12 of 12 Remote NIST Jobs in Reading

risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to communicate risks associated with More ❯

Proficiency in analysing log sources and data normalization using platforms such as Splunk, Elastic, or similar. Frameworks & Methodologies: Deep knowledge of the MITRE ATT&CK framework, Cyber Kill Chain, NIST, and related methodologies. Communication: Excellent verbal and written communication skills, with the ability to work both independently and collaboratively. Desirable Certifications: Possession of or willingness to attain certifications such as More ❯

and implementing enterprise-level security architectures within large and complex organizations. Experience evaluating and recommending security technologies, including IAM, network security, cloud security, and endpoint protection solutions. Knowledge of NIST Cybersecurity Framework (CSF), ISO/IEC 27001/27002, or CIS Controls. Experience in securing cloud platforms (e.g., Azure, AWS, Google Cloud) and hybrid cloud environments. Familiarity with security monitoring More ❯

and implementing enterprise-level security architectures within large and complex organisations. Experience evaluating and recommending security technologies, including IAM, network security, cloud security, and endpoint protection solutions. Knowledge of NIST Cybersecurity Framework (CSF), ISO/IEC 27001/27002, or CIS Controls. Experience in securing cloud platforms (e.g. Azure, AWS, Google Cloud) and hybrid cloud environments. Familiarity with security monitoring More ❯

for people with: Essential: Good knowledge of best practice information security controls and the potential impact of controls on business operations. Good understanding of security frameworks (e.g. ISO 27001, NIST etc.). Excellent attention to detail and strong written and verbal communication skills in English. Ability to translate technical guidance into clear, actionable requirements. Skilled at identifying security risks and More ❯

start to finish, including client identification, scoping, execution, and invoicing. Work with large enterprise customers to provide security consulting services. Apply established security frameworks and standards such as ISO27001, NIST CSF, CIS Top 18, and COBIT. Demonstrate professional consulting experience in Enterprise IT-security, Cyber Security Governance, Technology Risk Management, Compliance, Business Continuity/DR, and Cloud Security. Ensure client … high-quality solutions tailored to business needs. What We Are Looking For Minimum of 6 years of professional experience in security consulting. Proficiency with security standards and frameworks (ISO27001, NIST CSF, CIS, COBIT). Relevant certifications such as CISSP, CISA, CRISC, CISM, CISMP, ISO 27001 LI, or ISO27001 LA. A Bachelor’s Degree in a related discipline or equivalent experience. More ❯

with modern CI/CD tools like GitHub, Jenkins, Bamboo. Ability to translate security policies into effective security controls. Knowledge of security standards and regulations such as ISO 27001, NIST, GDPR. Experience with open-source security tools and securing Azure cloud workloads. Note: Applicants must have the Right to Work in the UK and be based in the UK. Benefits More ❯

process across the organisation Work as part of the GRC team and wider CSO to ensure compliance to industry recognised security certifications/accreditations (such as ISO27001, CE+, CMMC, NIST, FSC, IPSA, etc.) Provide subject matter expert input in maintenance of relevant process documentation as required in addition to owning the security risk management process to include co-ordinate, review More ❯

use of Risk Assessment tools and methodologies across a wide range of industry sectors, You have an in-depth knowledge of industry-standard frameworks and practices, such as the NIST Cybersecurity Framework, NIS-2, JSPs, MITRE) Experience in the implementation of Secure by Design principles Desirable: Graduated in Engineering or Computer Science or hold relevant industry certifications (CISSP, Cisco, CCP More ❯

techniques that can make our software applications demonstrably more secure and robust. Good understanding of common information security management standards, frameworks, and laws/regulations: e.g . ISO 27001 , NIST , GDPR . Experience of open-source security tools and how they could be used in an enterprise. Experience of securing Azure cloud workloads and environments. Please note, to be considered … InfoSec, Security, Security Strategy, Best Practice, Programming, Code, C++, C#, C, .NET Core, Java, JavaScript, Node.js, Angular, React, OWASP, Agile, Application Threat Modelling, Security Policy, Security Controls, ISO 27001, NIST, GDPR, Cloud, Azure. Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology More ❯

engagements, operating at both strategic and tactical levels. Build relationships with clients, challenge assumptions diplomatically, and influence senior stakeholders. Provide guidance across security frameworks and standards such as ISO27001, NIST CSF, PCI-DSS, Cyber Essentials, SOC 2 where appropriate. Plan and drive multi-year programmes to remediate, achieve objectives, and enable business growth. Understand buyer behaviour and organisational dynamics beyond More ❯

for large cloud deployments Experience with ISO 27001, SOC2, PCI-DSS standards Experience managing and triaging pen test reports Experience managing compliance programs using Conmon Preferred Qualifications Knowledge of NIST SP 800-30, ISO 27005 Quick learner with adaptability Excellent verbal and written communication skills Experience dealing with FedRamp cloud environments Certifications such as CISA (Certified Information Systems Auditor) Who More ❯