1 to 25 of 41 Remote/Hybrid Permanent NCSC Jobs

South West and wider UK as required. Bristol/Corsham access would be ideal. Key experience areas include: Security Architecture Secure by Design NCSC CAF/NIST/ISO27001 Threat modelling and risk assessment Cloud Security (AWS/Azure/GCP) Security assurance and accreditation activities Defence or wider Public ...

technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF, AWS/Azure Architect, CISSP, CISM (or working towards CIISEC/ ...

NIST, ISO 27001, CAF, or Cyber Essentials Experience working with government, defence, or critical national infrastructure clients Additional certifications such as CREST, OSCP, or NCSC Certified Professional If this sounds like the right next step, apply now or get in touch for a confidential conversation. Candidates must be eligible ...

Strong understanding of Web Applications, Microservices, APIs, authentication/authorization protocols , and data architecture . Knowledge of secure software development practices , GDPR, OWASP, and NCSC cloud security principles. Experience delivering AI-based solutions, real-time data integration, or IoT solutions is advantageous. Consultancy & Leadership Skills Excellent communication skills, able ...

Bash Produce and maintain technical documentation, operational runbooks, and security playbooks Support governance and compliance activities aligned to standards such as ISO27001, GDPR, and NCSC guidance Work collaboratively across infrastructure, cloud, networking, and cyber teams to improve service delivery and operational resilience Stay up to date with emerging cyber threats ...

secure coding and secure software development lifecycle practices • Experience working with CI/CD and DevSecOps practices • Knowledge of security frameworks and standards (e.g. NCSC, NIST, CIS, OWASP, ISO27001, PCI DSS, GDPR) • Strong understanding of common attack vectors (OWASP Top 10, XSS, SQL injection, etc.) • Good programming or scripting ability ...

Understanding of the engineering lifecycle and key gate review activities. Knowledge of current Crypto technologies,Key ManagementSystems & practicalCOMSECimplementations and MOD/NCSC standards. Knowledge or experience of ARP4754A/ARP4761 and its interrelationship with security. This is not an exhaustive list, and we are keen to hear from you even ...

doing so play a key role in nationally critical projects which make a real difference to people’s everyday lives. We are a National Cyber Security Centre Assured Cyber Security Consultancy. Locations: London, Guildford, Bristol, M4 corridor Roles and Responsibilities Working either individually or as part of a larger Actica ...

investments and play a key role in nationally critical projects that make a real difference to people’s everyday lives. We are a National Cyber Security Centre Assured Cyber Security Consultancy. Locations: London, Guildford, Bristol, M4 corridor Roles and Responsibilities Working either individually or as part of a larger Actica ...

Portsmouth area at least twice a week Desired: Relevant certifications including CISSP, CISM, CRISC, ISO 27001 Lead Implementer or Auditor, CCSP, CySA+, NCSC CCP, or GIAC If this sounds like you - get in touch or apply now for a confidential conversation. Oscar Associates (UK) Limited is acting as an Employment ...

including remediating findings with both software and configurations Supporting security configuration improvements across our Microsoft 365 environment Supporting the maintenance of Cyber Essentials Plus, NCSC CAF and other compliance frameworks Contributing to risk management processes, including maintaining risk registers Helping to develop, test and maintain Business Continuity and Disaster Recovery ...

levels Support security accreditation, assurance, and compliance activities Work closely with project teams to embed security throughout the delivery lifecycle Advise on NCSC guidance, HMG security policy, and industry best practices Represent the organisation in client meetings and security working groups 👤 What We're Looking For Strong background in Security ...

