26 to 50 of 75 NCSC Jobs in England

classified environments Automation experience (Ansible, Terraform, scripting) Experience with Nessus/Tenable or similar tools Familiarity with JSP 440/441/453 and NCSC guidance Role Purpose To deliver security operations for a private cloud platform, ensuring systems are actively monitored, vulnerabilities are managed, and services remain secure, compliant ...

Defence, Government, or other secure environments Previous experience working with Army or MOD systems Knowledge of secure development and architecture principles Understanding of OWASP, NCSC Cloud Security Principles, and GDPR Experience delivering complex technology transformation or modernisation programmes Strong communication and stakeholder management skills Desirable: Experience working within SFIA-aligned ...

threat modelling (e.g. STRIDE, attack trees) and risk analysis Strong understanding of security frameworks and best practice such as ISO 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure/NCSC CAF, HMG Security Policy Framework. Knowledge ...

define security requirements and advise on risk mitigation strategies. Ensure adherence to security frameworks, regulatory requirements, and industry standards including GDPR, OWASP, and NCSC principles. Support the design and implementation of DevSecOps pipelines, secure CI/CD processes, and automated security tooling. Contribute to enterprise security strategy, architecture governance … lifecycle (SSDLC) practices. Knowledge of secure architecture patterns, secure web application development, and API security. Experience implementing and governing security controls aligned to OWASP, NCSC Cloud Security Principles, and GDPR. Strong understanding of authentication and authorisation technologies including SAML, OAuth2, OpenID Connect, Active Directory, ADFS, and LDAP. Experience supporting penetration ...

management lifecycles. Experience working within multi-supplier or SIAM environments. Ability to interpret and govern SOC and vulnerability management outputs. Knowledge of NIST CSF, NCSC guidance, or UK Government security frameorks. Experience within Defence or other highly regulated environments. Exposure to ISMS, audit, assurance, and ITIL practices. ...

operational excellence, customer satisfaction, and revenue growth. This organisation is recognised as one of the UK's most established cyber security partners and an NCSC Assured Service Provider, supporting over 1,000 organisations across the UK. Working with some of the most advanced security vendors in the market, they help ...

Proficiency in Risk Management, RAID (Risks, Assumptions, Issues, Dependencies), Governance, Assurance, and Cross-Government Engagement. Demonstrable knowledge of cybersecurity frameworks and standards, including the NCSC Cyber Assessment Framework Experience in public sector or defence secure environments, particularly within high-security government Tier 2 environments, is highly advantageous. To apply, please ...

users. Who you are: macOS Expert: Deep, practical knowledge of macOS (both GUI and command line) with proven experience implementing stringent security lockdowns (eg, NCSC or CIS Benchmarks). Jamf Master: Hands-on experience setting up and managing the full Jamf suite (Pro, Protect, ZTNA, and Connect) across a corporate ...

candidates must have an active SC level of security clearance to be considered. Technical Knowledge Security frameworks including ISO 27001, NIST CSF, CIS and NCSC guidance Regulatory landscape including GDPR and PCI DSS Familiarity with HMG and NCSC standards Modern technology environments: Cloud platforms such as Azure, AWS and Google ...

VMware, Hyper V, and cloud-native virtualisation frameworks. Produce high-quality HLDs/LLDs , security patterns, and architectural governance artefacts. Ensure designs align with NCSC guidance , industry best practices (e.g., CIS Benchmarks), and organisational policy. Security Assurance Conduct security assessments and threat modelling against containerised and virtualised workloads. Validate platform … principles Identity and Access Management (IAM) Secrets management Workload isolation and micro segmentation Knowledge of security standards and frameworks: NIST, ISO 27001, CIS Benchmarks NCSC Cloud Security Principles Government Security Classifications Policy Desirable Skills Experience with OpenShift or enterprise Kubernetes distributions. Hands on security tooling (Falco, Istio, Calico, etc.). ...

responsible for planning or participating in CHECK/penetration tests Essential Skills: You will have experience of MOD policy in JSP440 and knowledge of NCSC guidance You will have experience of working on MoD Secure by Design (SbD) projects You will have knowledge in one or more security processes - such ...

