26 to 50 of 142 Remote NIST Jobs

resolving challenges. Support the continuous improvement of the control testing programme through automation and innovation. Stay informed on relevant frameworks and best practices, including NIST CSF and CIS Controls, to enhance automation and monitoring capabilities. Base location - Hybrid - Clearwater Court, Reading. Working pattern - 36 hours Monday to Friday. What ...

autonomy Desired but not essential: Experience across multiple disciplines such as GRC, penetration testing, SOC, cloud security, or OT security Familiarity with frameworks including NIST, ISO 27001, CAF, or Cyber Essentials Experience working with government, defence, or critical national infrastructure clients Additional certifications such as CREST, OSCP, or NCSC Certified ...

multiple entities, departments or subsidiaries would be highly valuable Prior experience merging or aligning ISMS frameworks would be a significant advantage Desirable knowledge of NIST and qualifications such as CISM You will be a clear communicator, practical problem solver and organised delivery-focused professional who can balance governance requirements with ...

designs and deployments. Review and improve customer security policies and standards. Perform risk assessments, threat modelling, and compliance gap analysis. Advise on ISO 27001, NIST, PCI DSS, and GDPR. Threat and Vulnerability Management Interpret threat intelligence and guide remediation strategies. Support patching, OS hardening, and configuration management. Assess vendor advisories ...

code for a variety of Public Cloud compute services and Container platforms leveraging native services. Understand industry standard controls such as CIS/NIST/GDPR/ISO/CSA CCM/MCSB to deliver compliant solutions through appropriate adoption, configuration and management of key controls. Deliver security work stream ...

code for a variety of Public Cloud compute services and Container platforms leveraging native services. Understand industry standard controls such as CIS/NIST/GDPR/ISO/CSA CCM/MCSB to deliver compliant solutions through appropriate adoption, configuration and management of key controls. Deliver security work stream ...

Experience in Information Security, Cyber Security, GRC, or Risk Management. Strong stakeholder management and communication skills. Experience working with security frameworks such as NIST or ISO 27001. Understanding of vulnerability management, cloud security, and security operations. Ability to translate technical issues into business risk. This is an opportunity to join ...

control and good experience with network technologies (Cisco) Experience with modern Microsoft and cloud security tooling Knowledge of security frameworks such as ISO 27001, NIST, CIS or PCI-DSS Hybrid working: 3 days onsite/2 days remote If you're looking to make a real impact in a collaborative ...

detection capability assessment Incident response, business continuity and resilience planning Independent assurance, gap analysis and remediation planning Familiarity with frameworks such as ISO 27001, NIST CSF, JSP 440/604, Cyber Essentials Plus, DSP Toolkit To learn more, please do reach out to Tom Royston via email on Reasonable Adjustments ...

accreditation and secure by design processes (ISN2023/09), and associated policies and practices across the lifecycle. In the application of standards including NIST Special Publications (e.g. SP 800-30, 37 & 53), and/or RTCA-DO-326A/B, 355A & 356A. In the application of Defence security standards, such ...

budget, and to technical standards Security & Compliance Oversee implementation of security tools (EDR, MFA, XDR, backup, etc.) Maintain compliance with frameworks (Cyber Essentials, ISO, NIST) Conduct risk assessments and recommend improvements Client Engagement Act as a trusted technical advisor for key clients Attend technical review meetings and present environment health ...

relevant to digital asset custody and trading (for example FCA, FINMA, FSRA/ADGM, MiCA). Compliance familiarity across ISO 27001, SOC 2, and NIST CSF/800‐53, with the ability to map controls cleanly between them. Enterprise architecture grounding (TOGAF, SABSA) where it complements rather than replaces technical ...

processes. Experience exposure to red-teaming would be great but not crucial Experience of use case development An understanding of security best practice frameworks (NIST, ISO27001 etc) Good understanding of threat assessment A technical IT background Strong problem-solving skills and go-getter attitude Excellent communication skills and ability ...

Provide security advisory services across complex programmes that support critical UK public sector initiatives. Advise clients on regulatory and compliance frameworks, including ISO 27001, NIST, GDPR, and PCI-DSS. Communicate secure design principles and risk mitigation strategies to both technical and non-technical stakeholders. Research and develop innovative approaches ...

Provide security advisory services across complex programmes that support critical UK public sector initiatives. Advise clients on regulatory and compliance frameworks, including ISO 27001, NIST, GDPR, and PCI-DSS. Communicate secure design principles and risk mitigation strategies to both technical and non-technical stakeholders. Research and develop innovative approaches ...

Provide security advisory services across complex programmes that support critical UK public sector initiatives. Advise clients on regulatory and compliance frameworks, including ISO 27001, NIST, GDPR, and PCI-DSS. Communicate secure design principles and risk mitigation strategies to both technical and non-technical stakeholders. Research and develop innovative approaches ...

security hardening principles. Any of the following would be a distinct advantage: Experience with Microsoft Sentinel, Splunk, Tenable, Qualys, or Defender TVM. Knowledge of NIST, ISO 27001, CIS, or SOC 2 frameworks. Familiarity with Azure Automation, Logic Apps, PKI, and certificate management. Daily Responsibilities Lead the investigation and remediation of ...

when to use them. Experience ensuring services meet security and data protection requirements, with a working knowledge of recognised standards (e.g., ISO 27001/NIST and UK GDPR). Desirable requirements but not essential: A relevant degree or equivalent experience. Relevant professional qualifications (e.g., programme/project delivery, enterprise architecture ...

Coordinating and integrating public sector/defence digital services. Leverage AI for public benefit and strengthen digital infrastructure. Manage incident response with knowledge of NIST, ISO 27001, etc. Recruit, mentor, and influence SOC teams. Duration: 6 months Location: Fully remote (with occasional onsite meetings 1–2x per month) Start date ...

/ICS networks. Any Control & Instrumentation background would be an added advantage. Familiarity with OT cyber security standards or regulatory frameworks (e.g., IEC 62443, NIST CSF, NIS Regulations, HSE OG-0086).* Relevant OT cyber security qualifications (e.g., GICSP, IEC/ISA 62443). Membership of recognised security professional bodies ...

PowerShell, KQL, Python). Knowledge of ransomware recovery patterns (immutable backups, restore validation, offline documentation). Exposure to audit/compliance requirements (ISO 27001, NIST, CIS) and evidence collection. ...

processes for efficiency and consistency. Security: Expertise in cloud security best practices, identity and access management (IAM), encryption, and compliance frameworks (e.g., PCI DSS, NIST). Networking: Strong knowledge of cloud networking concepts, including virtual networks, subnets, security groups, load balancers, and VPN configurations. DevOps Principles: An understanding of DevOps ...

cryptography, networking, and enterprise security domains Experience with threat modelling frameworks (STRIDE/MITRE ATT&CK) Understanding of security standards such as ISO 27001, NIST, PCI DSS, OWASP Strong stakeholder management and communication skills Desirable Security certifications (CISSP, CISM, CCSP, CEH, OSCP or equivalent) Experience with public or private cloud ...

landscape relevant to digital asset custody and trading (e.g., FCA, FINMA, FSRA/ADGM, MiCA). Compliance familiarity across ISO 27001, SOC 2, and NIST CSF/800‐53, with the ability to map controls cleanly between them. Enterprise architecture grounding (TOGAF, SABSA) where it complements rather than replaces technical ...

leading endpoint detection and threat management products and managing their operation. Good knowledge and awareness of global Information Security Standards, including ISO27k, CIS, CAF, NIST CSF. Ability to work independently and as part of a team. Excellent communication and interpersonal skills. Ability to obtain UK Security Clearance What ...