1 to 25 of 80 NCSC Jobs in the UK

would be great if you had: Cloud security reference architectures, such as AWS and Azure. NIST Cybersecurity Framework and SP 800-53 controls. NCSC guidance and standards. Secure-by-Design methodologies. Specialist security domains such as Identity and Access Management, Infrastructure Security, and Data Security. If you are interested ...

would be great if you had: Cloud security reference architectures, such as AWS and Azure. NIST Cybersecurity Framework and SP 800-53 controls. NCSC guidance and standards. Secure-by-Design methodologies. Specialist security domains such as Identity and Access Management, Infrastructure Security, and Data Security. If you are interested ...

legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling – Kill Chain ...

GovAssure Conduct internal technical assurance reviews aligned to GovAssure/CAF/ISO27001 domains Maintain traceability of security controls to frameworks (NIST, CE+, NCSC), Evaluate Suppliers against internal and external risk criteria for Assurance. Contribute to the adoption of Zero Trust principles in platform design Provide secure-by-design input ...

legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain ...

cloud orchestration and containerisation technologies, such as Docker and Kubernetes Working knowledge of DevOps, CI/CD and Infrastructure‐as‐Code Understanding of NCSC Cloud Security Principles and its practical implementations Aker Systems Attributes At Aker we work as a team; we are collaborative, hardworking, open, and delivery obsessed. There ...

cloud orchestration and containerisation technologies, such as Docker and Kubernetes Working knowledge of DevOps, CI/CD and Infrastructure-as-Code Understanding of NCSC Cloud Security Principles and its practical implementations Aker Systems Attributes At Aker we work as a team, we are collaborative, hardworking, open, and delivery obsessed. There ...

Defence, or Government environments Strong background in security architecture and secure system design Experience conducting threat modelling and security risk assessments Knowledge of: NCSC Secure by Design guidance ISO 27001 or equivalent frameworks Secure SDLC methodologies Experience working within regulated, high-assurance environments Strong stakeholder engagement and documentation skills Active ...

Microsoft Azure environments Experience with secure DevOps practices and modern cloud-based architectures Knowledge of security frameworks and standards (e.g. ISO 27001/27002, NCSC guidance, Cyber Essentials, NIS/CAF) Experience in application security, including threat modelling, security reviews, and penetration testing Familiarity with enterprise architecture frameworks such ...

architecture and delivery from the outset. Compliance & Framework Alignment: Ensure security operations align with regulatory standards and frameworks such as NIST, ISO 27001, and NCSC CAF. Person SpecificationEssential: Demonstrated experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management. Technical experience securing ...

Docker. Strengthen security controls across VMware, Hyper-V, and cloud-native virtualisation. Produce high-quality architectural artefacts, including HLDs and security patterns, aligned with NCSC guidance and industry standards. Conduct security assessments, threat modelling, and validate platform configurations for compliance and risk. Embed security controls within CI/CD pipelines ...

up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs ...

Chartered Institute of Information Security (CIISec) — highly desirable. • Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. • NCSC Certified Cyber Professional (CCP) in Security Architecture. • IEng or CEng registered with a UK engineering body. • Chartership through BCS, The Chartered Institute for IT. • SABSA Chartered Security ...

best practices. Experience designing solutions across cloud platforms such as Microsoft Azure or AWS. Knowledge of secure architecture and development practices (e.g. OWASP, NCSC principles). Experience with DevOps, CI/CD pipelines and modern software delivery practices. Strong knowledge of microservices, APIs and web services (REST, SOAP, JSON). ...

those who protect them. And it’s why they choose Saepio. We’re one of the UK’s most recognised cyber specialists and an NCSC Assured Service Provider, working with over 1,000 organisations who trust us to help them: Cut through noise and see their real risk Align policy ...

fully rounded consultant in this field. Support security maturity & gap assessments across frameworks including: PCI DSS, ISO 27001, NIST CSF, CIS Controls, SCF, NCSC CAF, TISAX, SWIFT CSP, DORA, GDPR Contribute to vCISO engagements, including governance, policy development, and exec‐level reporting Perform reviews of technical controls, secure development practices ...

making before, during, and after incidents. Ideally, You’ll Also Have Security‐related qualifications such as CISSP, CISM, CISMP, CIISEC. Experience operating within an NCSC Assured Cyber Consultancy. Sector experience in one or more of the following: Government & Public Sector, Energy & Utilities, Retail and Consumer Products, Life Sciences, Telecoms, Media ...

making before, during, and after incidents. Ideally, You’ll Also Have: Security-related qualifications such as CISSP, CISM, CISMP, CIISEC. Experience operating within an NCSC Assured Cyber Consultancy. Sector experience in one or more of the following: Government & Public Sector, Energy & Utilities, Retail and Consumer Products, Life Sciences, Telecoms, Media ...

access solutions. · Conduct vulnerability assessments within ICS environments. Regulatory & Compliance Support · Guide clients on compliance with UK frameworks such as NIS/NISR and NCSC CAF. · Assist with audit preparation, documentation and remediation planning. Client Engagement & Delivery Leadership · Work with engineering, IT, security, and operations teams. · Produce high‐quality consultancy ...

architecture, cyber transformation and regulatory compliance for cyber. Experience of various recognised cyber security relevant standards and regulations, such as NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR and NIS2. Experience working in a variety of environments or organisational contexts to develop cyber strategy and manage cyber risk. Desire to work ...

especially in supply chain risk. Proven experience managing risk governance across multiple technology domains at enterprise level. Familiarity with risk tools aligned to the NCSC Cyber Assessment Framework (CAF) and secure-by-design practices. Experience improving controls relating to human risk factors. Strong background in developing cyber security policies, guidance ...

these into strategy and design activities. Ideally, You’ll Also Have: Security‐related qualifications such as CISSP, CISM, CISMP, CIISEC. Experience operating within an NCSC Assured Cyber Consultancy. Sector experience in one or more of the following: Government & Public Sector, Energy & Utilities, Retail and Consumer Products, Life Sciences, Telecoms, Media ...

understanding of MOD cyber security policy (e.g., JSP440), standards, and guidance Chairing and participation in HMG/MoD Security Working Groups Experience with the NCSC Cyber Assurance Framework (CAF) and GovAssure audits Knowledge and experience of NIST standards, e.g., the Cyber Security Framework, Risk Assessment Cyber security audit skills, knowledge ...

advisory roles. * Experience in delivering client-facing cyber risk advisory services. * Experience delivering assessments aligned with industry standards such as ISO 27001, NIST, CIS, NCSC 10 Steps, and GDPR. * Strong written and verbal communication skills, able to clearly articulate technical jargon to non-technical audiences and write impactful deliverables. * Experience ...

project security planning and implementation (e.g. NIST frameworks) Strong understanding of Secure by Design (SbD) principles Experience in security risk assessment methodologies (e.g. NCSC) Background in information assurance/security standards Experience producing structured technical documentation Strong communication skills with the ability to work across teams Ability to work both ...