Assurance within Defence or UK Government environments. Strong understanding of risk management frameworks Familiarity with government and defence security standards such as: HMG/NCSC IA Policies and Guidelines JSP440 and other MoD IA standards Cyber Essentials NIST, NIS-D You will ideally hold CISM/CISSP or similar higher ...

securing web applications and cloud platforms (AWS or Azure) Hands-on experience with manual and automated security testing, including penetration testing Strong knowledge of NCSC, NIST, OWASP ASVS, GDPR, and PCI standards Solid understanding of common attack vectors including OWASP Top 10, XSS, SQL injection, and MITM Experience embedding Continuous ...

high-assurance environments. Desirable Competencies Experience designing event-driven and asynchronous messaging architectures. Knowledge of modern data platforms and analytics platforms. Understanding of NCSC Cloud Security Principles and their practical implementation. Experience applying emerging technologies to solve complex enterprise problems. Familiarity with cloud orchestration tools and infrastructure automation approaches. Experience ...

Nice to Have Understanding of the engineering lifecycle. Knowledge of current Cryptographic technologies, Key Management Systems & practical COMSEC implementations in line with MOD/NCSC standards. Knowledge of Cyber Security & Airworthiness (RCTA-DO-326A/B, 355A & 356A). Security Clearance You must be eligible for full security clearance. ...

core data centre infrastructure, including physical servers, storage, backup and disaster recovery solutions. Ensuring compliance with security frameworks including ISO27001, Cyber Essentials Plus and NCSC guidance. You will have - Strong hands-on experience with Microsoft Azure, including administration, security and identity services. Proven expertise in VMware and Hyper-V virtualisation ...

threat modelling (e.g. STRIDE, attack trees) and risk analysis Strong understanding of security frameworks and best practice such as ISO 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure/NCSC CAF, HMG Security Policy Framework. Knowledge ...

management lifecycles. Experience working within multi-supplier or SIAM environments. Ability to interpret and govern SOC and vulnerability management outputs. Knowledge of NIST CSF, NCSC guidance, or UK Government security frameworks. Experience within Defence or other highly regulated environments. Exposure to ISMS, audit, assurance, and ITIL practices. #J-18808-Ljbffr ...

audit, compliance, and assurance activities Experience working in transition or transformation programmes Desirable Knowledge of: NIST Cyber Security Framework (CSF) Secure by Design principles NCSC/UK Government security guidance Experience in defence or other high-security environments Key Deliverables Supplier onboarding packs aligned to security processes and governance Standardised ...

candidates must have an active SC level of security clearance to be considered. Technical Knowledge Security frameworks including ISO 27001, NIST CSF, CIS and NCSC guidance Regulatory landscape including GDPR and PCI DSS Familiarity with HMG and NCSC standards Modern technology environments: Cloud platforms such as Azure, AWS and Google ...

focus on conducting structured CAF assessments, facilitating stakeholder engagement, reviewing evidence, identifying risks and improvement opportunities, and producing high quality assurance outputs aligned to NCSC guidance and recognised best practice. This is a predominantly remote role within a collaborative delivery team operating across multiple assurance engagements. Role Overview … focus on conducting structured CAF assessments, facilitating stakeholder engagement, reviewing evidence, identifying risks and improvement opportunities, and producing high quality assurance outputs aligned to NCSC guidance and recognised best practice. This is a predominantly remote role within a collaborative delivery team operating across multiple assurance engagements. Key Responsibilities Deliver Cyber ...

Other highly regulated environments Ideal background: • Security Assurance/GRC/Operational Risk • Supplier assurance/third-party risk • ISO27001/NIST/NCSC CAF exposure • Practical assurance model design • Stakeholder engagement across technical and operational teams Contract: • Initial 10–12 weeks • Hybrid working • June start anticipated If relevant ...

initiatives Act as an escalation point for infrastructure-related incidents where required Implement and maintain patching, backup, governance, and disaster recovery processes aligned with NCSC frameworks and best practice Ensure infrastructure performance, resilience, scalability, and high availability across core systems Establish proactive monitoring and preventative maintenance practices Identify and implement ...

Cyber Essentials Plus certifications for clients, helping to identify and remediate security gaps and ensuring client environments meet CE requirements. We’re an NCSC Assured Service Provider, and we take security seriously.**Documentation and compliance** You’ll keep thorough, accurate records on all tickets and maintain up-to-date documentation ...