76 to 100 of 264 Permanent NIST Jobs

in compliance with NSA/CSS Information System Certification and Accreditation Process (NISCAP) and DoD Information Assurance Certification and Accreditation Process (DIACAP) process, the NIST Risk Management Framework (RMF) process, and prescribed CSS business processes for security engineering. The Level 3 Information Systems Security Engineer (ISSE) shall possess the following more »

or Federal departmental agency policies, and procedures pertaining to sensitive information, computing, cybersecurity, information technology, etc. Experience with National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53, Revision 4 or Revision 5 Demonstrated success in achieving project completion in a timely manner. This includes having effective project more »

AWS and Azure. Knowledge of IaaS, PaaS and SaaS architectures. Experience with Nessus, Tenable Security Center, Amazon Cloud, Splunk and CyberArk. Strong familiarity with NIST 800-53 and FedRAMP requirements. Knowledge of eGRC applications such as RSA Archer. Familiarity with Tableau and Tanium. Ability to review and influence new and more »

assessment (ideally but not essentially in a security environment); Have knowledge and understanding of relevant industry standards, frameworks and best practice, e.g. ISO/NIST/COBIT/COSO; Be a resilient and highly motivated self-starter, with demonstratable robust judgement, decision making and creative problem-solving ability; Be able more »

and implement comprehensive security controls and best practices for cloud infrastructure. Develop and enforce security policies, standards, and guidelines to ensure compliance with ISO27001, NIST, PCI-DSS, Cyber Essentials, and GDPR. Conduct security assessments, vulnerability scans, and penetration tests to identify and mitigate risks. Monitor and respond to security incidents more »

skills with a strong sense of urgency, without the requirement for explicit deadlines. Good understanding of relevant industry standards and frameworks (e.g. GDPR, COBIT, NIST, ISO 27001). Good to have: Knowledge and experience in Information Security Auditing Techniques. Certifications: CRISC, CISM, CISSP. Experience gained in consulting or working in more »

in Government/Ministry of Defence settings is advantageous. Proficiency in implementing ITIL processes. Strong expertise in SIEM operations. Competence in Risk Management and NIST Cyber Security Controls. Client-facing experience with exceptional stakeholder management skills. Ability to thrive in a fast-paced environment, adapting to evolving priorities. Highly organised more »

coding practices, and vulnerability management. Leadership : Experience leading cross-cultural and geographically distributed teams. Regulatory Knowledge: Familiar with industry standards such as ISO 27001, NIST, and GDPR. Certifications: CISSP, CISM, or CISA are a plus. Education: Bachelor’s degree in Computer Science, Cyber Security, or a related field (Master’s more »

related to technology enhancements. Responsibilities: General Responsibilities: Have an excellent understanding of risk management and assessment principles and frameworks, such as ISO27005 and the NIST Cyber Security Framework Work with multi-disciplinary teams, helping to ensure that products are delivered in a secure manner that is aligned with the wider more »

policies, standards, guidelines, and procedures to ensure compliance with relevant regulations (e.g. GDPR, PCI DSS) and industry standards such as Cyber Essentials+, ISO 27001 & NIST guidelines. Managing the relationship(s) with 3 rd party suppliers responsible for implementing and managing security monitoring tools and technologies, ensuring we detect and respond more »

CK and Cyber Kill Chain frameworks • Skilled in maintaining Microsoft directory services. • Skilled in using virtualisation software. • Knowledge of key security frameworks (e.g. ISO, NIST 800-53, 800-171, 800-172, C2M2) • Excellent communication skills • Experience of writing Defence/Government documentation Desirable Qualifications: • Broad Spectrum Cyber Course (SANS SEC401 more »

concepts. Ability to identify and mitigate network vulnerabilities and explain how to avoid them. Knowledge of security frameworks and standards, such as ISO 27001, NIST, CIS. If this looks interesting to you, please apply or reach out to Georgia at g.cummings@ltharper.com to find out more more »

security protocols, cryptography, authentication, and authorization.  Strong understanding of network security, endpoint security, application security, and cloud security.  Familiarity with security frameworks such as NIST, ISO 27001, and CSA. more »

and stakeholders that improves the value of the security services we deliver.Understanding of the modern threat landscape.Knowledge of cyber security frameworks such as ISO27001, NIST, CIS Critical Controls.VMWare or Hyper-V and server integration knowledge and experience.Certified Information Systems Security Professional (CISSP) or equivalent.Exposure to ISO 27001, 9001.Any incident Response more »

