1 to 25 of 38 Permanent NCSC Jobs in the UK excluding London

would be great if you had: Cloud security reference architectures, such as AWS and Azure. NIST Cybersecurity Framework and SP 800-53 controls. NCSC guidance and standards. Secure-by-Design methodologies. Specialist security domains such as Identity and Access Management, Infrastructure Security, and Data Security. If you are interested ...

Army programme experience or strong MOD stakeholder exposure. Experience with Sparx Enterprise Architect, ArchiMate, NAFv4 or similar modelling approaches. Knowledge of Joint Service Publications, NCSC guidance, ISO27001, NIST, CIS or related security frameworks. Experience across IAM, PKI, secure integration, cloud security, data flows and security architecture patterns. Experience reviewing HLDs ...

technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF, AWS/Azure Architect, CISSP, CISM (or working towards CIISEC/ ...

OAuth, OpenID Connect, Active Directory, LDAP, ADFS) Secure application development (Java or .NET) Agile delivery environments API-driven architectures Security frameworks and principles (OWASP, NCSC guidance) Data protection and GDPR-compliant design Desirable Experience Defence, central government or highly regulated environments SC cleared environments Data architecture and modern data platforms ...

legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain ...

NIST, ISO 27001, CAF, or Cyber Essentials Experience working with government, defence, or critical national infrastructure clients Additional certifications such as CREST, OSCP, or NCSC Certified Professional If this sounds like the right next step, apply now or get in touch for a confidential conversation. Candidates must be eligible ...

Portsmouth area at least twice a week Desired: Relevant certifications including CISSP, CISM, CRISC, ISO 27001 Lead Implementer or Auditor, CCSP, CySA+, NCSC CCP, or GIAC If this sounds like you - get in touch or apply now for a confidential conversation. Oscar Associates (UK) Limited is acting as an Employment ...

including remediating findings with both software and configurations Supporting security configuration improvements across our Microsoft 365 environment Supporting the maintenance of Cyber Essentials Plus, NCSC CAF and other compliance frameworks Contributing to risk management processes, including maintaining risk registers Helping to develop, test and maintain Business Continuity and Disaster Recovery ...

more of the following areas: Product, project, or cyber security within engineering-led environments. Security frameworks and standards such as NIST 800-series, NCSC guidance, or equivalent. Security risk assessment and assurance methodologies. Secure by Design (SbD) implementation and security documentation production. Information Assurance, Cyber Security, or Systems Security Engineering. ...

assessing software and infrastructure source code from a security standpoint Solid grounding in Continuous Security, CI and CD techniques Knowledge of security standards including NCSC, NIST, CIS, PCI, GDPR, OWASP ASVS, HIPAA, SOC2 Understanding of common attack vectors including OWASP Top 10, SQL injection, XSS, XXE and MITM Good programming ...

/CD pipeline design (eg, Jenkins, GitHub Actions). Security Knowledge: Comprehensive understanding of secure-by-design principles, cloud security guidance (eg, NCSC), and government security classifications (OFFICIAL, OFFICIAL-SENSITIVE). Communication & Artefacts: A proven track record of producing high-quality architectural artefacts (C4 models, ADRs) and confidently translating complex ...

customer facing and stakeholder management skills. Experience producing and reviewing architecture artefacts using TOGAF and recognised architecture frameworks. Knowledge of UK Government security frameworks, NCSC guidance, Secure by Design, Zero Trust, and cloud security principles. Experience with network automation, orchestration, and air-gapped or highly secure environments. Relevant certifications such ...

Water Civil Nuclear Transport (including aviation, rail, maritime, road and autonomous vehicles) Wider critical infrastructure Security standards relating to the sector, including: NCSC NIS Guidance and CAF ISO 27001 and ISO 27005 NERC CIP ISA-99/IEC 62443 NIST CSF. Please be aware that some of our UK roles ...

Assurance within Defence or UK Government environments. Strong understanding of risk management frameworks Familiarity with government and defence security standards such as: HMG/NCSC IA Policies and Guidelines JSP440 and other MoD IA standards Cyber Essentials NIST, NIS-D You will ideally hold CISM/CISSP or similar higher ...

Practical experience applying MOD SbD principles within defence programmes Experience working in defence or wider public sector cyber security environments Familiarity with the CAF, NCSC guidance, GovAssure, or related frameworks A professional certification such as CISMP or CCP, or active progress towards CISSP or CISM A cyber security related degree ...

policies and standards Knowledge of technology risk and controls including relevant tools and techniques Good understanding and practical experience of Cyber Security Frameworks including NCSC CAF, NIST and ISO 27001 Must have at least 2 years' cyber security experience. Excellent communication skills with the ability to deal with conflicting priorities. ...

assess and manage cyber security risks proportionately, balancing risk appetite, security controls and operational needs. Strong knowledge of security policies, standards and frameworks, including NCSC guidance and defence-in-depth principles. Confident communicator who can explain complex security concepts clearly to technical teams, senior leaders, programme boards and external stakeholders. ...

technical reports for clients Supporting and collaborating with a wider team of cyber security consultants on varied projects Maintaining testing activities in line with NCSC CHECK and CREST methodologies What They're Looking For: Active SC Clearance (essential) Current CHECK Team Member status (essential) Proven experience delivering penetration testing engagements ...

awareness of emerging cyber security threats, trends, and best practices Essential Skills & Experience Experience working with MoD security policy, including JSP440 Strong knowledge of NCSC guidance and UK defence security standards Experience supporting MoD Secure by Design (SbD) projects Practical experience in security risk assessment and risk treatment methodologies Understanding ...

core data centre infrastructure, including physical servers, storage, backup and disaster recovery solutions. Ensuring compliance with security frameworks including ISO27001, Cyber Essentials Plus and NCSC guidance. You will have - Strong hands-on experience with Microsoft Azure, including administration, security and identity services. Proven expertise in VMware and Hyper-V virtualisation ...

operational excellence, customer satisfaction, and revenue growth. This organisation is recognised as one of the UK's most established cyber security partners and an NCSC Assured Service Provider, supporting over 1,000 organisations across the UK. Working with some of the most advanced security vendors in the market, they help ...

balance cost, risk, and usability. Lead threat modelling exercises and workshops with delivery teams and customers. Advise on security standards and regulatory requirements including NCSC, ISO, NIST, PCI, and GDPR. Coach and develop a small number of engineers and architects, supporting their performance and career growth. Communicate security complexity clearly … delivery of cloud services and solutions. Experience identifying security issues in system designs and recommending proportionate mitigations. Knowledge of security standards and regulations including NCSC, ISO, NIST, PCI, and GDPR. Experience with Continuous Security, CI, and CD practices. Familiarity with network security, web application security (OWASP), and cryptographic controls ...

initiatives Act as an escalation point for infrastructure-related incidents where required Implement and maintain patching, backup, governance, and disaster recovery processes aligned with NCSC frameworks and best practice Ensure infrastructure performance, resilience, scalability, and high availability across core systems Establish proactive monitoring and preventative maintenance practices Identify and implement ...

experience in operational resilience, business continuity, or disaster recovery Experience aligning resilience, continuity, and recovery practices with relevant standards, including ISO 22301 and the NCSC Cyber Assessment Framework. Proven ability to operate as a subject matter expert and influence senior stakeholders Experience in complex digital or cloud-based environments Demonstrated ...

deals, and vendor and distribution partnerships with MDF you can actually deploy. The platform opens regulated and public-sector doors most competitors can't — NCSC, CREST and IASME accreditations, with a client base across UK government, household-name brands and international corporates. Who this is for: A consistent track record ...