11 of 11 Permanent NIST 800 Jobs in the South East

as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to communicate More ❯

as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to communicate More ❯

day to day work is managed by allocated team Scrum Master. Responsibilities and Tasks . Support delivery of secure Releases and Features aligned with the relevant Legacy or NIST assurance processes through Security Assurance stories agreed with nominated team Scrum Master . Create security assurance case for releases, including risk assessments and mitigations for identified defects and vulnerabilities … security issues via the Security Lead or Security Assurance Lead for resolution at the security working group Knowledge, Experience and Capabilities . Cyber Security Assurance . ISO27001 . NIST 800-53 series . MOD Secure by Design . Information assurance . Risk management . High quality of written and verbal communication skills . Experience of working More ❯

C-Suite and senior stakeholders to drive strategic security initiatives, influencing decisions at the enterprise level. Deep expertise in security risk management frameworks, including ISO 27001, NIST SP 800-53, and SANS Top 20 Critical Security Controls. In-depth knowledge of SABSA framework (ideally certified) and its six layers, particularly in risk management and security strategy More ❯

Institutions, this is for you: What you will be doing: Maintaining and aligning Security Frameworks by developing and upholding security policies, standards, procedures and frameworks, ensuring alignment with NIST CSF and NIST 800-53 Addressing security gaps, guiding remediation and monitoring progress Understanding security gaps and provide evaluation and treatment options, consultation on remediation … detail. Experience with GRC tools (RSA Archer preferred) Desired qualifications/certifications: Ideally a Master's Degree in Infromation Security, CICA/CRISC/CISM/Data Analysis NIST CSF, ISO27001, SOC 1/2 Prince 2, MSP, APMQ are advantageous Sound like your next move? If it does, apply below or forward a resume to j.walsh@lawrenceharvey.com More ❯

Security Assurance Team (SAT), providing risk management and assurance of programme artefacts. Responsibilities and Tasks Support delivery of secure Releases and Features aligned with the relevant legacy or NIST assurance processes through Security Assurance stories agreed with nominated team Scrum Master Create security assurance case for releases, including risk assessments and mitigations for identified defects and vulnerabilities Liaise … security training and briefings Support development of relevant security documentation; including RMADS, CoCo, RAR, SSP, POAM, OSMP (including SyOps). Knowledge, Experience and Capabilities Cyber Security Assurance ISO27001 NIST 800-53 series MOD Secure by Design Information assurance Risk management High quality of written and verbal communication skills Experience of working in Secure environments (Highly desirable More ❯

platforms, including Entra ID (Azure AD), ensuring secure access and role governance across systems Design and implement security controls for hybrid cloud environments (Azure and AWS), aligning with NIST and CIS best practices Proactively monitor systems and respond to security alerts, investigating issues across endpoint, identity, and infrastructure layers Support internal audits and compliance checks, maintaining security documentation … or Python for infrastructure or policy workflows Experience deploying or integrating SIEM and EDR tools, as well as conducting incident response (Preferred) Familiarity with security frameworks such as NIST 800-53, CIS Benchmarks, or ISO 27001 (Preferred) Industry certifications such as AZ-500, SC-300, or AWS Security Specialty .. More ❯

and methodologies. Performing data classification and security risk reviews. Risk analysis and mitigation strategies for vulnerabilities. Identifying security vulnerabilities and assessing their impact. Implementing control frameworks such as NIST 800-53, ISO 27001, FedRamp, and NIST CSF. Experience with penetration testing tools for web applications. Maintaining system/application records for reporting and alerts. More ❯

in your day-to-day. What you'll be doing Designing robust, secure-by-design architectures aligned to MOD and wider government standards Managing risk using frameworks like NIST 800-53 and producing key security artefacts (RMAs, Security Aspects, Test Plans, etc.) Working with cross-functional teams including DevSecOps, Software, Infrastructure and Agile delivery Providing strategic More ❯

in your day-to-day. What you'll be doing Designing robust, secure-by-design architectures aligned to MOD and wider government standards Managing risk using frameworks like NIST 800-53 and producing key security artefacts (RMAs, Security Aspects, Test Plans, etc.) Working with cross-functional teams including DevSecOps, Software, Infrastructure and Agile delivery Providing strategic More ❯

in Pen Testing Good knowledge of Info Sec/IT Security Experience of conducting risk assessments within a Technology environment Knowledge of risk management frameworks (ISO 3100X/NIST 800-30/37/39, ENISA/EBIOS/OCTAVE/FAIR etc) Excellent communication skills with ability to translate technical jargon to non-technical audiences More ❯