26 to 43 of 43 NCSC Jobs in England

Secure by Design (SbD) principles and ensuring systems are resilient against cyber threats and misuse. What you’ll be doing: Leading security risk assessments (NCSC, NIST) Delivering product security documentation & assurance Embedding security best practice across engineering teams Supporting bids, reviews, and project delivery What we’re looking for: Experience ...

Security by Design (SbD) principles ✔ Strong background in Information Assurance — RMADS, SbD documentation, CESG Good Practice Guides ✔ Experience in security risk assessment methodologies (e.g. NCSC) ✔ Able to work autonomously and adapt quickly to changing project demands ✔ Excellent communication, literacy, and MS Office skills ✔ SC cleared or eligible to obtain ...

feedback to architects and engineers Define, explain, and advocate baseline security control sets across programmes and projects Ensure designs align with recognised frameworks including NCSC CAF, NCSC CSF, NIST CSF, and NIST SP 800-53 Provide security design assurance across: Network modernisation Identity modernisation Cloud adoption and migration (AWS preferred … High level design) or LLD (low level design)and provide security feedback Understand, explain and able to advocate baseline control sets Understanding of NCSC CSF and 800-53, NCSC CAF Experience of one or more of security elements of Network modernisation, Identity modernisation, cloud adaption (AWS) and migration, or CICD ...

specific evening events, to provide technical support. E.g. parents evenings Advise staff and students on how to be “Cyber Safe” in accordance with NCSC or DFE guidelines To maintain staff and pupil confidentiality Training An apprenticeship includes regular training with a college or other training organisation. At least ...

clearance (and willingness/ability to achieve DV) • UK travel and clean driving licence required Desirable: • INCOSE ASEP/CSEP certification • Knowledge of NCSC processes and security artefacts • SME-level experience with systems engineering tools and practices If you are an experienced Principal Systems Engineer looking for your next challenge ...

technical authority for SharePoint across multiple defence projects. Work closely with security, architecture and project teams to ensure solutions meet MOD and NCSC standards. Develop and maintain document management solutions, workflows, automation and governance frameworks. Support migrations, upgrades and integration activities across complex, secure environments. Provide expert guidance to stakeholders ...

policies, and disaster recovery processes. Oversee cybersecurity strategy, controls, testing (including penetration testing), and ongoing monitoring. Ensure compliance with FCA/PRA cyber requirements, NCSC guidance, and GDPR. Own the incident response plan for cyber events and support regulatory notifications if required. Oversee payment processing (Faster Payments, CHAPS, BACS, card ...

technical authority for SharePoint across multiple defence projects. Work closely with security, architecture and project teams to ensure solutions meet MOD and NCSC standards. Develop and maintain document management solutions, workflows, automation and governance frameworks. Support migrations, upgrades and integration activities across complex, secure environments. Provide expert guidance to stakeholders ...

high-profile clients. The successful candidate will have extensive experience in cyber security and a strong grasp of compliance frameworks, including ISO27001 and NCSC CAF. Responsibilities include managing risk assessments and engaging with stakeholders to ensure high-quality service delivery. The role offers a hybrid work policy with travel requirements ...

point of escalation for security incidents and access queries. Experience with GRC tools (SAP GRC Access Control preferred) and a working knowledge of NCSC guidance for enterprise security will be advantageous. Due to the sensitive nature of this UK Government programme, SC clearance is required; active SC clearance is highly ...

frameworks, and environments - ideal if you're looking to broaden your experience. Key Responsibilities: Conduct security audits and assessments against recognised frameworks (ISO27001, NIST, NCSC) Support risk management activities and improve security posture across client environments Assist with information governance processes and reporting Deliver client projects within agreed scope … cyber security/IT security role Experience in security assurance, audits, or compliance-focused work Good understanding of frameworks such as ISO27001, NIST, NCSC Knowledge of risk management and information governance Familiarity with regulations like GDPR/Data Protection Act Strong communication skills - comfortable working with clients and stakeholders Ability ...

