101 to 125 of 142 Remote NIST Jobs

Semantic Kernel, and Bedrock Agents Defining enterprise standards for MCP servers, A2A communication, and agent-to-system interoperability Owning Responsible AI guardrails aligned to NIST AI RMF, EU AI Act, and ISO/IEC 42001 Mentoring architects and engineers, leading design authority forums and architecture reviews Core Tech Stack Azure ...

similar lockdown tools. Experience working with high-security MOD systems and secure design principles. Familiarity with security and compliance documentation (e.g. RMADS, SyOPs, NIST frameworks). Core Technologies Microsoft: Windows Server 2019/2022/2025 Active Directory, Group Policy, DNS, DHCP Exchange Server 2019, SQL Server, SharePoint 2019 VMware ...

native logging, monitoring, and detection capabilities (CloudTrail, GuardDuty, Security Hub, Config) and support incident response and automated remediation. Support compliance and risk management initiatives (NIST 800-53, ISO 27001, SOC 2, FedRAMP, GDPR) through secure baseline management, control implementation, and remediation tracking. Collaborate with Systems Integration & Test (SI&T) and … of secure architecture principles, networking technologies, Zero Trust, and SASE models. Experience securing enterprise infrastructure within regulated environments (e.g., Government, Financial Services, Healthcare), including NIST and FISMA compliance. Expertise in threat modeling, risk analysis, and cross-functional collaboration with engineering and executive stakeholders. Relevant certifications such as AWS Certified Security ...

stakeholders and technical teams to deliver pragmatic, risk-led outcomes. Key Responsibilities Provide expert advice on cyber risk management frameworks including ISO 27005 and NIST RMF Lead risk identification, assessment and treatment across applications, infrastructure and digital services Facilitate structured risk workshops and threat modelling sessions Assess solution architectures … and sound judgement Any candidates must have an active SC level of security clearance to be considered. Technical Knowledge Security frameworks including ISO 27001, NIST CSF, CIS and NCSC guidance Regulatory landscape including GDPR and PCI DSS Familiarity with HMG and NCSC standards Modern technology environments: Cloud platforms such ...

and 2nd/3rd Line engineers Provide technical input into new managed service opportunities Compliance & Best Practice Support compliance frameworks (ISO 27001, Cyber Essentials, NIST) Assist with audits and ensure adherence to policies and standards Continuous Improvement Enhance processes, tooling, and documentation Drive automation and improved monitoring capabilities Stay current … ITIL frameworks Excellent communication and stakeholder engagement skills Desirable Security certifications (CompTIA Security+, Microsoft SC-200/300/100) Knowledge of ISO 27001, NIST, CIS benchmarks Experience with ITSM tools BPSS or SC Clearance Key Attributes Strong problem-solving and analytical skills Ability to prioritise and perform under pressure ...

common IT/OT protocols. Standards, frameworks, and regulatory experience including - NCSC CAF, EU NIS Directive, ISA/IEC 62443 Series, ISO 27000 Series, NIST Cyber Security Framework (CSF), and supplementary guidance. Our Culture Our values stand on a foundation of safety, integrity, inclusion, and diversity. We put people ...

able to explain complex technical risks clearly and influence a wide range of stakeholders. Knowledge of relevant regulatory and industry standards, such as GDPR, NIST and PCI DSS. How We Work We believe in flexibility and balance. Our hybrid model blends home working for focus with time spent connecting and ...

Greater London is hiring a Contract Cloud Security Consultant to support their Cyber Transformation Programme. The role involves ensuring security alignment with standards like NIST CSF 2.0, leading threat modelling and risk assessments, and promoting best security practices within a matrixed environment. Ideal candidates will have deep knowledge in DevSecOps ...

deterministic agents, and complex tool-use. Secure AI: Expert-level knowledge of OWASP LLM Top 10 and Agentic AI threats . Familiarity with NIST AI RMF is a massive plus! Your Mission: Identity & Access Specialist As our Identity Lead, you'll be the gatekeeper for our autonomous agents. You will ...

security communications, embedding security in product design, and running threat assessments. Candidates should have extensive healthcare experience and strong knowledge of security frameworks including NIST 800. The position offers hybrid working, competitive salary, and numerous employee benefits. #J-18808-Ljbffr ...

