1 to 25 of 67 Permanent NIST Jobs with Remote Work Options

well versed in security policies & standards, governance, compliance, risk management and security audit practices Experience with using common information security management frameworks, such as NIST, PCI, GDPR, ISO Series, OWASPp the IT Infrastructure Library (ITIL), the ISF Standards of Good Practice (SoGP) and ISACA’s Control Objectives for Information and more »

and information strategy for the organization. Research and recommend data tools and technologies to boost efficiency and ensure data security, complying with GDPR, CISSP, NIST, ISO 27001, Zero Trust Architecture, Information Security, and Identity and Access Management standards. Develop and uphold data principles, standards, policies, and procedures to maintain secure more »

of the Cyber Security OT Manager: experience working within CNI environments delivering OT/IT security transformation/alignment projects. working with CAF, NIS, NIST, MITRE communication skills, both written and verbal. Must be eligible for SC: For more information on the Cyber Security OT Manager role apply on-line more »

Broad technical understanding covering Windows, Linux, Unix, Networking, Cisco, SIEM, IAM, DLP, LAN/WAN, Wireshark, VMware, SSL and others Experience and knowledge of NIST, COBIT, GCIA, GCIH, GCFA etc. This is an excellent opportunity to work in a large, enterprise level environment, where there is plenty of scope for more »

task/project completion Skills/Experience: Passionate about continuous improvement to drive efficiency and effectiveness, optimizing processes for business value delivery Familiarity with NIST, TOGAF, ITIL, ISO 27k, CCM, GDPR, and CIFIUS. Expert knowledge of cloud technologies with proven experience in continuous improvement within cloud environments Strong business acumen more »

assessment (ideally but not essentially in a security environment); Have knowledge and understanding of relevant industry standards, frameworks and best practice, e.g. ISO/NIST/COBIT/COSO; Be a resilient and highly motivated self-starter, with demonstratable robust judgement, decision making and creative problem-solving ability; Be able more »

Security, Audits & Controls-based Risk Management. GRC - IT Risk Management - SAP GRC, IRM & ITSM toolset experience. Risk Management Platforms - such as IRM i.e., Diligent. NIST Framework - have an understanding. ISO 27001, GDPR - have knowledge, or experience. SAP Access & Role Modules - SAP GRC to ITSM. Audits - Managing Internal & External Audits - Assess … Keywords: IT Controls, IT Security, SAP GRC, GRC Analyst, IT Security Analyst, IT Security, IT Security Best Practice, Security Controls, Access Controls, CISA, ISO27701, NIST, Cyber Security, Cyber Essentials, IT Risk, IT Controls, IT Security, SAP GRC, GRC, IT Security Analyst, IT Security, IT Controls, Hampshire, South East, Permanent, T6 more »

in Government/Ministry of Defence settings is advantageous. Proficiency in implementing ITIL processes. Strong expertise in SIEM operations. Competence in Risk Management and NIST Cyber Security Controls. Client-facing experience with exceptional stakeholder management skills. Ability to thrive in a fast-paced environment, adapting to evolving priorities. Highly organised more »

objectives and possible targets What You'll Bring: Experience with the examination or implementation of technical controls, such as SOC 2, ISO, TISAX or NIST 800-53 Excellent verbal and written communication skills Has demonstrable skill working with internal and external stakeholders Experience engaging with external auditing bodies Knowledge of more »

and development standards Implementing KPIs to monitor the delivery and quality of software against development standards Implementation of the best development standards, within secure NIST frameworks You will handle high-level challenges and balance quality software with speed, and you will be responsible for feature deployment, stability of the business … Ability to align engineering practices with business goals and objectives, developing and executing strategic plans to drive innovation, scalability, and competitiveness. Working within a NIST framework, ensuring the security of data and development pipelines. If you can speak Mandarin, that would be amazing! 📩If you are interested in applying for more »

Technical Skills: Broad Knowledge of Risk Management Principles and Methodologies with at least 4 years’ IT Risk Management experience Experience in Cyber Security Frameworks: NIST, CAF, ISO27001 and NIS regulations Benefits: 26 days holiday + bank holiday. Annual Performance bonus. Double Match pension (18% in total) Very flexible hybrid working. more »

controls (Data at Rest, Data in Transit, Public Key Infrastructure (PKI)), Security Monitoring and System Security Audit. National and international security standards including the NIST Cyber Security Framework, Special Publication 800 Series and other industry frameworks. Familiarity with TOGAF and Archimate. Experience in MOD security policy, processes, and practices (inc more »

and data Carrying out regular and consistent risk assessments What my client are looking for: Experienced in implementing security solutions and tools (Azure, Kubernetes) NIST & ISO27001 SQL-based data warehouse solutions Experience with PowerBI, Nessus, CrowdStrike, SonarCloud, Sentinel If keen please apply more »

