experience within a Network or Security Operations Centre (NOC or SOC) environment, with at least 2 years of experience as a Security Engineer. An NCSC-certified apprenticeship/degree/MSc or equivalent work experience. Splunk certification (e.g., Splunk Certified Power User, Splunk Certified Admin, Splunk Certified Architect). Microsoft more »
you'll need intimate knowledge of the security solutions market and able to make tailored recommendations to customers based on their risks. As an NCSC Assured Service Provider that partners with UK organisations to reduce cyber risk and drive security improvement, the solutions architecture team are trusted advisors to Saepio more »
including penetration tests, hardware & software compliance, and PCI, and ensure any gaps are addressed. Work with external stakeholders and information security groups including DCMS, NCSC and accreditor organisations and others to improve cybersecurity standards. Oversee the security review of third-party suppliers and systems. Manage the Cyber Essentials, GovAssure more »
and deep understanding of cybersecurity, Information Assurance, risk management and information security compliance. Experience of working in UK CyberSecurity environment e.g. to NCSC guidance, CAF etc. Knowledge and understanding of NIS Directive and UK NIS Regulations. Security related qualifications such as CISSP, CISM, CISMP, ISO27001 lead implementer or more »
Greater London, England, United Kingdom Hybrid / WFH Options
Made Tech
/CD tools and practices Up-to-date understanding of, and ensuring compliance to, security standards and regulations including GDS Technology Code of Practice, NCSCCyber Principles, ISO27001, SoC, NIST, PCI, and GDPR Up-to-date understanding of testing the security of software and infrastructure using appropriate security tools including more »
and hybrid environments. experience in identifying and managing security vulnerabilities. Prior experience in Qualys if preferred. of CyberSecurity Frameworks and standards such as NCSCsecurity principles, NIST Framework, ISO 27001, ISO27005, IEC62443 etc. desired: CompTIA Network+, Security+, CySA+, AWS Practitioner (or equivalents) This is a hybrid role, but the more »
Greater Bristol Area, United Kingdom Hybrid / WFH Options
Logiq Consulting
requirements/knowledge To support the requirements of this role an awareness of national and international standards including ISO27000, along with familiarity with recent NCSC guidance would be helpful. Experience in the Microsoft Sentinel and 365 Defender, being able to interpret and prioritise alerts, incidents and threat intelligence. Desirable Qualifications more »
software engineering best practices within technical teams. Familiarity with software engineering best practices including design patterns, micro-service architectures, secure by design principles, and NCSC Cloud Security Principles. Experience in employing DevOps, CI/CD, and test automation methodologies. Hands-on experience with cloud-native Software as a Service (SaaS more »
software engineering best practices within technical teams. Familiarity with software engineering best practices including design patterns, micro-service architectures, secure by design principles, and NCSC Cloud Security Principles. Experience in employing DevOps, CI/CD, and test automation methodologies. Hands-on experience with cloud-native Software as a Service (SaaS more »
Skills Required : * Relevant IT security experience * Writing of accreditation security case (RMADS) * Experience and knowledge of Government IA Policy, including JSP440, JSP604, DIANS and NCSC IA guidance. * Experience of close working relationships with Accreditation Authorities in the UK. Please reply with your updated CV if you want to apply for more »
Security Accreditors and Security Assurance Coordinators in support of security accreditation. Preparation of Protection Profiles, Security Targets and Evaluation Management Plans, and liaison with NCSC and commercial evaluation teams in support of evaluation activities. Preparation of TEMPEST Control Plans, advising development teams on appropriate implementation techniques and liaising with TEMPEST … or commercial products and systems. Graduate degree in relevant engineering, computing or related scientific discipline, and/or evidence of further professional study. Registered NCSC certified professional at senior level or above, or NCSC recognised qualification, e.g. ISC2Certified Information System Security Professional. Knowledge of UK/NATO Information Assurance standards … systems, including Government Functional Standard GovS 007: Security, HMG IS1&2, ISO27000 series standards, NIST SP800 series standards, JSP440, JSP604, guidance material provided by NCSC, CPNI and NIST. Practical experience of producing Security Accreditation documentation Practical experience of NCSC and Common Criteria security evaluation techniques. Knowledge of current crypto technologies more »
relationships. Experience to assure and review Information and Operational Technology systems (e.g. ICS/SCADA/IoT) Knowledge of Information security standards (e.g. ISO27000, NCSC, GDPR) Knowledge of ICS CyberSecurity Standards (e.g. IEC 62443, NIST SP) Desirable Experience with I&C systems design, commissioning or operation in a nuclear more »
or substantial relevant experience. Strong knowledge of OT risk management, cyber threats, and I&C systems operations. Expertise in information security standards like ISO27000, NCSC, GDPR, and ICS standards such as IEC 62443, NIST SP. Ability to communicate effectively and build relationships with key project stakeholders. Desirable Attributes: Prior experience more »
