51 to 75 of 86 NIST Jobs in London

experience:* MUST DORA/Operational Resilience * Major Incident Management* Business Continuity & Disaster Recovery* Financial Services/FinTech* ISO 22301/ISO 27001/NIST* Stakeholder & Regulatory Management This role will lead DORA implementation, resilience testing, ICT incident response, third-party risk and enterprise recovery planning across the business. High-impact ...

Skills & Experience Proven experience delivering cyber, technology, or control assurance projects in large, distributed organisations Knowledge of security frameworks and standards (ISO 27001, NIST CSF, CIS, GDPR, SOC2, IEC62443) and control assurance practices Experience in metrics, reporting, and continuous control monitoring for second-line assurance Strong stakeholder management, communication, and ...

analytical and problem-solving skills with a pragmatic approach to risk management. Desirable: CIPM certification. CIPT qualification. Experience with AI/ML governance frameworks, NIST AI Risk Management Framework, or equivalent AI governance standards. Got your attention? If you believe that you have the skills and experience for this Data ...

and vulnerability management lifecycles. Experience working within multi-supplier or SIAM environments. Ability to interpret and govern SOC and vulnerability management outputs. Knowledge of NIST CSF, NCSC guidance, or UK Government security frameorks. Experience within Defence or other highly regulated environments. Exposure to ISMS, audit, assurance, and ITIL practices. ...

MIME) VPN and wireless authentication Define and implement PKI governance, policies, and operational standards Ensure alignment with security frameworks and regulatory requirements (e.g. ISO27001, NIST, legal sector obligations) Provide clear documentation and knowledge transfer to operational teams Required Skills & Experience Strong hands-on experience with Microsoft PKI technologies , particularly Active ...

thinking, we redefine GRC and IT strategies, empowering organisations to shine. From wielding cyber‐superpowers to mastering security frameworks like ISO 27001:2013 and NIST, we are certified wizards ready to chart a course to success, strengthen defenses, and turn challenges into opportunities to excel. So whether our customers ...

Governance Support Support the organisation's cyber security governance framework and compliance activities. Assist in maintaining alignment with recognised security frameworks such as the NIST Cybersecurity Framework (CSF). Monitor policy compliance and support internal and external audit requirements. Maintain and update security policies, procedures, and documentation. Vulnerability Management & Reporting ...

Skills & Experience Essential Experience in cyber risk management, ideally within a regulated or critical infrastructure environment. Understanding of cyber risk frameworks (e.g., ISO 27005, NIST, FAIR) and the NCSC CAF. Degree or equivalent in cyber security, risk management, or a related field. Relevant certifications (e.g., CRISC, CISSP, ISO 27005 Risk ...

threat detection, and vulnerability management , working closely with tools such as CrowdStrike Falcon (EDR) . The position also involves supporting compliance and governance frameworks (NIST, ISO 27001) , coordinating remediation activities, and maintaining risk and incident tracking across ICT teams. We're looking for someone with strong EDR experience (ideally CrowdStrike ...

stakeholders and technical teams to deliver pragmatic, risk-led outcomes. Key Responsibilities Provide expert advice on cyber risk management frameworks including ISO 27005 and NIST RMF Lead risk identification, assessment and treatment across applications, infrastructure and digital services Facilitate structured risk workshops and threat modelling sessions Assess solution architectures … and sound judgement Any candidates must have an active SC level of security clearance to be considered. Technical Knowledge Security frameworks including ISO 27001, NIST CSF, CIS and NCSC guidance Regulatory landscape including GDPR and PCI DSS Familiarity with HMG and NCSC standards Modern technology environments: Cloud platforms such ...

and external audits, ensuring compliance with UK GDPR and relevant security standards Oversee regulatory reporting and ensure adherence to industry frameworks (e.g., ISO 27001, NIST) Focus on practical risk reduction aligned to business priorities Data Security & Transformation Lead the implementation of data security capabilities to discover, classify, and protect sensitive … best practice frameworks Skills & Experience Required Proven experience managing external MSSPs, SOC, or MDR providers Strong knowledge of security frameworks such as ISO 27001, NIST, and UK GDPR Experience maintaining enterprise-level risk registers and governance frameworks Familiarity with data security posture management (DSPM) tools and data classification platforms Good ...

Greater London is hiring a Contract Cloud Security Consultant to support their Cyber Transformation Programme. The role involves ensuring security alignment with standards like NIST CSF 2.0, leading threat modelling and risk assessments, and promoting best security practices within a matrixed environment. Ideal candidates will have deep knowledge in DevSecOps ...

