24 of 24 Permanent NCSC Jobs in the South West

technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF, AWS/Azure Architect, CISSP, CISM (or working towards CIISEC/ ...

assurance across digital services during alpha, beta, and early live phases. Conduct critical security assessments and IT Health Checks, ensuring SaaS tools comply with NCSC Cloud Security Principles. Facilitate and oversee Security Working Groups, ensuring risks are captured, tracked, and reported with clear, actionable recommendations. Prepare formal risk assessments ...

Security Manager or Security Lead on complex programmes Knowledge of government security standards and policy (e.g. MOD/HMG frameworks) Experience with: NCSC Cyber Assessment Framework (CAF) GovAssure audits ISO 27001 or similar audit activity NIST Cyber Security Framework Supplier assurance and supply chain security IT Health Checks, penetration testing ...

incident response Solid knowledge of Microsoft security technologies Experience with SIEM, MDR/EDR, SSE and SASE solutions Knowledge of ISO 27002, CIS, NCSC CAF and NIST CSF frameworks Experience designing compliant security solutions Excellent communication and stakeholder engagement skills Desirable: Incident response experience Industry certifications (CISSP, CISM, CompTIA, CCNA ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...

security documentation using Secure by Design principles Background in security and information assurance (e.g. CESG Good Practice Guides) Experience conducting security risk assessments (e.g. NCSC methodologies) Strong written and verbal communication skills Highly organised, collaborative, and able to work autonomously Proficient with Microsoft Office Eligible for SC UK security clearance ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...

analysts to integrate and manage security technologies, where you will integrate and manage security technologies ensuring compliance with UK regulations such as GDPR, NCSC Guidelines, industry best practices (ISO27001, CISSP) and contractual security obligations. Reporting to an Expert of Technology, as a Technology Engineer will be part of a team ...

related discipline. Proven understanding and hands-on experience with OT/ICS security standards and frameworks, such as ISA/IEC 62443, NCSC CAF Framework, NIST CSF, or similar. Knowledge of technical security solutions used in IoT and OT/ICS systems and networks. Familiarity with key security concepts ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...

government-led programmes is ideal but not essential. Strong knowledge in designing operational processes and service transition. Familiarity with Secure by Design principles, NCSC guidelines, Cyber Essentials, ISO 27001, UK GDPR, and Data Protection Act is preferred. Proficient in requirements gathering, stakeholder analysis, and documentation. Ability to produce and manage ...

could include occasional travel to sites in Chippenham and Exeter within the 1-2 days. The role: Conduct comprehensive cyber security audits aligned to NCSC CAF and other recognised frameworks. Assess organisational security posture across the full system lifecycle, ensuring compliance and identifying areas for improvement. Produce clear, actionable audit … What you'll bring: Ability to lead audits, engage stakeholders, and communicate findings effectively. Proven expertise in Cyber Security Auditing, with strong knowledge of: NCSC Cyber Assessment Framework (CAF). ISO 27000 series, NIST Cyber Security & Risk Management Frameworks. Legacy IA standards and NCSC guidance. Familiarity with MOD security frameworks ...

Skills Required: Essential: Knowledge of Secure by Design principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001/2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security … development environments Effective communication and report-writing skills Ability to work independently as well as collaboratively within multidisciplinary teams Desirable: CISSP, CISM, or relevant NCSC-certified qualifications Experience with model-based systems engineering (MBSE) Experience supporting formal security assurance processes Understanding of space system architectures or satellite communications DevSecOps awareness ...

security documentation Support clients in defining business led security requirements and secure-by-design solutions Interpret and apply ISO 27001/ISO 27002, NIST, NCSC CAF, and MOD security frameworks Engage confidently with technical and non-technical stakeholders, including senior leaders Contribute to bid support and presales activity where required … Bring Strong experience in security governance, risk, and information assurance Deep understanding of ISO 27000-series standards and security risk frameworks Familiarity with NCSC guidance and legacy IA standards Experience operating within MOD/defence-aligned security frameworks (e.g. JSP 604, JSP 440, JSP 902) Ability to clearly articulate risk ...