1 to 25 of 57 NCSC Jobs in England

/residing in UK Strong working knowledge of: JSP440, JSP604/453, JSP490 MOD/GDS Secure by Design principles ISO 27001, NIST CSF, CIS Controls v8 HMG, NPSA, NCSC policies and guidance Cloud security (Azure, AWS), containerisation, KMS, WAFs Event-driven microservices, network infrastructure, IDS/IPS AI security (ISO42001 desirable), ITHC scoping and remediation Threat modelling (Kill Chain More ❯

Security Architect or in a Technical Cyber Consultant/Engineer role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF, AWS/Azure Architect, CISSP, CISM (or working towards CIISEC/UK Cyber More ❯

Security Architect or in a Technical Cyber Consultant/Engineer role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF, AWS/Azure Architect, CISSP, CISM (or working towards CIISEC/UK Cyber More ❯

Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain - Attack tree analysis. Working understanding More ❯

Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain - Attack tree analysis. Working understanding More ❯

and update assurance artefacts, including design documentation, risk registers, and compliance checklists. Facilitate security sign-off processes and ensure alignment with internal policies and external standards (e.g., ISO 27001, NCSC guidance). Promote a culture of security awareness and continuous improvement across delivery teams. Essential Skills & Experience Strong understanding of Secure by Design principles and cyber security best practices. Experience More ❯

and update assurance artefacts, including design documentation, risk registers, and compliance checklists. Facilitate security sign-off processes and ensure alignment with internal policies and external standards (e.g., ISO 27001, NCSC guidance). Promote a culture of security awareness and continuous improvement across delivery teams. Essential Skills & Experience Strong understanding of Secure by Design principles and cyber security best practices. Experience More ❯

and update assurance artefacts, including design documentation, risk registers, and compliance checklists. Facilitate security sign-off processes and ensure alignment with internal policies and external standards (e.g., ISO 27001, NCSC guidance). Promote a culture of security awareness and continuous improvement across delivery teams. Essential Skills & Experience Strong understanding of Secure by Design principles and cyber security best practices. Experience More ❯

expertise in areas such as cyber strategy, risk management, cyber maturity assessments, security architecture, transformation programmes, and regulatory compliance. Familiarity with leading frameworks and standards including NIST CSF, ISO27001, NCSC CAF, GDPR, NIS2, and CRI2.0. Hands-on experience delivering security solutions and assessments in varied environments. Relevant certifications such as CISSP, CISM, CISA, M.Inst.ISP, or a postgraduate qualification (e.g. MSc More ❯

Council professional registration (e.g. Chartered, Principal, Practitioner). Experience with HMG/MoD security standards, policies, and frameworks. Exposure to Secure by Design principles and assurance tooling. Knowledge of NCSC CAF, ISO 27001 audits, NIST frameworks, and supplier assurance. Experience working in defence, government, or regulated industries. Additional Requirements Eligible for UK security clearance (SC or DV preferred). UK More ❯

Council professional registration (e.g. Chartered, Principal, Practitioner). Experience with HMG/MoD security standards, policies, and frameworks. Exposure to Secure by Design principles and assurance tooling. Knowledge of NCSC CAF, ISO 27001 audits, NIST frameworks, and supplier assurance. Experience working in defence, government, or regulated industries. Additional Requirements Eligible for UK security clearance (SC or DV preferred). UK More ❯

and analytical solutions Working knowledge of cloud orchestration and containerisation technologies, such as Docker and Kubernetes Working knowledge of DevOps, CI/CD and Infrastructure-as-Code Understanding of NCSC Cloud Security Principles and its practical implementations Aker Systems Attributes At Aker we work as a team, we are collaborative, hardworking, open, and delivery obsessed. There is no blame culture More ❯

and analytical solutions Working knowledge of cloud orchestration and containerisation technologies, such as Docker and Kubernetes Working knowledge of DevOps, CI/CD and Infrastructure-as-Code Understanding of NCSC Cloud Security Principles and its practical implementations Aker Systems Attributes At Aker we work as a team, we are collaborative, hardworking, open, and delivery obsessed. There is no blame culture More ❯