and Business Continuity exercises. Strong analytical and problem-solving skills. Knowledge and experience of working within industry best practices and guidelines such as ITIL, NIST, ISO, and CIS environments. Knowledge of common attack types (phishing, malware, ransomware). Familiarity with vulnerability scanning and basic threat intelligence Strong teamwork skills and ...

teams, clients, and formal reports Assist senior penetration testers with research, evidence collection, and report writing Adhere to internal methodologies and industry frameworks, including NIST, OWASP, and CREST best practices What They're Looking For: 1-2 years' experience in vulnerability assessment, security testing, or junior penetration testing Good understanding ...

with clients, delivery teams, and senior stakeholders to embed security into solution design Standards & Compliance - Ensure adherence to industry standards such as ISO 27001, NIST, and government security policies Skills and Experience: Experience working as a Security Architect or in a senior security role within complex environments Strong practical experience … experience conducting threat modelling (e.g. STRIDE, attack trees) and risk analysis Strong understanding of security frameworks and best practice such as ISO 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure/NCSC CAF, HMG Security Policy Framework. ...

security architecture across cloud, on-prem and hybrid environments developing, implementing and maintaining cyber security strategy and governance (aligned to various frameworks e.g. ISO27001, NIST, Cyber Essentials) overseeing security operations (SOC, threat detection, vulnerability management etc.), and incident response plans risk management and compliance, ensuring compliance with various standards and … CISA etc. have broad technical expertise/knowledge across cloud security (AWS, Azure, GCP), IAM, and security platforms knowledge of security frameworks e.g. ISO27001, NIST, Cyber Essentials etc. On offer Competitive salary and benefits package, including hybrid working. This is an exciting opportunity to grow with the business ...

security and compliance programs. As a fast‐growing startup, we specialize in a wide range of frameworks—including SOC 2, ISO 27001, GDPR, CMMC, NIST 800-171, NIST 800-53, and FedRAMP—empowering companies to meet regulatory requirements and enhance their cybersecurity posture from day one. The Opportunity … complex accounts, and deliver an outstanding client experience — while also bringing deep expertise in cybersecurity compliance frameworks such as SOC 2, ISO 27001, and NIST CSF. The successful candidate will be able to come up to speed quickly, integrate into the organization, and take on clients within your first ...

communications Track and ensure remediation of vulnerabilities and security incidents Governance, Risk & Compliance Support implementation of frameworks such as ISO 27001, Cyber Essentials Plus, NIST, and CIS Develop and maintain security policies, standards, and procedures Conduct risk assessments and track mitigation actions Coordinate internal and external audits Work closely with … compliance Strong understanding of GRC principles Experience with Microsoft security tools (Sentinel, Defender, Microsoft Security Stack) Familiarity with frameworks such as ISO 27001, NIST, CIS, Cyber Essentials Experience assessing third-party/vendor risk Excellent stakeholder management and communication skills Ability to translate security requirements into practical business outcomes Desirable ...

start, with structured support to grow into more independent delivery. Key Responsibilities: Cyber risk assessments, controls gap analyses and maturity reviews against ISO 27001, NIST Framework, GDPR etc. Supporting clients through certification and audit cycles - evidence, control mapping, remediation. Producing risk registers, treatment plans and improvement roadmaps clients can actually … communication, from technical teams to board level. Requirements: 3-7 years in cyber risk, information security, compliance or audit. Working knowledge of ISO 27001, NIST, GDPR. Certifications: ISO 27001 LI/LA, CISA, CRISC, CISM, CISSP. Cloud security review experience (AWS, Azure, M365). Strong written and verbal communication across ...

and government security requirements SECURITY ARCHITECT ESSENTIAL SKILLS Experience operating as a Security Architect or similar senior security role Strong knowledge of ISO 27001, NIST, CIS or similar frameworks Experience with cloud security across AWS, Azure or Google Cloud Understanding of network security, encryption, authentication and access control Experience with … submit, subject to required skills, your application to our client in conjunction with this vacancy only. KEY SKILLS Security Architect, Cyber Security, ISO 27001, NIST, Cloud Security, AWS, Azure, Risk Assessment, Threat Modelling, SIEM, Defence ...

