1 to 25 of 124 NCSC Jobs in England

advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience More ❯

Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain - Attack tree analysis. Working understanding More ❯

technical fit and risks. . Collaborate with cross-functional teams in Agile environments. . Engage with internal stakeholders, vendors and delivery partners. . Support compliance with GovAssure, CAF and NCSC guidelines. . Explore and advise on AI integration into case management workflows and align AI capabilities with organisational strategy. . Ensure secure data transfer and protection of sensitive data. Essential More ❯

secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider project teams. More ❯

secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider project teams. More ❯

secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider project teams. More ❯

secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider project teams. More ❯

secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider project teams. More ❯

security certification. Desirable • Full Membership of the Chartered Institute of Information Security (CIISec) — highly desirable. • Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. • NCSC Certified Cyber Professional (CCP) in Security Architecture. • IEng or CEng registered with a UK engineering body. • Chartership through BCS, The Chartered Institute for IT. • SABSA Chartered Security Architect. Why Join More ❯

security certification. Desirable • Full Membership of the Chartered Institute of Information Security (CIISec) — highly desirable. • Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. • NCSC Certified Cyber Professional (CCP) in Security Architecture. • IEng or CEng registered with a UK engineering body. • Chartership through BCS, The Chartered Institute for IT. • SABSA Chartered Security Architect. Why Join More ❯

security certification. Desirable • Full Membership of the Chartered Institute of Information Security (CIISec) — highly desirable. • Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. • NCSC Certified Cyber Professional (CCP) in Security Architecture. • IEng or CEng registered with a UK engineering body. • Chartership through BCS, The Chartered Institute for IT. • SABSA Chartered Security Architect. Why Join More ❯

security certification. Desirable • Full Membership of the Chartered Institute of Information Security (CIISec) — highly desirable. • Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. • NCSC Certified Cyber Professional (CCP) in Security Architecture. • IEng or CEng registered with a UK engineering body. • Chartership through BCS, The Chartered Institute for IT. • SABSA Chartered Security Architect. Why Join More ❯

security certification. Desirable • Full Membership of the Chartered Institute of Information Security (CIISec) — highly desirable. • Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. • NCSC Certified Cyber Professional (CCP) in Security Architecture. • IEng or CEng registered with a UK engineering body. • Chartership through BCS, The Chartered Institute for IT. • SABSA Chartered Security Architect. Why Join More ❯

cyber leaders Ideal Background Proven experience in cyber strategy, transformation, and risk management within complex organisations Strong knowledge of regulatory and security frameworks (e.g. NIST CSF, ISO27001, GDPR, NIS2, NCSC CAF) Experience across areas such as GRC, security architecture, threat management, or vulnerability management Outstanding communication and stakeholder engagement skills, with the ability to influence at C-suite and board More ❯

and analytical solutions Working knowledge of cloud orchestration and containerisation technologies, such as Docker and Kubernetes Working knowledge of DevOps, CI/CD and Infrastructure-as-Code Understanding of NCSC Cloud Security Principles and its practical implementations Aker Systems Attributes At Aker we work as a team, we are collaborative, hardworking, open, and delivery obsessed. There is no blame culture More ❯

secure architectures, incorporating identity, access management, encryption, and network security. Conduct cloud security assessments and gap analyses for UK-based organisations. Advise on compliance with UK regulations (e.g. GDPR, NCSC Cloud Security Principles, ISO 27001). Develop and enforce cloud security policies, procedures, and governance models. Lead threat modelling, risk assessments, and vulnerability management initiatives. Configure and manage security tools More ❯

conditional access policies. Familiarity with common regulatory and compliance frameworks (e.g.NIST, CIS Controls, ISO 27001, Cyber Essentials Plus). Experience aligning infrastructure builds with cyber security standards such as NCSC guidance, CIS benchmarks, or Microsoft Security Baselines. Experience implementing monitoring, logging, and alerting toolsets including SIEM and threat detection platforms. Understanding of data classification, encryption, and secure storage/access More ❯

security certification. Desirable • Full Membership of the Chartered Institute of Information Security (CIISec) — highly desirable. • Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. • NCSC Certified Cyber Professional (CCP) in Security Architecture. • IEng or CEng registered with a UK engineering body. • Chartership through BCS, The Chartered Institute for IT. • SABSA Chartered Security Architect. Why Join More ❯

security certification. Desirable • Full Membership of the Chartered Institute of Information Security (CIISec) — highly desirable. • Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. • NCSC Certified Cyber Professional (CCP) in Security Architecture. • IEng or CEng registered with a UK engineering body. • Chartership through BCS, The Chartered Institute for IT. • SABSA Chartered Security Architect. Why Join More ❯

security certification. Desirable • Full Membership of the Chartered Institute of Information Security (CIISec) — highly desirable. • Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. • NCSC Certified Cyber Professional (CCP) in Security Architecture. • IEng or CEng registered with a UK engineering body. • Chartership through BCS, The Chartered Institute for IT. • SABSA Chartered Security Architect. Why Join More ❯

security certification. Desirable • Full Membership of the Chartered Institute of Information Security (CIISec) — highly desirable. • Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. • NCSC Certified Cyber Professional (CCP) in Security Architecture. • IEng or CEng registered with a UK engineering body. • Chartership through BCS, The Chartered Institute for IT. • SABSA Chartered Security Architect. Why Join More ❯

security certification. Desirable • Full Membership of the Chartered Institute of Information Security (CIISec) — highly desirable. • Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. • NCSC Certified Cyber Professional (CCP) in Security Architecture. • IEng or CEng registered with a UK engineering body. • Chartership through BCS, The Chartered Institute for IT. • SABSA Chartered Security Architect. Why Join More ❯

assure policy compliance Support investigations and coordinate stakeholder engagement Ensure legal and data privacy compliance during incidents Engage with government agencies and industry bodies Participate in forums (e.g. DWI, NCSC, Local Resilience Forums) Contribute to GRC metrics, KPIs, KRIs, and reporting Align work with business priorities and challenge inefficiencies Take ownership of customer issues and act on feedback Make informed More ❯

scripting languages such as PowerShell, YAML, or JSON Knowledge of application security tools, threat modelling, and risk assessments Familiarity with standards/frameworks such as OWASP, NIST SSDF, ISO27001, NCSC Experience guiding engineering teams and influencing security culture Excellent communication skills, able to engage confidently with developers and senior leadership Why join them? You'll be part of a forward More ❯

environments Hands-on knowledge of cloud platforms , CI/CD pipelines , and scripting (PowerShell, YAML, JSON, etc.) Familiarity with frameworks and standards such as OWASP , NIST SSDF , ISO27001 , or NCSC Practical experience with threat modelling , security tooling , and risk assessments Excellent communication skills, able to influence and engage at all levels from developers to execs A collaborative, proactive approach to More ❯