51 to 75 of 359 Remote NIST Jobs

risk, cyber maturity, security architecture, cyber transformation and regulatory compliance for cyber. Experience of various recognised cyber security relevant standards and regulations, such as NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR and NIS2 or equivalent. Experience working in a variety of environments or organisational contexts to develop cyber strategy and More ❯

with SCI eligibility - Expertise in applying standard DOD security practices, including STIG compliance and system accreditation implementation efforts - Familiarity with industry standard security guidance (NIST, IEEE, etc.) - Knowledge of containers, binary, and artifact management, and RHEL - Experience working in a DoD environment, with prior C2BMC experience preferred - Ability to develop More ❯

science and machine learning techniques. Knowledge of procedural and object-oriented programming languages. Experience with applying frameworks to cyber security, e.g., MITRE ATT&CK, NIST WORK ENVIRONMENT Battelle has been trusted by elite government clients to solve some of the world's hardest security problems. We work in small agile More ❯

control in data protection. Understanding of protection controls applied to data throughout its lifecycle. Experience implementing data security standards such as ISO27001, PCI DSS, NIST CSF. Ability to manage cyber security risks and communicate effectively with stakeholders. Desirable Skills: Experience leading a Cyber Security Assurance function. Bachelor's Degree (or More ❯

trends is crucial. Developing and implementing security policies, standards, and procedures: This includes creating guidelines aligned with industry best practices and regulatory requirements (e.g., NIST CSF, ISO 27001, GDPR). Designing and architecting secure IT environments: This may involve network security design, cloud security architecture (AWS, Azure, GCP), and implementing More ❯

trends is crucial. Developing and implementing security policies, standards, and procedures: This includes creating guidelines aligned with industry best practices and regulatory requirements (e.g., NIST CSF, ISO 27001, GDPR). Designing and architecting secure IT environments: This may involve network security design, cloud security architecture (AWS, Azure, GCP), and implementing More ❯

with proven Second Line of Defense responsibilities in InfoSec and IT Compliance & Frameworks : Demonstrated success meeting GDPR, EU NIS2, and familiarity with ISO 27001, NIST, and cybersecurity best practices Risk & Governance : Skilled in conducting risk assessments, defining mitigation strategies, and creating/enforcing security policies Good technical understanding of IT More ❯

events Hands-on knowledge and experience of security operations and incident response planning; Cellebrite, Magnet Domain Tools Knowledge of cybersecurity principles and frameworks; ISO27001, NIST, GDPR etc. Knowledge and experience with MS Sentinel, Cisco Meraki, MS Defender, Endpoint protection Knowledge and experience with SIEM, IDS/IPS, firewalls, endpoint protection More ❯

and procedures Knowledge and/or experience performing vulnerability assessment and mitigation Knowledge of DoD cybersecurity policies, including the Risk Management Framework (RMF) or NIST SP 800-53. Network engineering and architecture knowledge (TCP/IP, IPSEC, HTTP/S, routing protocols) Willing to travel approximately 10% of the More ❯

fast-paced, collaborative environment. Ideally, you’ll also have: Experience with Microsoft Sentinel, Defender, Cloud App Security, or Purview A solid grasp of ISO27001, NIST, UK GDPR, and security frameworks Knowledge of vendor management and vulnerability assessments Bonus points for certifications like ISO27001 Lead Implementer, CISSP, or CISM What’s More ❯

regular threat hunt activities and report findings to leadership. Security Governance and Compliance Ensure all work follows relevant security standards and regulations, including SOX, NIST, GDPR, CPRA, and other industry-specific requirements. Participate in annual security assessments and audit activities. Develop and implement Standard Operating Procedures and other documentation as … Some relevant experience in a technical IT role (System Administration/Network Administration/DevOps). Knowledge of security frameworks and regulatory compliance standards (NIST CSF, SOX ITGC, GDPR, MITRE ATT&CK, etc.) Experience with common industry SIEM and vulnerability management platforms. Experience maintaining the Microsoft Defender platform and other More ❯

Payment Card Industry Data Security Standard (PCI-DSS) General Data Protection Regulation (GDPR) and Privacy Practices ISO 27001/2 Knowledge of OWASP 10 NIST Cybersecurity Framework (CSF) CIS and Benchmarking By joining Morrisons, you not only become an essential asset to our success but also open doors to a More ❯

