226 to 250 of 608 Remote NIST Jobs

security principles. Comfortable working alongside or within a Security Operations Centre (SOC) . Able to communicate technical risks in plain business terms. Familiar with frameworks such as ISO 27005, NIST RMF , or similar. Available to start immediately or within short notice . Bonus Points For: Certifications: CISSP, CISM, CRISC, CEH or equivalent. Experience using GRC tools and managing risk registers. More ❯

solution designs aligned with Microsoft security capabilities Conduct capability assesments across Microsoft security tools (i.e Defender, E5, Endpoint, CrowdStrike Evaluate security architecture using industry frameworks (i.e ISO 27001, CIS, NIST) Produce architecture dcumentation, risk assessments and design decision Experience required: Expertise in Microsoft Security Stack (E5 Security, Defender, Endpoint, Sentinel) Strong knowledge of Microsoft Licensing and governance Experiecne designing reusable More ❯

vulnerabilities, security gaps, and compliance risks. • Perform static and dynamic analysis of software code to detect security flaws and backdoors. • Test applications for compliance with DoD cybersecurity frameworks, including NIST 800-53, RMF, and STIGs. • Work closely with developers, security engineers, and system administrators to implement security recommendations. • Perform penetration testing and vulnerability assessments on government software systems. • Document findings More ❯

clients is key!) Bonus if you have: Microsoft certs (SC-200, SC-100, AZ-500) Experience with automation (Logic Apps, Power Automate, PowerShell/Python) Exposure to compliance frameworks (NIST, ISO 27001, Cyber Essentials) Familiarity with other SIEMs (Splunk, QRadar, LogRhythm) #SOC #MicrosoftSentinel #CyberSecurityJobs #ThreatDetection #WeAreHiring #MSSP More ❯

technologies and processes including and understanding of current and emerging security threats and an awareness of systems and methods to counter them. A working knowledge of security frameworks including NIST/NIS Regulations CAF/IEC/SoGP Cyber Kill Chain is highly beneficial. Youll be able demonstrate a keen interest in developing your knowledge in this area. Youll have More ❯

technologies and processes including and understanding of current and emerging security threats and an awareness of systems and methods to counter them. A working knowledge of security frameworks including NIST/NIS Regulations CAF/IEC/SoGP Cyber Kill Chain is highly beneficial. Youll be able demonstrate a keen interest in developing your knowledge in this area. Youll have More ❯

regulatory frameworks. Key Areas of Responsibility: Regulatory Implementation & Frameworks Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management, scenario-based testing, and oversight of third-party providers. More ❯

regulatory frameworks. Key Areas of Responsibility: Regulatory Implementation & Frameworks Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management, scenario-based testing, and oversight of third-party providers. More ❯

VP, IT Security Risk - RSA Archer, NIST, GRC - London - Hybrid A strategic opportunity for a VP-level Information & Cyber Security professional to join a growing security governance and risk team. Drive enterprise-level cyber risk management, compliance, and security posture enhancement in a highly regulated environment. Key Responsibilities: Own and maintain security policies, standards, procedures , and governance frameworks Align risk … management with NIST CSF, NIST 800-53 , and industry regulations Act as a trusted security advisor to business and technical stakeholders Lead and conduct detailed risk assessments , maintaining the risk register in RSA Archer Identify and evaluate information security risks; support remediation and treatment strategies Track and monitor risk remediation through life cycle to acceptable closure Contribute to organization-wide More ❯

formats (e.g., NITF, STANAG). Experience with cloud-based development environments (e.g., AWS, Azure) for machine learning and algorithm deployment. Knowledge of mission-specific security standards or frameworks (e.g., NIST, RMF, or IC/DoD compliance). Experience working in Agile or DevOps environments to support rapid prototyping and delivery. Familiarity with XMIDAS. Familiarity with SIGHUB and GEOHUB environments. Why More ❯

Permanent Role: Enterprise Security Architect (London | Hybrid | Cloud, NIST, SABSA) A leading global financial services firm is hiring an Enterprise Security Architect for a permanent position based in London (2 days onsite/week) . Key Tech & Frameworks: Cloud Security (SaaS, IaaS, Infrastructure) SABSA, NIST CSF, ISO 27001/2, SP 800-53, SANS Top 20 Risk & Compliance (GDPR, PFMI More ❯

and marketing. Some international travel may be required. Knowledge and Experience Essential Proven technical experience in computer forensics for cyber incident response and investigations. Understanding of best practices (NPCC, NIST, ISO17025) in evidence handling, systems, and tools. Knowledge of MITRE ATT&CK, Cyber Kill Chain, network topology, and EDR solutions. Expertise in multiple operating systems (Microsoft, Linux), cloud services (Microsoft More ❯

information security and risk management frameworks, such as Mitre ATT&CK, International Organization for Standardization (ISO) 2700x and 31000, the ITIL, COBIT and National Institute of Standards and Technology (NIST) or Centre for Internet Security (CIS) frameworks. A broad knowledge and understanding of the cyber security threat landscape and research. Significant and proven experience of dealing with cyber security incidents More ❯

or inherited by an information technology (IT) system(s) across multiple program offices to determine the overall effectiveness of the security controls (as defined in the latest revision of NIST SP 800-37). This role analyzes the security of new or existing computer applications, software, or specialized utility programs and provides actionable results. This role is also responsible for More ❯

