1 to 25 of 94 Remote NIST 800 Jobs

independently, demonstrating initiative, and managing tasks with minimal oversight. The role involves hands-on support for cybersecurity engineering efforts aligned with NIST SP 800-53, eMASS, Tenable, ACAS, and DoD cybersecurity validation practices. This position is 100% remote but requires up to 30% CONUS and OCONUS … teams across cybersecurity, engineering, and compliance disciplines. Responsibilities: Execute and support the DoD Risk Management Framework (RMF) lifecycle in accordance with NIST SP 800-37 Rev. 2, with emphasis on system categorization, control selection, implementation, assessment, authorization, and continuous monitoring for IMCOM systems. Apply and interpret … NIST SP 800-53 Revisions 4 and 5 to assess, tailor, and document security and privacy controls for both hybrid IT/OT environments and system-specific implementations. Implement and support cybersecurity strategies for Operational Technology (OT) and Facilities-Related Control Systems (FRCS) in alignment with More ❯

actions by developing and delivering PAM (Privileged Access Management) solutions that include supporting documents and artifacts in accordance with RMF as defined in NIST 800-37 revision 2 and related agency specific RMF requirements Provide input into an Audit and Accountability … Plan containing methods, procedures, and planned reviews for the continuing accreditation and authorization against AU (Audit and Accountability) family controls per NIST SP 800-53 guidance Provide input to and guide implementation and/or verification and validation of an organizational access control policy and plan … topology. Experience selecting effective methods, techniques, and evaluation criteria to achieve desired outcomes. Understanding of federal cybersecurity guidance such as FISMA NIST SP 800-37 - Guide for Applying the Risk Management Framework to Federal Information Systems: a Security Life Cycle Approach and NIST 800 More ❯

portfolio. Primary Responsibilities: Prepare Information Systems: Carry out activities at various levels to help manage security and privacy risks using the JISF and NIST RMF. Categorize Information Systems: Determine the adverse impact to Judiciary operations and assets, individuals, other organizations, and the Nation. Select Security Controls: Select, tailor … acceptable. Monitor Security Controls: Maintain ongoing situational awareness about the security and privacy posture of the information system in compliance with NIST SP 800-53 Rev. 5, NIST SP 800-37 Rev. 2, and CSF 2.0. Common Control Identification: Identify, document, and … Risk and Compliance (GRC) experience of which two years were direct supervisory experience. Possess in-depth knowledge of applying, selecting and testing the NIST 800-53 Rev 4 or 5 security controls. Possess in-depth knowledge of NIST 800-37 Risk Management More ❯

portfolio. Primary Responsibilities: Prepare Information Systems: Carry out activities at various levels to help manage security and privacy risks using the JISF and NIST RMF. Categorize Information Systems: Determine the adverse impact to Judiciary operations and assets, individuals, other organizations, and the Nation. Select Security Controls: Select, tailor … acceptable. Monitor Security Controls: Maintain ongoing situational awareness about the security and privacy posture of the information system in compliance with NIST SP 800-53 Rev. 5, NIST SP 800-37 Rev. 2, and CSF 2.0. Leveraging the existing GRC tool to … Risk and Compliance (GRC) experience of which two years were direct supervisory experience. Possess in-depth knowledge of applying, selecting and testing the NIST 800-53 Rev 4 or 5 security controls. Possess in-depth knowledge of NIST 800-37 Risk Management More ❯

be successful in this role: Strong communication and customer service skills. Proficiency in cybersecurity assessment and compliance. Familiarity with RMF process, NIST SP 800-37, NIST SP 800-53, and CNSSI 1253. Minimum of 7 years of experience in the cybersecurity field. More ❯

be successful in this role: Strong communication and customer service skills. Proficiency in cybersecurity assessment and compliance. Familiarity with RMF process, NIST SP 800-37, NIST SP 800-53, and CNSSI 1253. Minimum of 4 years of experience in the cybersecurity field. More ❯

be successful in this role: Strong communication and customer service skills. Proficiency in cybersecurity assessment and compliance. Familiarity with RMF process, NIST SP 800-37, NIST SP 800-53, and CNSSI 1253. Minimum of 7 years of experience in the cybersecurity field. More ❯

accreditation process under Risk Management Framework (RMF). This may include one or more of the following guidance directives: DoDI 8500.01, NIST SP 800-37, NIST SP 800-53, and Committee on National Security Systems Instruction (CNSSI) 1253. The ISSO will be … Clearance. • DoD IAT Level II certification: CCNA Security, CSA+, GICSP, GSEC, Security + CE, or SSCP is required before applying. • Experience with the NIST SP800-53 Security Controls. • Experience with the continuous monitoring of system security controls. • Must be able to build and maintain effective team and customer More ❯

