17 of 17 Remote/Hybrid Contract NIST Jobs

and security gap analyses across infrastructure and application layers Define and enforce security standards, reference architectures, and policy controls aligned with frameworks such as NIST, ISO/IEC 27001, and CIS Evaluate, select, and integrate security technologies including: Identity and Access Management (IAM) Security Information and Event Management (SIEM) Endpoint ...

risk assessments, and security gap analyses across infrastructure and application layers Define security standards, reference architectures, and policy controls based on industry frameworks (e.g., NIST, ISO/IEC 27001, CIS) Evaluate and integrate security technologies, including IAM, SIEM, EDR, DLP, WAF, and encryption solutions Collaborate with engineering, DevOps, and ...

Strong understanding of Active Directory, LDAP, and authentication protocols Experience with scripting (PowerShell, Python) for automation and reporting Familiarity with compliance frameworks (ISO 27001, NIST, GDPR) Excellent problemsolving, communication, and documentation skills ...

systems, and associated cyber risks. Experience with cloud platforms (AWS, Azure, or GCP) and cloud-native security architecture. Strong familiarity with security frameworks (e.g., NIST, ISO 27001, CIS). Experience implementing security controls including IAM, encryption, endpoint protection, and monitoring solutions. Proficiency in scripting or programming (e.g., Python, PowerShell, Bash ...

protection, secrets management, and container security (AKS). Integrate SAST/DAST/SCA tools into CI/CD pipelines and collaborate on compliance (NIST, ISO 27001, SOC 2, GDPR). Qualifications: 5+ years of hands-on cloud security experience with Azure. Proven expertise in secure architecture design and DevOps ...

learned to improve security posture. Drive improvements in incident response playbooks, processes, and tooling. Ensure incidents are handled in alignment with frameworks such as NIST Stakeholder & Vendor Coordination Act as the key liaison during incidents with IT, Risk, Legal, Compliance, HR, Communications, and third party partners. Support customer facing communication ...

senior stakeholders Strong stakeholder management skills, with the ability to influence across technical and business teams Familiarity with frameworks such as ISO 27001, NIST, or similar Why Apply? Opportunity to shape and evolve cyber resilience within a critical national infrastructure environment High-visibility role with direct impact on enterprise-wide ...

consistently applied. Experience producing AppSec maturity roadmaps, target-state models, and governance frameworks. Strong understanding of industry standards and frameworks (OWASP ASVS, OWASP SAMM, NIST, ISO 27034). Desirable Skills/Knowledge/Experience Experience implementing or advising on secure use of AI/ML applications, including secure patterns ...

of Active Directory and privileged account management Familiarity with SIEM integration and security event monitoring Understanding of security frameworks such as ISO 27001 and NIST Strong troubleshooting and problem-solving skills Ability to obtain security clearance Desirable: Experience with leading PAM tools (e.g. BeyondTrust, CyberArk, Delinea) Scripting/automation experience ...

Contract Technical Author | NIS/NIS2/NIST | IT/OT Security | Utilities/Power Generation | Security Framework and Operational Procedures | UK Based (can be working remotely) | £700/day Our client is looking for 2 experienced Technical Authors for a long term project around Cyber Security and Resilience (Network ...

industry methodologies. Lead or contribute to security assurance activities, including audits, reviews, and remediation planning. Apply and interpret security frameworks such as ISO 27001, NIST, CAF, Cyber Essentials, and GovAssure. Assess and secure platforms including Entra ID (Azure AD), Microsoft 365 E5, Azure IaaS/PaaS, and Windows/Linux … disciplines. Strong knowledge of risk assessment methodologies (ISO 31000, FAIR, OWASP risk rating). Hands-on experience with enterprise security frameworks including ISO 27001, NIST, CAF, and Cyber Essentials. Experience conducting security audits and implementing remediation strategies. Technical expertise across cloud and enterprise platforms (Azure, M365, operating systems). Familiarity ...

Contract Business Analyst | Utilities/Power Generation | NIS/NIS2/NIST | IT/OT Security | Security Framework and Operational Procedures | UK Based (can be working remotely) | £650/day Our client is looking for an experienced Utilities/Power Generation Business Analyst with IT/OT knowledge and ...

Experience with NAC platforms (Forescout, Cisco ISE, Aruba ClearPass). Understanding of 802.1X, RADIUS, certificates, and device profiling. Exposure to security frameworks (Zero Trust, NIST). Experience working in regulated environments. All profiles will be reviewed against the required skills and experience. Due to the high number of applications ...

knowledge of risk assessment methodologies (e.g. ISO 31000, FAIR, OWASP risk rating). Strong understanding of Gov Assure, CAF, ISO 27001, Cyber Essentials, and NIST frameworks. Experience conducting or supporting security audits and implementing remediation plans. Proficiency in assessing and securing platforms such as Entra ID (Azure AD), Microsoft … design,CAF and GovAssure Conduct internal technical assurance reviews aligned to GovAssure/CAF/ISO27001 domains Maintain traceability of security controls to frameworks (NIST, CE+, NCSC), Evaluate Suppliers against internal and external risk criteria for Assurance. Contribute to the adoption of Zero Trust principles in platform design Provide secure ...

policies and standards Establish governance processes aligned to enterprise security frameworks Conduct OT risk assessments and gap analyses against recognised standards (e.g. IEC 62443, NIST CSF, CAF) Identify and oversee implementation of security controls across OT environments Provide technical oversight when working with managed service providers and third-party vendors … critical infrastructure environments Strong background in defining and implementing OT security strategies, policies, and standards Deep understanding of OT security frameworks (IEC 62443, NIST CSF, CAF, ISO 27001) Experience conducting OT risk assessments, gap analysis, and remediation planning Knowledge of OT networks, segmentation, and industrial protocols Experience working closely with ...

context. Ensure incident response processes support effective triage, coordination, escalation, and decision-making. Align incident response practices with cyber security standards including National Institute of Standards and Technology guidance. Embed governance, risk, and compliance requirements into incident workflows. 3. Runbook Development & Modernisation Design, develop, and maintain cyber incident response runbooks … SecOps Security Incident Response (SIR). Experience operating as, or closely supporting, a Security Incident Manager. Strong understanding of cyber incident response frameworks (including NIST). Experience designing incident runbooks, workflows, and automation-driven processes. Strong process design and documentation capability (BPMN or equivalent). Experience working within regulated financial ...

access and identity reviews; enforce multi-tenant data isolation and least-privilege principles Support audit readiness against NCSC Cyber Assessment Framework (CAF), CSA CAIQ, NIST, and our roadmap towards SOC 2 Establish and track quantifiable technical baselines - encryption coverage, log retention, API compliance (OWASP) and source-code analysis checks Verify … Specification Broad exposure to IT operations, DevOps principles, or a related technical discipline. Familiarity with one or more governance frameworks (ISO 27001, NCSC CAF, NIST, SOC 2 or similar) - you do not need to be an expert in all of them Process-driven mindset - able to translate policy into repeatable ...