1 to 25 of 842 Remote NIST Jobs

meet the companys information protection requirements. • Performs or coordinates internal security assessments, penetration tests, vulnerability scans, and assess organization cybersecurity maturity Complying with frameworks and regulations such as COBIT, NIST (800-53, cybersecurity), ISO, ITIL, PCI, GLBA, GDPR, HIPAA, and other data privacy and security standards and regulations. • Provides internal customer support via assigned tickets for security-related issues, while … Systems, Computer Science, or similar discipline. • Provides a documented work history that includes a minimum of 5-years experience in Information Security. • Proficiency in security framework models such as NIST, etc., implementing and auditing security measures, security response, and incident management. • Possess a working knowledge of Cisco network switches, routers, firewalls and VPN, network security, administration of DLP, antivirusantimalware, IDS … Ability to manage and continuously improve upon vulnerability management program. • Ability to propose solutions for closing identified vulnerabilities in the infrastructure. Desired Qualifications: • Certified Information System Security Professional (CISSP), NIST Cybersecurity Framework (NCSF), Certified Cloud Security Professional (CCSP) andor Certified Ethical Hacker (CEH) • Knowledge and experience with Microsoft Office and Visio. • Knowledge of WAN technologies including MPLS, SD WAN. • Knowledge More ❯

of incident response workflows, timelines, and action items for continuous improvement. Compliance and Risk Management: Ensure all incident response activities align with industry standards, regulations, and best practices (e.g., NIST, ISO 27001, GDPR, HIPAA). Work with legal and compliance teams to manage incidents within the scope of data privacy laws and regulations. Key skills/knowledge/experience: Bachelor More ❯

implement disaster recovery procedures. Manage cybersecurity projects to ensure timely delivery within budget. Perform or coordinate security assessments, penetration tests, and vulnerability scans. Ensure compliance with frameworks like COBIT, NIST, ISO, PCI, GDPR, HIPAA, etc. Provide internal support for security issues within SLAs. Evaluate and implement CIS controls as needed. Contribute to cybersecurity strategic planning and budgeting. Follow change management … policies. Qualifications Bachelor's degree required; advanced degree highly desirable. Minimum 5 years experience in Information Security. Proficiency in security frameworks like NIST, implementing and auditing security measures. Knowledge of Cisco networking, firewalls, VPN, DLP, IDS/IPS, SIEM, and related technologies. Experience with identity access management solutions such as SAML, OAuth. Relevant security certifications (e.g., CISSP, CISM, CEH) are … highly desirable. Ability to analyze and recommend security improvements. Desired Qualifications Certifications like CISSP, NIST CSF, CCSP, CEH. Knowledge of cloud security (AWS, GCP, Azure). Experience managing Cisco ELA products, Splunk, SolarWinds, Varonis, Darktrace. Experience in HIPAA/FDA regulated environments. Competencies Motivation, initiative, administrative skills, interpersonal skills, self-management, thinking skills, customer orientation, adaptability, problem-solving, and effective More ❯

SIEM, vulnerability scanners, firewalls, antivirus, and endpoint protection platforms. Familiarity with cloud security (AWS, Azure, or GCP) and hybrid environments. Good understanding of regulatory frameworks and standards (ISO 27001, NIST, PCI DSS). Professional certifications such as CISSP, CISM, CEH, or CompTIA Security+ are highly desirable. Excellent analytical, problem–solving, and communication skills. Desirable: Experience in the finance or fintech More ❯

SIEM, vulnerability scanners, firewalls, antivirus, and endpoint protection platforms. Familiarity with cloud security (AWS, Azure, or GCP) and hybrid environments. Good understanding of regulatory frameworks and standards (ISO 27001, NIST, PCI DSS). Professional certifications such as CISSP, CISM, CEH, or CompTIA Security+ are highly desirable. Excellent analytical, problem-solving, and communication skills. Desirable: Experience in the finance or fintech More ❯

information security, including a minimum of 2 years as a security architect or engineer. Technical and Core Competencies Familiarity with enterprise security architecture frameworks (e.g., Zero Trust Network Architecture, NIST CSF). Knowledge of standards and frameworks such as ISO/IEC 27001/27002 and MITRE ATT&CK. Hands-on experience with cloud security (AWS, Azure, or GCP), IAM More ❯

captures (Wireshark, TCPDump). Familiarity with scripting languages such as Python, Bash, or PowerShell. Experience with cloud security monitoring (AWS, Azure, GCP). Knowledge of incident management frameworks like NIST, MITRE ATT&CK. Preferred Qualifications: Certification such as CompTIA Security+ Bachelor's degree in Computer Science, Information Security, or related field Seniority level Seniority level Associate Employment type Employment type More ❯