Governance Authority. Justifying decisions characterised by high levels of risk, impact and complexity. Respond effectively to reviews and challenges from RSO, Cabinet Office, and NCSC Staff, incorporating feedback collaboratively to deliver approved risk assessments. Work with Product and Delivery Managers, Engineers, and Architects to produce accurate security documentation for product more »
CD methodology Relevant vendor certifications (e.g. Microsoft, VMware, Cisco, AWS) Relevant certifications in architecture methodologies Relevant certifications in agile delivery methodologies Practical experience implementing NCSC guidance and best practice Company benefits include: Discretionary 10% bonus Discretionary annual training fund per employee Car allowance Very competitive pension scheme Death in Service more »
Key skills & Experience required: A degree or higher-level qualification in Computing science or a related subject Experience in security and data protection eg NCSC best practices and GDPR Experience in up to date programming principles such as SOLID, DRY and YAGNI Experience in developing software solutions using technologies such more »
InfraView - Specialist Cloud & IT Infrastructure Technology Recruitment
Remote WHY? One of the fastest growing CyberSecurity Companies Member of the Microsoft Intelligent Security Association (MISA) Named a NationalCyberSecurityCentre Assured Service Provider. Technology: Microsoft Stack Exchange, SharePoint, Teams Purview (Essential) Responsibilities: Subject matter expert for the Microsoft Purview suite of services; specifically, Insider Risk Management more »
secure military communications and data. Experience & Skills Required Evidence of experience in Cross Domain Solutions, design, use, testing and assurance. Sound understanding of the NCSC patterns and guidance for safely importing and exporting data. Ability to assess the product marketplace for products which meet requirements of the functional components of more »
goals on an individual basis. Key Responsibilities- Check Team Member and Check Team Leader Maintaining a suitable technical qualification for the requirements of the NCSC CHECK Scheme. Maintaining an SC/DV clearance as required by the NCSC CHECK scheme. Performing technical engagements in-line with NCSC CHECK expectations. Delivering more »
a background in Cyber and Strategy. This role requires someone comfortable working within a consulting team and possessing hands-on knowledge of NIS, ISO27001, NCSC CAF, DSPT, and DTAC. What We're Looking For: Experience : Proven track record working with NHS, Cyber, and Strategy. Knowledge : Hands-on understanding of NIS … ISO27001, NCSC CAF, DSPT, and DTAC. Consulting Skills : Ability to work effectively within a team of consultants. NHS Experience : Prior work with NHS across ICB and care providers. Technical Background : Understanding of formal documentation and modeling standards such as ArchiMate. What We Offer: Flexibility : Work from anywhere with a remote more »
Luton, England, United Kingdom Hybrid / WFH Options
Hays
ISO270002, IEC62443. Expert understanding of security maturity & detailed knowledge of a security maturity frameworks such as NIST CSF and its Implementation Tiers, C2M2 and NCSC CAF. What you’ll get in return In addition to a strong salary, which I am happy to discuss over the phone, you’ll also more »
Senior CyberSecurity Role or equivalent (Health Care desired). A professional CyberSecurity qualification or membership. E.g. CISMP, CISSP, CASP, ISC2, CompTIA, Tiger, NCSC An understanding of Cyber Sec regulations e.g. NIS-D Proven experience of leading CyberSecurity projects. The ability to convey complex IT problems to non more »
Newport, Wales, United Kingdom Hybrid / WFH Options
Resourcing Group
Senior CyberSecurity Role or equivalent (Health Care desired). A professional CyberSecurity qualification or membership. E.g. CISMP, CISSP, CASP, ISC2, CompTIA, Tiger, NCSC An understanding of Cyber Sec regulations e.g. NIS-D Proven experience of leading CyberSecurity projects. The ability to convey complex IT problems to non more »
the security or capability of the environments · Creating, verifying, and maintaining technical documentation Required Skills: · Experience in network/gateway environments · Knowledge of the NCSCCyber Assessment Framework (CAF) and securing networks based on requirements · Proficiency with network technologies (data and voice): BGP, MPLS/VPLS, SIP, TLS, Network Management more »
clients are diverse, and we cover many sectors with particular specialisms in Government, High-end Defence Assurance and Telecommunications. We work closely with the NCSC developing new schemes such as Cross Domain Solutions Testing (https://www.ncsc.gov.uk/blog-post/ncsc-cross-domain-industry-pilot-stage-2) and … are members of all current NCSC and CREST testing schemes - as a result we conduct interesting and challenging work that isn’t on offer elsewhere. What will you be doing? Management and delivery of penetration testing services to clients to include the following: Scoping, Financial and risk management, delivery of … proposals and participating in client presentations. What will you need to do it? Clear and demonstrable understanding of penetration testing and red-teaming including NCSC and CREST accredited schemes. Proven experience working within the UK cybersecurity industry. Demonstrable understanding and practical application of information security principles. Strong technical background more »