Months Rolling Contract The Role: This role will drive design and delivery of capability maturity assessment of the clients information & cyber security against NIST framework leveraging existing artefacts as well as delivering point in time assessment through: Key Responsibilities: Working with capability and control owners to complete mapping of relevant … controls in order to scope the assessment against NIST framework Design and define maturity threshold and how those correlated to implementation of different controls Organise and drive all relevant interactions with stakeholders end to end against tights timelines Effectively report on the progress Prepare artifacts to support senior governance committees … and review of responses Skills Requirements: Excellent specialist knowledge of technology and cyber security controls is a must for this role Working knowledge of NIST framework for cyber security as well other information and cyber security frameworks Ability to design end to end process to assess maturity capability for information more »

and Implement Policies: Create, review, and update comprehensive information security policies and procedures in alignment with industry standards and frameworks such as ISO 27001, NIST, and CIS Controls. Collaborate with DevSecOps Teams: Work closely with development, operations, and security teams to integrate security practices into the DevSecOps pipeline, ensuring robust … security, with a significant portion spent in a DevSecOps environment. Framework Expertise: In-depth knowledge of information security frameworks and standards, including ISO 27001, NIST, CIS Controls, and others. Risk Assessment Skills: Demonstrated ability to perform detailed risk assessments, identifying vulnerabilities and proposing effective mitigation strategies. Technical Proficiency: Strong understanding more »

including IAM, VPC, EC2, S3, RDS, Lambda, and CloudFormation. - Strong understanding of security best practices, principles, and frameworks, such as ISO 27001 controls and NIST Guidelines. - Experience in implementing security automation using Scripting languages eg Python and infrastructure-as-code (IaC) tools. - Ability to perform security threat modelling and risk more »

and articulate technically complex work clearly to stakeholders with differing levels of technical knowledge is important. Knowledge of national or international standards such as NIST, ISO27000, and DCPP/Cyber Essentials would be advantageous but not essential. Our client values professional qualifications and professional registration with appropriate institutions and can more »

or equivalent. Excellent customer facing skills, internally and externally facing with national and international agencies. Knowledge of cyber security best practises such as GPG13, NIST 800-53, NIST 800-171, ISO27001 would be advantageous. Desirable: Degree in Information Technology, Computer Science, or Cyber Security. Information Security related certifications such as more »

particular focus on: PCI DSS consultancy and assessments Security reviews against standards or guidelines such as the NCSC 10 Steps to Cyber Security and NIST CSF ISO 27001 gap analyses Helping our clients to implement Information Security Management Systems and achieve and maintain ISO27001 certification Conducting risk assessments Creating or … ability to consult as well as assess Have experience with ISO 27001, including implementing an ISMS and achieving certification Have experience working with the NIST CSF A good understanding of core concepts and technologies. For example, networking, Windows and Linux operating systems, and security technologies such as antimalware, IDS/… services to our clients, covering the following areas: Conduct security reviews against standards or guidelines such as the NCSC 10 Steps to Cyber Security, NIST CSF, Cyber Essentials Perform ISO 27001 gap analyses Help our clients to implement Information Security Management Systems and achieve and maintain ISO27001 certification PCI DSS more »

issues. Certifications such as CISSP, CEH, OSCP, or GSEC are preferred but not required. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modeling and risk assessments. more »

at influencing and negotiating. Certifications such as CISSP, CEH, OSCP, or GSEC are preferrable. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. more »

Officer Working knowledge HMG IA Standards, National Cyber Security Centre (NCSC) IA Publications, and MOD JSP440 Experience of international standards including ISO27000, ISO28000 and NIST Cyber Security Framework Providing customer facing ISO27k/ISO28k advice and guidance A broad understanding of computer and network technical architecture Ability to champion high more »

security fundamentals working with ticketing systems (ex. Remedy, Service Now) to assess information security controls based on cybersecurity principles and tenets. (e.g., CIS CSC, NIST SP 800-53, Cybersecurity Framework, etc.). to identify cybersecurity and privacy issues that stem from connections with internal and external About you: Degree (Cyber more »

background developing and executing business IT solutions An understanding of (at least one or more) compliance programs such as GDPR, ISO27001, SOC 2, PCI, NIST 800-53, FEDRAMP, or other security/privacy frameworks Security certifications such as Security+, CISM, CISA, CISSP, etc Benefits: In return for your efforts, our more »

tools such as Terraform or CloudFormation. Proficiency in scripting languages such as Python, Bash, or PowerShell. Familiarity with security frameworks and standards such as NIST, CIS, and ISO 27001. Experience with security information and event management (SIEM) tools. Strong analytical and problem-solving skills. Excellent communication and interpersonal skills. Relevant more »