1 to 25 of 428 NCSC Jobs in the UK

/residing in UK Strong working knowledge of: JSP440, JSP604/453, JSP490 MOD/GDS Secure by Design principles ISO 27001, NIST CSF, CIS Controls v8 HMG, NPSA, NCSC policies and guidance Cloud security (Azure, AWS), containerisation, KMS, WAFs Event-driven microservices, network infrastructure, IDS/IPS AI security (ISO42001 desirable), ITHC scoping and remediation Threat modelling (Kill Chain More ❯

/residing in UK Strong working knowledge of: JSP440, JSP604/453, JSP490 MOD/GDS Secure by Design principles ISO 27001, NIST CSF, CIS Controls v8 HMG, NPSA, NCSC policies and guidance Cloud security (Azure, AWS), containerisation, KMS, WAFs Event-driven microservices, network infrastructure, IDS/IPS AI security (ISO42001 desirable), ITHC scoping and remediation Threat modelling (Kill Chain More ❯

Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain - Attack tree analysis. Working understanding More ❯

Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain - Attack tree analysis. Working understanding More ❯

and analytical solutions Working knowledge of cloud orchestration and containerisation technologies, such as Docker and Kubernetes Working knowledge of DevOps, CI/CD and Infrastructure-as-Code Understanding of NCSC Cloud Security Principles and its practical implementations Aker Systems Attributes At Aker we work as a team, we are collaborative, hardworking, open, and delivery obsessed. There is no blame culture More ❯

and operational processes to support ITAM maturity and continuous improvement. Provide mentoring and technical guidance to internal teams and external delivery partners. Ensure compliance with HMG Cloud Security Principles , NCSC guidelines , and departmental policies. Essential Skills & Experience Proven experience leading cloud and infrastructure initiatives within large, complex organisations (public sector experience highly desirable). In-depth knowledge/expert-level More ❯

/CD) Familiarity with scripting languages like PowerShell, YAML, JSON Hands-on with application security tools and DevSecOps processes Understanding of frameworks and standards like OWASP, NIST SSDF, ISO27001, NCSC Experience with threat modelling, risk assessments, and secure design reviews Confident owning security strategy and tooling across complex product landscapes A strong communicator - able to engage with engineers and execs More ❯

/CD) Familiarity with scripting languages like PowerShell, YAML, JSON Hands-on with application security tools and DevSecOps processes Understanding of frameworks and standards like OWASP, NIST SSDF, ISO27001, NCSC Experience with threat modelling, risk assessments, and secure design reviews Confident owning security strategy and tooling across complex product landscapes A strong communicator - able to engage with engineers and execs More ❯

secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider project teams. More ❯

secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider project teams. More ❯

secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider project teams. More ❯

secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider project teams. More ❯

secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support wider project teams. More ❯

Accenture, Methods, Capgemini, etc.) Proven track record as an Application or Cloud Security Architect Experience delivering into Public Sector, National Security or NHS programmes Familiarity with frameworks such as NCSC CAF, ISO27001, OWASP, NIST, or SABSA Excellent stakeholder management and communication skills 💼 The Package Up to £120,000 base salary Flexible hybrid or remote working (any UK location outside London More ❯

secure architectures, incorporating identity, access management, encryption, and network security. Conduct cloud security assessments and gap analyses for UK-based organisations. Advise on compliance with UK regulations (e.g. GDPR, NCSC Cloud Security Principles, ISO 27001). Develop and enforce cloud security policies, procedures, and governance models. Lead threat modelling, risk assessments, and vulnerability management initiatives. Configure and manage security tools More ❯

security certification. Desirable • Full Membership of the Chartered Institute of Information Security (CIISec) — highly desirable. • Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. • NCSC Certified Cyber Professional (CCP) in Security Architecture. • IEng or CEng registered with a UK engineering body. • Chartership through BCS, The Chartered Institute for IT. • SABSA Chartered Security Architect. Why Join More ❯

security certification. Desirable • Full Membership of the Chartered Institute of Information Security (CIISec) — highly desirable. • Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. • NCSC Certified Cyber Professional (CCP) in Security Architecture. • IEng or CEng registered with a UK engineering body. • Chartership through BCS, The Chartered Institute for IT. • SABSA Chartered Security Architect. Why Join More ❯

security certification. Desirable • Full Membership of the Chartered Institute of Information Security (CIISec) — highly desirable. • Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. • NCSC Certified Cyber Professional (CCP) in Security Architecture. • IEng or CEng registered with a UK engineering body. • Chartership through BCS, The Chartered Institute for IT. • SABSA Chartered Security Architect. Why Join More ❯

security certification. Desirable • Full Membership of the Chartered Institute of Information Security (CIISec) — highly desirable. • Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. • NCSC Certified Cyber Professional (CCP) in Security Architecture. • IEng or CEng registered with a UK engineering body. • Chartership through BCS, The Chartered Institute for IT. • SABSA Chartered Security Architect. Why Join More ❯

security certification. Desirable • Full Membership of the Chartered Institute of Information Security (CIISec) — highly desirable. • Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. • NCSC Certified Cyber Professional (CCP) in Security Architecture. • IEng or CEng registered with a UK engineering body. • Chartership through BCS, The Chartered Institute for IT. • SABSA Chartered Security Architect. Why Join More ❯

environments Hands-on knowledge of cloud platforms , CI/CD pipelines , and scripting (PowerShell, YAML, JSON, etc.) Familiarity with frameworks and standards such as OWASP , NIST SSDF , ISO27001 , or NCSC Practical experience with threat modelling , security tooling , and risk assessments Excellent communication skills, able to influence and engage at all levels from developers to execs A collaborative, proactive approach to More ❯

environments Hands-on knowledge of cloud platforms , CI/CD pipelines , and scripting (PowerShell, YAML, JSON, etc.) Familiarity with frameworks and standards such as OWASP , NIST SSDF , ISO27001 , or NCSC Practical experience with threat modelling , security tooling , and risk assessments Excellent communication skills, able to influence and engage at all levels from developers to execs A collaborative, proactive approach to More ❯

Extensive practical knowledge of Enterprise Architecture preferably certified with a recognised framework such as TOGAF, ITIL (Service Management). Substantial knowledge of ICT design, security and privacy standards including NCSC guidance and other legislative requirements, gained through significant experience of solutions delivery in similar size organisations. Excellent knowledge of National Policing Digital Strategy and understanding of current technologies relevant to More ❯

Requirements: Experience in cyber strategy, cyber risk, cyber maturity, security architecture, cyber transformation, or regulatory compliance. Knowledge of standards and regulations such as NIST CSF, ISO27001, GDPR, NIS2, or NCSC CAF. Strong problem-solving skills, attention to detail, and excellent communication with both technical and business stakeholders. Relevant certifications (CISSP, CISM, CISA, M.Inst.ISP) or MSc in Cyber Security are advantageous. More ❯

Requirements: Experience in cyber strategy, cyber risk, cyber maturity, security architecture, cyber transformation, or regulatory compliance. Knowledge of standards and regulations such as NIST CSF, ISO27001, GDPR, NIS2, or NCSC CAF. Strong problem-solving skills, attention to detail, and excellent communication with both technical and business stakeholders. Relevant certifications (CISSP, CISM, CISA, M.Inst.ISP) or MSc in Cyber Security are advantageous. More ❯