1 to 25 of 204 Permanent NCSC Jobs in the UK

technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF, AWS/Azure Architect, CISSP, CISM (or working towards CIISEC/ ...

technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF, AWS/Azure Architect, CISSP, CISM (or working towards CIISEC/ ...

Security Engineering Must have 2-3 years’ cyber security experience Good understanding and practical experience of Cyber Security Frameworks and standards such as NCSC security principles, NIST Framework, ISO 27001, ISO27005, IEC62443 etc. Good understanding of Cyber Assurance Framework and experience with working with Regulators and providing compliance updates ...

Security Architect or senior technical security role. Strong working knowledge of: Security-related legislation and regulatory requirements Security control frameworks HMG and NCSC policies, standards, and guidance Cloud security, including AWS services Event-driven, microservices-based architectures using native cloud technologies Certifications: One or more ofSABSA,TOGAF, AWS/Azure ...

Secure by Design principles Supplier assurance and supply-chain risk Security legislation Security frameworks: ISO 27001, NIST CSF, CIS Controls v8 HMG, NPSA, and NCSC policies and guidance Secure by Design within the SDLC Threat modelling techniques HLD/LLD review and assurance Technical Knowledge Cloud security Network and infrastructure ...

legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain ...

dependencies between the cloud platform and digital services. Ensure compliance with GDS service standards, Government Technology Code of Practice, and security frameworks (e.g., NCSC). Promote and apply agile and iterative product development practices within the cloud context. Provide guidance and coordination between platform consumers and CCoE operations and governance. ...

business impact. Leading the design, assurance, and continuous improvement of security systems and tooling, ensuring alignment with national cyber standards and best practices (e.g. NCSC, ISO 27001, NIST). Collaborating with architects, risk owners, and delivery teams to embed secure design principles and ensure the security operations centre ...

technologies (Sentinel, Defender, Log Analytics, Azure) Experience with scripting and automation (PowerShell, Python, Logic Apps) Strong understanding of cyber security frameworks (MITRE ATT&CK, NCSC CAF, NIST CSF) Excellent communication skills and the ability to influence across teams A proactive, detail-oriented and problem-solving mindset Eligible for UK Security ...

threat patterns. Profile cyber adversaries by analyzing behavioral patterns, infrastructure, and motivations to inform strategic and tactical defense measures. Collaborate with national partners including NCSC and NCA, to share your findings and coordinate responses. Produce high-quality, actionable reports and briefings for a range of stakeholders, including technical teams, senior ...

Expectations increase with seniority. Degree in Engineering, Computer Science, Information Security or equivalent discipline. Interest in or possession of professional cyber qualifications such as NCSC ACP, CISSP, CISM, CCSP, CWSP, CRISC or CISA. Foundational to advanced experience in cybersecurity consulting or within an organisation operating OT or critical infrastructure. Understanding ...

Security Manager or Security Lead on complex programmes Knowledge of government security standards and policy (e.g. MOD/HMG frameworks) Experience with: NCSC Cyber Assessment Framework (CAF) GovAssure audits ISO 27001 or similar audit activity NIST Cyber Security Framework Supplier assurance and supply chain security IT Health Checks, penetration testing ...

management tools and processes. Familiarity with cloud security monitoring and hybrid infrastructure environments. Knowledge of relevant security frameworks such as NIST CRF, ISO 27001, NCSC CAF, and MITRE ATT&CK. Experience contributing to or leading SOC maturity assessments or improvement programmes. Package, Benefits and What ...

architecture, cyber transformation and regulatory compliance for cyber. Experience of various recognised cyber security relevant standards and regulations, such as NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR and NIS2. Experience working in a variety of environments or organisational contexts to develop cyber strategy and manage cyber risk. Desire to work ...

architecture, cyber transformation and regulatory compliance for cyber. Experience of various recognised cyber security relevant standards and regulations, such as NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR and NIS2. Experience working in a variety of environments or organisational contexts to develop cyber strategy and manage cyber risk. Desire to work ...

operating within an ISMS. • Proven track record of delivering security improvement initiatives and security awareness programmes. • Experience applying industry best practice frameworks such as NCSC, NIST, OWASP, SAMM, or SABSA. • Ability to provide security consultancy across multiple projects, advising on risk, treatment options, and controls. • Demonstrable experience conducting information security ...

architecture, cyber transformation and regulatory compliance for cyber. Experience of various recognised cyber security relevant standards and regulations, such as NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR and NIS2. Experience working in a variety of environments or organisational contexts to develop cyber strategy and manage cyber risk. Desire to work ...

industrial network protocols. * Experience performing or supporting cyber risk assessments, system security evaluations, or vulnerability analysis. * Working knowledge of applicable standards (IEC 62443, NCSC CAF, ISO 27001/27019, NIST 800-82). * Strong writing and communication skills able to translate technical findings into clear, actionable recommendations and specifications. * Eligible ...

incident response Solid knowledge of Microsoft security technologies Experience with SIEM, MDR/EDR, SSE and SASE solutions Knowledge of ISO 27002, CIS, NCSC CAF and NIST CSF frameworks Experience designing compliant security solutions Excellent communication and stakeholder engagement skills Desirable: Incident response experience Industry certifications (CISSP, CISM, CompTIA, CCNA ...

practices. The following would be an advantage: Excellent knowledge of Cyber Security legislation such as NIS and NIS2 Directives. A deep understanding of the NCSC Cyber Assessment Framework (CAF) and/or other frameworks. Theoretical and specialist knowledge, gained with the following: Recognised qualification in Management or Leadership. Relevant certification ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...

stack to identify and resolve security gaps, and provide evidence to auditors as required. Stay current with emerging technologies and security frameworks (e.g., NIST, NCSC), proactively recommending upgrades and improvements to senior stakeholders. Provide technical guidance and mentoring to team members, supporting best practices in authentication, access control, and identity ...