24 of 24 NIST 800 Jobs in London

technical concepts and assessment results verbally and in written reports in simple terms; Knowledge of IEC 62443, MITRE ATT&CK for ICS, NIST CSF, NIST SP 800-82 and relevant regulations in EU and UK; Interest and ability to write exciting whitepapers and publications ; A supportive and a proactive personality , you know how to More ❯

be responsible for overseeing Security Operations and ensuring the highest level of security for the customer. The Cyber Security Consultant leads detailed risk assessments, implements industry-standard frameworks (NIST, NCSC, NIS2), and actively manages SIEM/XDR tools such as IBM QRadar, Microsoft Sentinel, and Defender XDR. This role involves deeper client interaction, proactive risk management, and advanced … in cybersecurity). Responsibilities: Manage and strengthen client relationships with regular strategic interactions. Lead comprehensive cybersecurity risk assessments aligned to industry standards. Conduct environment reviews, ensuring compliance with NIST frameworks and related standards. Oversee and implement SIEM/XDR deployments, custom rule development, and incident response processes. Provide guidance on best practices for SIEM/XDR and threat … detection. Conduct security posture reviews and gap analysis. Prepare reports and present findings to client stakeholders. Location London, UK Good understanding of cybersecurity frameworks (NIST CSF, NCSC CAF, NIS2, NIST 800-30). Good understanding of risk assessment methodologies (NIST 800-30). Hands-on experience with SIEM/XDR More ❯

AlertMedia platform Experience with Conducttr platform Familiarity with Salesforce Shield, Event Monitoring, and encryption features Understanding of business continuity and disaster recovery frameworks (e.g., ISO 22301, NIST SP 800-34, FFIEC) Working knowledge of data governance, compliance (e.g., GDPR, HIPAA), and audit readiness Soft Skills: Excellent documentation, communication, and problem-solving skills Please note you must More ❯

license management, quality inspections, and certification processes like FRACAS/CAP and corrective actions. Our architecture emphasizes business process alignment and compliance with cybersecurity standards including NIST SP 800-171, CMMC, ITAR . We aim to develop BNN , a generative AI model that provides detailed insights into operational and analytical processes, ensuring compliance with DFARS and More ❯

like FRACAS/CAP and corrective actions. Our architecture emphasizes not only functionality but also aligns with business processes and government policies, including cybersecurity standards like NIST SP 800-171, CMMC, and ITAR compliance. We aim to leverage Generative AI models to analyze data, identify knowledge gaps, and maintain operational and regulatory compliance, especially with DFARS More ❯

Job Title: Security Governance Lead – NIST & Archer Expertise Location: London About the Role: Albany Beck is seeking a highly skilled Security Governance Lead to support a key financial services client in advancing its information security governance capabilities. This role requires deep expertise in NIST frameworks and Archer GRC, as well as strong leadership in centralising security … stakeholder engagement. Required Experience and Skills: Proven experience in a security governance or risk management leadership role within the financial services or consulting industry. Strong working knowledge of NIST frameworks (e.g., NIST CSF, NIST 800-53). Hands-on experience with RSA Archer GRC platform, particularly in managing controls, risks, and compliance More ❯

Job Title: Security Governance Lead – NIST & Archer Expertise Location: London About the Role: Albany Beck is seeking a highly skilled Security Governance Lead to support a key financial services client in advancing its information security governance capabilities. This role requires deep expertise in NIST frameworks and Archer GRC, as well as strong leadership in centralising security … stakeholder engagement. Required Experience and Skills: Proven experience in a security governance or risk management leadership role within the financial services or consulting industry. Strong working knowledge of NIST frameworks (e.g., NIST CSF, NIST 800-53). Hands-on experience with RSA Archer GRC platform, particularly in managing controls, risks, and compliance More ❯

