24 of 24 Contract NCSC Jobs in the UK

including Kubernetes, OpenShift, containers, Jenkins, CI/CD and IaC , and embedding CyberArk Conjur into these pipelines. Strong awareness of security and audit standards (NCSC, ISO 27001, NIST, FCA/financial, government). Excellent communication and stakeholder management skills, able to articulate PAM and secrets architecture to both technical ...

CloudWatch, Azure Monitor) Security & Compliance Embed DevSecOps principles, including secure build pipelines and automated security checks Ensure systems comply with government security policies (e.g. NCSC guidance, Secure by Design, ISO 27001) Support vulnerability management, patching, and incident response activities Collaboration & Continuous Improvement Work within Agile/Scrum delivery teams Collaborate ...

Event Management (SIEM) tools, including Splunk, Defender, Sentinel, ELK, and Tenable Threat Modeling System solutions. Demonstrable knowledge of cybersecurity frameworks and standards, including the NCSC Cyber Assessment Framework, ISO 27001, NIST, and COBIT Experience in risk and threat modeling within a high-threat government environment. Preferred Qualifications: Industry certifications such ...

Jira/Azure DevOps). Stakeholder Management: Build strong relationships across government departments and third-party vendors. Compliance: Ensure delivery adheres to GDS guidelines, NCSC principles, and strict data protection standards. Requirements Public Sector Experience: Proven track record of delivering digital services within government frameworks. Cloud Knowledge: Strong understanding ...

projects where security needed to be managed holistically (not just at a technical-control level). Knowledge of relevant security standards or frameworks (e.g., NCSC, ISO 27001, NIST, etc.) is a plus. ...

cloud platforms across UK defence and national security programmes. Key Responsibilities Design, build, and support secure Azure cloud platforms in line with MOD and NCSC standards Implement Infrastructure as Code using Terraform, Bicep, or ARM templates Engineer Azure networking solutions including VNets, NSGs, Azure Firewall, Private Endpoints, and ExpressRoute Implement ...

ecosystem experience Experience working within the NHS or UK central government is essential Understanding of public sector security and compliance requirements (for example NCSC guidance, DSPT) Nice to Have Experience supporting data platforms, analytics, or AI/ML workloads on OpenShift Exposure to GitOps tooling (for example Argo ...

professional development and awareness of current industry good practice. Qualifications: * Degree (or equivalent experience) in a relevant STEM subject or Information Security related. * Holds NCSC CCP SIRA status (or able to achieve) * Is a member of a professional institute For more information please contact Lauren Morley at JAM Recruitment ...

assessments and recommend appropriate mitigation strategies. Support the design and implementation of Zero Trust-aligned security controls. Technical Skills Secure By Design Zero Trust NCSC Guidelines ISO/GDPR High and Low Level Design Broader technical knowledge If interested in learning more apply or reach out to Reasonable Adjustments: Respect ...

Active Directory, infrastructure, cloud security and common operating systems Previous experience delivering security testing services as a qualified (CREST or Cyber Scheme) tester NCSC CHECK Team Leader status in infrastructure (CCT-INF or CSTL-INF) A strong understanding of relevant laws and legal frameworks for security testing Essential qualifications ...

Active Directory, infrastructure, cloud security and common operating systems Previous experience delivering security testing services as a qualified (CREST or Cyber Scheme) tester NCSC CHECK Team Leader status in infrastructure (CCT-INF or CSTL-INF) A strong understanding of relevant laws and legal frameworks for security testing Essential qualifications ...

collaborate with stakeholders from various departments and grades. Desirable Knowledge of Security Frameworks & Compliance: Proficiency in understanding and applying GDPR, ISO 27001, GovAssure and NCSC's Cyber Assessment Framework. Network and System Security: Foundational understanding of network architecture, security protocols, firewalls, intrusion detection systems, and operating systems (Windows, Linux). ...

continuous monitoring and auditing of the supply chain Desirable Knowledge of Security Frameworks & Compliance: Proficiency in understanding and applying GDPR, ISO 27001, GovAssure and NCSC's Cyber Assessment Framework Business and Financial Acumen: An understanding of the departments business model and how this applies to the supply chain Regulatory Knowledge ...

unionised, regulated, or safety-critical environments. Certification or formal training in change management (eg, PROSCI, APMG Change Practitioner, or ACMP). Desirable: Familiarity with NCSC Cyber Assessment Framework (CAF) or ISO 27019/IEC 62443. Previous experience in utilities, water, or energy infrastructure. Experience supporting business transformation within OT/ ...

enterprises Background in cybersecurity governance, risk, and compliance, with strong business process analysis and design capability Demonstrated experience implementing, auditing, or advising on the NCSC Cyber Assessment Framework (CAF) Experience with capability maturity models (e.g., CMMI) Strong stakeholder engagement and communication skills Ability to work with metrics, reporting, and data ...

