1 to 25 of 34 Remote NIST 800 Jobs in the UK

Stay abreast of industry trends, frameworks, and regulations (e.g., GDPR, ISO 27001/2, SANS Top 20 Critical Security Controls, NIST CSF, SP 800-53, PFMI, CPMI ISOCO and FFIEC handbook, SABSA) to ensure the organization is proactive in addressing emerging security threats and compliance challenges. … working with senior leadership and stakeholders to drive strategic security initiatives, influencing decisions at the enterprise level. Strong understanding of security frameworks, including NIST CSF, SABSA etc, and the ability to apply them in diverse environments. Qualifications and certifications: Degree in a technology discipline (Computer Science, Information Management … . Professional certifications such as CISSP, CISA, CISM, CRISC, SABSA, or equivalent. Deep expertise in risk management frameworks, including ISO 27001, NIST SP 800-53, and SANS Top 20 Critical Security Controls. Experience with cloud security solutions and services. Our commitment to employees: At CLS, we More ❯

ensure secure-by-design principles. Conduct threat modelling exercises to identify and mitigate potential risks. Ensure compliance with security regulations such as ISO27001, NIST 800-30/37/53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents … and remediation activities. The Person Key Skills & Experience: Strong knowledge of risk management frameworks and methodologies (ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53). Experience with defence and government security standards (JSPs, Def Stan More ❯

ensure secure-by-design principles. Conduct threat modelling exercises to identify and mitigate potential risks. Ensure compliance with security regulations such as ISO27001, NIST 800-30/37/53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents … and remediation activities. The Person Key Skills & Experience: Strong knowledge of risk management frameworks and methodologies (ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53). Experience with defence and government security standards (JSPs, Def Stan More ❯

perform cyber security audits. Experience in producing Zones and Conduits Partitioning Diagrams, Cyber Security Requirements definition and cyber security Assurance. ISO 27005/NIST 800-82/NIST 800-53 Knowledge. NIS/NIS2 knowledge. Railway industry experience and TS 50701 Knowledge. More ❯

perform cyber security audits. Experience in producing Zones and Conduits Partitioning Diagrams, Cyber Security Requirements definition and cyber security Assurance. ISO 27005/NIST 800-82/NIST 800-53 Knowledge. NIS/NIS2 knowledge. Railway industry experience and TS 50701 Knowledge. More ❯

, ISO27001, COBIT, etc.). Operational Technology - Ensure the security of critical infrastructure aligns with industry standards and regulatory requirements (e.g. NIST SP 800-82, CAF, DPA 2018, etc.). Operational Resilience - Shaping and/or transforming client operational resilience capabilities in compliance with leading regulatory … standards (e.g., DORA, Bank of England, FCA, NIST, etc.). Cybersecurity Operating Model Transformation - Assessing, designing and implementing effective and outcome orientated security operating models. As an experienced consultant in the business you'll help set the direction, grow our business, model our values and behaviours, and coach … SOC teams, OT Security, Security Architecture, Security Op Model Transformation projects and Cybersecurity Assessments. Familiarity with core Cybersecurity frameworks and industry frameworks (e.g., NIST CSF, ISO27001, CIS Critical Controls), regulations (e.g., NIS2) and financial regulations (e.g., DORA, FCA, Bank of England, etc.). Have an understanding of the More ❯

on enterprise architecture. Proven experience across Cloud, Network, Infrastructure, and Application security. Deep understanding of risk management and compliance (ISO 27001, NIST SP 800-53, SANS CSC). Familiarity with SABSA, NIST CSF, and other industry-standard frameworks. Expertise in cloud security (SaaS, IaaS More ❯

of enterprise level desktop exercises. Regulatory Compliance & Reporting: Ensure incident response efforts and documentation comply with industry standards and best practices (GDPR, SOC, NIST, ISO etc.). Maintain detailed documentation and reporting for audits and compliance reviews. Process Improvement & Risk Mitigation: Develop and refine incident response standard operating … GCIH, GREM, GCFR or equivalent is preferred. Knowledge of incident handling life cycle based on an established framework: ISO 27035, SANS, NIST SP 800-61, CERT, ENISA. Experience with security and automation: Python, Powershell, Windows OS, Linux OS, VMware, Puppet, Chef/Ansible desirable. Our commitment More ❯

security policy, processes, and practices (inc Joint Service Publications 604, 440). Knowledge of national and international security frameworks such as NIST SP 800 Series. Experience managing agile teams, DevOps engineering teams and CI/CD. Practical experience managing requirements, verification, validation and acceptance. Certifications in More ❯