EBA Guidelines). Has a comprehensive understanding of what it takes to comply with cyber security industry standards and frameworks in practise (e.g. ISO 27001, NIST CSF, SP 800-53, NCSC CAF, Cyber Essentials). Has a thorough understanding of cyber security threat and risk with the ability to think like an attacker and design controls More ❯

out more about our commitment to equity, diversity, and inclusion on our website . Unilever's Cyber Security team is a global, product-led function aligned to the NIST Cyber Security Framework. We deliver capabilities across governance, protection, detection, response, and recovery to safeguard our people, operations, and digital assets. Operating alongside our Technology and Data teams, Cyber … to determine attack vectors and impacts. Maintain forensic readiness in environments with high availability and low tolerance for downtime. Ensure forensic activities comply with sector-specific regulations (e.g., NIST CSF, NERC CIP, ISA/IEC 62443). Support audits, insurance claims, and legal proceedings with documented forensic evidence. Maintain readiness for compliance reviews related to critical infrastructure. Continuously … performance. Aligning forensic practices with organizational risk management strategies. Working knowledge of legal processes for evidence handling and chain of custody. Familiarity with standards and regulations such as: -NIST CSF/NIST 800-61 -ISA/IEC 62443 -ISO/IEC 27001 Conducting end-to-end digital forensic investigations (disk, memory, network). Hands More ❯

out more about our commitment to equity, diversity, and inclusion on our website . Unilever's Cyber Security team is a global, product-led function aligned to the NIST Cyber Security Framework. We deliver capabilities across governance, protection, detection, response, and recovery to safeguard our people, operations, and digital assets. Operating alongside our Technology and Data teams, Cyber … to determine attack vectors and impacts. Maintain forensic readiness in environments with high availability and low tolerance for downtime. Ensure forensic activities comply with sector-specific regulations (e.g., NIST CSF, NERC CIP, ISA/IEC 62443). Support audits, insurance claims, and legal proceedings with documented forensic evidence. Maintain readiness for compliance reviews related to critical infrastructure. Continuously … performance. Aligning forensic practices with organizational risk management strategies. Working knowledge of legal processes for evidence handling and chain of custody. Familiarity with standards and regulations such as: -NIST CSF/NIST 800-61 -ISA/IEC 62443 -ISO/IEC 27001 Conducting end-to-end digital forensic investigations (disk, memory, network). Hands More ❯

as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to communicate More ❯

3+ years' experience performing IT Audit or security control testing. Knowledge of internal audit methodologies, including risk assessment, execution, and reporting. Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO 27001/27002). Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws. Experience with sector-specific frameworks (e.g., HIPAA, PCI). More ❯

3+ years' experience performing IT Audit or security control testing. Knowledge of internal audit methodologies, including risk assessment, execution, and reporting. Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO 27001/27002). Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws. Experience with sector-specific frameworks (e.g., HIPAA, PCI). More ❯

day-to-day operations to major transformation projects. Main responsibilities: Leading security assurance, assessments, and advisory for IT and business projects (both Cloud and On-Prem), aligned to NIST 800-53 standards. Partnering with security architecture and other teams to define and embed security patterns and controls. Developing non-functional security requirements and guiding their integration … to finish. Bonus points if you bring: Experience with AppSec and DevSecOps. Hands-on knowledge of Azure, AWS, and/or Google Cloud. Familiarity with standards like ISO2700X, ISO31000, NIST800, PCI-DSS. Certifications such as CISSP, CCSP, CRISC, CISM, or SABSA. Why QBE? At My Best At QBE, we want our people to feel rewarded and inspired to perform at More ❯

Posture Management, External Attack Surface Management, Microsoft Active Directory, M365, Entra ID, Defender for Endpoint, Microsoft Azure. Understanding of industry security standards and frameworks (i.e. MITRE ATT&CK, NIST 800-53). Industry security certifications preferred (CISSP, GIAC, CCSP, OSCP, CEH, Azure Certifications, etc ). Ability to write both technical and business documents. Strong, proven problem … day Employee Assistance Programme - access to personal advice and support services including counselling Eyecare vouchers (once a year) Cycle to Work scheme Christie's Extras - discounts on over 800 retailers, holiday packages, dinners and weekly shops Seniorcare by Lottie, a comprehensive eldercare solution Robust family first policy: Ø 16 weeks full pay on Maternity Leave Ø Four-day More ❯

making across engineering and leadership teams. - Support Compliance and Audit Readiness: Build and maintain solutions that automate evidence gathering and real-time compliance monitoring across frameworks such as NIST 800-53, HITRUST, PCI-DSS, and FedRAMP. - Collaborate Across Teams: Partner with cloud engineering, GRC, and program teams to align internal tooling with evolving compliance needs and … Microsoft Sentinel, Defender XDR, Purview, Entra ID, Azure Policy. - Hands-on experience integrating or piloting AI agents or LLMs in operational workflows. - Knowledge of compliance standards such as NIST, HIPAA, FedRAMP, PCI, SOC2, or HITRUST. - Security certifications such as SC-200, GCSA, or equivalent. Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment More ❯

