3 of 3 Remote/Hybrid NCSC Jobs in the South West

frameworks, and environments - ideal if you're looking to broaden your experience. Key Responsibilities: Conduct security audits and assessments against recognised frameworks (ISO27001, NIST, NCSC) Support risk management activities and improve security posture across client environments Assist with information governance processes and reporting Deliver client projects within agreed scope … cyber security/IT security role Experience in security assurance, audits, or compliance-focused work Good understanding of frameworks such as ISO27001, NIST, NCSC Knowledge of risk management and information governance Familiarity with regulations like GDPR/Data Protection Act Strong communication skills - comfortable working with clients and stakeholders Ability ...

join a growing team delivering high-impact assurance services across UK Government and Defence programmes. This role is suited to auditors already operating within NCSC-aligned frameworks , with the ability to lead and deliver audits across nationally significant cyber assurance schemes. Essential Requirements (Must Have) ISO27001 Lead Auditor qualification … equivalent) Chartered Auditor and Assessor accreditation Active presence on the NCSC Assured Service Provider/Auditor register Proven experience delivering NCSC-aligned audits The Role You will lead the delivery of cyber security audits across frameworks such as CAF, DCC, and GovAssure , supporting government-led cyber resilience initiatives. Key responsibilities ...

status across all IT controls Conduct regular access and identity reviews; enforce multi-tenant data isolation and least-privilege principles Support audit readiness against NCSC Cyber Assessment Framework (CAF), CSA CAIQ, NIST, and our roadmap towards SOC 2 Establish and track quantifiable technical baselines - encryption coverage, log retention, API compliance … team Person Specification Broad exposure to IT operations, DevOps principles, or a related technical discipline. Familiarity with one or more governance frameworks (ISO 27001, NCSC CAF, NIST, SOC 2 or similar) - you do not need to be an expert in all of them Process-driven mindset - able to translate policy ...