Requirements: - Expert in RMF - Demonstrated leadership skills/Previous lead position - Customer service skills - Project Management skills - Proficient with RMF process, NIST SP 800-37, NIST SP 800-53, CNSSI 1253 Education Requirement: - Master's degree in IT-related field or at More ❯

that technologies are assessed prior to introduction into the network. Support multiple Authorizations to Operate (ATOs)/systems per DoDI 8510.01, NIST SP 800-30, and NIST SP 800-37. Support authorization efforts of approximately seven (7) packages on an annual More ❯

configuring, running, and analyzing vulnerability scans Experience with XACTA, EMass, or similar tool Experience with NIST Special Publications e.g. NIST SP 800-27, 30, 37, 53, 60 Experience with CNSS publication CNSSI 1253 Experience with incident response plans, plan of actions and milestones, risk … and Centos environment Experience with big data applications Experience with Jira and Confluence Experience working in an Agile environment Experience with NIST SP 800-171 Original Posting: May 2, 2025 For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this More ❯

completed within the past 5 years Desired Skills: Knowledge of: • Understanding of process to obtain ATOs and Risk Management Framework, (RMF) NIST SP 800-53 • Experience with generating Bodies of Evidence (Sec. Test Plans, checklists, STIG reports) • Experience with virtual machine hardening and STIG compliance • Experience … or other networking products • Strong understanding of System Security Engineering (SSE) principals and process • Advanced Understanding of Risk Management Framework (RMF) NIST SP 800-53 • Knowledge of RedHat Linux Operating System (7.X or 8.X) • Experience with Fortify and/or similar Static Code Analysis tools • Experience More ❯

ensure secure-by-design principles. Conduct threat modelling exercises to identify and mitigate potential risks. Ensure compliance with security regulations such as ISO27001, NIST 800-30/37/53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents … and remediation activities. The Person Key Skills & Experience: Strong knowledge of risk management frameworks and methodologies (ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53). Experience with defence and government security standards (JSPs, Def Stan More ❯

ensure secure-by-design principles. Conduct threat modelling exercises to identify and mitigate potential risks. Ensure compliance with security regulations such as ISO27001, NIST 800-30/37/53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents … and remediation activities. The Person Key Skills & Experience: Strong knowledge of risk management frameworks and methodologies (ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53). Experience with defence and government security standards (JSPs, Def Stan More ❯

global security standards. You'll also drive cyber awareness and training initiatives for commercial teams, support regulatory compliance (e.g., ISO 27001, NIST SP 800-53, GDPR), and handle incident response, triage, and escalations per internal policies. You'll contribute to investigations, the annual NIST … analytical security professional with a strong technical background and excellent communication skills. You bring: Proven experience with ISO 27001, NIST CSF/SP 800-53, GDPR compliance, and risk management Strong technical expertise in implementing security controls aligned with ISMS Ability to create clear, audience-tailored More ❯

the requirements definition phase through disposal. Perform compliance monitoring, analysis, tracking and reporting Apply NIST Risk Management Framework and NIST SP 800-53 security controls Analyze and re-mediate weaknesses while working with system administrators and other personnel in the organization to implement risk … experience, or 10 years of experience and a Master's degree Must be able to demonstrate integration of regulations and processes such as NIST 800 series special publications, Risk Management Framework (RMF), and Federal Information Security Act (FISMA) reporting for national security systems (NSS) Must have More ❯

