26 to 50 of 120 Remote NIST 800 Jobs

or advanced degree + 8 years of security experience 2 - 4 years of prior team management experience Working understanding of security, assessment, risk management, and compliance frameworks (e.g., NIST 800-37, NIST 800-39, NIST 800-30, MITRE ATT&CK, ISO 27001, ISO 27005, NIST 800 More ❯

across teams. What We’re Looking For Technical Experience & Knowledge Experience with risk management frameworks and methodologies such as ISO/IEC 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53. Strong understanding of security standards and frameworks including OWASP, Secure by Design principles, and MOD-specific guidelines … Def Stan 05-138/139). Familiarity with HMG security principles and assurance frameworks is advantageous. Comfortable using threat modelling tools and implementing mitigation strategies. Experience with NIST standards. (this is an absolute must) Key Competencies Strong communicator with the ability to present complex information clearly and confidently. Proactive problem solver who approaches challenges with innovation and More ❯

cryptographic security controls into software development and deployment processes. Support post-quantum cryptography (PQC) readiness by evaluating and preparing for emerging threats to encryption security. Ensure compliance with NIST 800-57, PCI DSS, FIPS 140-2/3, ISO 27001, GDPR, FFIEC, and IoT security (NIST 800-183, ETSI EN … storage practices. Experience working in financial institutions or other highly regulated industries. Certifications such as CISSP, CISM, AWS Security Specialty, HashiCorp Certified Vault Associate or CCSK. Familiarity with NIST 800-57, PCI DSS, FIPS 140-2/3, ISO 27001, GDPR, FFIEC, and IoT security (NIST 800-183, ETSI EN More ❯

needs, including DoD, DHS, and the Intelligence Community. Cybersecurity Architecture & Innovation: Oversee the design, development, and implementation of secure, scalable solutions tailored to federal risk management frameworks (e.g., NIST, FedRAMP, CMMC, FISMA). Compliance & Risk Management: Ensure all technologies and systems meet federal regulatory standards and accreditation processes; provide guidance during ATO (Authority to Operate) processes. Federal Partnerships … contracts. Qualifications: Proven experience (10+ years) in technical leadership roles, preferably within a federal systems integrator, cybersecurity firm, or federal agency. Deep understanding of federal cybersecurity frameworks (e.g., NIST 800-53, CMMC, RMF, FISMA, FedRAMP). Strong background in secure cloud infrastructure (AWS GovCloud, Azure Government), zero trust architecture, and emerging threat landscape. Track record of More ❯

at all levels. Creative and critical thinking is necessary to address complex cyber security challenges effectively. Familiarity with relevant cybersecurity frameworks and standards, such as TOGAF, SABSA, ISO27000, NIST CSF & NIST 800-53 WHAT BAYER OFFERS YOU As a modern employer, we take care of our employees and help them find a balance between More ❯

and remediation strategies. • Deliver clear and actionable assessments of vulnerabilities and threats, with recommendations to mitigate operational and reputational risks. • Ensure alignment with security compliance frameworks such as NIST 800-171 through assessments, testing, and regular reviews. • Participate in the development of security controls, processes, and documentation to support enterprise cyber operations. Qualifications: • Bachelor's degree More ❯

must, along with significant experience in similar roles across Cloud/IT based solutions for Defence customers. Deep knowledge of HMG standards (including MOD-specific JSP), NCSC and NIST 800 standards is a given, along with how to apply these across a variety of different solution spaces. This role will be a key leadership position, interacting More ❯

must, along with significant experience in similar roles across Cloud/IT based solutions for Defence customers. Deep knowledge of HMG standards (including MOD-specific JSP), NCSC and NIST 800 standards is a given, along with how to apply these across a variety of different solution spaces. This role will be a key leadership position, interacting More ❯

key to aligning local and global security standards. You'll also drive cyber awareness and training initiatives for commercial teams, support regulatory compliance (e.g., ISO 27001, NIST SP 800-53, GDPR), and handle incident response, triage, and escalations per internal policies. You'll contribute to investigations, the annual NIST CSF 2.0 maturity assessment, and … Required You're a proactive, analytical security professional with a strong technical background and excellent communication skills. You bring: Proven experience with ISO 27001, NIST CSF/SP 800-53, GDPR compliance, and risk management Strong technical expertise in implementing security controls aligned with ISMS Ability to create clear, audience-tailored documentation and reports Effective problem More ❯

accreditation and secure by design processes (ISN2023/09), associated policies and practices across the lifecycle. Experience in the application of standards including NIST Special Publications (e.g. SP 800-30, 37 & 53). Application of Defence standards including Defstan 05-138 & Defstan 05-139. Experience managing risks and services in accordance with customer, regulatory and More ❯

accreditation and secure by design processes (ISN2023/09), associated policies and practices across the lifecycle. Experience in the application of standards including NIST Special Publications (e.g. SP 800-30, 37 & 53). Application of Defence standards including Defstan 05-138 & Defstan 05-139. Experience managing risks and services in accordance with customer, regulatory and More ❯

accreditation and secure by design processes (ISN2023/09), associated policies and practices across the lifecycle. Experience in the application of standards including NIST Special Publications (e.g. SP 800-30, 37 & 53). Application of Defence standards including Defstan 05-138 & Defstan 05-139. Experience managing risks and services in accordance with customer, regulatory and More ❯