in energy generation, utilities, or other regulated sectors. Strong understanding of Operational Technology (OT) environments, including DCS, SCADA, and ICS, with alignment to NCSC CAF, IEC 62443, and NIST 800-82. Experience supporting Ofgem regulatory compliance, including ISSA returns and NIS Regulations. Demonstrated ability to lead complex programmes, manage multidisciplinary teams, and engage with technical More ❯

in energy generation, utilities, or other regulated sectors. Strong understanding of Operational Technology (OT) environments, including DCS, SCADA, and ICS, with alignment to NCSC CAF, IEC 62443, and NIST 800-82. Experience supporting Ofgem regulatory compliance, including ISSA returns and NIS Regulations. Demonstrated ability to lead complex programmes, manage multidisciplinary teams, and engage with technical More ❯

understanding of Operational Technology (OT) environments, with hands-on experience in securing and modernising legacy systems, including DCS, SCADA, and ICS, aligned to NCSC CAF, IEC 62443, and NIST 800-82. Direct experience supporting Ofgem regulatory reporting and compliance, including preparation of ISSA returns, evidence packs, and action tracking in line with NIS Regulations and More ❯

security architecture experience across multiple domains: Cloud, Network, Infrastructure, Application, Data, IAM Implementation of controls aligning to Information Security and Privacy Standards and Frameworks (e.g. ISO 27001, CSA-CCM, NIST800-53, CIS, GDPR etc ) Expert knowledge of key Amazon cloud security technologies, including AWS: IAM, SSO, Organisations, Guard Duty, Security Hub, Inspector, Config, CloudTrail, Shield Advanced, WAF, Macie, Detective, Certificate More ❯

Assurance Risk Assessment and Risk Treatment Plans Establish security requirements for cloud-based solutions by evaluating business strategies and requirements, implementing security standards such as ISO 27000 series, NIST, CSF, and CSA Identify and deliver appropriate controls based on industry standards (e.g. CCM) to drive cloud and customer security solutions framework based on business risk and cloud native … IAM Cloud security concepts, technologies and best practices for delivering security across IaaS, PaaS, SaaS and Serverless architectures Implementing Information Security and Privacy Standards and Frameworks (e.g. ISO 27k, NIST800-53, CIS, GDPR) Leading security working groups and external security testing (ITHC, Penetration Testing, etc) of cloud solutions at high HMG classification levels (OFFICIAL required, SECRET desirable) or equivalent in More ❯

design and manage comprehensive security programmes tailored to diverse environments, including hybrid IT/OT settings. Demonstrable experience of delivering projects to industry frameworks and compliance requirements, such as NIST800-53, ISO27001, NIST CSF, NIS 2, DORA. Expertise in emerging technologies such as AI, IoT, cloud solutions, and advanced threat detection systems. Experience in advising on their application … design and manage comprehensive security programmes tailored to diverse environments, including hybrid IT/OT settings. Demonstrable experience of delivering projects to industry frameworks and compliance requirements, such as NIST800-53, ISO27001, NIST CSF, NIS 2, DORA. Expertise in emerging technologies such as AI, IoT, cloud solutions, and advanced threat detection systems. Experience in advising on their application More ❯

client projects: Designing and managing comprehensive security programs tailored to diverse environments, including hybrid IT/OT settings. Delivering projects aligned with industry frameworks and compliance requirements such as NIST800-53, ISO27001, NIST CSF, NIS 2, DORA. Applying expertise in emerging technologies like AI, IoT, cloud solutions, and advanced threat detection systems. Advising on their application, assessing suitability More ❯

client projects: Design and manage comprehensive security programmes tailored to diverse environments, including hybrid IT/OT settings. Deliver projects aligned with industry frameworks and compliance requirements, such as NIST800-53, ISO27001, NIST CSF, NIS 2, DORA. Leverage emerging technologies such as AI, IoT, cloud solutions, and advanced threat detection systems. Advise on their application, assess their suitability More ❯