22 of 22 HMG Security Policy Framework Jobs in the UK excluding London

Are you passionate about safeguarding critical systems and want to play a key role in nationally important projects? Join our team as a Cyber Security Consultant and leverage your expertise to drive innovative solutions and support cutting-edge projects. We are a National Cyber Security Centre - Assured Cyber Security Consultancy. Locations: London, Guildford, Bristol, M4 corridor Roles … and Responsibilities As a Cyber Security Consultant, you will work as part of an Actica team to undertake a number of varying consultancy assignments. You will be given the opportunity to undertake a variety of roles throughout the project lifecycle, working across a wide-ranging set of clients and cutting-edge technologies. In this role, you will: Provide security … in the UK Defence, Critical National Infrastructure and Public Sectors, particularly in ICT and Enterprise Solutions, is highly desirable. Knowledge of structured security frameworks (such as HMG SPF, NCSC CAF, NIST CSF and ISO27000 series). Familiarity with security and enterprise architecture methods (TOGAF, SABSA). Experience with technical risk assessments, software development, ICT service delivery (ITIL More ❯

month outside IR35 contract - Must have current SC clearance My client is looking for a Cyber Security Architect who has a wide awareness across Government and Industry to include; Secure By Design (SBD), CISSP, HMG Information, Assurance Policies, Standards and Guidelines, including the Security Policy Framework, the CESG IA Portfolio and MoD JSPs such as … JSP440, JSP604 (plus other standard MoD IA methods). As leading players in MOD's cyber security transformation to Secure by Design (SbD), we are looking for team members and leaders who share our vision that cyber risk management is driven by business requirements and a holistic view of security that can guide clients to secure solutions that … support their business objectives. What we are looking for: Provide Cyber Security advice and guidance for clients in 'business as usual', technical refresh and new project environments. Architect with High and Low Level Design experience (HLD/LLD). Be able to apply technical security knowledge, with creative and innovative thinking in a broad range of complex and More ❯

within a multi-disciplinary team to deliver digital services that are highly user-focused and successful, ensuring adherence to governance standards. Develop toolkits and APIs for integration, performance optimisation, security, and scalability. Explore innovative problem-solving techniques … in a fail-fast environment to meet functionality needs. Apply HMG IA technical security controls in line with ISO 27001 & the Security Policy Framework (SPF). Required Skills & Qualifications: Proven experience in delivering technical solutions as part of large projects. Proficient with modern delivery models such as Scrum and Agile. Strong experience with cloud technologies More ❯

multi-disciplinary team to deliver highly user focused and successful digital services ensuring governance standards are adhered to Implement toolkits and APIs for purposes such as integration, performance optimisation, security and scalability Keeping an open mind and exploring innovative ways to solve problems, working … in a fail-fast fashion to provide required functionality Proactively apply HMG IA technical security controls according to ISO 27001 & the Security Policy Framework (SPF) Working Style This role will be carried out in-line with IPO Hybrid working arrangements where staff are currently expected to spend at least 20% of their time working onsite … career progression? 25 days annual leave moving to 30 days in annual increments? You will also get 8 days public leave and 1 day privilege leave Additional details on security and vetting Successful candidates must pass a disclosure and barring security check and if successful you must also hold, or be willing to obtain, a higher Security More ❯

multi-disciplinary team to deliver highly user focused and successful digital services ensuring governance standards are adhered to Implement toolkits and APIs for purposes such as integration, performance optimisation, security and scalability Keeping an open mind and exploring innovative ways to solve problems, working … in a fail-fast fashion to provide required functionality Proactively apply HMG IA technical security controls according to ISO 27001 & the Security Policy Framework (SPF) Working Style This role will be carried out in-line with IPO Hybrid working arrangements where staff are currently expected to spend at least 20% of their time working onsite … need to know Selection process details This vacancy is using Success Profiles (opens in a new window) , and will assess your Behaviours, Experience and Technical skills. Additional details on security and vetting Successful candidates must pass a disclosure and barring security check and if successful you must also hold, or be willing to obtain, a higher Security More ❯

