26 to 50 of 89 NCSC Jobs in the UK

eligible to obtain UK Security Clearance. Additional value Experience in government, defence, public sector, or regulated environments would be useful, along with knowledge of NCSC, government, or enterprise security frameworks. Application security, network security, CISSP, CISM, or a relevant Cyber Security/IT degree would also be beneficial. If this ...

high-assurance environments. Desirable Competencies Experience designing event-driven and asynchronous messaging architectures. Knowledge of modern data platforms and analytics platforms. Understanding of NCSC Cloud Security Principles and their practical implementation. Experience applying emerging technologies to solve complex enterprise problems. Familiarity with cloud orchestration tools and infrastructure automation approaches. Experience ...

project security planning and implementation (e.g. NIST frameworks) Strong understanding of Secure by Design (SbD) principles Experience in security risk assessment methodologies (e.g. NCSC) Background in information assurance/security standards Experience producing structured technical documentation Strong communication skills with the ability to work across teams Ability to work both ...

Practical experience applying MOD SbD principles within defence programmes Experience working in defence or wider public sector cyber security environments Familiarity with the CAF, NCSC guidance, GovAssure, or related frameworks A professional certification such as CISMP or CCP, or active progress towards CISSP or CISM A cyber security related degree ...

Cleared Security Architect for an existing programme of work in the defence sector. Role/Requirements Assuring secure system architectures aligned to NCSC principles, JSP 440, JSP 604, and MOD security patterns. Inputting into High-Level Designs (HLDs) and Low-Level Designs (LLDs) with explicit security controls. Conducting threat modelling ...

Python, PowerShell or Bash for automation and incident response. Familiarity with Linux, Windows, and cloud environments. Understanding of frameworks such as ISO27001, GDPR, NCSC Cloud Security Principles, and NIS2. Relevant certifications (CISSP, Microsoft Security, Tenable, etc.) are beneficial. If you’re a SOC Engineer looking for a role with variety ...

Water Civil Nuclear Transport (including aviation, rail, maritime, road and autonomous vehicles) Wider critical infrastructure Security standards relating to the sector, including: NCSC NIS Guidance and CAF ISO 27001 and ISO 27005 NERC CIP ISA-99/IEC 62443 NIST CSF. Additional information Please note that the interview stages ...

monitoring tools Solid understanding of threat intelligence, vulnerability management, and remediation practices Knowledge of cyber frameworks and regulations including GDPR, NIS, and National Cyber Security Centre guidance Familiarity with frameworks such as MITRE ATT&CK and ITIL processes Experience operating within complex, regulated environments (e.g. public sector, financial services) Strong ...

understanding of MOD cyber security policy (e.g., JSP440), standards, and guidance Chairing and participation in HMG/MoD Security Working Groups Experience with the NCSC Cyber Assurance Framework (CAF) and GovAssure audits Knowledge and experience of NIST standards, e.g., the Cyber Security Framework, Risk Assessment Cyber security audit skills, knowledge ...

frameworks such as NIST RMF/CSF What We're Looking For Experience in cyber security engineering, architecture, or assurance Strong knowledge of JSP440, NCSC guidance, or Secure by Design (SbD) Experience with risk assessment, accreditation, and security controls Familiarity with NIST frameworks Background in defence, government, or secure environments ...

awareness of emerging cyber security threats, trends, and best practices Essential Skills & Experience Experience working with MoD security policy, including JSP440 Strong knowledge of NCSC guidance and UK defence security standards Experience supporting MoD Secure by Design (SbD) projects Practical experience in security risk assessment and risk treatment methodologies Understanding ...

desire to stay current with changes across the threat and compliance landscape. Desirable Skills & Experience • Exposure to additional frameworks such as NIST, NCSC CAF, or SOC 2. • Previous background in IT support, infrastructure, systems administration, or IT management before moving into cybersecurity. • Industry-recognised certifications in cyber security or information ...

hybrid & multi‐cloud environments. Familiar with implementing and working with standards and frameworks (IEC 62443, NIST CSF, ISO 27000 series, MITRE ATT&CK, GDPR, NCSC CAF and NIS/NIS2 regulations). Ability to explain threat‐based and risk‐informed security considerations in clear business terms. #LI ...