and analytical solutions Working knowledge of cloud orchestration and containerisation technologies, such as Docker and Kubernetes Working knowledge of DevOps, CI/CD and Infrastructure-as-Code Understanding of NCSC Cloud Security Principles and its practical implementations Aker Systems Attributes At Aker we work as a team, we are collaborative, hardworking, open, and delivery obsessed. There is no blame culture More ❯

and client environments What You'll Bring Strong experience in cyber strategy, risk management, governance, architecture, and regulatory compliance Familiarity with frameworks and standards such as NIST CSF, ISO27001, NCSC CAF, GDPR, and NIS2 Industry-recognised certifications (e.g. CISSP, CISM, CISA, M.Inst.ISP, or equivalent) Practical experience in GRC, threat and vulnerability management, or operational resilience Proven delivery across complex programmes More ❯

assure policy compliance Support investigations and coordinate stakeholder engagement Ensure legal and data privacy compliance during incidents Engage with government agencies and industry bodies Participate in forums (e.g. DWI, NCSC, Local Resilience Forums) Contribute to GRC metrics, KPIs, KRIs, and reporting Align work with business priorities and challenge inefficiencies Take ownership of customer issues and act on feedback Make informed More ❯

optimal solutions. If your career has given you the opportunity to author and publish technical reports, advise clients, work with formal security frameworks including ISA/IEC 62443 and NCSC's CAF framework and define and design OT solutions from a security perspective then you would be a real asset to our team. Adding to the Cyber Security capability's More ❯

technical role Recent MOD experience Security related legislation (e.g. GDPR, PCI DSS, ICO requirements) Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8 HMG and NCSC security policies, standards and guidance Cloud security including Amazon Web Service offerings such as KMS, IAM and ECS Event-driven microservice architectures using native cloud technology Benefits: 25 days holiday More ❯

security certification. Desirable Full Membership of the Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. NCSC Certified Cyber Professional in Security Architecture. IEng or CEng registered with UK Engineering body. Chartership through the British Computer Society. SABSA Chartered Security Architect Other information: Logiq is committed to More ❯

security certification. Desirable Full Membership of the Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. NCSC Certified Cyber Professional in Security Architecture. IEng or CEng registered with UK Engineering body. Chartership through the British Computer Society. SABSA Chartered Security Architect Other information: Logiq is committed to More ❯

security certification. Desirable Full Membership of the Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. NCSC Certified Cyber Professional in Security Architecture. IEng or CEng registered with UK Engineering body. Chartership through the British Computer Society. SABSA Chartered Security Architect Other information: Logiq is committed to More ❯

a multifaceted programme team Due to the nature of the role you must be eligible for SC Clearance. Desirable Requirements: Experience in a Cyber Security environment Understanding of the NCSC Cyber Assurance Framework (CAF) Understanding of the NIST Cyber Security Framework (CSF) and mapping to CAF About us: At Peregrine, we see beyond the immediate and look to the horizon. More ❯

experience in information security, ideally in a CISO or equivalent role within software or health tech. Healthcare Standards : Strong knowledge of UK healthcare security frameworks like DSPT, DTAC, and NCSC CAF. ISO 27001 : Proven track record in implementing and maintaining ISO 27001:2022-certified ISMS. Secure by Design : Deep understanding of secure SDLC and embedding security into product and system More ❯

experience in information security, ideally in a CISO or equivalent role within software or health tech. Healthcare Standards : Strong knowledge of UK healthcare security frameworks like DSPT, DTAC, and NCSC CAF. ISO 27001 : Proven track record in implementing and maintaining ISO 27001:2022-certified ISMS. Secure by Design : Deep understanding of secure SDLC and embedding security into product and system More ❯

experience in information security, ideally in a CISO or equivalent role within software or health tech. Healthcare Standards : Strong knowledge of UK healthcare security frameworks like DSPT, DTAC, and NCSC CAF. ISO 27001 : Proven track record in implementing and maintaining ISO 27001:2022-certified ISMS. Secure by Design : Deep understanding of secure SDLC and embedding security into product and system More ❯