1 to 25 of 178 NCSC Jobs in England

software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure More ❯

feedback and take action where performance falls below the expected standard. Participate/work with external groups and stakeholders for the organisation such as NCSC, EMGWARP, auditors and accreditors as required. Person Specification Technical knowledge and experience Expert knowledge and understanding of security and system architectures; the relevant technologies, tools More ❯

languages like PowerShell, YAML, JSON Expertise in application security tools and DevSecOps processes Understanding of key frameworks and standards (e.g. OWASP, NIST SSDF, ISO27001, NCSC) Experience with threat modelling, risk assessments, and secure design reviews Comfortable owning security strategy and tooling across complex, modern product landscapes Strong communicator - able to More ❯

languages like PowerShell, YAML, JSON Expertise in application security tools and DevSecOps processes Understanding of key frameworks and standards (e.g. OWASP, NIST SSDF, ISO27001, NCSC) Experience with threat modelling, risk assessments, and secure design reviews Comfortable owning security strategy and tooling across complex, modern product landscapes Strong communicator - able to More ❯

on automation, quality assurance, and deployment efficiency. Solid understanding of software security best practices, including secure coding standards and frameworks such as OWASP and NCSC cloud security principles. Awareness of data protection regulations (e.g., GDPR) and their implications for software design and delivery. Comfortable working in agile, multi-disciplinary teams More ❯

to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure Security Engineer Associate or AWS equivalent Cyber Essentials/NCSC certification (or similar) Why Join? Be part of a high-profile modernisation programme at a critical juncture Join a newly formed Cloud Centre of Excellence More ❯

to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure Security Engineer Associate or AWS equivalent Cyber Essentials/NCSC certification (or similar) Why Join? Be part of a high-profile modernisation programme at a critical juncture Join a newly formed Cloud Centre of Excellence More ❯

to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure Security Engineer Associate or AWS equivalent Cyber Essentials/NCSC certification (or similar) Why Join? Be part of a high-profile modernisation programme at a critical juncture Join a newly formed Cloud Centre of Excellence More ❯

e.g. CISSP, ISO27001 Lead Implementor or relevant SANS GIAC or equivalent Knowledge of the NIST framework, PCI DSS, GDPR and NIS as well as NCSC cyber guidance. Experience working in an agile delivery environment would be highly advantageous. Specific cyber knowledge and demonstrable experience in at least one of the More ❯

e.g. CISSP, ISO27001 Lead Implementor or relevant SANS GIAC or equivalent Knowledge of the NIST framework, PCI DSS, GDPR and NIS as well as NCSC cyber guidance. Experience working in an agile delivery environment would be highly advantageous. Specific cyber knowledge and demonstrable experience in at least one of the More ❯

implement the organisations cyber security strategy, ensuring robust protection against evolving threats, working with internal and external stakeholders such as UK Government, DHSC and NCSC you will set, evaluate and enforce the policies and standards required for cyber resilience across the organisations services, identifying and addressing areas of weakness or More ❯

of the Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. NCSC Certified Cyber Professional in Security Architecture. IEng or CEng registered with UK Engineering body. Chartership through the British Computer Society. SABSA Chartered Security Architect Other More ❯

of the Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. NCSC Certified Cyber Professional in Security Architecture. IEng or CEng registered with UK Engineering body. Chartership through the British Computer Society. SABSA Chartered Security Architect Other More ❯

of the Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. NCSC Certified Cyber Professional in Security Architecture. IEng or CEng registered with UK Engineering body. Chartership through the British Computer Society. SABSA Chartered Security Architect Other More ❯

and communication skills are key for this role, and you'll have a knowledge of security standards and processes such as ISO 27001 standards, (NCSC) CAF, Cyber Essentials, NIST and Cyber Essentials/Plus. We'll also look for your experience in: • Developing cyber policy and procedures • Data protection and More ❯

role Working knowledge of technical and cyber security standards Working knowledge of industry best practices (such as NIST Framework, OWASP top ten, SANS and NCSC Guidance) Technical knowledge of information systems, infrastructure, and networks Security monitoring and testing technologies such as vulnerability scanning, penetration testing, SIEM, IDS Experience with vulnerability More ❯

role Working knowledge of technical and cyber security standards Working knowledge of industry best practices (such as NIST Framework, OWASP top ten, SANS and NCSC Guidance) Technical knowledge of information systems, infrastructure, and networks Security monitoring and testing technologies such as vulnerability scanning, penetration testing, SIEM, IDS Experience with vulnerability More ❯

role Working knowledge of technical and cyber security standards Working knowledge of industry best practices (such as NIST Framework, OWASP top ten, SANS and NCSC Guidance) Technical knowledge of information systems, infrastructure, and networks Security monitoring and testing technologies such as vulnerability scanning, penetration testing, SIEM, IDS Experience with vulnerability More ❯

role Working knowledge of technical and cyber security standards Working knowledge of industry best practices (such as NIST Framework, OWASP top ten, SANS and NCSC Guidance) Technical knowledge of information systems, infrastructure, and networks Security monitoring and testing technologies such as vulnerability scanning, penetration testing, SIEM, IDS Experience with vulnerability More ❯

roles Familiarity with HMG/MoD cyber policies, standards (e.g. JSP440), and processes Experience with Secure by Design implementation and related tooling Knowledge of NCSC Cyber Assurance Framework (CAF) and GovAssure audits Understanding of NIST Cyber Security Framework and risk assessment methods Experience with ISO/IEC 27001 audits and More ❯

roles Familiarity with HMG/MoD cyber policies, standards (e.g. JSP440), and processes Experience with Secure by Design implementation and related tooling Knowledge of NCSC Cyber Assurance Framework (CAF) and GovAssure audits Understanding of NIST Cyber Security Framework and risk assessment methods Experience with ISO/IEC 27001 audits and More ❯

roles Familiarity with HMG/MoD cyber policies, standards (e.g. JSP440), and processes Experience with Secure by Design implementation and related tooling Knowledge of NCSC Cyber Assurance Framework (CAF) and GovAssure audits Understanding of NIST Cyber Security Framework and risk assessment methods Experience with ISO/IEC 27001 audits and More ❯

roles Familiarity with HMG/MoD cyber policies, standards (e.g. JSP440), and processes Experience with Secure by Design implementation and related tooling Knowledge of NCSC Cyber Assurance Framework (CAF) and GovAssure audits Understanding of NIST Cyber Security Framework and risk assessment methods Experience with ISO/IEC 27001 audits and More ❯

and vendor-endorsed best practices. Relevant certifications at the expert/practitioner level. Knowledge of UK public sector technology guidance and frameworks, such as NCSC’s Cyber Assessment Framework (CAF) and the Technology Code of Practice (TCoP). Benefits We are always listening to our growing teams and evolving the More ❯

and vendor-endorsed best practices. Relevant certifications at the expert/practitioner level. Knowledge of UK public sector technology guidance and frameworks, such as NCSC’s Cyber Assessment Framework (CAF) and the Technology Code of Practice (TCoP). Benefits We are always listening to our growing teams and evolving the More ❯