176 to 200 of 797 Remote NIST Jobs

attack vectors, malware, and security trends is crucial. Developing and implementing security policies, standards, and procedures: This includes creating guidelines aligned with industry best practices and regulatory requirements (e.g., NIST CSF, ISO 27001, GDPR). Designing and architecting secure IT environments: This may involve network security design, cloud security architecture (AWS, Azure, GCP), and implementing security technologies. Developing and assisting More ❯

and handling preferred. Knowledge and/or experience using endpoint detection and threat management products. Good knowledge and awareness of global Information Security Standards including ISO27002, CIS, NCSE CAF, NIST CSF. A strong understanding of SOC processes and procedures. Good understanding of the Microsoft stack. Advisor in advanced cybersecurity services including SSE, SASE, SIEM, MDR/EDR. Experience working with More ❯

Healthcare sector. Solid understanding of IT Security and audit principles. Ability to understand, question, and interpret internal and external security environments. Working knowledge of compliance frameworks (e.g., ISO 27001, NIST, GDPR, HIPAA), as well as regulatory requirements (HIPAA, GDPR). Demonstrated ability to handle complex security inquiries. Commercial mindset. Experience communicating technical information to non-technical team members. Excellent project More ❯

and maintain clear, concise reports, metrics, and documentation related to security incidents, risks, and controls. What we need from you; Practical experience of ISO27001/27004/27005 and NIST Risk Management Framework (RMF) Demonstrable experience of writing IA Technical Risk Assessments and the management of these Assessments Good understanding and appreciation of the Engineering development lifecycles and how the More ❯

multi-task and self-assign work in a fast-paced environment. • Ability to work well/collaborate with people from many different disciplines with varying degrees of technical experience. • NIST RMF Assessment and Authorization (A&A) experience. • Experience with operating IT security tools, such as ACAS, HBSS, DISA STIGs • Prior experience working Cybersecurity in accordance with US Government (USG), Department More ❯

requirements, and guiding clients through complex third-party audits. Key Responsibilities Cybersecurity Program Evaluation Lead cyber assurance engagements, assessing client cybersecurity programs for compliance with industry standards such as NIST, ISO 27001, and other relevant frameworks. Act as a trusted advisor, ensuring client cybersecurity postures are resilient, compliant, and in line with regulatory requirements. Vulnerability Assessment and Penetration Testing Management … party risk management, and regulatory compliance audits. Proven track record of leading cyber assurance engagements and guiding clients through risk management and compliance processes based on industry frameworks (e.g., NIST, ISO 27001). Expertise in managing third-party audits and ensuring regulatory compliance across audit lifecycles. In-depth understanding of regulatory frameworks, with hands-on experience delivering compliance audits for More ❯

and procedures. Collaborate closely with the IT security team to ensure AI/ML systems comply with relevant regulatory requirements and industry standards, such as the EU AI Act, NIST AI RMF, the Digital Services Act, the Digital Markets Act, GDPR and ISO 27001. Work alongside incident response teams to investigate and respond to security incidents and breaches involving AI More ❯

job description and make sure to attach relevant documents. Key Responsibilities Cybersecurity Program Evaluation Lead cyber assurance engagements, assessing client cybersecurity programs for compliance with industry standards such as NIST, ISO 27001, and other relevant frameworks. Act as a trusted advisor, ensuring client cybersecurity postures are resilient, compliant, and in line with regulatory requirements. Vulnerability Assessment and Penetration Testing Management … party risk management, and regulatory compliance audits. Proven track record of leading cyber assurance engagements and guiding clients through risk management and compliance processes based on industry frameworks (e.g., NIST, ISO 27001). Expertise in managing third-party audits and ensuring regulatory compliance across audit lifecycles. In-depth understanding of regulatory frameworks, with hands-on experience delivering compliance audits for More ❯

