enforce security policies, standards, and procedures aligned with frameworks like ISO 27001 and NIST - Monitor and report on risk posture, incident trends, and compliance status to inform leadership decisions - Guide and support junior cybersecurity professionals and interns through technical coaching and feedback You: - Bachelor … SIEM platforms (especially Azure Sentinel) and vulnerability management tools - Strong knowledge of incident response, infrastructure hardening, and cloud security controls - Familiarity with SOC 2, ISO 27001, Cyber Essentials, and NIST frameworks - Experience with core security technologies: firewalls, EDR, IAM, DLP, encryption - Strong communication, documentation, and stakeholder engagement skills Benefits: - Join a growing business in a thriving and innovative sector - Join More ❯

closely with DevOps to embed security in CI/CD pipelines and infrastructure-as-code processes - Enforce security policies, standards, and procedures aligned with frameworks like ISO 27001 and NIST - Monitor and report on risk posture, incident trends, and compliance status to inform leadership decisions - Guide and support junior cybersecurity professionals and interns through technical coaching and feedback You: - Bachelor … SIEM platforms (especially Azure Sentinel) and vulnerability management tools - Strong knowledge of incident response, infrastructure hardening, and cloud security controls - Familiarity with SOC 2, ISO 27001, Cyber Essentials, and NIST frameworks - Experience with core security technologies: firewalls, EDR, IAM, DLP, encryption - Strong communication, documentation, and stakeholder engagement skills Benefits: - Join a growing business in a thriving and innovative sector - Join More ❯

changes, and industry best practices. Required Skills & Experience: Proven experience in Information Security, Cybersecurity, and/or Information Privacy. Deep understanding of regulatory frameworks: GDPR, DPA 2018, ISO 27001, NIST , and FCA guidelines. Strong knowledge of security controls, data lifecycle management, and access control models. Experience within the banking or financial services sector is essential. Demonstrated ability to engage with More ❯

security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/ More ❯

IT general controls (ITGCs). Excellent knowledge of a wide range of technology (infrastructure, applications, networking, cyber security, IT governance). Familiarity with IT control frameworks such as COBIT, NIST or ISO 27001. Experience with auditing tools and techniques, and proficiency in Microsoft Excel, Word, Outlook, Visio, PowerPoint, Access. Excellent analytical, problem-solving, verbal and written communication skills with the More ❯

experience in a Cyber/Information Security Role. Hold a current and relevant Security Certifications (e.g., CISSP, CISM). Extensive knowledge of security best practices, frameworks, and standards (e.g., NIST, ISO 27001). Proven experience as a Security Architect, with a strong focus on AI security. Deep understanding of AI/ML concepts, including model development, data pipelines, and deployment. More ❯

drive smarter, safer operations. 🔍 What You’ll Do: →Plan and deliver audits across infrastructure, cloud, cybersecurity, and third-party risks →Evaluate ITGCs, application controls, and compliance with SOX, GDPR, NIST, ISO 27001 →Partner with international teams to scope audits and execute testing →Deliver clear, actionable reports to senior stakeholders →Monitor remediation efforts and support integrated audits →Stay ahead of emerging More ❯

drive smarter, safer operations. 🔍 What You’ll Do: →Plan and deliver audits across infrastructure, cloud, cybersecurity, and third-party risks →Evaluate ITGCs, application controls, and compliance with SOX, GDPR, NIST, ISO 27001 →Partner with international teams to scope audits and execute testing →Deliver clear, actionable reports to senior stakeholders →Monitor remediation efforts and support integrated audits →Stay ahead of emerging More ❯

demonstrable expertise with monitoring and securing enterprise class technology estates. You will have proven experience with Cyber Security best practice including remediations for the MITRE ATT&CK Framework and NIST Cloud Security guidelines. You will support ISO 27001 compliance and have strong documentation skills. Experience in the Telco sector and knowledge of the UK Telecoms Security Act would be advantageous More ❯

Data, Application, Technology, and Security considerations into all project phases. Governance and Compliance: Maintain architectural practices in full compliance with healthcare regulations and standards, such as GDPR, CAF, DSPT, NIST, and NHS guidelines. Routinely review and update architectural policies to reflect evolving requirements, with embedded security throughout. Mentorship and Leadership: Provide leadership and mentorship to technical teams and subject matter … healthcare IT solutions. Proven success in leading large-scale projects and managing cross-functional teams. In-depth knowledge of healthcare regulations, standards, and best practices (e.g., GDPR, CAF, DSPT, NIST). Exceptional communication, presentation, and interpersonal skills. Relevant certifications such as TOGAF or Zachman are desirable. 5-7 years of experience in IT architecture roles, including time in senior or More ❯

management principles and security controls Interest in developing expertise in auditing, compliance, and risk Desirable (nice to have) Knowledge of other standards or frameworks such as Cyber Essentials Plus, NIST Cyber Security Framework, or ISO27701 Awareness of legal and regulatory requirements (e.g., NIS Directive, Telecom Security Act, Data Protection Act) We are the undisputed leader in UK TV and radio More ❯