22 of 22 Contract NCSC Jobs in the UK

architecture forums. Essential Experience Active SC Clearance. Experience producing security designs and security architecture artefacts. Experience undertaking threat modelling and risk assessments. Knowledge of NCSC guidance and Government security standards. Experience supporting security assurance and accreditation activities. Understanding of cloud security principles (AWS, Azure and/or GCP). Experience ...

best practices. Experience designing solutions across cloud platforms such as Microsoft Azure or AWS. Knowledge of secure architecture and development practices (e.g. OWASP, NCSC principles). Experience with DevOps, CI/CD pipelines and modern software delivery practices. Strong knowledge of microservices, APIs and web services (REST, SOAP, JSON). ...

migration tooling Strong understanding of cloud networking, monitoring, logging and IAM Experience working in secure, regulated, government or public sector environments Knowledge of NCSC, GDS, Secure by Design or UK Government technology standards would be useful Active SC or DV clearance preferred Relevant certifications: Candidates should ideally hold at least ...

Dedicated Cloud (GDC) environments. Experience working in disconnected environments. Understanding of GDS Service Standard, Cabinet Office delivery governance, or equivalent public sector frameworks and NCSC guidance. Experience working alongside or within a SAFe Agile Release Train, with exposure to PI Planning and ART-level ceremonies. Relevant certifications (e.g., TOGAF, Google ...

architectures spanning hybrid cloud, data platforms, secure networks, and edge environments Support integration across MOD, allied, and industry systems Ensure compliance with MOD standards, NCSC CAF, ISO 27001, and Zero Trust principles Contribute to technical governance, design reviews, and assurance activities Engage with senior stakeholders and present architectural recommendations Assess ...

with the development of infrastructure as code using Terraform or Bicep. A strong understanding of cloud security principles and Zero Trust architectures. Familiarity with NCSC, GDS, and UK government security frameworks-such as Secure by Design, Cloud Security Principles, and Government Functional Standards. Desirable Qualifications: Microsoft Azure Fundamentals ...

frameworks such as NIST RMF/CSF What We're Looking For Experience in cyber security engineering, architecture, or assurance Strong knowledge of JSP440, NCSC guidance, or Secure by Design (SbD) Experience with risk assessment, accreditation, and security controls Familiarity with NIST frameworks Background in defence, government, or secure environments ...

classified environments Automation experience (Ansible, Terraform, scripting) Experience with Nessus/Tenable or similar tools Familiarity with JSP 440/441/453 and NCSC guidance Role Purpose To deliver security operations for a private cloud platform, ensuring systems are actively monitored, vulnerabilities are managed, and services remain secure, compliant ...

Defence, Government, or other secure environments Previous experience working with Army or MOD systems Knowledge of secure development and architecture principles Understanding of OWASP, NCSC Cloud Security Principles, and GDPR Experience delivering complex technology transformation or modernisation programmes Strong communication and stakeholder management skills Desirable: Experience working within SFIA-aligned ...

define security requirements and advise on risk mitigation strategies. Ensure adherence to security frameworks, regulatory requirements, and industry standards including GDPR, OWASP, and NCSC principles. Support the design and implementation of DevSecOps pipelines, secure CI/CD processes, and automated security tooling. Contribute to enterprise security strategy, architecture governance … lifecycle (SSDLC) practices. Knowledge of secure architecture patterns, secure web application development, and API security. Experience implementing and governing security controls aligned to OWASP, NCSC Cloud Security Principles, and GDPR. Strong understanding of authentication and authorisation technologies including SAML, OAuth2, OpenID Connect, Active Directory, ADFS, and LDAP. Experience supporting penetration ...

management lifecycles. Experience working within multi-supplier or SIAM environments. Ability to interpret and govern SOC and vulnerability management outputs. Knowledge of NIST CSF, NCSC guidance, or UK Government security frameorks. Experience within Defence or other highly regulated environments. Exposure to ISMS, audit, assurance, and ITIL practices. ...

Proficiency in Risk Management, RAID (Risks, Assumptions, Issues, Dependencies), Governance, Assurance, and Cross-Government Engagement. Demonstrable knowledge of cybersecurity frameworks and standards, including the NCSC Cyber Assessment Framework Experience in public sector or defence secure environments, particularly within high-security government Tier 2 environments, is highly advantageous. To apply, please ...