Graduate Cyber Security Consultant Department: Early Careers Employment Type: Permanent - Full Time Location: United Kingdom/Hybrid Description We will provide you with a fantastic springboard into a consulting career with client engagement and project work the norm from the start. You will gain experience in a manner that will provide the right level of support to ease the … transition from an academic environment, whilst enabling you to make a positive contribution at an early stage. As a Cyber Security Consultant, you will work as part of an Actica team to undertake a number of varying consultancy assignments. You will be given the opportunity to undertake a variety of roles throughout the project lifecycle, working across a wide … based degree; An understanding of the use of technology in business and public sector contexts; Familiarity gained through studies with the HMG Security Policy Framework (SPF) and the NCSC Information Assurance Portfolio, IA Standards, Good Practice Guides, Architecture Patterns, etc. Although these are not essential, you will also benefit from having one or more of: The More ❯

Graduate Cyber Security Consultant Department: Early Careers Employment Type: Permanent - Full Time Location: United Kingdom/Hybrid Description We will provide you with a fantastic springboard into a consulting career with client engagement and project work the norm from the start. You will gain experience in a manner that will provide the right level of support to ease the … transition from an academic environment, whilst enabling you to make a positive contribution at an early stage. As a Cyber Security Consultant, you will work as part of an Actica team to undertake a number of varying consultancy assignments. You will be given the opportunity to undertake a variety of roles throughout the project lifecycle, working across a wide … based degree; An understanding of the use of technology in business and public sector contexts; Familiarity gained through studies with the HMG Security Policy Framework (SPF) and the NCSC Information Assurance Portfolio, IA Standards, Good Practice Guides, Architecture Patterns, etc. Although these are not essential, you will also benefit from having one or more of: The More ❯

multi-disciplinary team to deliver highly user focused and successful digital services ensuring governance standards are adhered to Implement toolkits and APIs for purposes such as integration, performance optimisation, security and scalability Keeping an open mind and exploring innovative ways to solve problems, working … in a fail-fast fashion to provide required functionality Proactively apply HMG IA technical security controls according to ISO 27001 & the Security Policy Framework (SPF) Essential Experience Has been a key player in delivering technical solutions as part of a large projects Experienced with modern delivery models such as Scrum and Agile Experience of working … career progression 25 days annual leave moving to 30 days in annual increments You will also get 8 days public leave and 1 day privilege leave Additional details on security and vetting Successful candidates must pass a disclosure and barring security check and if successful you must also hold, or be willing to obtain, a higher Security More ❯

multi-disciplinary team to deliver highly user focused and successful digital services ensuring governance standards are adhered to Implement toolkits and APIs for purposes such as integration, performance optimisation, security and scalability Keeping an open mind and exploring innovative ways to solve problems, working … in a fail-fast fashion to provide required functionality Proactively apply HMG IA technical security controls according to ISO 27001 & the Security Policy Framework (SPF) Person specification Essential Experience Has been a key player in delivering technical solutions as part of a large projects Experienced with modern delivery models such as Scrum and Agile Experience … need to know Selection process details This vacancy is using Success Profiles (opens in a new window) , and will assess your Behaviours, Experience and Technical skills. Additional details on security and vetting Successful candidates must pass a disclosure and barring security check and if successful you must also hold, or be willing to obtain, a higher Security More ❯

We're looking for a Security Advisor to join our Devonport Dockyard team based Plymouth, Devon Location: Plymouth, UK (Nuclear Defence Base) Hours: Full-time, Site-Based Security Clearance: Must hold or be eligible to obtain MOD DV or SC clearance Responsibilities We are seeking a highly capable Project Security Advisor to support a major infrastructure redevelopment … project within a nuclear defence base. This role is critical in ensuring the implementation and maintenance of robust security measures across personnel, physical, information, and cyber domains. The successful candidate will act as a key liaison between the project team, supply chain, and client stakeholders, ensuring compliance with all relevant security protocols and legislation. Your day to day … chain. What are we looking for? This role of Project Security Advisor is great for you if: Strong understanding of HMG and MOD security frameworks, including SPF/GovS 007, SAL, JSP 440, and CSM. Experience conducting audits, investigations, and risk management. Knowledge of HMG/MOD information and cyber security principles, standards, and best More ❯

