1 to 25 of 28 Remote/Hybrid NIST Jobs in London

proven experience gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF ...

of DNS, DMARC/DKIM/SPF, networking fundamentals and TCP/IP. Familiarity with frameworks such as MITRE ATT&CK, ISO27001, CIS benchmarks, NIST, Cyber Essentials. Ability to explain technical concepts to non-technical audiences. Strong documentation, analysis and problem-solving skills. Experience in security auditing, PCI DSS, CSIRT ...

clients What would be desirable? * Experience working in a managed services or MSP environment* Exposure to compliance frameworks such as GDPR, ISO 27001, or NIST* Vulnerability assessment or penetration testing experience* SOC or security operations experience* Mentoring or leadership exposure within technical teams The Package * 40-hour working week (Monday ...

of cybersecurity controls is demonstrated by attainment of appropriate qualifications, e.g. CISSP, ISO27001 Lead Implementor or relevant SANS GIAC or equivalent. Knowledge of the NIST framework, PCI DSS, GDPR and NIS as well as NCSC cyber guidance. Experience working in an agile delivery environment would be highly advantageous. Specific cyber ...

architectural assessment using tools like IriusRisk Strong knowledge of compliance benchmarks (e.g., CIS, GDPR, PCI-DSS, ISO standards) and industry cloud security standards (e.g., NIST, CSA) Proficiency in coding and workload languages (e.g., Python, Java, .NET) and practical understanding of various cloud models (IaaS, PaaS, SaaS) Excellent documentation, presentation, and ...

regulations, and legislative requirements, including but not limited to: NIS Directive - Cyber Assessment Framework (CAF) ISO/IEC 27001 and ISO/IEC 27002 NIST Cybersecurity Framework (CSF) 2.0 IEC 62443 GDPR and the Data Protection Act Desirable Skills Experience working in regulated or Critical National Infrastructure environments. Familiarity with ...

Intelligence: Knowledge of modern adversarial ML techniques and supply-chain risks. Cloud & Frameworks: Familiarity with AWS/Azure/GCP security and industry standards (NIST AI RMF, ISO 27001, OWASP Top 10 for LLMs, MITRE ATLAS). Consulting Skills: Ability to translate complex technical risks into actionable guidance for senior ...

security assessments and producing assurance reports. Ability to engage and influence stakeholders at all levels. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls). Excellent communication, planning, and organisational skills. Experience managing teams and developing talent. Ability to interpret complex technical and business information to assess ...

this role, you should have: Expertise in designing Technology & Information Security Governance Frameworks and authoring relevant policies. Experience with Risk and Resilience Frameworks (e.g., NIST, ISO27001, COBIT, ITIL). Strong knowledge of UK and European regulations, including ECB, DORA, and FCA/PRA. Exceptional stakeholder engagement and influencing skills. Outstanding ...

experience with AWS security services (IAM, KMS, GuardDuty, Security Hub, Macie). Solid understanding of cloud security frameworks and compliance standards (ISO 27001, NIST, CIS). Proficient in Infrastructure as Code (Terraform, CloudFormation, AWS CDK). Experience embedding security into CI/CD pipelines (GitHub). Knowledge of deploying and ...

standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across ...

travel to UK client sites. Desirable: Experience in UK Central Government, Defence, or other regulated environments; familiarity with AI and data frameworks (DAMA-DMBOK, NIST AI RMF, ISO 23894, ISO 27001, GDPR/DPA 2018); hands-on with platforms such as Microsoft Purview, Azure ML, Databricks, Power BI, Collibra ...

technical updates and dashboards for stakeholders. Candidate Profile: Hands-on experience in disaster recovery, failover testing, and operational resilience. Solid understanding of ISO27001, ISO22301, NIST frameworks, and control evidence. Experience with hyperconverged and hybrid cloud infrastructure (Nutanix, VMware, Commvault, Azure). Skilled in scripting (PowerShell or Python) and infrastructure tooling. ...

and DevSecOps pipelines. Lead threat modelling exercises and train non-security stakeholders in its application. About the requirements: Strong knowledge of industry frameworks (NIST CSF, ISO/IEC 27001, CIS Benchmarks) and core security principles (Zero Trust, Least Privilege, Network Segmentation) Proven experience with Azure/GCP security, CSPM, CWPP ...

