26 to 50 of 122 NCSC Jobs in the UK

assessments, maturity modelling, and security architecture projects. Ideal Candidate Profile Strong consulting experience in cyber strategy, transformation, or risk management. Understanding of cyber frameworks such as NIST CSF, ISO27001, NCSC CAF, GDPR, or NIS2. Holds or is working toward certifications such as CISSP, CISM, CISA, or equivalent. Comfortable managing project teams and delivering to time and budget. Excellent communication skills More ❯

and client environments What You'll Bring Strong experience in cyber strategy, risk management, governance, architecture, and regulatory compliance Familiarity with frameworks and standards such as NIST CSF, ISO27001, NCSC CAF, GDPR, and NIS2 Industry-recognised certifications (e.g. CISSP, CISM, CISA, M.Inst.ISP, or equivalent) Practical experience in GRC, threat and vulnerability management, or operational resilience Proven delivery across complex programmes More ❯

Governance, Risk, and Compliance Ideally, You'll Also Have: Security-related qualifications such as CISSP, CISM, CISMP, ISO27001 lead implementer or auditor, MBCI, or IAPP. Experience operating within an NCSC Assured Cyber Consultancy. Understanding of the cybersecurity regulatory landscape and assessment frameworks (e.g., NIS2, NIST CSF). Key delivery experience in cybersecurity strategy, transformation, and compliance. Sector experience in Government More ❯

training aligned to OT security: e.g.: IEC 62443, GIAC GRID/GICSP, SCADA/ICS security, or vendor-specific OT platforms. Knowledge of cyber security regulatory landscape: e.g. CAF, NCSC, NIS. Knowledge of OT network protocols: e.g. modbus, DNP3, LoRaWAN. Tools: Experience with standard penetration testing tools, such as port and vulnerability scanners, BurpSuite, Kali Linux, etc as well as More ❯

operational, and technical domains. You should have: Cyber Expertise: 4+ years experience in cyber strategy, risk, maturity assessments, and operating models. Knowledge of frameworks such as NIST CSF, ISO27001, NCSC CAF, CRI 2.0. Exposure to regulatory environments including NIS2 and GDPR. Relevant certifications (e.g., CISSP, CISM, CISA, MSc in Cyber Security). Consulting Skills: Strong client-facing communication and stakeholder More ❯

operational, and technical domains. You should have: Cyber Expertise: 4+ years experience in cyber strategy, risk, maturity assessments, and operating models. Knowledge of frameworks such as NIST CSF, ISO27001, NCSC CAF, CRI 2.0. Exposure to regulatory environments including NIS2 and GDPR. Relevant certifications (e.g., CISSP, CISM, CISA, MSc in Cyber Security). Consulting Skills: Strong client-facing communication and stakeholder More ❯

optimal solutions. If your career has given you the opportunity to author and publish technical reports, advise clients, work with formal security frameworks including ISA/IEC 62443 and NCSC's CAF framework and define and design OT solutions from a security perspective then you would be a real asset to our team. Adding to the Cyber Security capability's More ❯

standards and establishing frameworks. Expertise in identifying security issues in existing system designs, including recommending mitigations that balance cost, risk and usability. Knowledge of security standards and regulations (e.g. NCSC, ISO, SOC, NIST, PCI, GDPR). Experience in application architecture, software development and/or infrastructure architecture. Experience in testing the security of software and infrastructure using appropriate security tools. More ❯

Governance, Risk, and Compliance Ideally, You'll Also Have: Security-related qualifications such as CISSP, CISM, CISMP, ISO27001 lead implementer or auditor, MBCI, or IAPP. Experience operating within an NCSC Assured Cyber Consultancy. Understanding of the cybersecurity regulatory landscape and assessment frameworks (e.g., NIS2, NIST CSF). Key delivery experience in cybersecurity strategy, transformation, and compliance. Sector experience in Government More ❯

Governance, Risk, and Compliance Ideally, You'll Also Have: Security-related qualifications such as CISSP, CISM, CISMP, ISO27001 lead implementer or auditor, MBCI, or IAPP. Experience operating within an NCSC Assured Cyber Consultancy. Understanding of the cybersecurity regulatory landscape and assessment frameworks (e.g., NIS2, NIST CSF). Key delivery experience in cybersecurity strategy, transformation, and compliance. Sector experience in Government More ❯

technical role Recent MOD experience Security related legislation (e.g. GDPR, PCI DSS, ICO requirements) Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8 HMG and NCSC security policies, standards and guidance Cloud security including Amazon Web Service offerings such as KMS, IAM and ECS Event-driven microservice architectures using native cloud technology Benefits: 25 days holiday More ❯

business risk models and associated material, in support of operational cyber security and business planning activity across a range of different domains or sectors against recognised standards (e.g. ISO27001, NCSC CAF, NIS Directive, UK GovAssure) Identify mitigations for cyber risk in a given business or operational scenario and threat environment Lead and deliver cyber security audits, risk reviews and control More ❯

