226 to 250 of 600 Remote NIST Jobs

structured IT and information security risk assessments and threat modelling for new IT platforms, systems, and applications and for material changes. Provide security architecture advice (patterns, guardrails) aligned to NIST CSF/ISO 27001 and company standards. Define and agree control selection (prevent/detect/correct) proportionate to risk, including identity, data and platform controls. Conduct IT control walkthroughs … approach. Role Requirements 7+ years in information risk, security assurance or IT audit within regulated, safety-critical or industrial environments (energy/oil & gas preferred). Strong knowledge of NIST CSF, ISO 27001, UK GDPR and supplier assurance practices; familiarity with the UK CAF is desirable. Proven experience running compliance and assurance functions, Secure-by-Design reviews, and control testing More ❯

Security Architect - Belfast (Hybrid, Outside IR35) - £500 per day - 3 Months We are seeking an experienced Security Architect to design, implement, and maintain secure architectures across enterprise systems and networks. This role requires deep technical expertise in cybersecurity design principles More ❯

Security Architect - Belfast (Hybrid, Outside IR35) - £500 per day - 3 Months We are seeking an experienced Security Architect to design, implement, and maintain secure architectures across enterprise systems and networks. This role requires deep technical expertise in cybersecurity design principles More ❯

Security Architect - Belfast (Hybrid, Outside IR35) - £500 per day - 3 Months We are seeking an experienced Security Architect to design, implement, and maintain secure architectures across enterprise systems and networks. This role requires deep technical expertise in cybersecurity design principles More ❯

AD, Okta, and SailPoint for OT environments. Apply Zero Trust principles and industry-standard security framework controls to IAM processes. Compliance & Security: Ensure IAM solutions adhere to CAF, eCAF, NIST, and other regulatory frameworks. Conduct access audits, identity risk assessments, and compliance reporting. Work closely with cybersecurity, risk, and compliance teams to align IAM strategies with regulatory requirements. Collaboration & Documentation … IdentityIQ – access reviews, lifecycle automation, compliance workflows, and enterprise application integration. Privileged Access Management: CyberArk – Vault administration, credential rotation, JIT access, session monitoring, compliance reporting. Security & Compliance: CAF, eCAF, NIST frameworks; IAM controls for critical infrastructure; incident response and threat detection. Preferred Certifications: Microsoft Certified: Identity and Access Administrator Associate Okta Certified Administrator/Professional SailPoint IdentityNow/IdentityIQ Engineer More ❯

AD, Okta, and SailPoint for OT environments. Apply Zero Trust principles and industry-standard security framework controls to IAM processes. Compliance & Security: Ensure IAM solutions adhere to CAF, eCAF, NIST, and other regulatory frameworks. Conduct access audits, identity risk assessments, and compliance reporting. Work closely with cybersecurity, risk, and compliance teams to align IAM strategies with regulatory requirements. Collaboration & Documentation … IdentityIQ – access reviews, lifecycle automation, compliance workflows, and enterprise application integration. Privileged Access Management: CyberArk – Vault administration, credential rotation, JIT access, session monitoring, compliance reporting. Security & Compliance: CAF, eCAF, NIST frameworks; IAM controls for critical infrastructure; incident response and threat detection. Preferred Certifications: Microsoft Certified: Identity and Access Administrator Associate Okta Certified Administrator/Professional SailPoint IdentityNow/IdentityIQ Engineer More ❯

AD, Okta, and SailPoint for OT environments. Apply Zero Trust principles and industry-standard security framework controls to IAM processes. Compliance & Security: Ensure IAM solutions adhere to CAF, eCAF, NIST, and other regulatory frameworks. Conduct access audits, identity risk assessments, and compliance reporting. Work closely with cybersecurity, risk, and compliance teams to align IAM strategies with regulatory requirements. Collaboration & Documentation … IdentityIQ – access reviews, lifecycle automation, compliance workflows, and enterprise application integration. Privileged Access Management: CyberArk – Vault administration, credential rotation, JIT access, session monitoring, compliance reporting. Security & Compliance: CAF, eCAF, NIST frameworks; IAM controls for critical infrastructure; incident response and threat detection. Preferred Certifications: Microsoft Certified: Identity and Access Administrator Associate Okta Certified Administrator/Professional SailPoint IdentityNow/IdentityIQ Engineer More ❯