Broad technical understanding covering Windows, Linux, Unix, Networking, Cisco, SIEM, IAM, DLP, LAN/WAN, Wireshark, VMware, SSL and others Experience and knowledge of NIST, COBIT, GCIA, GCIH, GCFA etc. This is an excellent opportunity to work in a large, enterprise level environment, where there is plenty of scope for more »

well versed in security policies & standards, governance, compliance, risk management and security audit practices Experience with using common information security management frameworks, such as NIST, PCI, GDPR, ISO Series, OWASPp the IT Infrastructure Library (ITIL), the ISF Standards of Good Practice (SoGP) and ISACA’s Control Objectives for Information and more »

and information strategy for the organization. Research and recommend data tools and technologies to boost efficiency and ensure data security, complying with GDPR, CISSP, NIST, ISO 27001, Zero Trust Architecture, Information Security, and Identity and Access Management standards. Develop and uphold data principles, standards, policies, and procedures to maintain secure more »

very ideal for this role. I'm looking for candidates with the following experience: Experience working with security frameworks/policies (e.g. IS1, ISO27001, NIST, Mitre, and STRIDE) Strong experience in developing Risk Management Accreditation Document Sets (RMADS). Current or former CISSP or CISM certification (or other relevant certifications more »

varied role so we are seeking a Senior PCI QSA who has a broad range of skills across Cyber Risk, Governance, and Compliance (GRC), NIST, ISO 27001, Risk Assessments, supplier risk assessments, cyber maturity models, and third-party risk management. What sets our client apart: This opportunity is tailor-made more »

and applications. Maintain Windows server and Unix based servers, O365 and administer MS Azure. Implement and maintain information security controls in line with ISO27001, NIST and DORA standards. Support the Bank’s VMware and Citrix virtual infrastructure. Maintain the bank’s Business Continuity and Disaster recovery plan and procedure. Lead more »

a global organisation Experience presenting to and communicating at Board level Deep technical knowledge across IT statutory and regulatory standards and Risk Management (SOX, NIST, PCI, ISO, GDPR etc.) Knowledge of software design, development, and architecture including Saas & Public Cloud environments Exceptional track record of building/leading diverse, high more »

security environment (preferably with Operational Technology experience). Understanding of Cyber Security Legislation (NIS is preferable). Demonstrable experience with cyber security frameworks including NIST, CAF, ISO27001. Demonstrable experience with ISA/IEC 62443. Experience using GRC management tooling. Ability to plan, organise, and follow through on assigned tasks. Excellent more »

controls (Data at Rest, Data in Transit, Public Key Infrastructure (PKI)), Security Monitoring and System Security Audit. National and international security standards including the NIST Cyber Security Framework, Special Publication 800 Series and other industry frameworks. Familiarity with TOGAF and Archimate. Experience in MOD security policy, processes, and practices (inc more »

an information assurance environment Define controls for mitigating information risks in complex programs and projects. Working with technical and non-technical controls such as NIST 800-53 Qualifications: 3 years experience in information Security roles What's in it for you? Covered training and exams, quarterly team bonus, auto-enrolment more »

of the Pre-sales Security Consultant : - 2+ years in Pre-sales or similar position within an MSP environment - Working knowledge of security standards ISO27002, NIST CSF, CIS or NCSE CAF - Understanding of threat management products and endpoint detection - Expertise of SOC processes and procedures - Natural problem-solver, enthusiastic and strong more »