1 to 25 of 29 Contract NCSC Jobs in England

Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain - Attack tree analysis. Working understanding More ❯

Models - IaaS, PaaS, SaaS, hybrid and multi-cloud models. Familiar with common industry cloud providers - AWS, GCP, Azure, OCI. Practical understanding of industry cloud security principles and their application - NCSC, NIST, CSA. Familiarity with common cloud related compliance Benchmarks - CIS, GDPR, PCI-DSS, ISO27001, ISO27017, ISO27018, TSR, OFCOM. Strong documentation, design and presentation skills with the ability to create management More ❯

security through design and delivery. Background in the defence, maritime, or critical national infrastructure environment. Skills & Qualifications: Degree (or equivalent experience) in a relevant STEM or Information Security discipline. NCSC CCP SIRA status (or ability to achieve). Membership of a relevant professional body. Strong stakeholder engagement, leadership, and mentoring capabilities. Why Join? This is an opportunity to play a More ❯

framework , MOD digital services, or Defence data standards Infrastructure as Code - Terraform or Ansible Experience with MODCloud, AWS, or Azure Testing frameworks: Jest, Mocha, Supertest Familiarity with JSP 440 , NCSC Secure Coding Guidelines , or Defence Digital standards Security Clearance Active SC clearance is mandatory . Candidates eligible for DV clearance will be prioritised for longer-term roles. If you're More ❯

ll be responsible for: Conducting security assurance activities across projects, products, and systems. Supporting risk assessments, security reviews, and compliance checks in line with organisational and government standards (e.g., NCSC, ISO 27001, JSP440). Producing clear, concise, and insightful security assurance reports for technical and non-technical stakeholders. Working closely with engineering, architecture, and risk management teams to ensure robust More ❯

Prior experience working on government classified systems or within secure data centre environments. Experience of configuring and using AI technologies within cloud environments, including GCP AI technologies. Familiarity with NCSC guidance, UK Government cloud policies, or cross-domain architectures. Knowledge of multi-cloud integrations, edge computing, and data sovereignty requirements. NB: The ideal applicant will hold a minimum of SC More ❯

Prior experience working on government classified systems or within secure data centre environments. Experience of configuring and using AI technologies within cloud environments, including GCP AI technologies. Familiarity with NCSC guidance, UK Government cloud policies, or cross-domain architectures. Knowledge of multi-cloud integrations, edge computing, and data sovereignty requirements. NB: The ideal applicant will hold a minimum of SC More ❯

background , ideally with knowledge of command, control, and intelligence systems . Deep understanding of architecture frameworks, design standards and methodologies. Experience with secure software development lifecycles , OWASP , GDPR , and NCSC Cloud Security Principles . Demonstrated ability to design and deliver secure, integrated solutions in sensitive or classified environments. Strong stakeholder engagement and communication skills, with the ability to influence at More ❯

Nice-to-Have Skills AWS cloud experience. Experience with BPMN workflow engines (Camunda, Activiti, Flowable). Experience using React, Angular or Vue.js. Container orchestration using RedHat OpenShift. Awareness of NCSC cloud security principles. Clearance Requirements Active SC clearance required. Candidates must have the right to work in the UK and at least 5 years of continuous UK residency . Rate More ❯

Product Security/Information Security concepts to applicable technologies within the environment (or similar). Degree (or equivalent experience) in a relevant STEM subject or Information Security related. Holds NCSC CCP SIRA status (or able to achieve) Is a member of a professional institute Security Requirements: SC, ITAR & UK EYES ONLY This role will require the person to hold full More ❯

/MFA/Compliance, and BAU transition experience. Ensuring all architecture decisions are aligned to the functional, non-functional, financial, and security requirements, including resilience, Conditional Access, CIS/NCSC compliance + cost efficiency. Providing technical governance across all phases: Discovery, Strategy, Design, Landing Zone Build, Amazon WorkSpaces deployment, Pilot/Full Migration, implementation + BAU transition. AWS Cloud certifications More ❯

/MFA/Compliance, and BAU transition experience. Ensuring all architecture decisions are aligned to the functional, non-functional, financial, and security requirements, including resilience, Conditional Access, CIS/NCSC compliance + cost efficiency. Providing technical governance across all phases: Discovery, Strategy, Design, Landing Zone Build, Amazon WorkSpaces deployment, Pilot/Full Migration, implementation + BAU transition. AWS Cloud certifications More ❯

business, data, and technology domains. Strong knowledge of TOGAF or similar frameworks (Zachman, MODAF). Experience working in secure environments and applying best practice for solution security (e.g., OWASP, NCSC cloud security principles). Familiarity with Secure Software Development Lifecycle processes. Ability to work with multi-disciplinary teams and influence senior stakeholders. Excellent communication and stakeholder engagement skills. More ❯