Security Fundamentals, AWS Certified Security). Knowledge of frameworks and regulations, such as: ISO 27001/2, SANS Top 20 Critical Security Controls, NIST 800-53/800-61/CSF, FFIEC handbook, GDPR, DORA, Reg HH etc. Our commitment to employees: We are More ❯

GRC Information Security Manager. Responsibilities: Maintain compliance tracking capabilities to help ensure adherence with Turnitin’s security program and industry standards such as NIST CSF, NIST 800-53, SOC 2, TX-RAMP and PCI DSS. Conduct risk and compliance assessments, audits, and risk evaluations … Compliance. Professional certification such as CCSK, AWS Cloud Practitioner, or other related industry certification. Familiarity with cybersecurity frameworks and regulatory standards such as NIST, SOC 2, TX-RAMP, and PCI DSS. Familiarity of risk management and security best practices. Experience with assessing security controls, risk mitigation strategies, and … security requirements. Highly organized and proactive individual capable of managing multiple responsibilities and delivering results. Preferred Skills: Experience running SOC 2 audits or NIST based authorizations. Experience using Jira and Confluence for project and task management. Hands-on experience with Wiz, KnowBe4, and Hyperproof. Experience conducting third-party More ❯

GRC Information Security Manager. Responsibilities: Maintain compliance tracking capabilities to help ensure adherence with Turnitin’s security program and industry standards such as NIST CSF, NIST 800-53, SOC 2, TX-RAMP and PCI DSS. Conduct risk and compliance assessments, audits, and risk evaluations … Compliance. Professional certification such as CCSK, AWS Cloud Practitioner, or other related industry certification. Familiarity with cybersecurity frameworks and regulatory standards such as NIST, SOC 2, TX-RAMP, and PCI DSS. Familiarity of risk management and security best practices. Experience with assessing security controls, risk mitigation strategies, and … security requirements. Highly organized and proactive individual capable of managing multiple responsibilities and delivering results. Preferred Skills: Experience running SOC 2 audits or NIST based authorizations. Experience using Jira and Confluence for project and task management. Hands-on experience with Wiz, KnowBe4, and Hyperproof. Demonstrated knowledge of security More ❯

GRC Information Security Manager. Responsibilities: Maintain compliance tracking capabilities to help ensure adherence with Turnitin’s security program and industry standards such as NIST CSF, NIST 800-53, SOC 2, TX-RAMP and PCI DSS. Conduct risk and compliance assessments, audits, and risk evaluations … Compliance. Professional certification such as CCSK, AWS Cloud Practitioner, or other related industry certification. Familiarity with cybersecurity frameworks and regulatory standards such as NIST, SOC 2, TX-RAMP, and PCI DSS. Familiarity of risk management and security best practices. Experience with assessing security controls, risk mitigation strategies, and … security requirements. Highly organized and proactive individual capable of managing multiple responsibilities and delivering results. Preferred Skills: Experience running SOC 2 audits or NIST based authorizations. Experience using Jira and Confluence for project and task management. Hands-on experience with Wiz, KnowBe4, and Hyperproof. Experience conducting third-party More ❯

GRC Information Security Manager. Responsibilities: Maintain compliance tracking capabilities to help ensure adherence with Turnitin’s security program and industry standards such as NIST CSF, NIST 800-53, SOC 2, TX-RAMP and PCI DSS. Conduct risk and compliance assessments, audits, and risk evaluations … Compliance. Professional certification such as CCSK, AWS Cloud Practitioner, or other related industry certification. Familiarity with cybersecurity frameworks and regulatory standards such as NIST, SOC 2, TX-RAMP, and PCI DSS. Familiarity of risk management and security best practices. Experience with assessing security controls, risk mitigation strategies, and … security requirements. Highly organized and proactive individual capable of managing multiple responsibilities and delivering results. Preferred Skills: Experience running SOC 2 audits or NIST based authorizations. Experience using Jira and Confluence for project and task management. Hands-on experience with Wiz, KnowBe4, and Hyperproof. Experience conducting third-party More ❯

comprehensive understanding of what it takes to comply with cyber security industry standards and frameworks in practise (e.g. ISO 27001, NIST CSF, SP 800-53, NCSC CAF, Cyber Essentials). Has a thorough understanding of cyber security threat and risk with the ability to think like More ❯

with industry standards, guidelines, and regulatory compliance requirements related to information security and cloud computing such as GDPR, ISO 27001, Cloud Security Alliance, NIST 800-53, PCI DSS, ISA/IEC 62443, NERC CIP, HIPAA, etc. Knowledge of public cloud environments Azure, AWS or Google Cloud. More ❯