Management Framework (RMF) and all associated information security policies and procedures and should possess in-depth knowledge of applying, selecting and testing the NIST family of security controls. Primary Responsibilities: Advising stakeholders on InfoSec initiatives including compliance, awareness and training, and security operations. Leading Independent Validation and Verification … years of experience. Strong data analysis skills. Excellent written and verbal communication skills. Possess in-depth knowledge of applying, selecting and testing the NIST 800-53 Rev 4 security controls. Possess in-depth knowledge of NIST 800-37 Risk Management Framework. Experience …/equipment. Desired Qualifications: Intermediate level cybersecurity certification (e.g., CompTIA Security+, ISC2 CGRC). In-depth knowledge of applying, selecting and testing the NIST 800-53 Rev 5 security controls. Public Trust Many of DSA's positions require the ability to obtain a security clearance. Security More ❯

in leading and executing IT audit, IT internal control, and IT risk consulting engagements, leveraging IT governance and control frameworks such as COBIT, NIST CSF, NIST 800-53, and ITIL and proficiency in core requirements and methodologies for SOX internal control programs is a … plus. You have advanced knowledge of leading frameworks such as ISO 27001, NIST Cybersecurity Framework (CSF) NIST 800-53, CIS and the Cybersecurity Maturity Model. You have experience with Information Governance and Information Security Strategy plans, and assessments using industry framework; ISO, NIST More ❯

outside of the box, and grasp technical concepts Excellent attention to detail Ability to support industry standard third-party questionnaires (SIG, SIG Lite, NIST, CAIQ, etc.) Proven ability to maintain an IT risk register, perform risk assessments, and provide risk reporting and metrics Articulate ideas in a business … risk and mitigation for areas such as Artificial Intelligence, Machine Learning, and Robotics Technologies. Experience working with a variety of industry standards, including NIST Cyber Security Framework (CSF), NIST 800-53, NIST 800-82, TOGAF, Purdue Model, IEC62443, Cloud Security More ❯

cybersecurity and AI governance frameworks. This role is pivotal in ensuring our customers receive accurate, clear, and timely answers to their questions regarding NIST (CSF, 800-53, etc.), SOC2 (Type 1 & 2), ISO 27001, and the emerging ISO 42001 standard. The ideal candidate possesses deep subject … do Compliance Subject Matter Expert: Serve as the go-to expert for customer inquiries related to the interpretation, requirements, and best practices of NIST, SOC2, ISO 27001, and ISO 42001 frameworks Query Resolution: Directly address and resolve customer questions regarding these compliance standards, ensuring accuracy and clarity in … with a strong focus on specific frameworks Deep, demonstrable understanding and practical knowledge of NIST frameworks (e.g., Cybersecurity Framework, NIST SP 800-53). Must be able to explain core concepts and requirements accurately Deep, demonstrable understanding and practical knowledge of SOC2 (Trust Services More ❯

management processes. Experience with any of the following certifications/compliance matrices: ISO 27000, ISO 20000, ISO 9000, CMMI, ISACA ITAF, FISMA, FEDRAMP, NIST 800-53, NIST 800-171, SOX, SOC, or another relevant standard. Other Requirements: Occasional overtime is required. Occasional More ❯

maintain the complete security Body of Evidence (BoE) while leading the Assessment & Authorization (A&A) activities according to the RMF processes (CNSSI-1253, NIST 800-37, NIST 800-53, etc.) for all Advanced Radars information systems Author, complete and maintain the System More ❯

bring the program's platform information technology systems through the full life cycle of the Risk Management Framework (RMF) processes IAW (CNSSI-1253, NIST 800-37, NIST 800-53, etc.) to achieve/renew Authority to Operate (ATO). - Author, complete and More ❯

Certifications: Professional certification such as CISSP or CISA. Technical and Knowledge Requirements: Strong understanding of NIST Special Publications, including NIST SP 800-53, FISMA, and other audit and security standards. Familiarity with OMB circulars A-123 and A-130, FMFIA, and FISCAM processes and More ❯

perform cyber security audits. Experience in producing Zones and Conduits Partitioning Diagrams, Cyber Security Requirements definition and cyber security Assurance. ISO 27005/NIST 800-82/NIST 800-53 Knowledge. NIS/NIS2 knowledge. Railway industry experience and TS 50701 Knowledge. More ❯