276 to 300 of 607 Remote NIST Jobs

missing firmware patches. Must be familiar with insecure legacy protocols like Telnet and SNMPv1 and enforce secure alternatives like SSH and SNMPv3. Will apply hardening techniques using CIS Benchmarks, NIST standards, and industry best practices across firewalls, routers, and switches. Responsible for configuring and maintaining network security controls including ACLs, VLANs, DMZs, and micro-segmentation. Ensures management interfaces for network More ❯

or Azure) Comfortable developing IaC (Terraform or similar), automating security controls, and contributing to secure infrastructure practices Strong understanding of modern security principles, threat actor behaviour, and risk frameworks (NIST ) Skilled in collaborating with developers to find practical, low-friction ways to implement secure patterns Confident communicator across technical and non-technical teams, with the ability to influence architecture-level More ❯

Experience supervising network architecture and operations teams; Strong leadership and team-building capabilities Strong experience with network security, including experience with security frameworks and compliance standards (e.g., ISO 27001, NIST) Certifications: Cisco CCNP/CCIE and/or Cisco CCDP preferred; Equivalent experience considered Technical Skills: Expertise in WAN/LAN technologies, Voice Over IP (VoIP), firewalls, and network monitoring More ❯

enforcement, or intelligence) Degree in Cyber Security, Computer Science, or equivalent hands-on experience Active certifications such as CISSP, CISM, CRISC, or CISA Experience with ISO 27001/2, NIST, ISF, CMMI, or UK Government/Defence security frameworks Strong communication skills with the ability to brief stakeholders at all levels Background in threat intelligence reporting and risk prioritization Self More ❯

related field, or equivalent work experience Coding skills in at least one primary language, such as Java or Python and React Understanding of OWASP Top 10, SANS Top 20, NIST 800-53, CIS, CSC, or other security standards Utilize Static Application Security Testing tools (i.e. Checkmarx) to identify and remediate code vulnerabilities 1+ years as a security engineer or application More ❯

risks across infrastructure, data protection, and lifecycle management. * Own and maintain the IT risk register, ensuring mitigation plans are in place. * Align risk management frameworks with industry standards (ISO27001, NIST, CIS Critical Controls). * Lead IT audits, coordinate fieldwork, and track findings to ensure timely resolution. * Develop and implement IT policies, procedures, and security awareness initiatives. * Act as an SME More ❯

missing firmware patches. Must be familiar with insecure legacy protocols like Telnet and SNMPv1 and enforce secure alternatives like SSH and SNMPv3. Will apply hardening techniques using CIS Benchmarks, NIST standards, and industry best practices across firewalls, routers, and switches. Responsible for configuring and maintaining network security controls including ACLs, VLANs, DMZs, and micro-segmentation. Ensures management interfaces for network More ❯

Security: Experience with best practices for the cloud environments, Cloud Computing SRG, PIM, Identity and Access Management (IAM), Conditional Access Policies, Policy, and Regulatory Compliance such as IL6 and NIST 800-53 Rev 5. Experience with Governance capabilities with Management Groups, Subscriptions and Resource Groups Performance Optimization: Monitor and optimize cloud infrastructure for cost-effectiveness, performance, and scalability. Including deploying More ❯

processes Skills & Experience Required: 8+ years of experience in Information Security or IT , with 3+ years in IT Audit or security control testing Familiar with security frameworks such as NIST 800-53, ISO 27001, CIS Controls, COBIT Hands-on experience using RSA Archer, ServiceNow , and familiarity with automation and data-driven testing Working knowledge of cloud environments ( AWS, Azure ) and More ❯

cyber operations Certifications such as GCIA, GCTI, GREM, GCFA, CEH, or Security+ Experience with malware analysis, reverse engineering, or digital forensics Familiarity with cyber policy and compliance frameworks (e.g., NIST, DoD RMF, STIGs) Work Environment: Primary location: Huntsville, AL - on-site with potential hybrid work flexibility based on mission needs May require occasional travel to attend conferences, briefings, or support More ❯

cyber resilience principles/practises including experience in information security, business continuity planning, business impact assessments, crisis management and cyber security. Working knowledge and/or expertise of ISO27001, NIST, CAF or other industry standards. Knowledge and general understanding of EU Digital Operational Resilience Act (DORA) and Network and Information Security (NIS2) Directive. Knowledge of EBA Outsourcing Guidelines, PRA SS2 More ❯

vulnerabilities (e.g., IP spoofing, open ports, legacy protocols). Work with tools like Tenable, Qualys, and AWS Inspector to prioritize and resolve issues. Enforce secure configurations using CIS Benchmarks, NIST guidelines, and best practices. Secure network infrastructure including VLANs, ACLs, DMZs, and segmentation policies. Implement strong encryption and access controls on network device interfaces. Design secure networking in cloud platforms More ❯

cyber operations Certifications such as GCIA, GCTI, GREM, GCFA, CEH, or Security+ Experience with malware analysis, reverse engineering, or digital forensics Familiarity with cyber policy and compliance frameworks (e.g., NIST, DoD RMF, STIGs) Work Environment: Primary location: Huntsville, AL - on-site with potential hybrid work flexibility based on mission needs May require occasional travel to attend conferences, briefings, or support More ❯

/continuous deployment (CI/CD) tools, and leveraging automation platforms such as Ansible or Azure Functions Understanding of Federal Government application, server, and network security requirements such as NIST, FedRAMP, and FISMA Ability to work effectively within a distributed technical team, aided by strong written and verbal communication skills Familiarity with the Atlassian suite, including Jira and Confluence Current More ❯

leading and resolving complex security incidents effectively. Exceptional communication and interpersonal abilities, with a confident approach to engaging with clients and senior stakeholders. Good understanding of security frameworks, including NIST, ISO27001, Cyber Essentials. What’s on Offer: Enjoy a flexible work environment with options for remote work, office presence, and client site visits to suit your needs. Celebrate your birthday More ❯

systems. Collaborate with IT and business stakeholders to embed security into solution designs. Monitor compliance with internal policies, external regulations and industry good practice. (e.g., GDPR, ISO27001, CIS, ISF, NIST). Provide expert guidance on security best practices, threat modelling, and mitigation strategies. Support incident response and post-incident reviews from an architectural perspective. Skills and experience you need as More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