1 to 25 of 58 NCSC Jobs in the UK excluding London

legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling – Kill Chain ...

technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF, AWS/Azure Architect, CISSP, CISM (or working towards CIISEC/ ...

legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain ...

assurance across digital services during alpha, beta, and early live phases. Conduct critical security assessments and IT Health Checks, ensuring SaaS tools comply with NCSC Cloud Security Principles. Facilitate and oversee Security Working Groups, ensuring risks are captured, tracked, and reported with clear, actionable recommendations. Prepare formal risk assessments ...

e.g. CISSP, ISO27001 Lead Implementor or relevant SANS GIAC or equivalent. Knowledge of the NIST framework, PCI DSS, GDPR and NIS as well as NCSC cyber guidance. Experience working in an agile delivery environment would be highly advantageous. Specific cyber knowledge and demonstrable experience in at least ...

/or CCNP. Experience of working cross teams i.e., Squad Model. Experience of UK government technology strategies, and policies. A deep understanding of NCSC, CIS, and NIST IT security principles. Expert knowledge of private (VMware), public cloud (AWS/Azure), COTs and GOTs products. Desirable Private and Public cloud development ...

Security Manager or Security Lead on complex programmes Knowledge of government security standards and policy (e.g. MOD/HMG frameworks) Experience with: NCSC Cyber Assessment Framework (CAF) GovAssure audits ISO 27001 or similar audit activity NIST Cyber Security Framework Supplier assurance and supply chain security IT Health Checks, penetration testing ...

technical stakeholders) Public Sector experience Agile, DevOps, and cross-team (squad model) delivery Cloud platforms (VMware, AWS, Azure) and enterprise infrastructure Strong security knowledge (NCSC, CIS, NIST) Architecture qualifications (e.g. TOGAF, MCSE, CCNP or equivalent) Desirable: DevOps, IaC, containers, microservices, and emerging technology experience Reasonable Adjustments: Respect and equality ...

management tools and processes. Familiarity with cloud security monitoring and hybrid infrastructure environments. Knowledge of relevant security frameworks such as NIST CRF, ISO 27001, NCSC CAF, and MITRE ATT&CK. Experience contributing to or leading SOC maturity assessments or improvement programmes. Package, Benefits and What ...

policies and standards Knowledge of technology risk and controls including relevant tools and techniques Good understanding and practical experience of Cyber Security Frameworks including NCSC CAF, NIST and ISO 27001 Must have at least 2 years' cyber security experience. Excellent communication skills with the ability to deal with conflicting priorities. ...

one.Key Responsibilities Architect secure-by-design solutions for multi-domain, multi-vendor environments Apply risk management and security principles in line with MOD/NCSC standards (e.g. JSP604, NIST, ISO27001) Collaborate across technical, policy, cyber, and delivery functions to ensure integrated, compliant architecture Lead on security governance, controls and assurance ...

delivering project documentation using SbD principles. Experience in Security/Information Assurance e.g. CESG Good Practice Guides. Experience in Security risk assessment e.g. NCSC methodology Commitment to quality, performance and cost, delivering on-time to the highest standard. A collaborative team player. The ability to work autonomously, whilst maintaining ...

operating within an ISMS. • Proven track record of delivering security improvement initiatives and security awareness programmes. • Experience applying industry best practice frameworks such as NCSC, NIST, OWASP, SAMM, or SABSA. • Ability to provide security consultancy across multiple projects, advising on risk, treatment options, and controls. • Demonstrable experience conducting information security ...

multiple user-research led agile product teams. Experience of working with Government Digital Service standards, GOV.UK services (Notify, One Login, Pay) and National Cyber Security Centre guidelines and security standards. Experience of guiding and documenting cloud and API solution architectures including design solutions using AWS API Gateway and Lambdas. Proficiency ...

multiple user-research led agile product teams. Experience of working with Government Digital Service standards, GOV.UK services (Notify, One Login, Pay) and National Cyber Security Centre guidelines and security standards. Experience of guiding and documenting cloud and API solution architectures including design solutions using AWS API Gateway and Lambdas. Proficiency ...

support, focusing on high-level incident response and the triaging of complex security issues.• Governance & Risk: Define and maintain security policies in alignment with NCSC, NIST, MITRE, and GDPR frameworks. • Team Development: Mentor junior staff and share technical knowledge to strengthen the team’s overall security posture. • Process Improvement: Drive ...

management and incident handling. Threat intelligence and threat assessment. Desirable Working knowledge of NHS and government cyber security systems i.e. CareCerts, CSOC, DSPT, and NCSC Communication Essential Ability to articulate complex technical information clearly to non-technical staff and senior management. Strong people skills to foster positive relationships with team ...

incident response Solid knowledge of Microsoft security technologies Experience with SIEM, MDR/EDR, SSE and SASE solutions Knowledge of ISO 27002, CIS, NCSC CAF and NIST CSF frameworks Experience designing compliant security solutions Excellent communication and stakeholder engagement skills Desirable: Incident response experience Industry certifications (CISSP, CISM, CompTIA, CCNA ...

incident response Solid knowledge of Microsoft security technologies Experience with SIEM, MDR/EDR, SSE and SASE solutions Knowledge of ISO 27002, CIS, NCSC CAF and NIST CSF frameworks Experience designing compliant security solutions Excellent communication and stakeholder engagement skills Desirable: Incident response experience Industry certifications (CISSP, CISM, CompTIA, CCNA ...

Compliance (20%) Act as razorblues subject matter expert on cybersecurity best practice. Align all solution designs with frameworks such as Cyber Essentials, ISO27001, and NCSC guidelines. Conduct internal and client-facing security reviews, readiness assessments, and recommendations. Maintain current penetration testing qualifications to support Cyber Essentials Plus assessments. ?Vulnerability Assessment ...

security documentation using Secure by Design principles Background in security and information assurance (e.g. CESG Good Practice Guides) Experience conducting security risk assessments (e.g. NCSC methodologies) Strong written and verbal communication skills Highly organised, collaborative, and able to work autonomously Proficient with Microsoft Office Eligible for SC UK security clearance ...

security documentation using Secure by Design principles Background in security and information assurance (e.g. CESG Good Practice Guides) Experience conducting security risk assessments (e.g. NCSC methodologies) Strong written and verbal communication skills Highly organised, collaborative, and able to work autonomously Proficient with Microsoft Office Eligible for SC UK security clearance ...

cyber assurance and compliance assessments and guide clients through certification processes Run risk, gap and maturity assessments aligned to recognised frameworks (e.g. NIST/NCSC) Provide senior advisory support (e.g. virtual security leadership/governance support ) Contribute to service improvement, proposal input, and client relationship development What we’re looking ...

strengthen the Information Security Management System (ISMS) Mentor and support junior security team members Essential Skills & Experience Strong knowledge of ISO 27001 , NIST CSF , NCSC CAF and information assurance best practice Proven experience conducting and managing information security risk assessments Solid understanding of GDPR and DPA 2018 with the ability ...

exposure across both traditional and ground-breaking enterprise IT, as well as custom operational technology systems, with a clear and defined pathway to achieve NCSC certification and greater responsibility. Your work will see you lead and develop solutions to customer problems in an agile, innovative and team centric manner. ...