Provide technical escalation support in the absence of a cybersecurity specialist, particularly in coordination with the Security Operations Centre (SOC). - Support compliance with relevant standards (e.g. ISO 27001, NIST, UK GDPR). - Review security aspects of tenders and conduct third-party/vendor risk assessments to ensure alignment with organisational security requirements. - Perform additional security-related tasks as directed … and cloud security. - Ability to assess and communicate technical vulnerabilities in business terms. - Experience working with or within a SOC environment. - Familiarity with risk management frameworks?(e.g. ISO 27005, NIST RMF). - Excellent communication and reporting skills. - Relevant certifications (e.g. CISSP, CISM, CRISC, CEH). - Experience with GRC tools and risk registers. - Knowledge of regulatory requirements and data protection laws. More ❯

strategic objectives, digital transformation ambitions, and best practice governance framework – ITILv4 including GDAD. The post holder will work closely with the security team to ensure compliance with GDAD and NIST CSF 2.0. This role will work closely with IT service providers, ensuring effective governance, compliance, and performance while maintaining alignment with LCC’s digital roadmap. Roles & Responsibilities End-User Computing … Strategy & Governance Ensure that end-user compute services align with GDAD framework, GDS Service Manual, and PDCF project governance. Work with the security team to maintain compliance with NIST CSF 2.0 Maturity Level 5, embedding cyber resilience and security best practices into service delivery. ITIL 4 Service Management Implementation Ensure all ITIL processes including incident, problem, change, and request fulfilment … continuously monitored and optimised using Service Now, Power BI dashboards and analytics. Provide regular reports and insights to senior leaders, demonstrating service performance and areas for improvement. Security, Compliance, & NIST CSF 2.0 Maturity Work with the Security team to ensure the End User Compute services are compliant with zero-trust security models, protecting end-user devices, identity management, and endpoint More ❯

or Bash Familiarity with open-source diagnostic and assessment tools such as Nmap, Wireshark, and Kali Linux Solid understanding of established security frameworks and models (e.g., MITRE ATT&CK, NIST, and related methodologies) Comfortable using general productivity and communication software for remote collaboration Bachelor's degree in cybersecurity, information technology, or a related field Qualifications Strong analytical thinking and problem More ❯

attack vectors, malware, and security trends is crucial. Developing and implementing security policies, standards, and procedures: This includes creating guidelines aligned with industry best practices and regulatory requirements (e.g., NIST CSF, ISO 27001, GDPR). Designing and architecting secure IT environments: This may involve network security design, cloud security architecture (AWS, Azure, GCP), and implementing security technologies. Developing and assisting More ❯

Security Analyst plays a key role in supporting Allianz UK's Information Security initiatives, with a focus on executing the Governance, Risk, and Compliance (GRC) activities and implementing the NIST Cyber Security Framework (CSF) across the organisation. The NIST analyst will involve in day-to-day GRC operations, such as designing and implementing security controls, interpreting requirements from the Group … Information Security Analyst at Allianz UK, you will be pivotal in advancing the company's Information Security initiatives by executing Governance, Risk, and Compliance (GRC) activities and implementing the NIST Cyber Security Framework (CSF) organization-wide. Your role will involve daily GRC operations, including designing and implementing security controls, interpreting requirements from the Group Information Security Framework, and managing non … analysing potential risks, and monitoring progress on maturity uplifting across security functions. You will be developing and implementing an information security controls catalogue, policies, and procedures aligned with the NIST Cyber Security Framework (CSF). Collaborating with the wider organization to integrate control testing and risk management activities into the existing governance framework. Assisting cross-functional teams and business units More ❯

attack vectors, malware, and security trends is crucial. Developing and implementing security policies, standards, and procedures: This includes creating guidelines aligned with industry best practices and regulatory requirements (e.g., NIST CSF, ISO 27001, GDPR). Designing and architecting secure IT environments: This may involve network security design, cloud security architecture (AWS, Azure, GCP), and implementing security technologies. Developing and assisting More ❯

changes, and industry best practices. Required Skills & Experience: Proven experience in Information Security, Cybersecurity, and/or Information Privacy. Deep understanding of regulatory frameworks: GDPR, DPA 2018, ISO 27001, NIST , and FCA guidelines. Strong knowledge of security controls, data lifecycle management, and access control models. Experience within the banking or financial services sector is essential. Demonstrated ability to engage with More ❯

risk assessments and gap analyses for clients. Provide in-depth control reviews, maturity ratings, and remediation actions based on Governance, Risk, and Compliance (GRC) frameworks such as Cyber Essentials, NIST, CIS, and ISO27001 Conduct comprehensive vulnerability assessments of client systems to identify potential security risks. Assist with the implementation of security measures through TSG and partner-led services including Managed … Relevant professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or Certified Information Security Manager (CISM). Familiarity with GRC frameworks such as ISO27001, NIST, CIS benchmarks, and Cyber Essentials/Plus. Proven experience in a cybersecurity consultancy role, with a strong understanding of cybersecurity principles, protocols, and standards. Demonstrable experience working on multiple client More ❯

