26 to 50 of 330 NCSC Jobs in the UK

be nice if you had: Excellent understanding of the engineering lifecycle and key gate review activities. Knowledge of current Cryptographic technologies,Key ManagementSystems & practicalCOMSECimplementations in line with MOD/NCSC standards. Knowledge or experience of Cyber Security & Airworthiness (RCTA-DO-326A/B, 355A & 356A). Security Clearance You must be eligible for full security clearance. For more information and … including Defence, Telecommunications, Energy and Finance to help secure national infrastructure and commerce in the UK and beyond. Our Practice is certified by the UK National Cyber Security Centre (NCSC) in the provision of advice and guidance to our customers. At Leonardo UK, we believe that a diverse and inclusive work environment unlocks our people's full potential and drives More ❯

be nice if you had: Excellent understanding of the engineering lifecycle and key gate review activities. Knowledge of current Cryptographic technologies,Key ManagementSystems & practicalCOMSECimplementations in line with MOD/NCSC standards. Knowledge or experience of Cyber Security & Airworthiness (RCTA-DO-326A/B, 355A & 356A). Security Clearance You must be eligible for full security clearance. For more information and … including Defence, Telecommunications, Energy and Finance to help secure national infrastructure and commerce in the UK and beyond. Our Practice is certified by the UK National Cyber Security Centre (NCSC) in the provision of advice and guidance to our customers. At Leonardo UK, we believe that a diverse and inclusive work environment unlocks our people's full potential and drives More ❯

configurations. It would be advantageous if you also had: Understanding of the engineering lifecycle and key gate reviews. Knowledge of Crypto technologies, Key Management Systems, COMSEC, and MOD/NCSC standards. Experience with ARP4754A/ARP4761 and their relation to security. Security Clearance: You must be eligible for full security clearance. For more info, visit: UK Security Vetting Levels Life More ❯

Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure Security Engineer Associate or AWS equivalent Cyber Essentials/NCSC certification (or similar) Why Join? Be part of a high-profile modernisation programme at a critical juncture Join a newly formed Cloud Centre of Excellence and shape its future Enjoy More ❯

Digital, Data and Technology (DDaT) function, working as part of the enterprise architecture team. You’ll be responsible for embedding Secure by Design principles, shaping architecture in line with NCSC best practice , and supporting delivery teams with proportionate, risk-based controls. Key Responsibilities: Lead the end-to-end design of secure systems and services across cloud and hybrid environments Review … and assure architectures against NCSC guidance, ISO 27001, and internal security frameworks Work closely with project, architecture, SecOps and assurance teams to embed secure-by-design principles Conduct threat modelling, risk assessments, and architectural reviews across platforms and programmes Translate complex security risks into clear, actionable strategies for technical and non-technical stakeholders Contribute to the development of reusable security … artefacts – including patterns, reference architectures, and risk traceability tools Support stakeholder engagement across internal departments, delivery partners, and external agencies (e.g. GDS, NCSC) Required Skills & Experience: Proven experience in a senior security architecture role, ideally within public sector or regulated environments Strong understanding of cloud and enterprise security across Azure, AWS, or GCP Deep knowledge of Secure by Design, Zero More ❯

activities and manage incidents. Establish and manage internal and external Security Working Groups. Support Serco Defence projects and design activities, ensuring compliance with MOD Secure by Design, HMG policy, NCSC guidance, NIST 800, and ISO 27001. Advise on technical requirements and compliance with formal contract security schedules (Security Aspects Letters) and recommend security technologies and controls. Provide advice and guidance More ❯

into SDLC and managing vulnerabilities. Knowledge of risk assessments, threat modeling, and security design reviews. Strong understanding of Agile, DevSecOps, and system engineering principles. Familiarity with security standards like NCSC, OWASP, NIST SSDF, ISO27001, and Azure security practices. Experience with Azure cloud infrastructure, PaaS, and DevOps tools. Ability to prepare and present security reports to senior management. Degree in Computer More ❯

