23 of 23 Contract NCSC Jobs in England

within Azure DevOps for infrastructure automation. Integrate security and compliance checks into DevOps workflows. Collaborate with architecture, platform, and security teams to ensure alignment with governance and compliance frameworks (NCSC, CIS Benchmarks, ISO27001). Produce clear documentation and support knowledge transfer across teams. Skills & Experience Proven hands-on experience with Terraform (advanced modules, state management, remote backends). Strong background More ❯

assure policy compliance Support investigations and coordinate stakeholder engagement Ensure legal and data privacy compliance during incidents Engage with government agencies and industry bodies Participate in forums (e.g. DWI, NCSC, Local Resilience Forums) Contribute to GRC metrics, KPIs, KRIs, and reporting Align work with business priorities and challenge inefficiencies Take ownership of customer issues and act on feedback Make informed More ❯

governance at the highest level. Key Responsibilities Architecture & Design - Develop HLDs, LLDs, and build guides for end-to-end infrastructure solutions. Ensure alignment with security frameworks (Secure By Design, NCSC CAF, NIST 800-53). Networking & Security - Architect secure, multi-tenant data centre networks (Clos-fabric, advanced BGP, DCI). Implement strong security using Palo Alto firewalls, VMware NSX-T More ❯

The role involves working closely with stakeholders to ensure systems meet security and compliance requirements. Key Skills: Proven experience in cyber security architecture within secure environments Strong understanding of NCSC principles, risk management Secure by design experience Ability to produce HLD/LLD and security documentation Stakeholder engagement and technical leadership More ❯

The role involves working closely with stakeholders to ensure systems meet security and compliance requirements. Key Skills: Proven experience in cyber security architecture within secure environments Strong understanding of NCSC principles, risk management Secure by design experience Ability to produce HLD/LLD and security documentation Stakeholder engagement and technical leadership More ❯

assurance roles (DITSO/WARP). Desired Skills * Broad knowledge of HMG Cyber Security and Assurance policy and guidance. * Experience working with CCF, CAF, and NIST frameworks. * Familiarity with NCSC best practice and guidance. This is an excellent opportunity for an experienced Information Security Officer to play a pivotal role within the Defence sector, offering flexibility, autonomy, and the chance More ❯

the Future Programme. Key responsibilities include leading the implementation of resilient infrastructure across multiple sites, ensuring high availability, disaster recovery and cyber resilience in line with ISO, NHS and NCSC standards. The post holder will oversee network and cloud environments, data storage, and backup solutions, providing assurance on performance, compliance and value for money. They will act as the senior More ❯

particular Azure and/or AWS. Ability to effectively communicate SOC value to stakeholders through clear and efficient reporting. Clear knowledge of current cybersecurity threats and trends. Familiarity with NCSC CAF, ONR SyAPs, and ISO27001 frameworks. Nice to have: Experience in complex, regulated environments, especially Critical National Infrastructure (CNI). Awareness of SOAR platforms and automation in incident response. Immediate More ❯

particular Azure and/or AWS. Ability to effectively communicate SOC value to stakeholders through clear and efficient reporting. Clear knowledge of current cybersecurity threats and trends. Familiarity with NCSC CAF, ONR SyAPs, and ISO27001 frameworks. Nice to have: Experience in complex, regulated environments, especially Critical National Infrastructure (CNI). Awareness of SOAR platforms and automation in incident response. Immediate More ❯

particular Azure and/or AWS. Ability to effectively communicate SOC value to stakeholders through clear and efficient reporting. Clear knowledge of current cybersecurity threats and trends. Familiarity with NCSC CAF, ONR SyAPs, and ISO27001 frameworks. Nice to have: Experience in complex, regulated environments, especially Critical National Infrastructure (CNI). Awareness of SOAR platforms and automation in incident response. Immediate More ❯

particular Azure and/or AWS. Ability to effectively communicate SOC value to stakeholders through clear and efficient reporting. Clear knowledge of current cybersecurity threats and trends. Familiarity with NCSC CAF, ONR SyAPs, and ISO27001 frameworks. Nice to have: Experience in complex, regulated environments, especially Critical National Infrastructure (CNI). Awareness of SOAR platforms and automation in incident response. Immediate More ❯

