301 to 325 of 606 Remote NIST Jobs

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

processes Stay current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We’ll Give More ❯

User Experience/User Interface (UX/UI), Section 508, United States Web Design System (USWDS), and Customer Journey Mapping (CJM). • Working knowledge of Application Security implementation, including NIST 800-53 R5 security controls. Education: • Bachelor's degree in computer science, Software Engineering, Information Management Systems, or a related discipline. Equivalent professional experience will be considered instead of a More ❯

systems. Collaborate with IT and business stakeholders to embed security into solution designs. Monitor compliance with internal policies, external regulations and industry good practice. (e.g., GDPR, ISO27001, CIS, ISF, NIST). Provide expert guidance on security best practices, threat modelling, and mitigation strategies. Support incident response and post-incident reviews from an architectural perspective. Skills and experience you need asInformation More ❯

and threat intelligence drive delivery alongside great response to incidents as they emerge, including in partnership with 3rd parties. Familiar with the application of security certifications such as ISO27001, NIST to global organisations with significant outsourced value stream activities Leadership of information security, data privacy and data handling issues in organisations with significant outsourced value stream activities In the field More ❯

with a proven track record of influencing executive stakeholders and delivering secure, compliant outcomes in a complex, regulated financial services environments. You will have a strong knowledge of ISO, NIST, PCI-DSS, SOX, COBIT, GDPR, and related frameworks, expertise in IT risk, audit, and regulatory compliance and professional certifications (CISSP, CISM, or CISA) or willingness to obtain. Experience working under More ❯

e.g. GDPR, NIS Directive, EBA Guidelines). Has a comprehensive understanding of what it takes to comply with cyber security industry standards and frameworks in practise (e.g. ISO 27001, NIST CSF, SP 800-53, NCSC CAF, Cyber Essentials). Has a thorough understanding of cyber security threat and risk with the ability to think like an attacker and design controls More ❯

e.g. GDPR, NIS Directive, EBA Guidelines). Has a comprehensive understanding of what it takes to comply with cyber security industry standards and frameworks in practise (e.g. ISO 27001, NIST CSF, SP 800-53, NCSC CAF, Cyber Essentials). Has a thorough understanding of cyber security threat and risk with the ability to think like an attacker and design controls More ❯

and lifecycle management Strengthen security controls and ensure regulatory compliance Manage vendor performance and service delivery Drive continuous improvement across platforms and processes Technical Skills: Security frameworks: ISO 27001, NIST, CIS SIEM, endpoint protection, vulnerability management ITIL-based service management and automation Leadership Skills Proven ability to lead IT operations and transformation projects Strong vendor and budget management experience Resilience More ❯

Abcam and LSIG, working with peers and senior stakeholders to ensure understanding, support and adherence to it Develop, implement, and maintain IT Cyber governance frameworks aligned with COBIT, ITIL, NIST 800-53, and other industry standards Establish and monitor IT policies, procedures, and controls to ensure alignment with corporate governance and regulatory requirements Lead Abcam's IT compliance efforts related … to SOx, PCI DSS, MLPS, NIST, and other relevant internal and external requirements; Ensure IT controls are designed, implemented, and maintained effectively to meet regulatory and audit requirements Coordinate with internal and external auditors to facilitate IT audits, address findings, and track remediation efforts Work closely with IT leadership to define and implement an IT risk and governance strategy and … or Master's degree in IT, Security Risk Management, Business or equivalent professional experience Strong knowledge with IT/Cyber regulatory requirements, including SOX, PCI DSS, MLPS, ISO 27001, NIST, GDPR Proven track record of leading IT compliance audits, managing regulatory engagements and working with external and internal regulatory bodies Strong understanding of IT security principles, cloud security, and third More ❯

risks across infrastructure, data protection, and lifecycle management. * Own and maintain the IT risk register, ensuring mitigation plans are in place. * Align risk management frameworks with industry standards (ISO27001, NIST, CIS Critical Controls). * Lead IT audits, coordinate fieldwork, and track findings to ensure timely resolution. * Develop and implement IT policies, procedures, and security awareness initiatives. * Act as an SME More ❯

risks across infrastructure, data protection, and lifecycle management. Own and maintain the IT risk register, ensuring mitigation plans are in place. Align risk management frameworks with industry standards (ISO27001, NIST, CIS Critical Controls). Lead IT audits, coordinate fieldwork, and track findings to ensure timely resolution. Develop and implement IT policies, procedures, and security awareness initiatives. Act as an SME More ❯

the firm’s global cyber security strategy Lead and grow a small, globally distributed security team Oversee security operations , threat detection, and incident response Ensure compliance with ISO 27001, NIST, GDPR and DORA Work with tech teams to embed secure software development practices (SDLC) Build and report on security KPIs and risk posture to the board Manage vendor relationships and … experience in a Head of IT Security/InfoSec role Strong track record across cloud security (Azure) , network & endpoint protection , risk & compliance Solid grasp of governance frameworks : ISO 27001, NIST, GDPR, DORA Excellent communication and board-level reporting skills Hands-on where needed, while maintaining a strategic mindset #J-18808-Ljbffr More ❯

AWS, AZURE and DevSecOps, DevOps process Specifically with AWS cloud architecture knowledge of EC2, Dockers, RDS, Aurora would all be beneficial Familiar with governance frameworks such as ISO 27001, NIST, Cyber Essentials Stakeholder management skills and ideally management of 3rd party suppliers More ❯

may be required at times Requirements Knowledge and Experience Essential Previous, demonstrable, technical computer forensics experience for cyber incident response and investigations. Thorough understanding of best practice procedures (NPCC, NIST, ISO17025) evidence handling, computer systems and tools of the trade Thorough understanding of both the MITRE ATT&CK and Cyber Kill chain framework, network topology and EDR solutions Previous expert More ❯

is highly beneficial 5+ years UK residency, with no extended periods outside the UK, to meet security vetting requirements Preferred: Experience with recognised cybersecurity frameworks such as CESG, RMADS, NIST, DPAA, etc., is advantageous but not essential Note: You must demonstrate that you have lived and worked in the UK for the last 5 years to meet security vetting requirements. More ❯

4 days ago Be among the first 25 applicants Company Description General Dynamics Mission Systems engineers a diverse portfolio of high technology solutions, products and services that enable customers to successfully execute missions across all domains of operation. With a More ❯

advise on proportional mitigations, and produce or tailor reference patterns covering identity, network segmentation, container security, data protection, and monitoring. By modelling risks with frameworks such as ISO 27005, NIST, or STRIDE, you will justify design choices to technical and non technical audiences and document them for re use. What You'll Do: Set portfolio level vision & patterns in line … adoption or mitigation strategies. Oversee vendor and SaaS evaluations, ensuring contracts include appropriate security clauses and ongoing assurance. Essential skills: Risk based decision making: expert in ISO 27001/NIST/CIS controls, able to quantify and articulate risk, then select proportionate, cost effective controls. Technical depth: hands on knowledge of cloud security, IAM, container & API security, network segmentation, encryption More ❯