1 to 25 of 31 NCSC Jobs in the South West

Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain - Attack tree analysis. Working understanding More ❯

Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain - Attack tree analysis. Working understanding More ❯

and update assurance artefacts, including design documentation, risk registers, and compliance checklists. Facilitate security sign-off processes and ensure alignment with internal policies and external standards (e.g., ISO 27001, NCSC guidance). Promote a culture of security awareness and continuous improvement across delivery teams. Essential Skills & Experience Strong understanding of Secure by Design principles and cyber security best practices. Experience More ❯

and update assurance artefacts, including design documentation, risk registers, and compliance checklists. Facilitate security sign-off processes and ensure alignment with internal policies and external standards (e.g., ISO 27001, NCSC guidance). Promote a culture of security awareness and continuous improvement across delivery teams. Essential Skills & Experience Strong understanding of Secure by Design principles and cyber security best practices. Experience More ❯

and update assurance artefacts, including design documentation, risk registers, and compliance checklists. Facilitate security sign-off processes and ensure alignment with internal policies and external standards (e.g., ISO 27001, NCSC guidance). Promote a culture of security awareness and continuous improvement across delivery teams. Essential Skills & Experience Strong understanding of Secure by Design principles and cyber security best practices. Experience More ❯

and client environments What You'll Bring Strong experience in cyber strategy, risk management, governance, architecture, and regulatory compliance Familiarity with frameworks and standards such as NIST CSF, ISO27001, NCSC CAF, GDPR, and NIS2 Industry-recognised certifications (e.g. CISSP, CISM, CISA, M.Inst.ISP, or equivalent) Practical experience in GRC, threat and vulnerability management, or operational resilience Proven delivery across complex programmes More ❯

security certification. Desirable Full Membership of the Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. NCSC Certified Cyber Professional in Security Architecture. IEng or CEng registered with UK Engineering body. Chartership through the British Computer Society. SABSA Chartered Security Architect Other information: Logiq is committed to More ❯

security certification. Desirable Full Membership of the Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. NCSC Certified Cyber Professional in Security Architecture. IEng or CEng registered with UK Engineering body. Chartership through the British Computer Society. SABSA Chartered Security Architect Other information: Logiq is committed to More ❯

security certification. Desirable Full Membership of the Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. NCSC Certified Cyber Professional in Security Architecture. IEng or CEng registered with UK Engineering body. Chartership through the British Computer Society. SABSA Chartered Security Architect Other information: Logiq is committed to More ❯

experience in information security, ideally in a CISO or equivalent role within software or health tech. Healthcare Standards : Strong knowledge of UK healthcare security frameworks like DSPT, DTAC, and NCSC CAF. ISO 27001 : Proven track record in implementing and maintaining ISO 27001:2022-certified ISMS. Secure by Design : Deep understanding of secure SDLC and embedding security into product and system More ❯

experience in information security, ideally in a CISO or equivalent role within software or health tech. Healthcare Standards : Strong knowledge of UK healthcare security frameworks like DSPT, DTAC, and NCSC CAF. ISO 27001 : Proven track record in implementing and maintaining ISO 27001:2022-certified ISMS. Secure by Design : Deep understanding of secure SDLC and embedding security into product and system More ❯

experience in information security, ideally in a CISO or equivalent role within software or health tech. Healthcare Standards : Strong knowledge of UK healthcare security frameworks like DSPT, DTAC, and NCSC CAF. ISO 27001 : Proven track record in implementing and maintaining ISO 27001:2022-certified ISMS. Secure by Design : Deep understanding of secure SDLC and embedding security into product and system More ❯

best practices using Infrastructure as Code (IaC) tools such as Terraform, Packer, CloudFormation and Cloud-Init Skills in Containerization: Kubernetes, ECS/Fargate, Nomad, Security: Hashicorp Vault, PKI, TLS, NCSC Principles, Networking: VPC Peering, DNS, Service Mesh, Identity & Device Management: Keycloak, Entra ID, JAMF, Okta. Extensive and demonstrable experience in designing, building, maintaining Linux workloads running across multiple environments on More ❯

a sole UK National. Desirable Skills: To support the requirements of this role an awareness of national and international standards including the ISO27000 family, along with familiarity with recent NCSC guidance would be helpful. Knowledge and experience of using a suitable maturity model to develop the SOC, and the subsequent implementation of an agreed standard to improve this maturity where More ❯