will be able to demonstrate a knowledge of the following: Evidence of experience in developing and deploying Cross Domain Solutions, design, use, testing and assurance. Sound understanding of the NCSC patterns and guidance for safely importing and exporting data. Ability to assess the product marketplace for products which meet requirements of the functional components of the solution. Ability to convey More ❯

will be able to demonstrate a knowledge of the following: Evidence of experience in developing and deploying Cross Domain Solutions, design, use, testing and assurance. Sound understanding of the NCSC patterns and guidance for safely importing and exporting data. Ability to assess the product marketplace for products which meet requirements of the functional components of the solution. Ability to convey More ❯

will be able to demonstrate a knowledge of the following: Evidence of experience in developing and deploying Cross Domain Solutions, design, use, testing and assurance. Sound understanding of the NCSC patterns and guidance for safely importing and exporting data. Ability to assess the product marketplace for products which meet requirements of the functional components of the solution. Ability to convey More ❯

Ollama on bare metal/private cloud Infrastructure: Air-gapped Kubernetes, local container registries Desirable Skills - Experience with defence/government IT security protocols - Knowledge of CIS benchmarks and NCSC guidelines - Familiarity with cross-domain solutions and data diodes - Understanding of classification marking and handling procedures More ❯

system architectures for MOD platforms, applications, and networks • Ensure alignment with relevant standards and frameworks including NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance • Produce and maintain security documentation including Security Architecture Documents, Security Risk Assessments and Security Management Plans • Lead and support secure design reviews and contribute to engineering assurance gates • Liaise … with security stakeholders (MOD, NCSC etc.), Information Assurance teams, and other stakeholders to support security assurance processes • Collaborate with engineering and development teams to ensure security requirements are met from the outset • Keep up to date of evolving threat landscapes and propose mitigations aligned with system requirements Skill Set Essential • Proven experience in cyber security architecture within a defence, aerospace More ❯

aligning security controls to ISO 27001, NIST CSF, ONR, and UK Gov standards Gap Analysis and Compliance: Produce audit-ready evidence, manage ONR requirements, and ensure ongoing alignment with NCSC and NPSA guidance Cloud Security Architecture: Secure and optimise Azure and M365 environments across IaaS, PaaS, and SaaS services Microsoft Security Stack: Deliver and support enterprise use of Defender, Purview … alliances), providing clear reporting and advice to senior management and regulatory bodies Health Checks and Testing: Scope and coordinate ITHC (IT Health Checks) and vulnerability management programmes to meet NCSC and regulatory expectations Policy and Documentation: Author and maintain security policies, standards, and Integrated Management System (IMS) documentation Knowledge, Skills and Experience - Essential - Established cyber security credentials with demonstrable experience More ❯

aligning security controls to ISO 27001, NIST CSF, ONR, and UK Gov standards Gap Analysis and Compliance: Produce audit-ready evidence, manage ONR requirements, and ensure ongoing alignment with NCSC and NPSA guidance Cloud Security Architecture: Secure and optimise Azure and M365 environments across IaaS, PaaS, and SaaS services Microsoft Security Stack: Deliver and support enterprise use of Defender, Purview … alliances), providing clear reporting and advice to senior management and regulatory bodies Health Checks and Testing: Scope and coordinate ITHC (IT Health Checks) and vulnerability management programmes to meet NCSC and regulatory expectations Policy and Documentation: Author and maintain security policies, standards, and Integrated Management System (IMS) documentation Knowledge, Skills and Experience - Essential - Established cyber security credentials with demonstrable experience More ❯

an understanding of Government Functional Standards e.g. GovS 007. • Knowledge of security control (and maturity) frameworks e.g. NIST (e.g. CSMA, CSF), CIS, ISO 27000 series, CSA Cloud Controls Matrix, NCSC CAF, and an understanding of the types and functions of security controls. • An understanding of hypothetical attack paths, familiarity with NIST CSF tools and able to use it for gap … analysis. • Understands Data Flow Diagrams (DFD) and trust boundaries and is able to create one using information provided about an environment. • Familiar with the functions of relevant authorities e.g. NCSC, NPSA. • An understanding of Vulnerability Management, Red Teaming, and Breach and Attack Simulation or experience of working within an Active Defence discipline. Experience looking for: • All internal based projects. Backlog More ❯