Perform or coordinate internal security assessments, penetration tests, vulnerability scans, and assess organization cybersecurity maturity complying with frameworks and regulations such as COBIT, NIST (800-53, cybersecurity), ISO, ITIL, PCI, GLBA, GDPR, HIPAA, and other data privacy and security standards and regulations. Provide internal customer support … Provides a documented work history that includes a minimum of 5-years experience in Information Security. Proficiency in security framework models such as NIST, etc., implementing and auditing security measures, security response, and incident management. Possess a working knowledge of Cisco network switches, routers, firewalls and VPN, network … upon vulnerability management program. Ability to propose solutions for closing identified vulnerabilities in the infrastructure. Desired Qualifications: Certified Information System Security Professional (CISSP), NIST Cybersecurity Framework (NCSF), Certified Cloud Security Professional (CCSP) and/or Certified Ethical Hacker (CEH). Knowledge and experience with Microsoft Office and Visio. More ❯

in cybersecurity, IT audit, or enterprise risk management (ERM). Familiarity with regulatory compliance and information security management frameworks (e.g., ISO 27001, COBIT, NIST 800). Experience in program and project management and cybersecurity strategy planning. Proficiency in cybersecurity technologies and systems, such as firewalls, intrusion More ❯

breaches. Provide security guidance and training to teams across the organization. The Person Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30/53, OWASP). Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan More ❯

with MOD standards (e.g., Secure By Design, DefStan 05-138). Conduct information security risk assessment and management using recognized frameworks such as NIST SP800. Perform information security assurance activities and manage incidents. Establish and manage internal and external Security Working Groups. Support Serco Defence projects and design … activities, ensuring compliance with MOD Secure by Design, HMG policy, NCSC guidance, NIST 800, and ISO 27001. Advise on technical requirements and compliance with formal contract security schedules (Security Aspects Letters) and recommend security technologies and controls. Provide advice and guidance to maintain existing cyber security More ❯

Demonstrate understanding of industry security standards, guidelines and regulatory/compliance requirements related to information security and cloud computing such as ISO 27001, NIST 800-53, IEC/ISA 62443, SOC2, PCI, SOX, etc. Have hands-on experience on IT M&A/IT Compliance/ More ❯

Demonstrate understanding of industry security standards, guidelines and regulatory/compliance requirements related to information security and cloud computing such as ISO 27001, NIST 800-53, IEC/ISA 62443, SOC2, PCI, SOX, etc. Have hands-on experience on IT M&A/IT Compliance/ More ❯

security controls. Professional certification such as CISA, CISM, CISSP, ISO 27001 Lead Auditor, or equivalent. Knowledge of industry standards and frameworks such as NIST 800-53, ISO 27001/27002, CIS Controls, COBIT. Experience with current automated and manual industry methods for evaluating security controls on More ❯

CESG IA Portfolio and MoD JSPs such as JSP440, JSP604/JSP453 (plus other standard MoD IA methods). Certifications such as ISO27000, NIST Cyber Security Professional, CISMP etc. Flexibility over UK, and potentially overseas travel. Desirable: Certified Information Systems Security Professional (CISSP)/Certified Information Security Manager … NCSC Certified Cyber Professional/CESG CCP (Security and Information Risk Advisor or Security Architect). Understanding of 'Secure by Design' methodology and NIST 800-37 Risk Management Framework. A keen interest in the latest technology with a focus on security technologies. Ambition to work in More ❯

network and enterprise cloud applications - ideally GCP, Azure or AWS. You have strong knowledge of security frameworks, such as ISO/IEC 27001, NIST 800-53 or OWASP. You know host hardening, auditing, logging and monitoring, network security, SEIM deployments, security analytics, anomaly detections, PKI. You More ❯