management processes Support vulnerability management, penetration testing, and incident response Requirements for this role: 3+ years' experience in a senior cyber security role Strong knowledge of security frameworks (NIST, NCSC, CIS, MITRE ATT&CK) Hands-on experience with security tools: SIEM, IDS/IPS, firewalls, endpoint protection Expertise in Azure security and securing cloud platforms A solid understanding of vulnerabilities More ❯

experience in information security, ideally in a CISO or equivalent role within software or health tech. Healthcare Standards : Strong knowledge of UK healthcare security frameworks like DSPT, DTAC, and NCSC CAF. ISO 27001 : Proven track record in implementing and maintaining ISO 27001:2022-certified ISMS. Secure by Design : Deep understanding of secure SDLC and embedding security into product and system More ❯

experience in information security, ideally in a CISO or equivalent role within software or health tech. Healthcare Standards : Strong knowledge of UK healthcare security frameworks like DSPT, DTAC, and NCSC CAF. ISO 27001 : Proven track record in implementing and maintaining ISO 27001:2022-certified ISMS. Secure by Design : Deep understanding of secure SDLC and embedding security into product and system More ❯

experience in information security, ideally in a CISO or equivalent role within software or health tech. Healthcare Standards : Strong knowledge of UK healthcare security frameworks like DSPT, DTAC, and NCSC CAF. ISO 27001 : Proven track record in implementing and maintaining ISO 27001:2022-certified ISMS. Secure by Design : Deep understanding of secure SDLC and embedding security into product and system More ❯

solutions. Experience in identifying security issues in existing system designs or products, including recommending sensible mitigations that balance cost, risk and usability. Knowledge of security standards and regulations (e.g. NCSC, ISO, SoC, NIST, PCI, GDPR). Experience in application architecture, software development and/or infrastructure architecture. Experience testing the security of software and infrastructure using appropriate security tools. Experience More ❯

Key Responsibilities Support cyber transformation projects, governance assessments, and maturity roadmaps Assist with cyber strategy documentation and recommendations for leadership teams Work across frameworks such as ISO27001, NIST CSF, NCSC CAF, GDPR, and NIS2 Contribute to reports, client workshops, presentations, and stakeholder engagement Develop knowledge of security concepts, risk appetite alignment, and digital resilience What We're Looking For Degree More ❯

with this award winning MSSP who deliver a wide range of Cyber security services to private and public sectors. A Crest accredited security business on multiple Crown Supplier + NCSC frameworks, they now require 2 additional BDM's to drive their security services growth. The Role? As a new Business Development Manager you will sell into new logo customers across More ❯

solving skills Ability to manage competing priorities and deliver under pressure A full UK driving license and access to a business-insured vehicle Desirable Skills Familiarity with Cyber Essentials, NCSC, NIST and ISO 27001 standards Experience with cloud platforms (e.g., Azure, AWS) Knowledge of cybersecurity frameworks and tools Strong communication and stakeholder engagement skills About us At CHCP, we're More ❯

leading in complex, multi-disciplinary environments, delivering products within specific time-scales and engaging multiple stakeholders Skills in Containerization: Kubernetes, ECS/Fargate, Nomad; Security: Hashicorp Vault, PKI, TLS, NCSC Principles; Networking: VPC Peering, DNS, Service Mesh; Identity & Device Management: Keycloak, Entra ID, JAMF, Okta Extensive experience designing, building, and maintaining Linux workloads across multiple environments on AWS Extensive experience More ❯

explaining findings, and recommending remedial actions to stakeholders. Investigating security incidents. Promoting security awareness within project teams and the organization. Candidate requirements: HMG Security Policy Framework (SPF) familiarity and NCSC Information Assurance Portfolio knowledge gained through studies. Masters degree in Information, Cyber, or Systems Security, along with a strong Cyber/STEM background. Eligibility and willingness to obtain UK Security More ❯

solutions. Experience in identifying security issues in existing system designs or products, including recommending sensible mitigations that balance cost, risk and usability. Knowledge of security standards and regulations (e.g. NCSC, ISO, SoC, NIST, PCI, GDPR). Experience in application architecture, software development and/or infrastructure architecture. Experience testing the security of software and infrastructure using appropriate security tools. Experience More ❯

migrating from on-prem to cloud solutions. Strong analytical skills for complex technical issues. Proven ability in designing cyber security systems and governance. Familiar with tools and frameworks (e.g. NCSC, NIST, MITRE, GDPR, PCI DSS). Deep understanding of security controls (e.g. firewalls, SIEM, SOC, DLP). Proficient in leading and coordinating incident response. Effective at managing multiple priorities under More ❯

migrating from on-prem to cloud solutions. Strong analytical skills for complex technical issues. Proven ability in designing cyber security systems and governance. Familiar with tools and frameworks (e.g. NCSC, NIST, MITRE, GDPR, PCI DSS). Deep understanding of security controls (e.g. firewalls, SIEM, SOC, DLP). Proficient in leading and coordinating incident response. Effective at managing multiple priorities under More ❯