51 to 75 of 118 NIST Jobs in London

through the full system lifecycle, including design, delivery, and operational stages. Implement best practices across authentication, authorization, protective monitoring, and control frameworks such as NIST, ISO, and CIS. Communicate complex technical solutions effectively to both technical and non-technical stakeholders, including presenting and writing guidance documentation. We are looking ...

and potential threats. 3. Compliance & Audit: Ensure the organization's adherence to relevant information security regulations, laws, and industry standards (e.g. HIPAA, PCI DSS, NIST, CIS, ISO 27001, Cyber Essentials+). Coordinate and participate in internal and external security audits, provide evidence, and ensure timely remediation of audit findings. Develop … equivalent practical experience). Demonstrable experience in information security. Experience creating Cyber Security roadmaps. Strong understanding of information security principles, frameworks (e.g., ISO 27001, NIST, Cyber Essentials), and best practices. Hands-on experience with security technologies such as firewalls, SIEM, IDS/IPS, vulnerability scanners, endpoint detection and response ...

reliable and relevant evidence. Operate: Have a proven track record in security and information risk management. Have knowledge and experience of the following: ISO27001, NIST Cyber Security Framework (CSF), National Cyber Security Centre (NCSC) and National Protective Security Authority (NPSA) Standards and Guidance. MANDATORY experience required: Security clearance to BPSS ...

security risk, or compliance role Certifications for ISO 27001 (Lead Implementer/Auditor) , would be required Strong knowledge of frameworks such as ISO 27001, NIST, SOC 2, CIS , and data protection standards Onboarding/vendor risk management experience Hands-on experience supporting or leading ISO 27001 certification activities Solid understanding ...

security risk, or compliance role Certifications for ISO 27001 (Lead Implementer/Auditor) , would be required Strong knowledge of frameworks such as ISO 27001, NIST, SOC 2, CIS , and data protection standards Onboarding/vendor risk management experience Hands-on experience supporting or leading ISO 27001 certification activities Solid understanding ...

Need: Clearance: Active SC. Experience: Proven track record in information assurance on large-scale HMG or government contracts. Standards: Strong knowledge of ISO27001, NIST, NCSC, and NPSA standards. Communication: Ability to influence stakeholders and build trusted customer relationships. Preferred: Experience with the Telecoms Security Act (TSA) or auditing. Why Apply ...

emerging vulnerabilities across web applications, APIs, and other platforms, along with knowledge of key security standards such as OWASP Top 10, SANS Top 25, NIST, and ASVS. Hands-on experience with security tools like SAST, SCA, and container scanning, plus familiarity with programming languages such as Java, C#, and Python. ...

ownership — ideal for someone ready to step up and shape a growing security function. The Role Build and mature security frameworks (ISO 27001, CE+, NIST, SOC 2) Lead gap analysis and audit readiness Own the security risk register and drive mitigation Develop policies, standards, and procedures Support ISO 22301/ ...

good understanding of CI/CD and Infrastructure as Code (IaC) You have a good knowledge of Cloud Control Frameworks e.g. CIS, CSA, NIST You're collaborative and pragmatic with great communication skills Relevant certifications such as CKA, CKS, OSCP, paCSP, AWS Certified Security - Specialty, AWS Certified Solutions Architect - Associate ...

Experience with virtualised environments Excellent communication & presentation skills (Engineer → C‐Suite) Desirable Experience Delivering solutions to security frameworks (ISA/IEC 62443, OG86, CAF, NIST, PAS86) Cisco, Fortinet + industrial networking (Hirschmann/Belden) Windows & Linux administration Network monitoring, event logging, zones/conduits Kali Linux tooling knowledge Understanding of ...

of all sizes worldwide. Our offerings include certifications and cybersecurity services across a wide array of frameworks, including PCI, SOC 2, CMMC, FedRAMP, GDPR, NIST, and more. Leveraging our Compliance Hub tool, OneAudit process, AI capabilities, and a global team of experts, ControlCase provides a trusted, scalable approach to meet ...

technology services structure with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans … designs. Collaborate with cloud infrastructure teams to implement IAM design patterns. Ensure IAM security controls are appropriately implemented in our environment and align with NIST and CIS benchmarks. Validate effectiveness of implemented IAM security controls through technical analysis. Perform residual IAM risk assessments and document acceptance/rejection rationale. Scope ...

security controls (e.g., SIEM, IDS/IPS, firewalls, secure SDLC, cloud security configuration, CIS hardening, API security). Knowledge of security frameworks such as NIST, ISO 27001, CIS and OWASP. Exceptional communication and stakeholder management skills, with the ability to simplify complex concepts. Strong problem-solving abilities and high initiative. … professional certification. Multi-year experience in a security engineering role. Desirable: CISSP certification. Cloud security certifications for AWS. Risk management experience (CRISC, ISO 27005, NIST RMF). Network security and coding experience (Python, Bash, PowerShell, GitHub). Penetration testing exposure. ...

cyber risk within financial services, preferably markets, clearing, exchanges or banking.? Solid understanding of risk and control design, with familiarity with relevant frameworks (e.g. NIST, ISO 27001, DORA, operational resilience regimes).? Experience operating in a 2nd Line or closely related risk/governance role, or in a 1st Line ...