security integration What were looking for Experience in Project Security planning & implementation (e.g. NIST 800 series) Strong background in Security/Information Assurance (e.g. NCSC, CESG guidelines) Proven ability to deliver security documentation using SbD principles Experience in security risk assessment methodologies Excellent communication and stakeholder engagement skills Strong organisational ...

monitoring tools Solid understanding of threat intelligence, vulnerability management, and remediation practices Knowledge of cyber frameworks and regulations including GDPR, NIS, and National Cyber Security Centre guidance Familiarity with frameworks such as MITRE ATT&CK and ITIL processes Experience operating within complex, regulated environments (e.g. public sector, financial services) Strong ...

leadership Public sector, government, defence, or secure programme experience Bonus Experience Kubernetes or Google Dedicated Cloud (GDC) Disconnected/air‐gapped environments GDS standards, NCSC guidance, or Cabinet Office governance SAFe Agile environments/PI Planning TOGAF, AWS, or Google Cloud certifications Active SC Clearance or above #J-18808-Ljbffr ...

Provide 3 line support for complex Microsoft cloud and infrastructure issues. Support compliance with relevant security and data protection frameworks, including Cyber Essentials and NCSC guidance where applicable. All employees of the client are also expected to: Develop a good understanding of safeguarding procedures, given all positions at the client ...

Defence, Government, or other secure environments Previous experience working with Army or MOD systems Knowledge of secure development and architecture principles Understanding of OWASP, NCSC Cloud Security Principles, and GDPR Experience delivering complex technology transformation or modernisation programmes Strong communication and stakeholder management skills Desirable: Experience working within SFIA-aligned ...

define security requirements and advise on risk mitigation strategies. Ensure adherence to security frameworks, regulatory requirements, and industry standards including GDPR, OWASP, and NCSC principles. Support the design and implementation of DevSecOps pipelines, secure CI/CD processes, and automated security tooling. Contribute to enterprise security strategy, architecture governance … lifecycle (SSDLC) practices. Knowledge of secure architecture patterns, secure web application development, and API security. Experience implementing and governing security controls aligned to OWASP, NCSC Cloud Security Principles, and GDPR. Strong understanding of authentication and authorisation technologies including SAML, OAuth2, OpenID Connect, Active Directory, ADFS, and LDAP. Experience supporting penetration ...

infrastructure that underpins safe patient care and public trust. The role will oversee assurance activity against recognised frameworks and obligations, including ISO 27001, the NCSC Cyber Assessment Framework and nationally mandated requirements. The post holder will lead the development and communication of high-quality cyber risk and resilience reporting, providing ...

regulatory experience including – EU NIS Directive, ISA/IEC 62443 Series/ISO 27000 Series, MITRE ATT&CK, NIST Cyber Security Framework (CSF), NCSC CAF, Office for Nuclear Regulation (ONR) Security Assessment Principles, Technical Assessment Guides, and supplementary guidance. Our Culture Our values stand on a foundation of safety, integrity ...

threat modelling (e.g. STRIDE, attack trees) and risk analysis Strong understanding of security frameworks and best practice such as ISO 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure/NCSC CAF, HMG Security Policy Framework. Knowledge ...

compliance and assurance activities, with practical knowledge of frameworks and standards such as ISO/IEC 27001, NIST, Cyber Essentials, CIS Controls and the NCSC Cyber Assessment Framework (CAF). You will be expected to lead engagements, support business development activities, contribute to proposals and Statements of Work (SoWs), mentor … Practical experience implementing, assessing, or managing security frameworks and standards such as ISO/IEC 27001, NIST, Cyber Essentials, CIS Controls, PCI DSS, and NCSC Cyber Assessment Framework (CAF). Strong understanding of information security governance, risk management, compliance and assurance principles. Experience conducting risk assessments, control reviews, compliance ...

responsible for planning or participating in CHECK/penetration tests Essential Skills: You will have experience of MOD policy in JSP440 and knowledge of NCSC guidance You will have experience of working on MoD Secure by Design (SbD) projects You will have knowledge in one or more security processes - such ...

Other highly regulated environments Ideal background: • Security Assurance/GRC/Operational Risk • Supplier assurance/third-party risk • ISO27001/NIST/NCSC CAF exposure • Practical assurance model design • Stakeholder engagement across technical and operational teams Contract: • Initial 10–12 weeks • Hybrid working • June start anticipated If relevant ...