VMware, Hyper V, and cloud-native virtualisation frameworks. Produce high-quality HLDs/LLDs , security patterns, and architectural governance artefacts. Ensure designs align with NCSC guidance , industry best practices (e.g., CIS Benchmarks), and organisational policy. Security Assurance Conduct security assessments and threat modelling against containerised and virtualised workloads. Validate platform … principles Identity and Access Management (IAM) Secrets management Workload isolation and micro segmentation Knowledge of security standards and frameworks: NIST, ISO 27001, CIS Benchmarks NCSC Cloud Security Principles Government Security Classifications Policy Desirable Skills Experience with OpenShift or enterprise Kubernetes distributions. Hands on security tooling (Falco, Istio, Calico, etc.). ...

threat modelling (e.g. STRIDE, attack trees) and risk analysis Strong understanding of security frameworks and best practice such as ISO 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure/NCSC CAF, HMG Security Policy Framework. Knowledge ...

experience highly desirable Ability to operate with pace, gravitas and autonomy in high-pressure programmes Desirable Experience Heavily regulated industry background Knowledge of NCSC guidance/operator assurance environments Understanding of privileged access security and secure administration principles Exposure to Microsoft security and identity tooling (Entra ID, Intune, Defender etc. ...

cybersecurity, industrial data protection frameworks, and complex disaster recovery structures. Proven exposure mapping technical systems to regulatory frameworks (such as NIS regulations or NCSC guidelines). Randstad Technologies is acting as an Employment Business in relation to this vacancy. ...

assurance, and risk evaluation Design cloud-based solutions using Azure and/or AWS Produce architectural documentation, models, and prototypes Ensure compliance with OWASP, NCSC, and GDPR standards Contribute to architecture governance, standards, and best practices Support stakeholder engagement, bids, and technical assurance activities Mentor junior engineers and architects Skills … Government, or secure environments Active SC Clearance (essential) Strong experience delivering complex, enterprise-scale systems Knowledge of secure development lifecycles (SSDLC) Experience with OWASP, NCSC Cloud Principles, GDPR Strong cloud experience (Azure and/or AWS) Background in microservices, APIs, and integration patterns Experience with DevOps and CI/ ...

senior, contractually-named security leadership role with day-to-day operational ownership of service security, ensuring compliance with UK Government security policy, NCSC frameworks, and client-specific security and assurance requirements. The role operates at the intersection of security governance, cloud security engineering, and live service operations, with direct engagement … internal and external audit requirements Support and coordinate penetration testing, vulnerability management, and disaster recovery exercises Ensure compliance with GDPR/DPA 2018, NCSC IAS5, CAF, and related government standards Maintain and enforce security controls across Oracle Cloud environments and SaaS applications Ensure secure configuration of Oracle ...

similar security assurance frameworks. Strong stakeholder management and communication skills. Good understanding of current cyber security threats, governance, and assurance approaches. Knowledge of NCSC guidance, CySAAS, and broader government security standards. Desirable Active SC Clearance CISSP, CCSP, CISM, CISA, or equivalent security qualifications. Experience working with NCSC CAF. Knowledge ...

ideal candidate will be Degree qualified in Information/Cyber Security, IT, Engineering, Mathematics, or Science and or Chartered Cyber Security Professional, ex-NCSC Certified Cyber Professional or ex-CLAS.. Knowledge: Essential: * Experience of MOD policy in JSP440 and knowledge of NCSC guidance. * Experience of working on MoD Secure ...

Security Architect with deep AWS expertise to support a critical government programme. You will deliver end-to-end AWS cloud security architectures aligned with NCSC Cloud Security Principles and HMG security policy frameworks, and develop and maintain security patterns, reference architectures, and technical security standards for AWS environments. Required Skills … delivering cloud security designs from concept to accreditation Demonstrable, hands-on experience designing and securing AWS environments at enterprise or programme scale Understanding of NCSC Cloud Security Principles and their application to AWS-hosted systems Experience working on large scale secure government programmes. Awareness of DevSecOps practices and integration ...

occasional UK travel Rate: £600–£650 per day IR35: Outside IR35 Clearance: Active SC Clearance required prior to start date We are supporting an NCSC-assured cyber security consultancy that has recently won a large government project focused on CAF assurance and cyber resilience . They are looking for three … work on a high-profile programme, helping to assess cyber resilience, engage with key stakeholders, and produce high-quality assurance outputs aligned to NCSC guidance. Key responsibilities: Deliver CAF assessments across government environments Facilitate stakeholder interviews and evidence-gathering sessions Assess cyber resilience against the NCSC CAF framework Identify risks ...