Management: Own security requirements through the entire delivery and operational lifecycle of a system. Specialist Advice: Provide authoritative guidance on risk mitigation, control frameworks (NIST, ISO, CIS), and protective monitoring. Stakeholder Engagement: Effectively communicate complex technical solutions to non-technical audiences through writing, presentations, and direct consultation. Your Experience ...

requirements throughout the system delivery and operational lifecycle Providing specialist security advice on: Risk-based and threat-based mitigation strategies Security frameworks such as NIST, ISO, CIS Authentication, authorisation, and protective monitoring best practices Developing strong working relationships with stakeholders, peers and teams Communicating complex technical concepts clearly ...

video transformers). Familiarity with safety benchmarks, adversarial testing, red teaming, or uncertainty estimation. Knowledge of AI governance, risk frameworks, or industry standards (e.g., NIST AI RMF, ISO/IEC 42001). Experience with synthetic data generation or test corpus construction. Familiarity with experiment tracking tools (Comet/Opik,, MLflow ...

security controls including Secure Software Development Lifecycles, firewalls, email filtering, web applications firewalls, and more. Familiarity with common information security management frameworks such as NIST, ISO 27001, PCI, CIS, OWASP. Exceptional communication, presentation, collaboration, problem-solving, reporting, and stakeholder management skills at all levels. Desirable: CISSP - Certified Information Systems Security … Professional. Cloud security qualifications and/or certifications for GCP and Azure. Extensive risk management experience (CRISC, ISO27005, NIST RMF). Skills in network security, coding (Python, Bash, PowerShell, GitHub), and penetration testing. Benefits: Engage in a high-impact, fast-paced role with significant responsibility. Hybrid working model - flexibility with ...

Cyber Security Engineer (Hedge Fund) - Python/Powershell/SQL/Tableau BI/NIST/CISSP/CISA - PERM We are seeking a Cyber Security Risk Engineer with a robust background in the full suite of modern technologies employed within an enterprise environment. This role requires a deep understanding … information security, compliance, legal, business teams, and clients to assess and document security risks and compensating controls. Advanced knowledge of risk management frameworks (eg, NIST, ISO 27001, CIS20) and regulatory requirements relevant to the financial sector is a plus. Exceptional analytical, communication, and report-writing skills, with the ability ...

and remediation using tools like AWS Inspector, Snyk, or Trivy. Governance & Compliance: Establish and maintain security baselines aligned with organizational and regulatory standards (ISO, NIST, CIS). Integrate security guardrails using AWS Control Tower and Landing Zone Accelerator. Conduct regular security posture assessments and audits. Automation & Infrastructure as Code: - Automate … security services (IAM, KMS, GuardDuty, Security Hub, Macie). Cloud Security frameworks and standards: Knowledge of governance frameworks and compliance standards (ISO 27001, NIST, CIS benchmarks). Platform Engineering: Proficiency in designing and implementing scalable, resilient, and secure platforms using public cloud (AWS, GCP). Automation: Experience with infrastructure ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity … Deep understanding of legacy and modern authentication protocols, access controls, and identity lifecycle management. Strong security awareness and familiarity with standards such as ISO27001, NIST, and CIS, with experience conducting audits and implementing controls. Solid grasp of Web APIs including SOAP, REST, and GraphQL, and their role in IAM integrations. ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity … Deep understanding of legacy and modern authentication protocols, access controls, and identity lifecycle management. Strong security awareness and familiarity with standards such as ISO27001, NIST, and CIS, with experience conducting audits and implementing controls. Solid grasp of Web APIs including SOAP, REST, and GraphQL, and their role in IAM integrations. ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity … Deep understanding of legacy and modern authentication protocols, access controls, and identity lifecycle management. Strong security awareness and familiarity with standards such as ISO27001, NIST, and CIS, with experience conducting audits and implementing controls. Solid grasp of Web APIs including SOAP, REST, and GraphQL, and their role in IAM integrations. ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity … Deep understanding of legacy and modern authentication protocols, access controls, and identity lifecycle management. Strong security awareness and familiarity with standards such as ISO27001, NIST, and CIS, with experience conducting audits and implementing controls. Solid grasp of Web APIs including SOAP, REST, and GraphQL, and their role in IAM integrations. ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity … Deep understanding of legacy and modern authentication protocols, access controls, and identity lifecycle management. Strong security awareness and familiarity with standards such as ISO27001, NIST, and CIS, with experience conducting audits and implementing controls. Solid grasp of Web APIs including SOAP, REST, and GraphQL, and their role in IAM integrations. ...