Vetting (DV) clearance Proven experience as a Security Architect on large-scale IT transformation or application development programmes Strong working knowledge of NCSC guidance, NIST, and UK government security classification frameworks Experience navigating government accreditation and assurance processes The ability to engage and influence at the most senior levels, including ...

with clear ownership and evidence. - Align MLOps processes with data governance, AppSec, logging, monitoring and enterprise GRC expectations. - Support AI-specific control closure across NIST-style controls, SOC 2, ISO 27001 and enterprise GRC contexts. - Create repeatable evidence for monitoring, alerting, response, review and BAU handover. - Ensure MLOps controls ...

with clear ownership and evidence. - Align MLOps processes with data governance, AppSec, logging, monitoring and enterprise GRC expectations. - Support AI-specific control closure across NIST-style controls, SOC 2, ISO 27001 and enterprise GRC contexts. - Create repeatable evidence for monitoring, alerting, response, review and BAU handover. - Ensure MLOps controls ...

queues via CrowdStrike Falcon and integrated log management tools. Investigate and escalate alerts where required. 2. Compliance & Governance Support: Assist in maintaining alignment with NIST CSF, track documentation, policy compliance, and audit requirements across ICT teams. 3. Vulnerability Tracking & Reporting: Oversee regular vulnerability scanning schedules. Analyze scan results and recent ...

risk decisions Engage with C-suite and board stakeholders, providing clear, commercially focused risk insight Support or lead audit and compliance activities (ISO 27001, NIST, GDPR) Stabilise and where needed, restructure internal teams and third-party suppliers Skills & Experience: Proven experience operating as a Head of Security/Security Director … security transformation or uplift in contract roles Ability to hit the ground running in complex, ambiguous environments Deep understanding of security frameworks (ISO 27001, NIST, CIS) Experience across cloud environments (Azure/AWS), enterprise architecture and cyber operations Strong stakeholder management - comfortable challenging and influencing at exec level Background ...

technology-led organisation would be highly desirable Qualifications CIPP/E is strongly preferred CIPM would also be beneficial CIPT, ISO 27701, ISO/NIST AI governance or related AI governance training would be advantageous ...

and application monitoring. Knowledge of advanced agent orchestration protocols (eg, A2A communication) and Model Context Protocols (MCPs). Familiarity with secure development frameworks (OWASP, NIST, ISO 27001). Background working in Defence, GovTech, aerospace, or similarly regulated sectors. ...

and strengthening security hygiene. The ideal candidate will have proven experience in cyber assurance projects and knowledge of security frameworks like ISO 27001 and NIST CSF. This contract position is hybrid, with two days in Reading and three days remote, offering a daily rate of £620. #J-18808-Ljbffr ...

Guardrails, Agents, and Knowledge Bases (RAG) . AI Security & Fundamentals: Solid understanding of Foundation Models, tool use (function calling), OWASP LLM Top 10 , and NIST AI RMF . Automation Stack: Strong Python development skills, experience with AI eval tools (Garak, Pyrit, Ragas), and building complex CI/CD test pipelines. ...

basics Experience with: Third-party risk/supplier assurance Policy management Risk and compliance processes Understanding of frameworks such as: ISO 27001/NIST/CIS (basic awareness is fine) Comfortable working in a delivery-focused, directive environment Someone practical, reliable and detail oriented Reasonable Adjustments: Respect and equality ...

teams, clients, and formal reports Assist senior penetration testers with research, evidence collection, and report writing Adhere to internal methodologies and industry frameworks, including NIST, OWASP, and CREST best practices What They're Looking For: 1-2 years' experience in vulnerability assessment, security testing, or junior penetration testing Good understanding ...

with clients, delivery teams, and senior stakeholders to embed security into solution design Standards & Compliance - Ensure adherence to industry standards such as ISO 27001, NIST, and government security policies Skills and Experience: Experience working as a Security Architect or in a senior security role within complex environments Strong practical experience … experience conducting threat modelling (e.g. STRIDE, attack trees) and risk analysis Strong understanding of security frameworks and best practice such as ISO 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure/NCSC CAF, HMG Security Policy Framework. ...

best practice. Understanding of network technologies in a hybrid cloud/on-premise environment. Experience supporting infrastructure security hardening activities, including applying CIS Benchmarks, NIST guidance or comparable security standards. Collaborative approach, with a willingness to share knowledge and support colleagues. Comfortable helping to steer technical direction and support ...