guidance to ensure security risks are understood, managed and remediated in line with organisational risk appetite and recognised best practice frameworks (e.g. ISO 27001, NIST, CIS Controls). Key Responsibilities Deliver security risk identification, assessment, analysis and logging activities, ensuring risks are clearly articulated, consistently scored and recorded in approved … and non-technical audiences. Experience working collaboratively with multidisciplinary teams across business and technology functions. Familiarity with recognised security frameworks and standards (ISO 27001, NIST, CIS Controls). Candidates must hold government security vetting at SC level and be able to meet UK residency requirements. What ...

guidance to ensure security risks are understood, managed and remediated in line with organisational risk appetite and recognised best practice frameworks (eg ISO 27001, NIST, CIS Controls). Key Responsibilities Deliver security risk identification, assessment, analysis and logging activities, ensuring risks are clearly articulated, consistently scored and recorded in approved … and non-technical audiences. Experience working collaboratively with multidisciplinary teams across business and technology functions. Familiarity with recognised security frameworks and standards (ISO 27001, NIST, CIS Controls). Highly organised with strong attention to detail and a commitment to high-quality, auditable documentation. Candidates must hold government security vetting ...

guidance to ensure security risks are understood, managed and remediated in line with organisational risk appetite and recognised best practice frameworks (e.g. ISO 27001, NIST, CIS Controls). Key Responsibilities Deliver security risk identification, assessment, analysis and logging activities, ensuring risks are clearly articulated, consistently scored and recorded in approved … and non-technical audiences. Experience working collaboratively with multidisciplinary teams across business and technology functions. Familiarity with recognised security frameworks and standards (ISO 27001, NIST, CIS Controls). Highly organised with strong attention to detail and a commitment to high-quality, auditable documentation. Candidates must hold government security vetting ...

with clients, delivery teams, and senior stakeholders to embed security into solution design Standards & Compliance - Ensure adherence to industry standards such as ISO 27001, NIST, and government security policies Skills and Experience: Experience working as a Security Architect or in a senior security role within complex environments Strong practical experience … experience conducting threat modelling (e.g. STRIDE, attack trees) and risk analysis Strong understanding of security frameworks and best practice such as ISO 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure/NCSC CAF, HMG Security Policy Framework. ...

DevSecOps Maturity Assessment – Conduct a comprehensive, evidence-based audit of the client’s current DevSecOps capabilities against recognised industry frameworks. Primarily OWASP SAMM and NIST SSDF, supported where relevant by OWASP ASVS, the NIST Cybersecurity Framework and MITRE ATT&CK for attacker-perspective coverage. Assess the adoption, configuration and effectiveness … engineering teams want to use it. Essential Skills and Experience Demonstrable experience running DevSecOps or AppSec maturity assessments using OWASP SAMM and/or NIST SSDF, and translating findings into prioritised, achievable roadmaps. A track record of embedding security tooling into existing developer workflows. Not just deploying tools, but driving ...

Management: Establish robust cyber security governance frameworks tailored to OT environments. Spearhead comprehensive security risk assessments and gap analyses using industry frameworks such as NIST CSF and IEC 62443. Based on these assessments, identify the most cost-effective security controls in line with the client’s risk appetite, balancing risk … industrial control systems and SCADA environments is expected.* Standards & Regulatory Knowledge: Strong familiarity with OT security standards and frameworks such as IEC 62443 and NIST CSF, and with relevant regulations like the NIS Regulations and HSE OG-0086. Ability to apply these frameworks in practice and guide organisations through compliance ...

work across a varied portfolio of programmes, supporting clients with governance, risk and compliance activities aligned to frameworks and standards including ISO 27001, NIST, CAF, Secure by Design, JSP440 and JSP604. The environment is fast‐moving, collaborative and highly consultative. Beyond delivery, you’ll also contribute to pre‐sales activity … Lead experience within MOD environments will be especially well suited. Key Experience Security assurance and accreditation within Defence environments JSP440/JSP604 ISO 27001, NIST, CAF and Secure by Design Cyber risk assessments and gap analysis Working across cloud, SaaS and traditional infrastructure Stakeholder engagement and consultancy delivery MOD Security ...