a sole UK National. Desirable Skills: To support the requirements of this role an awareness of national and international standards including the ISO27000 family, along with familiarity with recent NCSC guidance would be helpful. Knowledge and experience of using a suitable maturity model to develop the SOC, and the subsequent implementation of an agreed standard to improve this maturity where More ❯

a sole UK National. Desirable Skills: To support the requirements of this role an awareness of national and international standards including the ISO27000 family, along with familiarity with recent NCSC guidance would be helpful. Knowledge and experience of using a suitable maturity model to develop the SOC, and the subsequent implementation of an agreed standard to improve this maturity where More ❯

cross-HMG security principles), into usable, department-specific tools and guidance. Engage with OGDs and cross-HMG forums to ensure our frameworks align with DSIT, Cabinet Office and National Cyber Security Centre standards. Establish and maintain secure-by-design and explainability guardrails for AI across the estate. Provide enterprise-level architectural governance across AI pilots, ensuring reuse, integration and compliance. More ❯

cross-HMG security principles), into usable, department-specific tools and guidance. Engage with OGDs and cross-HMG forums to ensure our frameworks align with DSIT, Cabinet Office and National Cyber Security Centre standards. Establish and maintain secure-by-design and explainability guardrails for AI across the estate. Provide enterprise-level architectural governance across AI pilots, ensuring reuse, integration and compliance. More ❯

cross-HMG security principles), into usable, department-specific tools and guidance. Engage with OGDs and cross-HMG forums to ensure our frameworks align with DSIT, Cabinet Office and National Cyber Security Centre standards. Establish and maintain secure-by-design and explainability guardrails for AI across the estate. Provide enterprise-level architectural governance across AI pilots, ensuring reuse, integration and compliance. More ❯

best practices using Infrastructure as Code (IaC) tools such as Terraform, Packer, CloudFormation and Cloud-Init Skills in Containerization: Kubernetes, ECS/Fargate, Nomad, Security: Hashicorp Vault, PKI, TLS, NCSC Principles, Networking: VPC Peering, DNS, Service Mesh, Identity & Device Management: Keycloak, Entra ID, JAMF, Okta. Extensive and demonstrable experience in designing, building, maintaining Linux workloads running across multiple environments on More ❯

Ollama on bare metal/private cloud Infrastructure: Air-gapped Kubernetes, local container registries Desirable Skills - Experience with defence/government IT security protocols - Knowledge of CIS benchmarks and NCSC guidelines - Familiarity with cross-domain solutions and data diodes - Understanding of classification marking and handling procedures More ❯

System Hardening, Cryptographic Controls (PKI, Data at Rest/In Transit), Protective Monitoring, and Security Auditing. Strong understanding of the ISO 27000 series, NIST Cyber Security & Risk Management Frameworks, NCSC CAF, and other industry standards. Familiarity with NCSC guidance and legacy Information Assurance (IA) standards. Experience with MOD security frameworks including JSP 604, JSP 440, JSP 902, and DEFCON 659A. More ❯

System Hardening, Cryptographic Controls (PKI, Data at Rest/In Transit), Protective Monitoring, and Security Auditing. Strong understanding of the ISO 27000 series, NIST Cyber Security & Risk Management Frameworks, NCSC CAF, and other industry standards. Familiarity with NCSC guidance and legacy Information Assurance (IA) standards. Experience with MOD security frameworks including JSP 604, JSP 440, JSP 902, and DEFCON 659A. More ❯

System Hardening, Cryptographic Controls (PKI, Data at Rest/In Transit), Protective Monitoring, and Security Auditing. Strong understanding of the ISO 27000 series, NIST Cyber Security & Risk Management Frameworks, NCSC CAF, and other industry standards. Familiarity with NCSC guidance and legacy Information Assurance (IA) standards. Experience with MOD security frameworks including JSP 604, JSP 440, JSP 902, and DEFCON 659A. More ❯

the Synoptix Cyber security capability. Skills Required: Essential: Knowledge of Secure by Design principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001/2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and/or system … development environments Effective communication and report-writing skills Ability to work independently as well as collaboratively within multidisciplinary teams Desirable: CISSP, CISM, or relevant NCSC-certified qualifications Experience with model-based systems engineering (MBSE) Experience supporting formal security assurance processes Understanding of space system architectures or satellite communications DevSecOps awareness or experience with security automation Benefits: Annual Company Bonus More ❯