Expert on AWS Cloud across the project Portfolio. This role ensures that all Law Enforcement cloud-based services are designed, implemented, and managed in alignment with industry best practices, NCSC security principles, and government security requirements. Key Responsibilities Define and implement security capabilities and governance across the platform. Ensure compliance with the National Law Enforcement Data Portfolio Integrated Management System … for Product Team Security Guardians, driving continuous security improvement. Prioritize and direct responses to Security Hub findings, vulnerabilities, and risks. Assess and monitor systems for compliance with ISO27001, BS10008, NCSC CAF, and other mandated frameworks. Identify and address security control weaknesses and risks, contributing to technical security innovation. Run forums to review technical security proposals with Product Teams. Attend Security … best practices. With a track record and proven skills in Amazon Web Services Public Cloud Platform. Experience implementing Secure by Design strategies in cloud environments. Familiarity with ISO27001, BS10008, NCSC CAF, and related security standards. Proven ability to lead security design reviews and provide technical security guidance. Excellent communication and stakeholder management skills. Desirable Skills Experience in government or policing More ❯

an understanding of Government Functional Standards e.g. GovS 007. Knowledge of security control (and maturity) frameworks e.g. NIST (e.g. CSMA, CSF), CIS, ISO 27000 series, CSA Cloud Controls Matrix, NCSC CAF, and an understanding of the types and functions of security controls. An understanding of hypothetical attack paths, familiarity with NIST CSF tools and able to use it for gap … analysis. Understands Data Flow Diagrams (DFD) and trust boundaries and is able to create one using information provided about an environment. Familiar with the functions of relevant authorities e.g. NCSC, NPSA. An understanding of Vulnerability Management, Red Teaming, and Breach and Attack Simulation or experience of working within an Active Defence discipline. Security Requirements: SC This role will require you More ❯

the platform. Embed security requirements and stage gates within the Programme Governance cycle. Lead security design consultations for existing and new systems to ensure alignment with industry standards and NCSC principles. Provide security guidance and approvals in Technical Working Groups and change forums. Act as Technical Security Lead for Product Team Security Guardians, driving continuous security improvement. Prioritise and direct … responses to Security Hub findings, vulnerabilities, and risks. Assess and monitor systems for compliance with ISO27001, BS10008, NCSC CAF, and other mandated frameworks. Identify and address security control weaknesses and risks, contributing to technical security innovation. Run forums to review technical security proposals with Product Teams. Attend Security Working Groups and Tenant Forums to provide and lead on ongoing technical … best practices. With a track record and proven skills in Amazon Web Services Public Cloud Platform. Experience implementing Secure by Design strategies in cloud environments. Familiarity with ISO27001, BS10008, NCSC CAF, and related security standards. Proven ability to lead security design reviews and provide technical security guidance. Excellent communication and stakeholder management skills. Desirable: Experience in government or policing environments. More ❯

day, remote working. Must be SC cleared Key Responsibilities Embed security requirements and stage gates within the Programme Governance cycle. Assess and monitor systems for compliance with ISO27001, BS10008, NCSC CAF, and other mandated frameworks. Essential Skills & Experience Strong knowledge of cloud security principles, frameworks, and best practices. With a track record and proven skills in Amazon Web Services Public … Cloud Platform. Experience implementing Secure by Design strategies in cloud environments. Familiarity with ISO27001, BS10008, NCSC CAF, and related security standards. Proven ability to lead security design reviews and provide technical security guidance. Excellent communication and stakeholder management skills. If you have the above experience and are looking for a new contract role please send your CV for immediate consideration More ❯