Sentinel (SIEM) for threat detection, log analysis, and incident response. Establish incident response playbooks and conduct forensic investigations when needed. 4. Compliance & Risk Management Ensure adherence to ISO 27001, NIST, GDPR, and CIS Benchmarks. Conduct risk assessments, vulnerability scans, and security audits. Define data protection, backup, and retention policies aligned with Microsoft 365 compliance tools. 5. Network Security & Infrastructure Protection More ❯

support compliance. Collaborate with IT and business units to ensure secure systems development and operations. Compliance & Risk Management Ensure compliance with regulatory and legal security requirements (e.g., ISO 27001, NIST, HIPAA, GDPR, SOX, etc.). Ensure compliance with applicable data protection laws (e.g., GDPR, CCPA, GLBA). Guide Data Protection Impact Assessments (DPIAs) for high-risk financial data processing activities. … Science, or a related field 5-7+ years of experience in information security, preferably in financial services. In-depth understanding of security frameworks (e.g., ISO/IEC 27001, NIST CSF, CIS Controls) and cybersecurity principles, practices, and regulatory requirements in the finance sector. Experience in security technologies such as firewalls, IDS/IPS, SIEM, encryption, and identity management. Experience More ❯

focus on hands-on security engineering and operations. In-depth knowledge of networking protocols, operating systems, and cloud technologies. Strong understanding of security principles, practices, and frameworks (e.g., PCI, NIST, ISO 27001). Experience with security tools such as SIEM, IDS/IPS, endpoint protection, and penetration testing tools. Experience with public cloud security, specifically AWS, Azure, and Google Cloud More ❯

and present findings to stakeholders or clients. Maintain thorough documentation of investigation steps, timelines, and decisions taken. ️ Compliance & Risk Mitigation Ensure all incident handling aligns with frameworks such as NIST, ISO 27001, and GDPR. Work with compliance teams to manage regulatory reporting during security incidents. Your Profile Essential Skills & Experience: Bachelor’s degree in Computer Science, Information Security, or a More ❯

understanding of cloud technologies traditional networking skills. Having good working knowledge and experience of Microsoft Azure security architecture. Experience in key cloud and network security architecture. Good understanding of NIST Framework. Exposure to security monitoring technologies Understanding of Incident Response, Cyber Kill Chain, ATT&CK · Knowledge & experience of common program language e.g., Python, C++, PowerShell, JavaScript Being able to perform More ❯

understanding of cloud technologies traditional networking skills. Having good working knowledge and experience of Microsoft Azure security architecture. Experience in key cloud and network security architecture. Good understanding of NIST Framework. Exposure to security monitoring technologies Understanding of Incident Response, Cyber Kill Chain, ATT&CK · Knowledge & experience of common program language e.g., Python, C++, PowerShell, JavaScript Being able to perform More ❯

understanding of cloud technologies traditional networking skills. Having good working knowledge and experience of Microsoft Azure security architecture. Experience in key cloud and network security architecture. Good understanding of NIST Framework. Exposure to security monitoring technologies Understanding of Incident Response, Cyber Kill Chain, ATT&CK · Knowledge & experience of common program language e.g., Python, C++, PowerShell, JavaScript Being able to perform More ❯

and present findings to stakeholders or clients. Maintain thorough documentation of investigation steps, timelines, and decisions taken. ⚖️ Compliance & Risk Mitigation Ensure all incident handling aligns with frameworks such as NIST, ISO 27001, and GDPR. Work with compliance teams to manage regulatory reporting during security incidents. Your Profile 🔑 Essential Skills & Experience: Bachelor’s degree in Computer Science, Information Security, or a More ❯

to manage external security operations. Desirable Certifications: Azure Security Engineer Associate, CISSP, OSCP (Offensive Security Certified Professional), CCSP, or equivalent. Experience with container security (Docker, Kubernetes). Knowledge of NIST, ISO 27001, SOC 2 compliance frameworks. Familiarity with Zero Trust security principles. Other Stuff NB: Please only apply if you are able to work from their Debden (IG10) offices Monday More ❯

the latest trends, solutions, and best practices in the industry e.g. Application Security Posture Management (ASPM), Continuous Cyber and IT controls monitoring (CCM) Thorough understanding of compliance frameworks like NIST and FedRAMP and the audit process around demonstrating compliance effectively. Practical experience of the System Development Life Cycle, Software Development Life Cycle, and Agile framework Expertise in risk analysis, threat … and reusable platform capability. It would be desirable , but not essentia l, if you also had one or more of Practical experience of ISO27001/27004/27005 or NIST Risk Management Framework (RMF); Experience in security accreditation e.g. PCI-DSS, FedRAMP, SSDF (NIST SP800-218), FISMA/NIST SP800-53, ISO 27001, DORA Cyber security certification e.g. Certified Information More ❯

