App Service). Security Frameworks & Secure by Design Strong understanding of Secure by Design principles and ability to bake security in from concept through production. Practical experience implementing the NCSC or NIST Cybersecurity Framework (CSF) and/or NIST SP 800-53 controls. Demonstrable understanding of ISO/IEC 27001 requirements and hands-on experience mapping technical controls to ISO More ❯
Bristol, Avon, England, United Kingdom Hybrid / WFH Options
Sanderson
Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSCsecurity policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain - Attack tree analysis. Working understanding More ❯
current clearance cannot be considered Defence experience needed - at least 2 years recent defence experience working with MOD or Civil Service Strong knowledge of UK government security standards (e.g. NCSC guidance, ISO27001, JSP 440) Proven experience designing and implementing secure systems in enterprise or government settings Familiarity with cloud platforms (AWS/Azure), identity management, secure networking, encryption, and SIEM More ❯
City of London, London, United Kingdom Hybrid / WFH Options
Anson McCade
real-world security challenges Key Skills & Experience CyberSecurity: Experience in cyber strategy, risk management, security architecture, transformation programmes, and regulatory compliance Knowledge of relevant standards: NIST CSF, ISO27001, NCSC CAF, GDPR, NIS2, etc. Certifications such as CISSP, CISM, CISA, M.Inst.ISP, or MSc in CyberSecurity Hands-on experience in areas like GRC, cyber threat management, vulnerability management Strong communication More ❯
real-world security challenges Key Skills & Experience CyberSecurity: Experience in cyber strategy, risk management, security architecture, transformation programmes, and regulatory compliance Knowledge of relevant standards: NIST CSF, ISO27001, NCSC CAF, GDPR, NIS2, etc. Certifications such as CISSP, CISM, CISA, M.Inst.ISP, or MSc in CyberSecurity Hands-on experience in areas like GRC, cyber threat management, vulnerability management Strong communication More ❯
london, south east england, united kingdom Hybrid / WFH Options
Anson McCade
real-world security challenges Key Skills & Experience CyberSecurity: Experience in cyber strategy, risk management, security architecture, transformation programmes, and regulatory compliance Knowledge of relevant standards: NIST CSF, ISO27001, NCSC CAF, GDPR, NIS2, etc. Certifications such as CISSP, CISM, CISA, M.Inst.ISP, or MSc in CyberSecurity Hands-on experience in areas like GRC, cyber threat management, vulnerability management Strong communication More ❯
slough, south east england, united kingdom Hybrid / WFH Options
Anson McCade
real-world security challenges Key Skills & Experience CyberSecurity: Experience in cyber strategy, risk management, security architecture, transformation programmes, and regulatory compliance Knowledge of relevant standards: NIST CSF, ISO27001, NCSC CAF, GDPR, NIS2, etc. Certifications such as CISSP, CISM, CISA, M.Inst.ISP, or MSc in CyberSecurity Hands-on experience in areas like GRC, cyber threat management, vulnerability management Strong communication More ❯
the ability to explain complex issues to a variety of stakeholders; technical and non-technical.Excellent quality focus, ensuring appropriate documentation and knowledge sharing.Proven experience of architecture design analysisExperience of NCSC's Cyber Assurance Framework (CAF), NIST CyberSecurity Framework (CSF), NIST SP 800-53, ISO 27001 and HMG regulations and other departmental IT in defence and securityAbility to work in More ❯
Sunbury-On-Thames, London, United Kingdom Hybrid / WFH Options
BP Energy
CISA. Formal engagement and active participation in industry cybersecurity groups (such as the Oil & Gas CyberSecurity Network) and/or deep relationships with government organisations, such as NCSC or CISA is desired, as well. At bp, we provide an excellent working environment and employee benefits such as an open and inclusive culture, a great work-life balance, tremendous More ❯
sunbury, south east england, united kingdom Hybrid / WFH Options
BP Energy
CISA. Formal engagement and active participation in industry cybersecurity groups (such as the Oil & Gas CyberSecurity Network) and/or deep relationships with government organisations, such as NCSC or CISA is desired, as well. At bp, we provide an excellent working environment and employee benefits such as an open and inclusive culture, a great work-life balance, tremendous More ❯
guildford, south east england, united kingdom Hybrid / WFH Options
BP Energy
CISA. Formal engagement and active participation in industry cybersecurity groups (such as the Oil & Gas CyberSecurity Network) and/or deep relationships with government organisations, such as NCSC or CISA is desired, as well. At bp, we provide an excellent working environment and employee benefits such as an open and inclusive culture, a great work-life balance, tremendous More ❯
