13 of 13 NCSC Jobs in Hampshire

legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain ...

legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain ...

technical strategy and leading architecture teams. Deep understanding of secure cloud design, zero-trust models, and compliance frameworks such as NIST, DISA STIGs, and NCSC best practice. Expertise in Infrastructure-as-Code, containerisation (Kubernetes, OpenShift), and automation for secure cloud deployments. Strong knowledge of networking, encryption, IAM, and DevSecOps principles. ...

integration or restricted networks) Familiarity with supporting data/AI pipelines or platform integrations (e.g., Glue, SageMaker, Step Functions, EventBridge) Awareness of enterprise controls (NCSC/Cyber Essentials, NIST, or similar frameworks) Understanding of cloud cost optimisation and FinOps practices Exposure to other cloud environments (Azure, Google Cloud) Behaviours Proactive ...

small team of Cyber Security Engineers . Design and deliver secure cloud architectures and solutions. Ensure compliance with key security standards and regulations (NCSC, ISO, NIST, GDPR, etc.). Support Continuous Security, CI/CD, and DevSecOps processes. Key Requirements: Proven experience designing and implementing secure cloud solutions. Strong understanding ...

Helm, Ansible. Scripting: Bash, Python. Experience in air-gapped environments and secure software supply chain practices (SBOMs, image scanning). Familiarity with MOD/NCSC guidance and CIS benchmarks. Proven ability to work across organisational boundaries and with external teams. Desirable Skills: Exposure to multiple Kubernetes distributions. Experience with MODCloud ...

Work with auditors to and supply evidence as required. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Mentoring and support for other members of the Team. ...

Strong knowledge of TOGAF or similar frameworks (Zachman, MODAF). Experience working in secure environments and applying best practice for solution security (e.g., OWASP, NCSC cloud security principles). Familiarity with Secure Software Development Lifecycle processes. Ability to work with multi-disciplinary teams and influence senior stakeholders. Excellent communication ...

Strong knowledge of TOGAF or similar frameworks (Zachman, MODAF). Experience working in secure environments and applying best practice for solution security (e.g., OWASP, NCSC cloud security principles). Familiarity with Secure Software Development Lifecycle processes. Ability to work with multi-disciplinary teams and influence senior stakeholders. Excellent communication ...

data decisions are fully aligned with the overarching Enterprise Architecture strategy. Champion and apply best-practice principles for solution and data security (OWASP, NCSC, GDPR) at every stage of the delivery lifecycle. Required Skills: Active SC Security Clearance is a strict necessity, coupled with extensive, hands-on experience ...

maintaining certifications such as ISO/IEC 27001, SOC2 Type II, Cyber Essentials Plus, CREST SOC accreditation, and sector-specific frameworks (PCI DSS, NCSC CIR/CHECK), providing customer confidence in Bell’s SOC services. As a key member of the Governance, Risk, and Compliance (GRC) function, the Cyber Security …/IEC 27001, Cyber Essentials Plus, and CREST. Oversee sector-specific assurance needs such as PCI DSS for cardholder data environments or NCSC CIR/CHECK where relevant. Ensure certifications are renewed on schedule and compliance gaps are proactively addressed. Security Assurance for SOC Services: Embed certification requirements into ...

maintaining certifications such as ISO/IEC 27001, SOC2 Type II, Cyber Essentials Plus, CREST SOC accreditation, and sector-specific frameworks (PCI DSS, NCSC CIR/CHECK) Responsibilities: Certification Delivery & Maintenance: Lead the delivery and ongoing maintenance of key SOC-related certifications including SOC 2 Type … that demonstrate Bell's security posture and SOC credibility. Regulatory & Industry Alignment: Monitor developments in global cybersecurity regulations and frameworks (e.g. NIST CSF, UK NCSC guidance, EU NIS2, GDPR). Continuous Improvement & Reporting: Drive continuous improvement in SOC assurance processes, reducing time to audit readiness and increasing efficiency of evidence ...

governance into acquisition programme milestones, ensuring traceability and accountability across all phases. Stakeholder Coordination : Act as the governance interface between DE&S, Defence Digital, NCSC, and industry partners. Risk & Compliance Oversight : Lead the identification, assessment, and mitigation of security risks across delivery workstreams. Policy Integration : Ensure alignment with … relevant Defence Digital and NCSC guidance. Reporting & Assurance : Produce governance artefacts, assurance reports, and dashboards for senior stakeholders and programme boards. Audit & Accreditation Support : Facilitate security accreditation processes and support internal/external audits. Essential Skills & Experience Proven experience in security governance within MOD or UK Government programmes. Strong understanding ...