Cyber Security Engineer - National Security Projects Salary: £80,000-£90,000 | Location: UK (must be eligible for UK Security Clearance) Step into a mission-critical role shaping the UK’s cyber defence. Ncounter is hiring a Cyber Security Engineer to join a high-impact software consultancy driving innovation across national security and government infrastructure. Work … on cutting-edge, high-stakes programmes where your expertise in secure design, threat mitigation, and operational security will directly influence national resilience. Collaborate with elite technologists, shape … secure systems architecture, and drive strategy in a fast-paced, forward-thinking environment. What you’ll need: 3+ years in complex IT or consultancy environments Knowledge of HMG SPF, ISO27001, identity management, SIEM, PKI, cryptography, and secure frameworks Experience in public sector programmes Bonus: PCiIAA, SABSA, TOGAF, or a master’s/STEM degree If you’re security More ❯

Social network you want to login/join with: Cyber Security Engineer – National Security Projects Salary: £80,000–£90,000 | Location: UK (must be eligible for UK Security Clearance) Step into a mission-critical role shaping the UK’s cyber defence. Ncounter is hiring a Cyber Security Engineer to join a high-impact software consultancy driving … innovation across national security and government infrastructure. Work on cutting-edge, high-stakes programmes where your expertise in secure design, threat mitigation, and operational security will directly influence national resilience. Collaborate with elite technologists, shape … secure systems architecture, and drive strategy in a fast-paced, forward-thinking environment. What you’ll need: 3+ years in complex IT or consultancy environments Knowledge of HMG SPF, ISO27001, identity management, SIEM, PKI, cryptography, and secure frameworks Experience in public sector programmes Bonus: PCiIAA, SABSA, TOGAF, or a master’s/STEM degree If you’re security More ❯

or high level of demonstrable capability with relevant vendor business applications Desirable: Able to demonstrate a clear understanding of, and capability to work within, relevant ICT related standards including HMG Security Policy Framework, IITIL V3, ISO/IEC 38500, ISO/IEC 27001, ISO/IEC 22301, ISO/IEC 20000, PRINCE2 and MSP Good written … for achieving outcomes and resolving issues. Roles at this level will be focused on delivering results in a specific functional area. They will hold expertise on the application of policy and improvement of service delivery. These roles have clear team budgets and targets set within the overall service requirements Effective utilisation of digital technologies and innovation across the function. More ❯

or high level of demonstrable capability with relevant vendor business applications Desirable: • Able to demonstrate a clear understanding of, and capability to work within, relevant ICT related standards including HMG Security Policy Framework, IITIL V3, ISO/IEC 38500, ISO/IEC 27001, ISO/IEC 22301, ISO/IEC 20000, PRINCE2 and MSP • Good written … for achieving outcomes and resolving issues. • Roles at this level will be focused on delivering results in a specific functional area. They will hold expertise on the application of policy and improvement of service delivery. These roles have clear team budgets and targets set within the overall service requirements • Effective utilisation of digital technologies and innovation across the function. More ❯

or high level of demonstrable capability with relevant vendor business applications Desirable: Able to demonstrate a clear understanding of, and capability to work within, relevant ICT related standards including HMG Security Policy Framework, IITIL V3, ISO/IEC 38500, ISO/IEC 27001, ISO/IEC 22301, ISO/IEC 20000, PRINCE2 and MSP Good written … for achieving outcomes and resolving issues. Roles at this level will be focused on delivering results in a specific functional area. They will hold expertise on the application of policy and improvement of service delivery. These roles have clear team budgets and targets set within the overall service requirements Effective utilisation of digital technologies and innovation across the function. More ❯

or high level of demonstrable capability with relevant vendor business applications Desirable: Able to demonstrate a clear understanding of, and capability to work within, relevant ICT related standards including HMG Security Policy Framework, IITIL V3, ISO/IEC 38500, ISO/IEC 27001, ISO/IEC 22301, ISO/IEC 20000, PRINCE2 and MSP Good written … for achieving outcomes and resolving issues. Roles at this level will be focused on delivering results in a specific functional area. They will hold expertise on the application of policy and improvement of service delivery. These roles have clear team budgets and targets set within the overall service requirements Effective utilisation of digital technologies and innovation across the function. More ❯