Cyber Security Model, Secure By Design, Industry Security Notices Strong familiarity with UK Government security standards such as 007/SPF, NCSC Cloud Security Principles, NCSC Principles for Using Software as a Service (SaaS) securely, Cyber Essentials, and the CHECK penetration testing scheme Broad familiarity with UK Government physical ...

join a growing team delivering high-impact assurance services across UK Government and Defence programmes. This role is suited to auditors already operating within NCSC-aligned frameworks , with the ability to lead and deliver audits across nationally significant cyber assurance schemes. Essential Requirements (Must Have) ISO27001 Lead Auditor qualification … equivalent) Chartered Auditor and Assessor accreditation Active presence on the NCSC Assured Service Provider/Auditor register Proven experience delivering NCSC-aligned audits The Role You will lead the delivery of cyber security audits across frameworks such as CAF, DCC, and GovAssure , supporting government-led cyber resilience initiatives. Key responsibilities ...

ideal candidate will be Degree qualified in Information/Cyber Security, IT, Engineering, Mathematics, or Science and or Chartered Cyber Security Professional, ex-NCSC Certified Cyber Professional or ex-CLAS.. Knowledge: Essential: Experience of MOD policy in JSP440 and knowledge of NCSC guidance. Experience of working on MoD Secure ...

pivotal role in advising and assuring organisationsoperatingacross the Critical National Infrastructure (CNI) sector, with a strong focus on Cyber Assessment Framework (CAF) alignment, NCSC guidance, and regulatory compliance. This includes providing senior-level assurance, engaging with stakeholders, and supporting organisations in managing cyber risk within highly regulated environments. Delivery … consultants work asrequired Input into the development of Bridewell security methodologies. You will need to have experience in: Implementing security standards such as ISO27001, NCSC CAF,NIST ConductingCyberSecurity risk assessments and managing risk management activities Good general knowledge of IT systems covering traditional infrastructure, cloudplatformsand SaaS Working within an operational ...

including ISO/IEC 27001, SOC 2 Type II, SOC 3, Cyber Essentials Plus, and CREST Oversee additional frameworks such as PCI DSS and NCSC standards (CIR/CHECK) Ensure certifications are maintained, renewed, and continuously improved Security Assurance Embed security and certification requirements into operational processes Maintain audit readiness … Develop assurance packs demonstrating strong security practices Regulatory & Industry Alignment Stay up to date with frameworks such as NIST CSF, GDPR, NIS2, and UK NCSC guidance Advise stakeholders on regulatory changes and their impact Ensure alignment with evolving cybersecurity standards Continuous Improvement Improve assurance processes and audit efficiency Provide reporting ...

security deliverables meet stringent customer and regulatory requirements. Key Responsibilities for the Product Security Engineer based in Surrey: Conduct security risk assessments (e.G. NCSC methodologies) Develop and deliver security artefacts in line with customer requirements Implement Secure by Design (SbD) principles across projects Support bids with security planning and estimates … Design principles and security-focused documentation. Experience in Information Assurance frameworks (e.G. CESG Good Practice Guides). Proven capability in security risk assessment (e.G. NCSC methodologies). Excellent communication and documentation skills. Collaborative team player with the ability to work autonomously. Adaptable and agile in response to changing project requirements. ...

status across all IT controls Conduct regular access and identity reviews; enforce multi-tenant data isolation and least-privilege principles Support audit readiness against NCSC Cyber Assessment Framework (CAF), CSA CAIQ, NIST, and our roadmap towards SOC 2 Establish and track quantifiable technical baselines - encryption coverage, log retention, API compliance … team Person Specification Broad exposure to IT operations, DevOps principles, or a related technical discipline. Familiarity with one or more governance frameworks (ISO 27001, NCSC CAF, NIST, SOC 2 or similar) - you do not need to be an expert in all of them Process-driven mindset - able to translate policy ...