produce CS&IA incident response plans and coordinating desktop incident response exercises. Broad knowledge and application of common CS&IA bodies, standards, frameworks, guidelines and legislation, including: HMG/NCSC Information Assurance Policies, Standards and Guidelines Cross-government security accreditation and secure by design processes JSP440 (plus other standard MoD IA methods) DCPP's Cyber Security Model List X, List More ❯

which are critical to UK defence and national security. To deliver this outcome, you must be passionate about cyber security and apply your deep understanding and experience of HMG, NCSC, and international cyber standards. The role will require excellent stakeholder management and communication skills to build the trust and support necessary for successful outcomes. You will be supported by team More ❯

fix vulnerabilities and champion secure coding Provide subject-matter expertise in cloud security (AWS, Azure, or GCP) and DevSecOps tooling Ensure security compliance across the development lifecycle, aligned with NCSC and industry standards Required Experience: Proven track record in pen testing, vulnerability assessments, and ethical hacking Hands-on with tools such as Burp Suite, ZAP, Nmap, Metasploit Deep understanding of More ❯

matter. In more detail, we look for candidates with: A good degree in a STEM subject, with further study at Masters and/or PhD level a bonus; An NCSC certified Information/Cyber/Systems Security master’s degree, alongside a good Cyber/STEM based degree; An understanding of the use of technology in business and public sector … contexts; Familiarity gained through studies with the HMG Security Policy Framework (SPF) and the NCSC Information Assurance Portfolio, IA Standards, Good Practice Guides, Architecture Patterns, etc. Although these are not essential, you will also benefit from having one or more of: The ability to present and justify conclusions to project teams and stakeholders; A willingness to take on new and More ❯

matter. In more detail, we look for candidates with: A good degree in a STEM subject, with further study at Masters and/or PhD level a bonus; An NCSC certified Information/Cyber/Systems Security master’s degree, alongside a good Cyber/STEM based degree; An understanding of the use of technology in business and public sector … contexts; Familiarity gained through studies with the HMG Security Policy Framework (SPF) and the NCSC Information Assurance Portfolio, IA Standards, Good Practice Guides, Architecture Patterns, etc. Although these are not essential, you will also benefit from having one or more of: The ability to present and justify conclusions to project teams and stakeholders; A willingness to take on new and More ❯

matter. In more detail, we look for candidates with: A good degree in a STEM subject, with further study at Masters and/or PhD level a bonus; An NCSC certified Information/Cyber/Systems Security master’s degree, alongside a good Cyber/STEM based degree; An understanding of the use of technology in business and public sector … contexts; Familiarity gained through studies with the HMG Security Policy Framework (SPF) and the NCSC Information Assurance Portfolio, IA Standards, Good Practice Guides, Architecture Patterns, etc. Although these are not essential, you will also benefit from having one or more of: The ability to present and justify conclusions to project teams and stakeholders; A willingness to take on new and More ❯

performance appropriately by providing constructive feedback and take action where performance falls below the expected standard. Participate/work with external groups and stakeholders for the organisation such as NCSC, EMGWARP, auditors and accreditors as required. Person Specification Technical knowledge and experience Expert knowledge and understanding of security and system architectures; the relevant technologies, tools and platforms, best modern practice More ❯

Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure Security Engineer Associate or AWS equivalent Cyber Essentials/NCSC certification (or similar) Why Join? Be part of a high-profile modernisation programme at a critical juncture Join a newly formed Cloud Centre of Excellence and shape its future Enjoy More ❯

Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure Security Engineer Associate or AWS equivalent Cyber Essentials/NCSC certification (or similar) Why Join? Be part of a high-profile modernisation programme at a critical juncture Join a newly formed Cloud Centre of Excellence and shape its future Enjoy More ❯

