1 to 25 of 85 Permanent NCSC Jobs in the UK

South West and wider UK as required. Bristol/Corsham access would be ideal. Key experience areas include: Security Architecture Secure by Design NCSC CAF/NIST/ISO27001 Threat modelling and risk assessment Cloud Security (AWS/Azure/GCP) Security assurance and accreditation activities Defence or wider Public ...

technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF, AWS/Azure Architect, CISSP, CISM (or working towards CIISEC/ ...

NIST, ISO 27001, CAF, or Cyber Essentials Experience working with government, defence, or critical national infrastructure clients Additional certifications such as CREST, OSCP, or NCSC Certified Professional If this sounds like the right next step, apply now or get in touch for a confidential conversation. Candidates must be eligible ...

cloud orchestration and containerisation technologies, such as Docker and Kubernetes Working knowledge of DevOps, CI/CD and Infrastructure‐as‐Code Understanding of NCSC Cloud Security Principles and its practical implementations Aker Systems Attributes At Aker we work as a team; we are collaborative, hardworking, open, and delivery obsessed. There ...

Strong understanding of Web Applications, Microservices, APIs, authentication/authorization protocols , and data architecture . Knowledge of secure software development practices , GDPR, OWASP, and NCSC cloud security principles. Experience delivering AI-based solutions, real-time data integration, or IoT solutions is advantageous. Consultancy & Leadership Skills Excellent communication skills, able ...

technologies such as Docker and Kubernetes Infrastructure-as-Code and automated deployment approaches Security frameworks including NIST Cybersecurity Framework, NIST 800-53, ISO 27001, NCSC Cloud Security Principles, and NIST SP 800-207 You'll also be comfortable defining technology-independent architectures and translating them into practical, implementable solutions. Personal ...

secure software development, particularly with Java or .NET frameworks. Solid understanding of secure development lifecycle practices and industry security standards (e.g., GDPR, OWASP, NCSC cloud security principles). Demonstrated ability to work collaboratively within multi-disciplinary teams and influence at senior levels. Proficiency in modern technologies such as microservices, REST ...

Bash Produce and maintain technical documentation, operational runbooks, and security playbooks Support governance and compliance activities aligned to standards such as ISO27001, GDPR, and NCSC guidance Work collaboratively across infrastructure, cloud, networking, and cyber teams to improve service delivery and operational resilience Stay up to date with emerging cyber threats ...

secure coding and secure software development lifecycle practices • Experience working with CI/CD and DevSecOps practices • Knowledge of security frameworks and standards (e.g. NCSC, NIST, CIS, OWASP, ISO27001, PCI DSS, GDPR) • Strong understanding of common attack vectors (OWASP Top 10, XSS, SQL injection, etc.) • Good programming or scripting ability ...

Understanding of the engineering lifecycle and key gate review activities. Knowledge of current Crypto technologies,Key ManagementSystems & practicalCOMSECimplementations and MOD/NCSC standards. Knowledge or experience of ARP4754A/ARP4761 and its interrelationship with security. This is not an exhaustive list, and we are keen to hear from you even ...

tools, and frameworks. Develop overall technology standards and practices, setting governance standards across the portfolio. Understand security such as GDPR, ISO 27001, Cyber Essentials, NCSC framework. Working as a key member of the Bid Factory management, aiding with bids/tenders. Assess opportunities with B2B leads, starting from enquiries into ...

risk reduction, control maturity and compliance uplift. Regulatory & Compliance Alignment UK aviation security frameworks CNI requirements Data protection legislation Relevant standards such as National Cyber Security Centre guidance and ISO/IEC 27001 Stakeholder & Relationship Management Cyber Security leadership CIO and senior IT leadership Operational airport leadership External partners ...

doing so play a key role in nationally critical projects which make a real difference to people’s everyday lives. We are a National Cyber Security Centre Assured Cyber Security Consultancy. Locations: London, Guildford, Bristol, M4 corridor Roles and Responsibilities Working either individually or as part of a larger Actica ...

investments and play a key role in nationally critical projects that make a real difference to people’s everyday lives. We are a National Cyber Security Centre Assured Cyber Security Consultancy. Locations: London, Guildford, Bristol, M4 corridor Roles and Responsibilities Working either individually or as part of a larger Actica ...

Portsmouth area at least twice a week Desired: Relevant certifications including CISSP, CISM, CRISC, ISO 27001 Lead Implementer or Auditor, CCSP, CySA+, NCSC CCP, or GIAC If this sounds like you - get in touch or apply now for a confidential conversation. Oscar Associates (UK) Limited is acting as an Employment ...

including remediating findings with both software and configurations Supporting security configuration improvements across our Microsoft 365 environment Supporting the maintenance of Cyber Essentials Plus, NCSC CAF and other compliance frameworks Contributing to risk management processes, including maintaining risk registers Helping to develop, test and maintain Business Continuity and Disaster Recovery ...

levels Support security accreditation, assurance, and compliance activities Work closely with project teams to embed security throughout the delivery lifecycle Advise on NCSC guidance, HMG security policy, and industry best practices Represent the organisation in client meetings and security working groups 👤 What We're Looking For Strong background in Security ...

deletion Experience working with Microsoft Purview, M365 compliance tooling or equivalent enterprise governance platforms Strong knowledge of UK GDPR/DPA 2018, ISO 27001, NCSC guidance Strong risk and assurance capability Location The location for this role is 16 Summer Lane with at least 2 days a week spent ...

making before, during, and after incidents. Ideally, You’ll Also Have: Security‐related qualifications such as CISSP, CISM, CISMP, CIISEC. Experience operating within an NCSC Assured Cyber Consultancy. Sector experience in one or more of the following: Government & Public Sector, Energy & Utilities, Retail and Consumer Products, Life Sciences, Telecoms, Media ...

/CD pipeline design (eg, Jenkins, GitHub Actions). Security Knowledge: Comprehensive understanding of secure-by-design principles, cloud security guidance (eg, NCSC), and government security classifications (OFFICIAL, OFFICIAL-SENSITIVE). Communication & Artefacts: A proven track record of producing high-quality architectural artefacts (C4 models, ADRs) and confidently translating complex ...

Legacy Windows technologies - Win32, WPF, MFC/ATL, COM, MSI packaging. Geospatial data formats - GeoJSON, MBTiles, GML. Familiarity with MOD Secure by Design and NCSC software security standards. Experience working in UK public sector or government digital services. Python geospatial tooling or data pipeline experience. Tech Stack: Backend: .NET Core ...

Assurance within Defence or UK Government environments. Strong understanding of risk management frameworks Familiarity with government and defence security standards such as: HMG/NCSC IA Policies and Guidelines JSP440 and other MoD IA standards Cyber Essentials NIST, NIS-D You will ideally hold CISM/CISSP or similar higher ...

management of key security assurance metrics to enable evidenced-based decision making. Support assurance activities in line with applicable frameworks and legislation such as NCSC CAF, NIS Regulations, GovAssure, HMG Secure by Design, NIST Special Publication 800-53, ISO 27001/2 and the Data Security and Protection Toolkit. Collate ...

architecture, cyber transformation and regulatory compliance for cyber. Experience of various recognised cyber security relevant standards and regulations, such as NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR and NIS2. Experience working in a variety of environments or organisational contexts to develop cyber strategy and manage cyber risk. Desire to work ...

architecture, cyber transformation and regulatory compliance for cyber. Experience of various recognised cyber security relevant standards and regulations, such as NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR and NIS2. Experience working in a variety of environments or organisational contexts to develop cyber strategy and manage cyber risk. Desire to work ...