Payment Card Industry Data Security Standard (PCI-DSS) General Data Protection Regulation (GDPR) and Privacy Practices ISO 27001/2 Knowledge of OWASP 10 NIST Cybersecurity Framework (CSF) CIS and Benchmarking By joining Morrisons, you not only become an essential asset to our success but also open doors to a More ❯

protection, identity & access management) Familiarity with Microsoft security technologies and cloud platforms (Azure preferred) Understanding of key security frameworks and standards (e.g., ISO 27001, NIST, CIS Benchmarks) Ability to analyse technical threats and drive prompt, effective resolution Excellent documentation skills with the ability to communicate complex technical solutions clearly Relevant More ❯

with third-party and outsourcing risk, AI and digital transformation risks. Experience of developing and operating Technology Risk Management Frameworks such as ITIL, COBIT, NIST, ISO. Demonstrable extensive relevant experience of technology risk management in either a 1LoD or 2 LoD capacity (2LoD preferrable). Experience in scenario analysis and More ❯

with third-party and outsourcing risk, AI and digital transformation risks. Experience of developing and operating Technology Risk Management Frameworks such as ITIL, COBIT, NIST, ISO. Demonstrable extensive relevant experience of technology risk management in either a 1LoD or 2 LoD capacity (2LoD preferrable). Experience in scenario analysis and More ❯

transformation efforts. Proficiency in CAMEO or similar modeling tools for system and process analysis. Familiarity with cloud security standards (e.g., ISO/IEC 27001, NIST). Experience with ERP, CRM, or other business management systems. Strong knowledge of risk management processes, including risk assessments and mitigation strategies. Preferred Skills: Strong More ❯

transformation efforts. Proficiency in CAMEO or similar modeling tools for system and process analysis. Familiarity with cloud security standards (e.g., ISO/IEC 27001, NIST). Experience with ERP, CRM, or other business management systems. Strong knowledge of risk management processes, including risk assessments and mitigation strategies. Preferred Skills: Strong More ❯

accreditation work, with interface into the IT team, Accreditor and affected business units. Maintain accreditation and compliance with frameworks such as Secure by Design, NIST-800-53, STRAP; Security Testing - Scope and oversee penetration testing, vulnerability scanning, and other security validation activities, to ensure effectiveness of security controls; Design and More ❯

and Compliance - Lead accreditation work, interfacing with the IT team, Accreditor, and affected business units. Maintain compliance with frameworks such as Secure by Design, NIST-800-53, STRAP. Security Testing - Scope and oversee penetration testing, vulnerability scanning, and other security validation activities to ensure effectiveness of security controls. Design and More ❯

CERT+, EJBCA, Microsoft AD CS, and HSMs (Thales Luna, EnTrust nCipher, Fortanix DSM). Cloud infrastructure experience (AWS, Azure). Familiarity with regulatory frameworks: NIST, GDPR, etc. Proficiency in technical documentation (MS Word, Visio, PowerPoint, Excel). Strong stakeholder engagement and communication skills. Desirable: CISSP, CISM, CompTIA Security+, or a More ❯

Familiarity with SIEM tools like Splunk, Microsoft Sentinel, or Elastic Security. Domain Knowledge Regulatory Frameworks: Deep understanding of compliance standards such as ISO 27001, NIST, CIS Controls, SOC 2, GDPR, HIPAA, and industry-specific security requirements. Audit Processes: Conducting internal security audits, working with external auditors, and ensuring compliance across More ❯

Experience with Implementation of HSM solution with Thales, Safenet, Azure key vaults and AWS will be a plus Experience with PCI, Sarbanes Oxley (SOX), NIST cybersecurity framework, ISO 27000 security standards, and data protection regulations and requirements Strong problem-solving skills and written, verbal communication skills Security certification (e.g., CISSP More ❯

work in a fast-paced environment. • Ability to work well/collaborate with people from many different disciplines with varying degrees of technical experience. • NIST RMF Assessment and Authorization (A&A) experience. • Experience with operating IT security tools, such as ACAS, HBSS, DISA STIGs • Prior experience working Cybersecurity in accordance More ❯

Develop and maintain cybersecurity policies, standards, and procedures based on industry best practices and regulatory requirements. Ensure compliance with applicable security frameworks such as NIST, FISMA, and FedRAMP. Qualifications Bachelor's degree in computer science, Information Security Relevant industry certifications such as CompTIA Security+, CISSP, CEH, or GIAC. More ❯