MOD accreditation and secure by design processes (ISN2023/09), associated policies and practices across the lifecycle. Knowledge or application of standards including NIST Special Publications (e.g. SP 800-30, 37 & 53). Managing risks and services in accordance with customer, regulatory and legislative expectations. Experience outside of traditional enterprise IT scenarios extending to proprietary and More ❯

AlertMedia platform Experience with Conducttr platform Familiarity with Salesforce Shield, Event Monitoring, and encryption features Understanding of business continuity and disaster recovery frameworks (e.g., ISO 22301, NIST SP 800-34, FFIEC) Working knowledge of data governance, compliance (e.g., GDPR, HIPAA), and audit readiness Soft Skills: Excellent documentation, communication, and problem-solving skills Please note you must More ❯

and contribute to security awareness across teams. Clearly communicate risks to technical and non-technical stakeholders. What We're Looking For Essential Experience: Deep understanding of security frameworks: NIST (especially 800-30, 800-53) , ISO27001/2, ISO27005, and OWASP. Experience with Secure by Design principles and MOD-specific guidelines (e.g. JSP, Def Stan More ❯

and contribute to security awareness across teams. Clearly communicate risks to technical and non-technical stakeholders. What We're Looking For Essential Experience: Deep understanding of security frameworks: NIST (especially 800-30, 800-53) , ISO27001/2, ISO27005, and OWASP. Experience with Secure by Design principles and MOD-specific guidelines (e.g. JSP, Def Stan More ❯

ISC2Certified Information System Security Professional. Knowledge of UK/NATO Information Assurance standards, procedures & systems, including Government Functional Standard GovS 007: Security, HMG IS1&2, ISO27000 series standards, NIST SP800 series standards, JSP440, JSP604, guidance material provided by NCSC, CPNI and NIST. Practical experience of producing Security Accreditation documentation Practical experience of NCSC and Common Criteria security evaluation More ❯

with 3+ years in a lead or managerial role Demonstrated experience assessing security controls in cloud environments (AWS and Azure) Strong understanding of key frameworks and standards, including NIST 800-53, ISO 27001, CIS Controls, and COBIT Professional certifications such as CISA, CISM, CISSP, or ISO 27001 Lead Auditor Strong communication skills with the ability to More ❯

with 3+ years in a lead or managerial role Demonstrated experience assessing security controls in cloud environments (AWS and Azure) Strong understanding of key frameworks and standards, including NIST 800-53, ISO 27001, CIS Controls, and COBIT Professional certifications such as CISA, CISM, CISSP, or ISO 27001 Lead Auditor Strong communication skills with the ability to More ❯

specific experience in testing cloud security controls Professional certification such as CISA, CISM, CISSP, ISO 27001 Lead Auditor, or equivalent Knowledge of industry standards and frameworks such as NIST 800-53, ISO 27001/27002, CIS Controls, COBIT Strong communication and stakeholder management skills Experience with automated testing tools such as Sailpoint, Rapid7, Wiz.io, MS Defender More ❯

Skills & Experience Required: 8+ years of experience in Information Security or IT , with 3+ years in IT Audit or security control testing Familiar with security frameworks such as NIST 800-53, ISO 27001, CIS Controls, COBIT Hands-on experience using RSA Archer, ServiceNow , and familiarity with automation and data-driven testing Working knowledge of cloud environments More ❯

security gaps, and compliance risks. • Perform static and dynamic analysis of software code to detect security flaws and backdoors. • Test applications for compliance with DoD cybersecurity frameworks, including NIST 800-53, RMF, and STIGs. • Work closely with developers, security engineers, and system administrators to implement security recommendations. • Perform penetration testing and vulnerability assessments on government software More ❯

Experience/User Interface (UX/UI), Section 508, United States Web Design System (USWDS), and Customer Journey Mapping (CJM). • Working knowledge of Application Security implementation, including NIST 800-53 R5 security controls. Education: • Bachelor's degree in computer science, Software Engineering, Information Management Systems, or a related discipline. Equivalent professional experience will be considered More ❯

commercial systems. Degree in engineering, computer science, or related field. Certified security professional (e.g. CISSP, NCSC Certified Professional). Familiar with UK/NATO IA standards (ISO 27000, NIST SP800, JSP440, etc.). Experience with accreditation, security evaluation, and cryptographic systems. Strong communication, leadership, and collaboration skills. Eligible for SC clearance (UK-only caveat). Desirable: DV clearance More ❯

MOD accreditation and secure by design processes (ISN2023/09), associated policies and practices across the lifecycle. Knowledge or application of standards including NIST Special Publications (e.g. SP 800-30, 37 & 53). Managing risks and services in accordance with customer, regulatory and legislative expectations. Experience outside of traditional enterprise IT scenarios extending to proprietary and More ❯