/ML systems. Helpful Experience Exposure to MLOps, LLMOps, or model lifecycle management. Awareness of model risk and regulatory frameworks (e.g., SS1/23, NIST AI Risk Management Framework). Understanding of operational resilience concepts and SRE practices (SLIs/SLOs). Experience with data lineage or governance tooling (Datahub ...

security risk, or compliance role Certifications for ISO 27001 (Lead Implementer/Auditor) , would be required Strong knowledge of frameworks such as ISO 27001, NIST, SOC 2, CIS , and data protection standards Onboarding/vendor risk management experience Hands-on experience supporting or leading ISO 27001 certification activities Solid understanding ...

security risk, or compliance role Certifications for ISO 27001 (Lead Implementer/Auditor) , would be required Strong knowledge of frameworks such as ISO 27001, NIST, SOC 2, CIS , and data protection standards Onboarding/vendor risk management experience Hands-on experience supporting or leading ISO 27001 certification activities Solid understanding ...

industry, preferably Insurance is essential Previous management experience in an Information Security role Experience working with Cyber Essentials, GDPR and preferably DORA, ISO27001/NIST CSF Experience working in a regulated industry - financial/pharmaceutical - large volumes of data Experience working with auditors or regulators Hybrid working - 2 days ...

of cloud security principles: IAM, KMS, encryption, zero trust, least privilege. Experience implementing policy-as-code and pipeline security controls. Understanding of CIS benchmarks, NIST, ISO27001, compliance frameworks. Cloud Migration Skills Direct experience supporting large-scale on-prem to AWS migrations . Strong understanding of migration waves, application onboarding, and ...

technology services structure with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans … designs. Collaborate with cloud infrastructure teams to implement IAM design patterns. Ensure IAM security controls are appropriately implemented in our environment and align with NIST and CIS benchmarks. Validate effectiveness of implemented IAM security controls through technical analysis. Perform residual IAM risk assessments and document acceptance/rejection rationale. Scope ...

clearly demonstrable and will have worked as an architect and understand the requirements of architecture frameworks and Information & Cyber Security frameworks such as NIST, Cyber Essentials and ISO27001. Previous experience of working for a global professional service environment or corporate organisation such as legal/finance/banking. Solid understanding … of multiple architecture and security tools, techniques and frameworks TOGAF, SABSA, BSIMM, NIST, ISO 27001 etc. Solid understanding of secure development principles for multiple delivery methods, Agile, Waterfall etc. Practical experience of Information Security Risk Management and Threat Management. The ability to champion Information Security Architecture principles at an enterprise ...

security controls (e.g., SIEM, IDS/IPS, firewalls, secure SDLC, cloud security configuration, CIS hardening, API security). Knowledge of security frameworks such as NIST, ISO 27001, CIS and OWASP. Exceptional communication and stakeholder management skills, with the ability to simplify complex concepts. Strong problem-solving abilities and high initiative. … professional certification. Multi-year experience in a security engineering role. Desirable: CISSP certification. Cloud security certifications for AWS. Risk management experience (CRISC, ISO 27005, NIST RMF). Network security and coding experience (Python, Bash, PowerShell, GitHub). Penetration testing exposure. ...

video transformers). Familiarity with safety benchmarks, adversarial testing, red teaming, or uncertainty estimation. Knowledge of AI governance, risk frameworks, or industry standards (e.g., NIST AI RMF, ISO/IEC 42001). Experience with synthetic data generation or test corpus construction. Familiarity with experiment tracking tools (Comet/Opik,, MLflow ...

and remediation using tools like AWS Inspector, Snyk, or Trivy. Governance & Compliance: Establish and maintain security baselines aligned with organizational and regulatory standards (ISO, NIST, CIS). Integrate security guardrails using AWS Control Tower and Landing Zone Accelerator. Conduct regular security posture assessments and audits. Automation & Infrastructure as Code: - Automate … security services (IAM, KMS, GuardDuty, Security Hub, Macie). Cloud Security frameworks and standards: Knowledge of governance frameworks and compliance standards (ISO 27001, NIST, CIS benchmarks). Platform Engineering: Proficiency in designing and implementing scalable, resilient, and secure platforms using public cloud (AWS, GCP). Automation: Experience with infrastructure ...

and robustness, aligned with Secure by Design principles Defining and implementing AI governance, risk management, and mitigation strategies, following GDS (Government Digital Service) and NIST frameworks Conducting threat modeling, vulnerability assessments, and security audits for AI systems Advising stakeholders on secure AI development practices, prompt engineering, and safe AI agent … cloud, and system security (Python, APIs, or equivalent technologies) Experience in threat modeling, vulnerability management, or secure AI deployment Practical knowledge of GDS standards, NIST AI security frameworks, and Secure by Design principles Ability to communicate complex AI security concepts clearly to technical and non-technical stakeholders Eligible ...