Graduate Cyber Security Consultant - 5295 Job Type: Permanent Location: Guildford, Surrey Our client is seeking ambitious Bachelors, Masters, or Doctorate graduates interested in becoming consultants in Cyber Security for the UK public and Defence sectors. This is a hybrid role based in their Guildford office. We offer extensive training, including online, classroom, and in-house courses, leading to … nationally recognized qualifications in areas such as Project Management, Agile methodologies, Business Analysis, IT Service Management, Cyber Security, and Technology Procurement. Responsibilities Providing technical assurance that proposed solutions are fit for purpose. Developing new architectures to mitigate risks posed by emerging technologies and business practices. Advising clients on information assurance, architectural issues, and risks. Supporting the development of Risk … recommending remedial actions to stakeholders. Investigating security incidents. Promoting security awareness within project teams and the organization. Candidate requirements: HMG Security Policy Framework (SPF) familiarity and NCSC Information Assurance Portfolio knowledge gained through studies. Masters degree in Information, Cyber, or Systems Security, along with a strong Cyber/STEM background. Eligibility and willingness More ❯

multi-disciplinary team to deliver highly user focused and successful digital services ensuring governance standards are adhered to Implement toolkits and APIs for purposes such as integration, performance optimisation, security and scalability Keeping an open mind and exploring innovative ways to solve problems, working … in a fail-fast fashion to provide required functionality Proactively apply HMG IA technical security controls according to ISO 27001 & the Security Policy Framework (SPF) Working Style This role will be carried out in-line with IPO Hybrid working arrangements where staff are currently expected to spend at least 20% of their time working onsite More ❯

multi-disciplinary team to deliver highly user focused and successful digital services ensuring governance standards are adhered to Implement toolkits and APIs for purposes such as integration, performance optimisation, security and scalability Keeping an open mind and exploring innovative ways to solve problems, working … in a fail-fast fashion to provide required functionality Proactively apply HMG IA technical security controls according to ISO 27001 & the Security Policy Framework (SPF) Working Style This role will be carried out in-line with IPO Hybrid working arrangements where staff are currently expected to spend at least 20% of their time working onsite More ❯

multi-disciplinary team to deliver highly user focused and successful digital services ensuring governance standards are adhered to Implement toolkits and APIs for purposes such as integration, performance optimisation, security and scalability Keeping an open mind and exploring innovative ways to solve problems, working … in a fail-fast fashion to provide required functionality Proactively apply HMG IA technical security controls according to ISO 27001 & the Security Policy Framework (SPF) Working Style This role will be carried out in-line with IPO Hybrid working arrangements where staff are currently expected to spend at least 20% of their time working onsite More ❯

multi-disciplinary team to deliver highly user focused and successful digital services ensuring governance standards are adhered to Implement toolkits and APIs for purposes such as integration, performance optimisation, security and scalability Keeping an open mind and exploring innovative ways to solve problems, working … in a fail-fast fashion to provide required functionality Proactively apply HMG IA technical security controls according to ISO 27001 & the Security Policy Framework (SPF) Person specification Essential Experience Has been a key player in delivering technical solutions as part of a large projects Experienced with modern delivery models such as Scrum and Agile Experience More ❯

Social network you want to login/join with: Chief Product Security Engineer, Southampton col-narrow-left Client: Leonardo Location: Southampton, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Reference: 39a14d097dec Job Views: 12 Posted: 22.06.2025 Expiry Date: 06.08.2025 col-wide Job Description: Job Description: At Leonardo, we have a fantastic opportunity for … a Chief Product Security Engineer to join our team within the Customer Support and Service Solutions (CS3) line of business. CS3 operates across the UK, providing innovative and invaluable support solutions to our customers. We help to ensure the availability of front-line capability wherever and whenever required. We are looking for an experienced product security practitioner with … expertise in developing and maintaining robust product security management systems for defence and government customers. Within CS3, the term product can be used to include both in-service equipment, and the support solutions/services provided to customers, which in themselves are developed. The Chief Product Security Engineer will take responsibility for ensuring that all security aspects More ❯