data decisions are fully aligned with the overarching Enterprise Architecture strategy. Champion and apply best-practice principles for solution and data security (OWASP, NCSC, GDPR) at every stage of the delivery lifecycle. Required Skills: Active SC Security Clearance is a strict necessity, coupled with extensive, hands-on experience ...

essential) Knowledge of Oracle ERP, HCM, and EPM Cloud technical architecture (essential) Understanding of UK Gov Cloud hosting, data sovereignty, and compliance standards (NCSC CAF, ISO 27001, Cyber Essentials Plus). Strong professional documentation skills (essential) Strong problem-solving and analytical skills (essential) Excellent communication and leadership skills (essential) Ability ...

Oracle Fusion Cloud Financial Management & HCM. Experience with Oracle Process Automation, OPA (Desirable) Understanding of UK Gov Cloud hosting, data sovereignty, and compliance standards (NCSC CAF, ISO 27001, Cyber Essentials Plus) (Desirable ...

secure use of cloud-native services, data platforms, and AI-enabled services Ensure architectures align with NHS or central government security policies and NCSC guidance Work closely with delivery teams, suppliers, and senior stakeholders Required Experience Proven experience working as a Security Architect in complex enterprise environments Strong cloud architecture … zero trust principles Experience within the NHS or UK central government is essential Strong knowledge of public sector security frameworks and standards (for example NCSC guidance, DSPT, ISO 27001) Awareness of AI infrastructure , including security considerations around data pipelines, model hosting, and AI-enabled services Nice to Have Experience supporting ...

prevention, encryption protocols, and secure access controls. Conduct risk assessments, vulnerability management, and incident response planning tailored to defence-grade threats, ensuring alignment with NCSC and CPNI standards. Collaborate with cross-functional teams (engineering, ops, intel) to integrate security-by-design into project deliverables, focusing on zero-trust models … environments. Demonstrable experience leading security teams on time-bound projects, with a track record of delivering under pressure. Professional certifications: CISSP, CISM, or equivalent; NCSC/CLAS consultancy experience highly desirable. Desirable Skills: Offensive cyber/red teaming knowledge (CHECK/CREST/Tiger Scheme). Experience with SOC operations ...

governance Automate infrastructure using IaC (Terraform, Bicep, ARM) Support CI/CD pipelines and platform reliability Ensure compliance with government/defence security standards (NCSC, MOD, etc.) Troubleshoot complex platform issues across environments Essential Skills & Experience Strong hands-on Azure platform engineering experience Background working in defence, central government … secure-by-design and compliance-driven cloud delivery Active SC clearance Desirable Experience with Kubernetes (AKS) DevOps tooling (Azure DevOps, GitHub Actions) Knowledge of NCSC Cloud Security Principles ...

across highly assured platforms. You’ll take a leading role in shaping resilient architectures within secure, air-gapped environments, ensuring compliance with MOD and NCSC principles while delivering practical, scalable solutions to complex mission systems. Key Responsibilities: • Define and deliver enterprise-grade PKI and trust infrastructures covering Root/Issuing … auto-enrolment, key management, and hardware security modules (HSMs) • Familiarity with relevant standards and policies such as X.509, RFC5280, TLS, FIPS 140-3, and NCSC or NIST identity guidance • Background delivering within high-assurance, disconnected, or restricted network environments This contract offers the chance to take technical ownership of critical ...

capabilities across highly assured platforms. Youll take a leading role in shaping resilient architectures within secure, air-gapped environments, ensuring compliance with MOD and NCSC principles while delivering practical, scalable solutions to complex mission systems. Key Responsibilities: Define and deliver enterprise-grade PKI and trust infrastructures covering Root/Issuing … auto-enrolment, key management, and hardware security modules (HSMs) Familiarity with relevant standards and policies such as X.509, RFC5280, TLS, FIPS 140-3, and NCSC or NIST identity guidance Background delivering within high-assurance, disconnected, or restricted network environments This contract offers the chance to take technical ownership of critical ...

Doing: Designing, deploying and assuring cross-domain solutions in highly secure environments Translating complex user and operational requirements into robust, compliant architectures Applying NCSC guidance and security patterns to enable safe data transfer across domains Evaluating the technology market to select suitable products and components Defining technical requirements for bespoke … Main Skills Needed: Zero Trust/ZTDF/DCS/Data Centric Security Proven experience designing and delivering cross-domain solutions Strong understanding of NCSC patterns, secure data import/export, and assurance principles Deep knowledge of cryptography and public key infrastructure Experience working with MOD systems, processes and assurance ...