CISM, or CISSP. Strong information security/assurance, audit, compliance and risk knowledge, experience of IT risk and assurance frameworks, and control assurance assessments (e.g. ISO 27001, CIS 20, NIST, etc). Demonstrable experience in planning, executing and supervision of activities/deliverables such as controls assessments or audits. Demonstrable experience in review and assessment of contractual or regulatory artifacts … CISM, or CISSP. Strong information security/assurance, audit, compliance and risk knowledge, experience of IT risk and assurance frameworks, and control assurance assessments (e.g. ISO 27001, CIS 20, NIST, etc). Demonstrable experience in planning, executing and supervision of activities/deliverables such as controls assessments or audits. Demonstrable experience in review and assessment of contractual or regulatory artifacts More ❯

/objectives. Experience of driving or influencing a centre of excellence. Good understanding of ITIL methodologies and standards (ITILv3 and above, Foundation level) or applicable framework. Good understanding of NIST, SABSA, TOGAF and Zachman or equivalent architectural framework. Good working knowledge of an Information Security Management System and the ISO2700x/Cyber Essentials series of standards. Experience of the development More ❯

for a wide range of stakeholders. As a Senior Cyber Security Advisor, you will ideally have relevant skills and experience working in cyber security using best practices (e.g. ISO27001, NIST Cyber Security Framework, NIS Regulations) and/or experience working in infrastructure (IT/OT) or cloud environments with cyber security responsibilities. Your advisory experience will enable you to work More ❯

Alto, Cisco, Crowdstrike, Fortinet, Zscaler and Netskope. Security Vendor Accreditations will be advantageous. Independent and relevant certifications (such as CISSP, CISM) are advantageous. Knowledge of industry frameworks such as NIST, DORA, Regulatory Compliance, Governance and standards are desired but not essential. Self-driven and self-motivated Ability to lead customers and articulate a cloud journey that delivers tangible benefit quickly More ❯

risk assessment Consult on potential security components architectures (e.g. SIEM, IAM, gateways, detection and deception capabilities ) Evaluate architectures against Business Line policy and major cyber security standards & regulation frameworks (NIST, ISO, JSP, etc.) Produce justification for architectural choices Ensure technical coordination across a multi-discipline team Present, recommend and demonstrate solutions to customer representatives, peers or technical teams Conduct security … Security (ISS) You can advise and give support to the rest of the team Familiar with Risk Analysis, Network Security, Cryptography, Identity & Access Management (software/hardware development, the NIST Cybersecurity Framework, cloud technologies) Able to monitor and measure risk as well as compliance You have the ability to work with customers and technical teams NICE TO HAVE: Domain knowledge More ❯

are quickly and effectively contained and any incident is brought to a rapid resolution. They will be responsible for managing incidents in strict alignment with relevant frameworks, such as NIST or ISO, and any applicable regulatory requirements, maintain adherence to organizational standards and compliance mandates. This role is critical in protecting the organization’s assets and improving its overall threat More ❯

in Cyber Security Good understanding of core security principles and tools Exposure to network security, vulnerability management, or risk assessments (preferred) Familiarity with security frameworks such as ISO 27001, NIST, or PCI DSS (preferred) Professional certifications like Security+, CEH, or CISSP are desirable Analytical mindset, attention to detail, and a proactive approach to learning What You'll Get Dedicated Mentorship More ❯

in Cyber Security Good understanding of core security principles and tools Exposure to network security, vulnerability management, or risk assessments (preferred) Familiarity with security frameworks such as ISO 27001, NIST, or PCI DSS (preferred) Professional certifications like Security+, CEH, or CISSP are desirable Analytical mindset, attention to detail, and a proactive approach to learning What You'll Get Dedicated Mentorship More ❯

in Cyber Security Good understanding of core security principles and tools Exposure to network security, vulnerability management, or risk assessments (preferred) Familiarity with security frameworks such as ISO 27001, NIST, or PCI DSS (preferred) Professional certifications like Security+, CEH, or CISSP are desirable Analytical mindset, attention to detail, and a proactive approach to learning What You'll Get Dedicated Mentorship More ❯

to ensure comprehensive solutions. Governance and Compliance: Ensure that all architectural practices comply with relevant regulations, standards, and best practices in the healthcare industry, such as GDPR, CAF, DSPT, NIST and NHS guidelines. Regularly review and update policies to maintain alignment with evolving regulatory requirements. Ensure security measures are integrated into every aspect of the architecture. Mentorship and Leadership: Provide … a focus on healthcare IT solutions. Proven track record of leading large-scale projects and teams. Strong understanding of healthcare regulations, standards, and best practices (e.g., GDPR, CAF, DSPT, NIST). Excellent communication, presentation, and interpersonal skills. Relevant certifications (e.g., TOGAF, Zachman) (D) What you will get: A Competitive Annual Salary The equivalent of 33 days annual leave Pro Rata More ❯

regulatory frameworks. Key Areas of Responsibility: Regulatory Implementation & Frameworks Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management, scenario-based testing, and oversight of third-party providers. More ❯