AD, Okta, and SailPoint for OT environments. Apply Zero Trust principles and industry-standard security framework controls to IAM processes. Compliance & Security: Ensure IAM solutions adhere to CAF, eCAF, NIST, and other regulatory frameworks. Conduct access audits, identity risk assessments, and compliance reporting. Work closely with cybersecurity, risk, and compliance teams to align IAM strategies with regulatory requirements. Collaboration & Documentation … IdentityIQ – access reviews, lifecycle automation, compliance workflows, and enterprise application integration. Privileged Access Management: CyberArk – Vault administration, credential rotation, JIT access, session monitoring, compliance reporting. Security & Compliance: CAF, eCAF, NIST frameworks; IAM controls for critical infrastructure; incident response and threat detection. Preferred Certifications: Microsoft Certified: Identity and Access Administrator Associate Okta Certified Administrator/Professional SailPoint IdentityNow/IdentityIQ Engineer More ❯

AD, Okta, and SailPoint for OT environments. Apply Zero Trust principles and industry-standard security framework controls to IAM processes. Compliance & Security: Ensure IAM solutions adhere to CAF, eCAF, NIST, and other regulatory frameworks. Conduct access audits, identity risk assessments, and compliance reporting. Work closely with cybersecurity, risk, and compliance teams to align IAM strategies with regulatory requirements. Collaboration & Documentation … IdentityIQ – access reviews, lifecycle automation, compliance workflows, and enterprise application integration. Privileged Access Management: CyberArk – Vault administration, credential rotation, JIT access, session monitoring, compliance reporting. Security & Compliance: CAF, eCAF, NIST frameworks; IAM controls for critical infrastructure; incident response and threat detection. Preferred Certifications: Microsoft Certified: Identity and Access Administrator Associate Okta Certified Administrator/Professional SailPoint IdentityNow/IdentityIQ Engineer More ❯

Excellent writing skills and ability to communicate effectively. • Experience with embedded system vulnerability scanning and Software Assurance (SwA) activities. • Strong understanding of System Security Engineering (SSE) principals and process. (NIST SP 800-161). • Experience in the identification, decomposition, allocation and verification of NIST SP 800-53 Security Controls on DoD systems. • Experience in supporting Security Verification testing on developed More ❯

Strong communication skills. Experience producing intelligence reports for varied audiences. Familiarity with cyber threats, threat actors, attack vectors, and vulnerabilities. Knowledge of information assurance standards and frameworks including CIS, NIST, ISO 27001, Cyber Essentials/Essentials Plus, GDPR. Knowledge of threat cyber security frameworks such as MITRE ATT&CK, Kill Chain and NIST CSF 2.0. The ideal candidate will combine More ❯

or any AWS Associate- or Professional-level certification within three months of hire Must be familiar with federal compliance and guidance, including FISMA, RMF, Federal Enterprise Architecture Framework, DoDAF, NIST Cybersecurity Framework, NIST 800 series, FedRAMP and cloud-based security controls Experience with cloud brokerages, preferably Navy Preferred Qualifications : Bachelor's Degree 5+ years cloud experience in engineering or operations More ❯

mitigation plans. Contribute to periodic operational risk assessments and formal risk reporting processes. Compliance Support IT control compliance reviews and assessments against internal standards and frameworks (e.g., ISO 27001, NIST). Assist control owners in performing control self-assessments and audit readiness activities. Help coordinate compliance attestations across internal teams and third-party providers. Participate in periodic maturity assessments and … of IT risk management principles, control frameworks and compliance processes. Experience conducting IT risk assessments, control testing and evidence gathering for audits. Knowledge of frameworks such as ISO 27001, NIST or COBIT. Strong analytical skills and attention to detail with excellent documentation and reporting abilities. Confident communicator, able to engage effectively with technical and non-technical stakeholders. Exposure to financial More ❯

requirements into SOC governance, processes, and operational practices Ensure continuous monitoring, evidence collection, and audit readiness for internal and external assessments Monitor developments in global cybersecurity regulations and frameworks (NIST CSF, UK NCSC guidance, EU NIS2, GDPR) Oversee sector-specific assurance requirements, including PCI DSS and NCSC CIR/CHECK, where applicable Provide expert advice to leadership on regulatory changes … II, Cyber Essentials Plus, CREST) Strong understanding of SOC operations and security assurance frameworks Experience in customer-facing assurance activities, including audits, RFIs, and RFPs In-depth knowledge of NIST CSF, GDPR, and UK NCSC guidance Experience liaising with external auditors, regulators, and certification bodies Strong ability to develop and maintain compliance documentation and audit evidence Proven organisational skills managing More ❯

awareness, and the confidence to engage at every level. Ideally, youll have: Strong experience in cybersecurity risk management or GRC roles A solid understanding of industry frameworks such as NIST CSF, NIST 800-53, or SOC 2 Hands-on involvement in audit or certification readiness programmes Excellent communication skills with the ability to translate security risk into business value This More ❯