System Hardening, Cryptographic Controls (PKI, Data at Rest/In Transit), Protective Monitoring, and Security Auditing. Strong understanding of the ISO 27000 series, NIST Cyber Security & Risk Management Frameworks, NCSC CAF, and other industry standards. Familiarity with NCSC guidance and legacy Information Assurance (IA) standards. Experience with MOD security frameworks including JSP 604, JSP 440, JSP 902, and DEFCON 659A. More ❯

System Hardening, Cryptographic Controls (PKI, Data at Rest/In Transit), Protective Monitoring, and Security Auditing. Strong understanding of the ISO 27000 series, NIST Cyber Security & Risk Management Frameworks, NCSC CAF, and other industry standards. Familiarity with NCSC guidance and legacy Information Assurance (IA) standards. Experience with MOD security frameworks including JSP 604, JSP 440, JSP 902, and DEFCON 659A. More ❯

produce CS&IA incident response plans and coordinate desktop incident response exercises. Broad knowledge and application of common CS&IA bodies, standards, frameworks, guidelines and legislation, including: HMG/NCSC Information Assurance Policies, Standards and Guidelines Cross-government security accreditation and secure by design processes JSP440 (plus other standard MoD IA methods) DCPP’s Cyber Security Model List X, List More ❯

security solutions, working closely with clients to design, deploy, and optimize Swyft’s Velocity platform for advanced threat detection and response. Ensure adherence to UK/EU cybersecurity regulations ( NCSC guidelines, GDPR, NIS Directive ) and implement security controls in alignment with industry standards ( ISO 27001, CIS, NIST ). Engage with Swyft executives, CISOs, and IT security teams to drive cybersecurity More ❯

security requirements into secure, compliant, and cost-effective Azure solutions. Collaborate with cybersecurity teams to ensure solutions meet UK government security classifications, accreditation processes, and relevant compliance frameworks (eg NCSC, MOD JSP, ISO 27001). Support deployment automation and Infrastructure-as-Code (IaC) approaches leveraging Azure Resource Manager (ARM), Bicep, or Terraform. Conduct Azure cost optimisation, performance tuning, and cloud More ❯

Knowledge of cloud vendor partner programs, such as AWS APN and Azure Partners Experience with well-architected frameworks Knowledge of UK public sector technology guidance and frameworks, such as NCSC's Cyber Assessment Framework (CAF) and the Technology Code of Practice (TCoP) Familiarity with Python, Bash and JavaScript Agile practices such as Scrum, XP, and/or Kanban Experience using More ❯

diagrams. Define and implement cloud best practices around security, automation, and cost optimisation. Provide AWS architectural guidance in migration, modernization, and greenfield projects. Ensure compliance with governance frameworks, including NCSC guidelines and internal controls. Essential Skills and Experience: Current and valid SC Clearance (must be active). Proven experience as an AWS Solutions Architect in secure and regulated environments. Strong … modernization and cloud migration strategies. Excellent stakeholder engagement, documentation, and communication skills. AWS Certified Solutions Architect – Professional/Associate . Familiarity with government standards and frameworks (e.g., G-Cloud, NCSC principles). Experience working with CI/CD pipelines , DevSecOps , and Agile delivery methodologies . Experience with hybrid cloud environments or multi-cloud strategies. Competitive salary and performance-based bonus More ❯

/CD) Familiar with scripting languages like PowerShell, YAML, JSON Expertise in application security tools and DevSecOps processes Understanding of key frameworks and standards (e.g. OWASP, NIST SSDF, ISO27001, NCSC) Experience with threat modelling, risk assessments, and secure design reviews Comfortable owning security strategy and tooling across complex, modern product landscapes Strong communicator - able to engage confidently with both engineers More ❯

/CD) Familiar with scripting languages like PowerShell, YAML, JSON Expertise in application security tools and DevSecOps processes Understanding of key frameworks and standards (e.g. OWASP, NIST SSDF, ISO27001, NCSC) Experience with threat modelling, risk assessments, and secure design reviews Comfortable owning security strategy and tooling across complex, modern product landscapes Strong communicator - able to engage confidently with both engineers More ❯