1 to 25 of 44 Permanent NCSC Jobs in the UK excluding London

legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling – Kill Chain ...

technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF, AWS/Azure Architect, CISSP, CISM (or working towards CIISEC/ ...

legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain ...

assurance across digital services during alpha, beta, and early live phases. Conduct critical security assessments and IT Health Checks, ensuring SaaS tools comply with NCSC Cloud Security Principles. Facilitate and oversee Security Working Groups, ensuring risks are captured, tracked, and reported with clear, actionable recommendations. Prepare formal risk assessments ...

Security Manager or Security Lead on complex programmes Knowledge of government security standards and policy (e.g. MOD/HMG frameworks) Experience with: NCSC Cyber Assessment Framework (CAF) GovAssure audits ISO 27001 or similar audit activity NIST Cyber Security Framework Supplier assurance and supply chain security IT Health Checks, penetration testing ...

management tools and processes. Familiarity with cloud security monitoring and hybrid infrastructure environments. Knowledge of relevant security frameworks such as NIST CRF, ISO 27001, NCSC CAF, and MITRE ATT&CK. Experience contributing to or leading SOC maturity assessments or improvement programmes. Package, Benefits and What ...

policies and standards Knowledge of technology risk and controls including relevant tools and techniques Good understanding and practical experience of Cyber Security Frameworks including NCSC CAF, NIST and ISO 27001 Must have at least 2 years' cyber security experience. Excellent communication skills with the ability to deal with conflicting priorities. ...

delivering project documentation using SbD principles. Experience in Security/Information Assurance e.g. CESG Good Practice Guides. Experience in Security risk assessment e.g. NCSC methodology Commitment to quality, performance and cost, delivering on-time to the highest standard. A collaborative team player. The ability to work autonomously, whilst maintaining ...

operating within an ISMS. • Proven track record of delivering security improvement initiatives and security awareness programmes. • Experience applying industry best practice frameworks such as NCSC, NIST, OWASP, SAMM, or SABSA. • Ability to provide security consultancy across multiple projects, advising on risk, treatment options, and controls. • Demonstrable experience conducting information security ...

multiple user-research led agile product teams. Experience of working with Government Digital Service standards, GOV.UK services (Notify, One Login, Pay) and National Cyber Security Centre guidelines and security standards. Experience of guiding and documenting cloud and API solution architectures including design solutions using AWS API Gateway and Lambdas. Proficiency ...

multiple user-research led agile product teams. Experience of working with Government Digital Service standards, GOV.UK services (Notify, One Login, Pay) and National Cyber Security Centre guidelines and security standards. Experience of guiding and documenting cloud and API solution architectures including design solutions using AWS API Gateway and Lambdas. Proficiency ...

support, focusing on high-level incident response and the triaging of complex security issues.• Governance & Risk: Define and maintain security policies in alignment with NCSC, NIST, MITRE, and GDPR frameworks. • Team Development: Mentor junior staff and share technical knowledge to strengthen the team’s overall security posture. • Process Improvement: Drive ...

incident response Solid knowledge of Microsoft security technologies Experience with SIEM, MDR/EDR, SSE and SASE solutions Knowledge of ISO 27002, CIS, NCSC CAF and NIST CSF frameworks Experience designing compliant security solutions Excellent communication and stakeholder engagement skills Desirable: Incident response experience Industry certifications (CISSP, CISM, CompTIA, CCNA ...

incident response Solid knowledge of Microsoft security technologies Experience with SIEM, MDR/EDR, SSE and SASE solutions Knowledge of ISO 27002, CIS, NCSC CAF and NIST CSF frameworks Experience designing compliant security solutions Excellent communication and stakeholder engagement skills Desirable: Incident response experience Industry certifications (CISSP, CISM, CompTIA, CCNA ...

Compliance (20%) Act as razorblues subject matter expert on cybersecurity best practice. Align all solution designs with frameworks such as Cyber Essentials, ISO27001, and NCSC guidelines. Conduct internal and client-facing security reviews, readiness assessments, and recommendations. Maintain current penetration testing qualifications to support Cyber Essentials Plus assessments. ?Vulnerability Assessment ...

security documentation using Secure by Design principles Background in security and information assurance (e.g. CESG Good Practice Guides) Experience conducting security risk assessments (e.g. NCSC methodologies) Strong written and verbal communication skills Highly organised, collaborative, and able to work autonomously Proficient with Microsoft Office Eligible for SC UK security clearance ...

security documentation using Secure by Design principles Background in security and information assurance (e.g. CESG Good Practice Guides) Experience conducting security risk assessments (e.g. NCSC methodologies) Strong written and verbal communication skills Highly organised, collaborative, and able to work autonomously Proficient with Microsoft Office Eligible for SC UK security clearance ...

cyber assurance and compliance assessments and guide clients through certification processes Run risk, gap and maturity assessments aligned to recognised frameworks (e.g. NIST/NCSC) Provide senior advisory support (e.g. virtual security leadership/governance support ) Contribute to service improvement, proposal input, and client relationship development What we’re looking ...

exposure across both traditional and ground-breaking enterprise IT, as well as custom operational technology systems, with a clear and defined pathway to achieve NCSC certification and greater responsibility. Your work will see you lead and develop solutions to customer problems in an agile, innovative and team centric manner. ...

related discipline. Proven understanding and hands-on experience with OT/ICS security standards and frameworks, such as ISA/IEC 62443, NCSC CAF Framework, NIST CSF, or similar. Knowledge of technical security solutions used in IoT and OT/ICS systems and networks. Familiarity with key security concepts ...

delivering project documentation using SbD principles Experience in Security/Information Assurance (e.g., CESG Good Practice Guides) Experience in Security risk assessment (e.g., NCSC methodology) Commitment to quality, performance, and cost-efficiency Strong collaboration and teamwork skills Ability to work autonomously while maintaining professional integrity Proficient computer skills, including ...

analysts to integrate and manage security technologies, where you will integrate and manage security technologies ensuring compliance with UK regulations such as GDPR, NCSC Guidelines, industry best practices (ISO27001, CISSP) and contractual security obligations. Reporting to an ‘Expert of Technology’, as a Technology Engineer will be part of a team ...

standards, and repeatable remediation approaches. Security Standards & Assurance (40%) Support clients with security improvements aligned to frameworks such as Cyber Essentials, ISO27001 principles, and NCSC guidance. Contribute to internal and client-facing security reviews, readiness assessments, and improvement recommendations. Ensure designs and delivered solutions follow secure baseline standards and good ...

standards, and repeatable remediation approaches. Security Standards & Assurance (40%) Support clients with security improvements aligned to frameworks such as Cyber Essentials, ISO27001 principles, and NCSC guidance. Contribute to internal and client-facing security reviews, readiness assessments, and improvement recommendations. Ensure designs and delivered solutions follow secure baseline standards and good ...

build strong internal relationships with other members in the business. You will have worked in similar roles and have a strong knowledge of the NCSC CAF framework, with expert knowledge of Principal B, as well as the different compliance frameworks associated with the utilities world. Significant cyber security experience, some ...