worked in a technical, large-scale environment such as semiconductors. Hands on experience with risk assessment methodologies. Deep knowledge of security technologies and control frameworks such as ISO 27001, NIST CSF and NIST SP800-53. Strong stakeholder management skills Proven ability to embed frameworks and tools and act as a technical SME. What’s in it for you? – Our client More ❯

worked in a technical, large-scale environment such as semiconductors. Hands on experience with risk assessment methodologies. Deep knowledge of security technologies and control frameworks such as ISO 27001, NIST CSF and NIST SP800-53. Strong stakeholder management skills Proven ability to embed frameworks and tools and act as a technical SME. What’s in it for you? – Our client More ❯

and risk implications to technical and non-technical stakeholders. Managing and supporting project stakeholder expectations with a flexible, pragmatic approach. Cyber Governance Analyst Requirements: Working knowledge of cybersecurity frameworks (NIST and CIS.) Over three years experience working with and implementing NIST compliance frameworks into organisations Proven experience in a similar role, supporting governance, monitoring controls, and managing risks. Ability to More ❯

and risk implications to technical and non-technical stakeholders. Managing and supporting project stakeholder expectations with a flexible, pragmatic approach. Cyber Governance Analyst Requirements: Working knowledge of cybersecurity frameworks (NIST and CIS.) Over three years experience working with and implementing NIST compliance frameworks into organisations Proven experience in a similar role, supporting governance, monitoring controls, and managing risks. Ability to More ❯

and risk implications to technical and non-technical stakeholders. Managing and supporting project stakeholder expectations with a flexible, pragmatic approach. Cyber Governance Analyst Requirements: Working knowledge of cybersecurity frameworks (NIST and CIS.) Over three years experience working with and implementing NIST compliance frameworks into organisations Proven experience in a similar role, supporting governance, monitoring controls, and managing risks. Ability to More ❯

risk across the business Monitor and review technology control effectiveness and follow up on remediation actions Evaluate compliance against internal standards, regulatory expectations and recognised industry frameworks (such as NIST and ISO) Assist with supplier due diligence and third-party technology risk assessments Support elements of the operational resilience programme and technology incident review activity Prepare clear, concise reporting and … and hands on technical teams Naturally inquisitive with the ability to break down detail and provide clear conclusions Comfortable working across several workstreams at once Knowledge of ISO 27002, NIST, PCI DSS, UK GDPR or cloud environments (such as Azure) would be advantageous This role would suit someone who enjoys detail, enjoys engaging with people and wants to work in More ❯

risk across the business Monitor and review technology control effectiveness and follow up on remediation actions Evaluate compliance against internal standards, regulatory expectations and recognised industry frameworks (such as NIST and ISO) Assist with supplier due diligence and third-party technology risk assessments Support elements of the operational resilience programme and technology incident review activity Prepare clear, concise reporting and … and hands on technical teams Naturally inquisitive with the ability to break down detail and provide clear conclusions Comfortable working across several workstreams at once Knowledge of ISO 27002, NIST, PCI DSS, UK GDPR or cloud environments (such as Azure) would be advantageous This role would suit someone who enjoys detail, enjoys engaging with people and wants to work in More ❯

fast-paced environment, and want to make real impact at Europe’s leading frozen food company. Responsibilities: Overseeing cyber security governance efforts, ensuring alignment with frameworks like ISO 27001, NIST, NIS2 and GDPR, and regulatory standards. Identify, assess, and mitigate security risks across the organisation. Implement and maintain risk management processes, ensuring effective controls are in place. Ensure continuous compliance … experienced in operating a risk management framework across multiple entities and territories, including risk appetite and impact/likelihood calibration. Has familiarity with regulations and standards such as ISO27001, NIST CSF, NIS2, COBIT, ITIL, GDPR, and SOC2, including developing and maintaining frameworks, policies and guidance, and implementation and monitoring strategies. Some of the key skillset required for this position are More ❯

and risk implications to technical and non-technical stakeholders. Managing and supporting project stakeholder expectations with a flexible, pragmatic approach. Cyber Governance Analyst Requirements: Working knowledge of cybersecurity frameworks (NIST and CIS.) Over three years experience working with and implementing NIST compliance frameworks into organisations Proven experience in a similar role, supporting governance, monitoring controls, and managing risks. Ability to More ❯

audits and assessments of the IAM stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity lifecycle management. Develop and … Azure AD, GSuite, LDAP). Deep understanding of legacy and modern authentication protocols, access controls, and identity lifecycle management. Strong security awareness and familiarity with standards such as ISO27001, NIST, and CIS, with experience conducting audits and implementing controls. Solid grasp of Web APIs including SOAP, REST, and GraphQL, and their role in IAM integrations. Excellent communication, organisational, and stakeholder More ❯