people who can make a real impact. Core technical skills include: Incident response and threat hunting Identity and access management Zero Trust architecture Familiarity with UK regulatory standards and NCSC guidance Certifications often requested: CISSP, CISM, CISA CompTIA Security+ ISO 27001 Cloud security credentials (e.g. AWS or Azure certification) Soft skills are playing a bigger role too: Strong communication, especially More ❯
expertise in areas such as cyber strategy, risk management, cyber maturity assessments, security architecture, transformation programmes, and regulatory compliance. Familiarity with leading frameworks and standards including NIST CSF, ISO27001, NCSC CAF, GDPR, NIS2, and CRI2.0. Hands-on experience delivering security solutions and assessments in varied environments. Relevant certifications such as CISSP, CISM, CISA, M.Inst.ISP, or a postgraduate qualification (e.g. MSc More ❯
and analytical solutions Working knowledge of cloud orchestration and containerisation technologies, such as Docker and Kubernetes Working knowledge of DevOps, CI/CD and Infrastructure-as-Code Understanding of NCSC Cloud Security Principles and its practical implementations Aker Systems Attributes At Aker we work as a team, we are collaborative, hardworking, open, and delivery obsessed. There is no blame culture More ❯
to measure the effectiveness of cyber governance. Lead continuous improvement initiatives and mentor key personnel within governance functions. Ensure all policies, procedures, and controls are compliant with regulatory standards (NCSC, ISO 27001, NIST, CIS Controls). Identify, assess, and manage risks to project or organisational goals. Build alignment with executive stakeholders, board members, and external partners to ensure accountability and More ❯
Salford, Greater Manchester, North West, United Kingdom Hybrid / WFH Options
Inspire People
e.g. AWS, Azure etc) network security, and secure software development. Incident management and alerts triage experience Experience in Microsoft Sentinel Strong understanding of security principles, technologies, and frameworks (e.g., NCSC guidance, ISO 27001, NIST). It is desirable that you have: Experience working with Django framework Good working knowledge of Query Languages (SQL, KQL (Kusto), etc.) How to apply As More ❯
Governance, Risk, and Compliance Ideally, You'll Also Have: Security-related qualifications such as CISSP, CISM, CISMP, ISO27001 lead implementer or auditor, MBCI, or IAPP. Experience operating within an NCSC Assured Cyber Consultancy. Understanding of the cybersecurity regulatory landscape and assessment frameworks (e.g., NIS2, NIST CSF). Key delivery experience in cybersecurity strategy, transformation, and compliance. Sector experience in Government More ❯
Manchester, Lancashire, United Kingdom Hybrid / WFH Options
QinetiQ Limited
GitOps-style setup. Ability to troubleshoot cloud-native applications, networking, and infrastructure issues. Exposure to hybrid cloud setups (e.g., on-prem integration or restricted networks) Awareness of enterprise controls (NCSC/Cyber Essentials, NIST, or similar frameworks) Understanding of cloud cost optimisation and FinOps practices Familiarity with supporting data/AI pipelines or platform integrations (e.g., Azure Data Factory, Databricks More ❯
City of London, London, United Kingdom Hybrid / WFH Options
Anson McCade
assessments, maturity modelling, and security architecture projects. Ideal Candidate Profile Strong consulting experience in cyber strategy, transformation, or risk management. Understanding of cyber frameworks such as NIST CSF, ISO27001, NCSC CAF, GDPR, or NIS2. Holds or is working toward certifications such as CISSP, CISM, CISA, or equivalent. Comfortable managing project teams and delivering to time and budget. Excellent communication skills More ❯
assessments, maturity modelling, and security architecture projects. Ideal Candidate Profile Strong consulting experience in cyber strategy, transformation, or risk management. Understanding of cyber frameworks such as NIST CSF, ISO27001, NCSC CAF, GDPR, or NIS2. Holds or is working toward certifications such as CISSP, CISM, CISA, or equivalent. Comfortable managing project teams and delivering to time and budget. Excellent communication skills More ❯
london, south east england, united kingdom Hybrid / WFH Options
Anson McCade
assessments, maturity modelling, and security architecture projects. Ideal Candidate Profile Strong consulting experience in cyber strategy, transformation, or risk management. Understanding of cyber frameworks such as NIST CSF, ISO27001, NCSC CAF, GDPR, or NIS2. Holds or is working toward certifications such as CISSP, CISM, CISA, or equivalent. Comfortable managing project teams and delivering to time and budget. Excellent communication skills More ❯
