15 of 15 Contract NCSC Jobs in the UK excluding London

GovAssure Conduct internal technical assurance reviews aligned to GovAssure/CAF/ISO27001 domains Maintain traceability of security controls to frameworks (NIST, CE+, NCSC), Evaluate Suppliers against internal and external risk criteria for Assurance. Contribute to the adoption of Zero Trust principles in platform design Provide secure-by-design input ...

Defence, or Government environments Strong background in security architecture and secure system design Experience conducting threat modelling and security risk assessments Knowledge of: NCSC Secure by Design guidance ISO 27001 or equivalent frameworks Secure SDLC methodologies Experience working within regulated, high-assurance environments Strong stakeholder engagement and documentation skills Active ...

best practices. Experience designing solutions across cloud platforms such as Microsoft Azure or AWS. Knowledge of secure architecture and development practices (e.g. OWASP, NCSC principles). Experience with DevOps, CI/CD pipelines and modern software delivery practices. Strong knowledge of microservices, APIs and web services (REST, SOAP, JSON). ...

especially in supply chain risk. Proven experience managing risk governance across multiple technology domains at enterprise level. Familiarity with risk tools aligned to the NCSC Cyber Assessment Framework (CAF) and secure-by-design practices. Experience improving controls relating to human risk factors. Strong background in developing cyber security policies, guidance ...

trends, and technologies Occasionally travel to customer sites for meetings and investigations Skills & Experience Experience working with MoD policies (e.g. JSP440) and familiarity with NCSC guidance Experience supporting Secure by Design (SbD) projects Strong understanding of security risk assessment and control frameworks Experience applying security architecture principles in complex systems ...

Cleared Security Architect for an existing programme of work in the defence sector. Role/Requirements Assuring secure system architectures aligned to NCSC principles, JSP 440, JSP 604, and MOD security patterns. Inputting into High-Level Designs (HLDs) and Low-Level Designs (LLDs) with explicit security controls. Conducting threat modelling ...

monitoring tools Solid understanding of threat intelligence, vulnerability management, and remediation practices Knowledge of cyber frameworks and regulations including GDPR, NIS, and National Cyber Security Centre guidance Familiarity with frameworks such as MITRE ATT&CK and ITIL processes Experience operating within complex, regulated environments (e.g. public sector, financial services) Strong ...

frameworks such as NIST RMF/CSF What We're Looking For Experience in cyber security engineering, architecture, or assurance Strong knowledge of JSP440, NCSC guidance, or Secure by Design (SbD) Experience with risk assessment, accreditation, and security controls Familiarity with NIST frameworks Background in defence, government, or secure environments ...

manage enterprise endpoint security/EDR platforms (e.g. Trellix or equivalent) Implement security hardening, patching, and vulnerability remediation aligned to industry standards (e.g. CIS, NCSC) Manage and optimise Windows Server and Active Directory environments to ensure performance, stability, and security Collaborate with architects and technical stakeholders to deliver secure, scalable ...

classified environments Automation experience (Ansible, Terraform, scripting) Experience with Nessus/Tenable or similar tools Familiarity with JSP 440/441/453 and NCSC guidance Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation to this vacancy. ...

technical authority for SharePoint across multiple defence projects. Work closely with security, architecture and project teams to ensure solutions meet MOD and NCSC standards. Develop and maintain document management solutions, workflows, automation and governance frameworks. Support migrations, upgrades and integration activities across complex, secure environments. Provide expert guidance to stakeholders ...

technical authority for SharePoint across multiple defence projects. Work closely with security, architecture and project teams to ensure solutions meet MOD and NCSC standards. Develop and maintain document management solutions, workflows, automation and governance frameworks. Support migrations, upgrades and integration activities across complex, secure environments. Provide expert guidance to stakeholders ...

ideal candidate will be Degree qualified in Information/Cyber Security, IT, Engineering, Mathematics, or Science and or Chartered Cyber Security Professional, ex-NCSC Certified Cyber Professional or ex-CLAS.. Knowledge: Essential: * Experience of MOD policy in JSP440 and knowledge of NCSC guidance. * Experience of working on MoD Secure ...

Develop incident response plans, use-case logging/monitoring (network analysis, IDS/IPS). Provide strategic advice on monitoring/logging; align with NCSC/ITIL/Mitre ATT&CK. Manage team (8+), budgets, vendors; report metrics/trends to seniors. Requirements: Proven SOC operations leadership (monitoring tools …/IPS, threat intel). Incident management, vulnerability scanning/remediation. Knowledge: GDPR/NIS/NCSC, ITIL, Mitre ATT&CK. Desirable: CISSP/CISM, cloud security. ...

status across all IT controls Conduct regular access and identity reviews; enforce multi-tenant data isolation and least-privilege principles Support audit readiness against NCSC Cyber Assessment Framework (CAF), CSA CAIQ, NIST, and our roadmap towards SOC 2 Establish and track quantifiable technical baselines - encryption coverage, log retention, API compliance … team Person Specification Broad exposure to IT operations, DevOps principles, or a related technical discipline. Familiarity with one or more governance frameworks (ISO 27001, NCSC CAF, NIST, SOC 2 or similar) - you do not need to be an expert in all of them Process-driven mindset - able to translate policy ...