engagements, supporting clients in improving their cyber maturity in ways that are practical and achievable. That could include: ISO 27001 audit and implementation activity NCSC CAF and NIST-CSF v2.0 assessments Maturity Assessments and Control Gap Analysis Third Party Risk Management (TPRM) implementations Cyber Incident Exercise delivery Governance, Risk ...

engagements, supporting clients in improving their cyber maturity in ways that are practical and achievable. That could include: ISO 27001 audit and implementation activity NCSC CAF and NIST-CSF v2.0 assessments Maturity Assessments and Control Gap Analysis Third Party Risk Management (TPRM) implementations Cyber Incident Exercise delivery Governance, Risk ...

engagements, supporting clients in improving their cyber maturity in ways that are practical and achievable. That could include: ISO 27001 audit and implementation activity NCSC CAF and NIST-CSF v2.0 assessments Maturity Assessments and Control Gap Analysis Third Party Risk Management (TPRM) implementations Cyber Incident Exercise delivery Governance, Risk ...

engagements, supporting clients in improving their cyber maturity in ways that are practical and achievable. That could include: ISO 27001 audit and implementation activity NCSC CAF and NIST-CSF v2.0 assessments Maturity Assessments and Control Gap Analysis Third Party Risk Management (TPRM) implementations Cyber Incident Exercise delivery Governance, Risk ...

focus on conducting structured CAF assessments, facilitating stakeholder engagement, reviewing evidence, identifying risks and improvement opportunities, and producing high quality assurance outputs aligned to NCSC guidance and recognised best practice. This is a predominantly remote role within a collaborative delivery team operating across multiple assurance engagements. Role Overview … focus on conducting structured CAF assessments, facilitating stakeholder engagement, reviewing evidence, identifying risks and improvement opportunities, and producing high quality assurance outputs aligned to NCSC guidance and recognised best practice. This is a predominantly remote role within a collaborative delivery team operating across multiple assurance engagements. Key Responsibilities Deliver Cyber ...

initiatives Act as an escalation point for infrastructure-related incidents where required Implement and maintain patching, backup, governance, and disaster recovery processes aligned with NCSC frameworks and best practice Ensure infrastructure performance, resilience, scalability, and high availability across core systems Establish proactive monitoring and preventative maintenance practices Identify and implement ...

mark equipment Monitor and maintain network security, ensuring safe and appropriate use Assist with cyber incident response and promote cyber safety in line with NCSC/DFE guidelines Ensure compliance with GDPR, RPA, and Copyright Licensing Authority regulations Set up and operate AV equipment for assemblies, school events, and performances ...

command line) Experience of manually configuring macOS, including its native security features, to implement a defined set of security lockdowns such as NCSC's Device security guidance - macOS or the CIS Hardening guidelines. Experience of setting up and using the Jamf suite (Jamf Pro, Jamf Protect, Jamf ZTNA and Jamf ...

Design end-to-end solutions covering networks, cloud platforms (Microsoft 365/Google Workspace), security, and devices, using Dataspire reference architectures and DfE/NCSC guidance. Produce high-quality proposal content, including solution overviews, architectures, scope boundaries, and implementation approaches. Work with Sales and Finance to size, price, and package ...

threat modelling (e.g. STRIDE, attack trees) and risk analysis Strong understanding of security frameworks and best practice such as ISO 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure/NCSC CAF, HMG Security Policy Framework. Knowledge ...

stakeholders. Manage customer endpoint services throughout their lifecycle. Achieve and maintain our security certifications e.g. Cyber Essentials Plus, whilst considering future standards like NCSC CAF Contribute to the specification, design, development, and implementation of our technology strategy to support Innovate and its customers. Lead, motivate, and develop a team ...

specialist cyber security SME as they expand a central government delivery team, and we are seeking an Information Assurance Consultant with strong GovAssure and NCSC CAF experience click apply for full job details ...

experience highly desirable Ability to operate with pace, gravitas and autonomy in high-pressure programmes Desirable Experience Heavily regulated industry background Knowledge of NCSC guidance/operator assurance environments Understanding of privileged access security and secure administration principles Exposure to Microsoft security and identity tooling (Entra ID, Intune, Defender etc. ...

deals, and vendor and distribution partnerships with MDF you can actually deploy. The platform opens regulated and public-sector doors most competitors can't — NCSC, CREST and IASME accreditations, with a client base across UK government, household-name brands and international corporates. Who this is for: A consistent track record ...