App Service). Security Frameworks & Secure by Design Strong understanding of Secure by Design principles and ability to bake security in from concept through production. Practical experience implementing the NCSC or NIST Cybersecurity Framework (CSF) and/or NIST SP 800-53 controls. Demonstrable understanding of ISO/IEC 27001 requirements and hands-on experience mapping technical controls to ISO More ❯
bristol, south west england, united kingdom Hybrid / WFH Options
Computer Network Defence Ltd (CND)
experience in information security, ideally in a CISO or equivalent role within software or health tech. Healthcare Standards : Strong knowledge of UK healthcare security frameworks like DSPT, DTAC, and NCSC CAF. ISO 27001 : Proven track record in implementing and maintaining ISO 27001:2022-certified ISMS. Secure by Design : Deep understanding of secure SDLC and embedding security into product and system More ❯
a sole UK National. Desirable Skills: To support the requirements of this role an awareness of national and international standards including the ISO27000 family, along with familiarity with recent NCSC guidance would be helpful. Knowledge and experience of using a suitable maturity model to develop the SOC, and the subsequent implementation of an agreed standard to improve this maturity where More ❯
Greater Bristol Area, United Kingdom Hybrid / WFH Options
Logiq
System Hardening, Cryptographic Controls (PKI, Data at Rest/In Transit), Protective Monitoring, and Security Auditing. Strong understanding of the ISO 27000 series, NIST CyberSecurity & Risk Management Frameworks, NCSC CAF, and other industry standards. Familiarity with NCSC guidance and legacy Information Assurance (IA) standards. Experience with MOD security frameworks including JSP 604, JSP 440, JSP 902, and DEFCON 659A. More ❯
the Synoptix Cybersecurity capability. Skills Required: Essential: Knowledge of Secure by Design principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001/2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and/or system … development environments Effective communication and report-writing skills Ability to work independently as well as collaboratively within multidisciplinary teams Desirable: CISSP, CISM, or relevant NCSC-certified qualifications Experience with model-based systems engineering (MBSE) Experience supporting formal security assurance processes Understanding of space system architectures or satellite communications DevSecOps awareness or experience with security automation Benefits: Annual Company Bonus More ❯
Bristol, Gloucestershire, United Kingdom Hybrid / WFH Options
Babcock Mission Critical Services España SA
the Security Lead Relevant experience of the Maritime Defence and MOD IT Domain, including knowledge of Government/MOD IA policy and process including JSP440, JSP453, JSP628, DIANs and NCSC IA guidance. Able to demonstrate the application of contextualised risk management in the application of technical/procedural/physical security controls within the risk/cost/benefit space. … Owner forms, Supplier Assurance Questionnaires. Experienced in relevant Security Policy and CyberSecurity Frameworks including the GovS 007, MOD Secure by Design (SbD), ISO27001 - Information Security Management Systems, NIST, NCSC IA Guidance Qualifications for the CyberSecurity Lead Educated to degree level or holds a relevant professional qualification or equivalent experience. Security Clearance The successful candidate must be able to More ❯