of experience in a GRC consultancy or lead security role with significant client-facing responsibilities. Proven ability to independently deliver information security engagements across ISO 27001, SOC 2, GDPR, NIST, or similar frameworks. In-depth knowledge of information security principles, compliance standards, and regulatory requirements. A recognised certification in information security, audit, or compliance (e.g. ISO 27001 Lead Implementer/ More ❯

incidents, including investigation, containment, root cause analysis, and reporting. Work with internal teams to continuously improve incident response processes. Support compliance and alignment with ISO 27001, Cyber Essentials, SWIFT, NIST and other relevant frameworks. Communicate effectively with various stakeholders including engineers, product managers, operations team, senior management, and auditors about the information security posture, risks, and mitigation strategies. Qualifications Bachelor … AWS Security) are a plus. Experience Minimum of 8 years’ experience in information security roles, ideally in the financial sector. Experience working with ISO 27001, Cyber Essentials, and preferably NIST CSF, SOC 2, or SWIFT frameworks. Strong understanding of security in the context of software development and application security (OWASP, SDLC, DevSecOps). Hands-on, pragmatic approach with the ability More ❯

to engineering teams building client-facing SaaS and AI applications. Liaise with risk, compliance, and assurance functions to ensure security alignment with regulatory frameworks (e.g., ISO 27001, SOC 2, NIST). Evangelize cloud security best practices internally and with clients to build trust and awareness. Essential Requirements 8+ years in cybersecurity roles, with 3+ years focused specifically on cloud and More ❯

/AKS), and infrastructure protection. Hands-on knowledge of DevSecOps, IaC (Terraform), CI/CD pipelines, and tools like Veracode, Trivy, and Checkov. Familiarity with standards such as CIS, NIST, GDPR, ISO and frameworks like MITRE ATT&CK. Strong programming/scripting skills (Python, Go, Groovy) with a clean, secure coding ethos. Ideal Candidate Profile: Expert in Azure cloud security More ❯

/AKS), and infrastructure protection. Hands-on knowledge of DevSecOps, IaC (Terraform), CI/CD pipelines, and tools like Veracode, Trivy, and Checkov. Familiarity with standards such as CIS, NIST, GDPR, ISO and frameworks like MITRE ATT&CK. Strong programming/scripting skills (Python, Go, Groovy) with a clean, secure coding ethos. Ideal Candidate Profile: Expert in Azure cloud security More ❯

platform Experience with AlertMedia platform Experience with Conducttr platform Familiarity with Salesforce Shield, Event Monitoring, and encryption features Understanding of business continuity and disaster recovery frameworks (e.g., ISO 22301, NIST SP 800-34, FFIEC) Working knowledge of data governance, compliance (e.g., GDPR, HIPAA), and audit readiness Soft Skills: Excellent documentation, communication, and problem-solving skills Please note you must currently More ❯

willing to undergo DBS and Counter Terrorist Check. It would be great if you had: Certifications such as CISSP, or other relevant qualifications. Experience with additional frameworks (e.g., SOC2, NIST, NCSC CAF). More than 2 years’ experience delivering IT or cybersecurity solutions. Benefits: 30 days annual leave + 8 bank holidays Additional day off for your birthday 3% employer More ❯

willing to undergo DBS and Counter Terrorist Check. It would be great if you had: Certifications such as CISSP, or other relevant qualifications. Experience with additional frameworks (e.g., SOC2, NIST, NCSC CAF). More than 2 years’ experience delivering IT or cybersecurity solutions. 30 days annual leave + 8 bank holidays Additional day off for your birthday Cycle to Work More ❯

and one of LinkedIn's Top Companies 2024 Do you have proven experience in cyber security, information assurance or resilience management? If you have a strong working knowledge of the NIST Cyber Security Framework then this could be your chance to join us! We're looking for someone with excellent communication skills to work across the business to provide assurance … on Clarion's cybersecurity strategy, ensuring alignment with the National Institute of Standards and Technology (NIST) Cyber Security Framework. Familiar with UK housing sector regulation, applicable standards and data protection requirements (e.g. GDPR, ISO27001, ISO27002, ISO27701) you'll be responsible cyber assurance to support the security posture across systems and services that support tenants and operations. You'll communicate the More ❯