the latest trends, solutions, and best practices in the industry e.g. Application Security Posture Management (ASPM), Continuous Cyber and IT controls monitoring (CCM) Thorough understanding of compliance frameworks like NIST and FedRAMP and the audit process around demonstrating compliance effectively. Practical experience of the System Development Life Cycle, Software Development Life Cycle, and Agile framework Expertise in risk analysis, threat … and reusable platform capability. It would be desirable , but not essentia l, if you also had one or more of Practical experience of ISO27001/27004/27005 or NIST Risk Management Framework (RMF); Experience in security accreditation e.g. PCI-DSS, FedRAMP, SSDF (NIST SP800-218), FISMA/NIST SP800-53, ISO 27001, DORA Cyber security certification e.g. Certified Information More ❯

focus on hands-on security engineering and operations. In-depth knowledge of networking protocols, operating systems, and cloud technologies. Strong understanding of security principles, practices, and frameworks (e.g., PCI, NIST, ISO 27001). Experience with security tools such as SIEM, IDS/IPS, endpoint protection, and penetration testing tools. Experience with public cloud security, specifically AWS, Azure, and Google Cloud More ❯

security incident investigations, implement remediation strategies, and develop proactive measures to mitigate future risks. Compliance: Ensure cloud environments comply with regulatory standards and organizational policies (e.g., GDPR, ISO 27001, NIST, or SOC 2). Automation & CI/CD: Integrate security tools into CI/CD pipelines to enable automated vulnerability scanning, compliance checks, and secure deployments. Monitoring and Threat Detection More ❯

Experience coordinating with an external SOC or working in a hybrid detection/response model. Knowledge and understanding of Cyber Security frameworks such as CIS Critical Controls v8 and NIST Cybersecurity Framework Regulatory compliance - knowledge of GDPR, ISO-27001 and SOC2 Knowledge of encryption methods and best practices for protecting sensitive data Are familiar with common Operating Systems - Windows, Linux More ❯

VPNs, SD-WAN, SASE, NAC, and next-gen firewalls to support secure access and business continuity. • Governance & Compliance Alignment: Ensure designs align with enterprise security policies, compliance requirements (e.g., NIST, ISO 27001, PCI-DSS), and architecture governance standards. Key Skills & Experience • 8+ years of experience in network security, cybersecurity architecture, or network engineering-including 3+ years in a design or … tools (e.g., Terraform, Ansible, PowerShell, Python). • Strong understanding of Agile methodologies, including participation in Scrum, SAFe, or Agile delivery teams. • Familiarity with frameworks such as MITRE ATT&CK, NIST CSF, Zero Trust, and architectural models (e.g., TOGAF, SABSA). Preferred Qualifications • Bachelor's or Master's degree in Cybersecurity, Computer Science, Network Engineering, or a related field. • Relevant certifications More ❯

VPNs, SD-WAN, SASE, NAC, and next-gen firewalls to support secure access and business continuity. • Governance & Compliance Alignment: Ensure designs align with enterprise security policies, compliance requirements (e.g., NIST, ISO 27001, PCI-DSS), and architecture governance standards. Key Skills & Experience • 8+ years of experience in network security, cybersecurity architecture, or network engineering-including 3+ years in a design or … tools (e.g., Terraform, Ansible, PowerShell, Python). • Strong understanding of Agile methodologies, including participation in Scrum, SAFe, or Agile delivery teams. • Familiarity with frameworks such as MITRE ATT&CK, NIST CSF, Zero Trust, and architectural models (e.g., TOGAF, SABSA). Preferred Qualifications • Bachelor's or Master's degree in Cybersecurity, Computer Science, Network Engineering, or a related field. • Relevant certifications More ❯

We are seeking an experienced Security Engineer to join our dynamic and growing team. The successful candidate will play a crucial role in supporting management with securing our organization's infrastructure, systems, and data against cyber threats. As a Security More ❯

blockchain technology and its cryptographic principles is a plus. Certifications such as CISSP, CISM, AWS Security Specialty, HashiCorp Certified Vault Associate or CCSK. Familiarity with security frameworks such as NIST 800-57, ISO 27001 or PCI DSS. Are you the right candidate? Yes! We truly believe in the power that comes from the diverse backgrounds and experiences our employees bring More ❯