professional development and awareness of current industry good practice. Qualifications: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. Holds Chartered Cyber Professional or former NCSC CCP SIRA status (or able to achieve) Is a member of a professional institute For more information please contact Lauren Morley at JAM Recruitment or click apply. More ❯

responding to security questionnaires and tenders, supporting incident investigations, and helping to maintain AFC s security posture and compliance with relevant standards (Cyber Essentials Plus, ISO 27001, DSPT, GDPR, NCSC). This is a hands-on delivery role for someone who can work independently, make sound judgements, and communicate clearly with both technical and non-technical stakeholders. Essential (please do More ❯

responding to security questionnaires and tenders, supporting incident investigations, and helping to maintain AFC's security posture and compliance with relevant standards (Cyber Essentials Plus, ISO 27001, DSPT, GDPR, NCSC). This is a hands-on delivery role for someone who can work independently, make sound judgements, and communicate clearly with both technical and non-technical stakeholders. Essential (please do More ❯

responding to security questionnaires and tenders, supporting incident investigations, and helping to maintain AFC’s security posture and compliance with relevant standards (Cyber Essentials Plus, ISO 27001, DSPT, GDPR, NCSC). This is a hands-on delivery role for someone who can work independently, make sound judgements, and communicate clearly with both technical and non-technical stakeholders. Essential (please do More ❯

regulatory compliance environment Experience working in API testing , Network technologies and cloud solutions Have a good practical understanding of firewalls technologies, WAP and OWASP Understanding of CAF , NIST and NCSC Understanding of Cloud platform, Linux OS, OpenShift, Kubernetes More ❯

working in API testing, Network technologies and cloud solutions Must be SC cleared Have a good practical understanding of Firewalls technologies, WAP and OWASP Understanding of CAF, NIST and NCSC Understanding of Cloud platform, Linux OS, OpenShift, Kubernetes More ❯

ensure all major business, technology, and data decisions are fully aligned with the overarching Enterprise Architecture strategy. Champion and apply best-practice principles for solution and data security (OWASP, NCSC, GDPR) at every stage of the delivery lifecycle. Required Skills: Active SC Security Clearance is a strict necessity, coupled with extensive, hands-on experience in a strong Defence/Security More ❯

WorkSpaces/Citrix modernisation). This role ensures that all architectural decisions are aligned to the functional, non-functional, financial, and security requirements, including resilience, Conditional Access, CIS/NCSC compliance, and cost efficiency. The Lead Architect provides technical governance across all phases: Discovery, Strategy & Design, Landing Zone Build, Amazon WorkSpaces deployment, Pilot & Full Migration, and BAU transition. Key Deliverables More ❯

security best practices and compliance frameworks. Ability to diagnose and resolve complex technical issues. PowerShell or similar scripting experience. Desirable Experience in government or secure environments. Familiarity with CIS, NCSC, or similar security standards. Understanding of Zero Trust concepts. More ❯

security best practices and compliance frameworks. Ability to diagnose and resolve complex technical issues. PowerShell or similar scripting experience. Desirable Experience in government or secure environments. Familiarity with CIS, NCSC, or similar security standards. Understanding of Zero Trust concepts. More ❯

Business Analyst (NCSC CAF) Outside IR35: £400 - £500 p/d Active SC Clearance Required Once a week to London Purpose of the Role We are seeking 2x Business Analysts to support the internal rollout of Cyber Assessment Framework (CAF) requirements for a critical government programme. This role will ensure that security and compliance objectives are met while maintaining a … user-centric approach. Key Responsibilities Business Analysis Gather, document, and prioritize business and technical requirements aligned with CAF principles Map current processes and identify gaps against NCSC CAF controls Collaborate with security, IT, and delivery teams to define acceptance criteria and ensure compliance Support backlog refinement and sprint planning in line with Agile and GDS standards CAF & Security Focus Interpret … NCSC CAF requirements and translate them into practical implementation steps. Work closely with technical teams on PAWS deployment and device security hardening . Ensure solutions meet both security and usability objectives without compromising user experience. Stakeholder Engagement Facilitate workshops and discussions with internal teams to align on priorities. Communicate findings and recommendations clearly to technical and non-technical audiences. Essential More ❯

security documentation, responding to security questionnaires and tenders, supporting incident investigations, and helping to maintain security posture and compliance with relevant standards (Cyber Essentials Plus, ISO 27001, DSPT, GDPR, NCSC). This is a hands-on delivery role for someone who can work independently, make sound judgements, and communicate clearly with both technical and non-technical stakeholders. Key Responsibilities Security … Assurance Advisory and Awareness Desirable Relevant certifications such as CISSP, CISM, CRISC, CEH, CompTIA Security+, or equivalent experience. Experience working in healthcare, charity, or public sector environments. Familiarity with NCSC CAF and NHS DSPT frameworks. Experience working with SOCs and incident response partners. Due to the volume of applications received for positions, it will not be possible to respond to More ❯