1 to 25 of 143 NCSC Jobs in the UK

frameworks aligned with government standards. Lead and support risk assessments, threat modelling, and incident response initiatives. Work closely with stakeholders to ensure compliance with NCSC and other relevant security policies. Develop and deliver security strategies, policies, and best practice guidance to internal teams and external clients. Engage in security auditing More ❯

software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure More ❯

CISM) or equivalent. Associate/Full Membership of recognised security professional body such as the Institute of Information Security Professionals (IISP), IS2, BCS, CIISEC. NCSC Certified Cyber Professional/CESG CCP (Security and Information Risk Advisor or Security Architect). Understanding of 'Secure by Design' methodology and NIST More ❯

Systems Regulations. Excellent understanding of cyber security best practices, frameworks, standards, guidelines and terminology (e.g. ISO/IEC 27001, NIST CSF, CE, CE Plus, NCSC). Evidence of continual professional development. Desirable Applied knowledge of cyber security domains (e.g. risk management, asset management, security architecture, communications and network security, identity More ❯

defence and national security. To deliver this outcome, you must be passionate about cyber security and apply your deep understanding and experience of HMG, NCSC, and international cyber standards. The role will require excellent stakeholder management and communication skills to build the trust and support necessary for successful outcomes. You More ❯

feedback and take action where performance falls below the expected standard. Participate/work with external groups and stakeholders for the organisation such as NCSC, EMGWARP, auditors and accreditors as required. Person Specification Technical knowledge and experience Expert knowledge and understanding of security and system architectures; the relevant technologies, tools More ❯

IAM), and security information and event management (SIEM) systems. Strong understanding of security frameworks, standards, and regulations, including ISO 27001, NIST Cybersecurity Framework, GDPR , NCSC Cyber Essentials Plus, with experience in implementing and maintaining compliance with these requirements. Excellent leadership and communication skills, with the ability to effectively communicate security More ❯

programs, such as AWS APN and Azure Partners Experience with well-architected frameworks Knowledge of UK public sector technology guidance and frameworks, such as NCSC's Cyber Assessment Framework (CAF) and the Technology Code of Practice (TCoP) Agile practices such as Scrum, XP, and/or Kanban Experience using Test More ❯

languages like PowerShell, YAML, JSON Expertise in application security tools and DevSecOps processes Understanding of key frameworks and standards (e.g. OWASP, NIST SSDF, ISO27001, NCSC) Experience with threat modelling, risk assessments, and secure design reviews Comfortable owning security strategy and tooling across complex, modern product landscapes Strong communicator - able to More ❯

architecture, cyber transformation and regulatory compliance for cyber. Experience of various recognised cyber security relevant standards and regulations, such as NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR and NIS2. Experience working in a variety of environments or organisational contexts to develop cyber strategy and manage cyber risk. Desire to work More ❯

e.g. CISSP, ISO27001 Lead Implementor or relevant SANS GIAC or equivalent Knowledge of the NIST framework, PCI DSS, GDPR and NIS as well as NCSC cyber guidance. Experience working in an agile delivery environment would be highly advantageous. Specific cyber knowledge and demonstrable experience in at least one of the More ❯

e.g. CISSP, ISO27001 Lead Implementor or relevant SANS GIAC or equivalent Knowledge of the NIST framework, PCI DSS, GDPR and NIS as well as NCSC cyber guidance. Experience working in an agile delivery environment would be highly advantageous. Specific cyber knowledge and demonstrable experience in at least one of the More ❯

to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure Security Engineer Associate or AWS equivalent Cyber Essentials/NCSC certification (or similar) Why Join? Be part of a high-profile modernisation programme at a critical juncture Join a newly formed Cloud Centre of Excellence More ❯

to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure Security Engineer Associate or AWS equivalent Cyber Essentials/NCSC certification (or similar) Why Join? Be part of a high-profile modernisation programme at a critical juncture Join a newly formed Cloud Centre of Excellence More ❯

to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure Security Engineer Associate or AWS equivalent Cyber Essentials/NCSC certification (or similar) Why Join? Be part of a high-profile modernisation programme at a critical juncture Join a newly formed Cloud Centre of Excellence More ❯

frameworks; Awareness of current crypto technologies, Key Management Systems & practical COMSEC; Chartered Engineer status with a recognised body; Awarded or looking to achieve an NCSC Certified Cyber Professional (CCP) recognition; Awareness of Information Security (INFOSEC), Communications Security (COMSEC), Transmission Security (TRANSEC), Product Safety and their inter-relationship; Experience of producing More ❯

programs, such as AWS APN and Azure Partners Experience with well-architected frameworks Knowledge of UK public sector technology guidance and frameworks, such as NCSC's Cyber Assessment Framework (CAF) and the Technology Code of Practice (TCoP) Agile practices such as Scrum, XP, and/or Kanban Experience using Test More ❯

environment experience – Debian-based, Red-Hat based • Cybersecurity practises and frameworks – notably demonstrable experience with ISO27001, SOC1/2, CyberEssentials+ and/or the NCSC 14 Principles of Cyber Security Person Specification: • Team player; our client offers a team-centric culture/environment • Ability to bring discernment, initiative, self-decision More ❯

programs, such as AWS APN and Azure Partners Experience with well-architected frameworks Knowledge of UK public sector technology guidance and frameworks, such as NCSC's Cyber Assessment Framework (CAF) and the Technology Code of Practice (TCoP) Agile practices such as Scrum, XP, and/or Kanban Experience using Test More ❯

debt Providing out of hours support where necessary - shifts managed via on-call rota Interpreting the client security standards and best practice such as NCSC guidance, then implementing process and tools that allow the team to respond to security incidents in compliance Providing guidance to users and 1st line support More ❯

cyber maturity, security architecture, cyber transformation, and regulatory compliance for cyber. Experience with recognised cyber security standards and regulations like NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR, and NIS2. Experience working in various organisational contexts to develop cyber strategy and manage cyber risk. A desire to work with large organisations More ❯

Provide expert input on cloud security (AWS, Azure, or GCP) and DevSecOps tooling. Assist in maintaining security assurance across the SDLC in line with NCSC guidelines. Essential Criteria Demonstrable experience with: Penetration testing, ethical hacking, or vulnerability assessments. Security testing tools (e.g., Burp Suite, OWASP ZAP, Nikto, Nmap, Metasploit, et... More ❯

Experience in security architectural assurance and handling complex projects. Excellent stakeholder management skills, up to executive level. Expertise in cyber security frameworks such as NCSC CAF, NIST, ISO 2700x series, CIS. Understanding of the impact of emerging technologies on information security. Capabilities: Communication and Information: Engage and communicate The Crown More ❯

e.g. CISSP, ISO27001 Lead Implementor or relevant SANS GIAC or equivalent Knowledge of the NIST framework, PCI DSS, GDPR and NIS as well as NCSC cyber guidance. Experience working in an agile delivery environment would be highly advantageous. Specific cyber knowledge and demonstrable experience in at least one of the More ❯

e.g. CISSP, ISO27001 Lead Implementor or relevant SANS GIAC or equivalent Knowledge of the NIST framework, PCI DSS, GDPR and NIS as well as NCSC cyber guidance. Experience working in an agile delivery environment would be highly advantageous. Specific cyber knowledge and demonstrable experience in at least one of the More ❯