26 to 50 of 110 NCSC Jobs in the UK

Assurance within Defence or UK Government environments. Strong understanding of risk management frameworks Familiarity with government and defence security standards such as: HMG/NCSC IA Policies and Guidelines JSP440 and other MoD IA standards Cyber Essentials NIST, NIS-D You will ideally hold CISM/CISSP or similar higher ...

management of key security assurance metrics to enable evidenced-based decision making. Support assurance activities in line with applicable frameworks and legislation such as NCSC CAF, NIS Regulations, GovAssure, HMG Secure by Design, NIST Special Publication 800-53, ISO 27001/2 and the Data Security and Protection Toolkit. Collate ...

architecture, cyber transformation and regulatory compliance for cyber. Experience of various recognised cyber security relevant standards and regulations, such as NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR and NIS2. Experience working in a variety of environments or organisational contexts to develop cyber strategy and manage cyber risk. Desire to work ...

architecture, cyber transformation and regulatory compliance for cyber. Experience of various recognised cyber security relevant standards and regulations, such as NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR and NIS2. Experience working in a variety of environments or organisational contexts to develop cyber strategy and manage cyber risk. Desire to work ...

such as CISSP, CISM, CASP/SecurityX or ChCSP Desirable Knowledge of engineering lifecycle gate reviews Experience with Crypto technologies, COMSEC and MOD/NCSC standards Knowledge of ARP4754A/ARP4761 The successful candidate will either already have active SC clearance or will be able to secure this quickly ...

securing web applications and cloud platforms (AWS or Azure) Hands-on experience with manual and automated security testing, including penetration testing Strong knowledge of NCSC, NIST, OWASP ASVS, GDPR, and PCI standards Solid understanding of common attack vectors including OWASP Top 10, XSS, SQL injection, and MITM Experience embedding Continuous ...

high-assurance environments. Desirable Competencies Experience designing event-driven and asynchronous messaging architectures. Knowledge of modern data platforms and analytics platforms. Understanding of NCSC Cloud Security Principles and their practical implementation. Experience applying emerging technologies to solve complex enterprise problems. Familiarity with cloud orchestration tools and infrastructure automation approaches. Experience ...

cyber security vision and strategy, ensuring alignment with partner priorities, organisational objectives, and Scottish Government Cyber Resilience Frameworks, including the National Cyber Security Centre (NCSC) Cyber Assessment Framework and sector Codes of Practice. - Defining and delivering the cyber security roadmap, leading security teams, and providing clear reporting to senior leadership. ...

SCADA, and OT networks Practical experience performing risk assessments across IT/OT environments Familiarity with industry standards and frameworks such as: IEC 62443 NCSC CAF NIST CSF ISO 27001 Knowledge of industrial communication protocols and OT networking concepts Ability to balance security with safety and operational continuity Excellent communication ...

Practical experience applying MOD SbD principles within defence programmes Experience working in defence or wider public sector cyber security environments Familiarity with the CAF, NCSC guidance, GovAssure, or related frameworks A professional certification such as CISMP or CCP, or active progress towards CISSP or CISM A cyber security related degree ...

leadership Public sector, government, defence, or secure programme experience Bonus Experience Kubernetes or Google Dedicated Cloud (GDC) Disconnected/air‐gapped environments GDS standards, NCSC guidance, or Cabinet Office governance SAFe Agile environments/PI Planning TOGAF, AWS, or Google Cloud certifications Active SC Clearance or above #J-18808-Ljbffr ...

architectures spanning hybrid cloud, data platforms, secure networks, and edge environments Support integration across MOD, allied, and industry systems Ensure compliance with MOD standards, NCSC CAF, ISO 27001, and Zero Trust principles Contribute to technical governance, design reviews, and assurance activities Engage with senior stakeholders and present architectural recommendations Assess ...

with the development of infrastructure as code using Terraform or Bicep. A strong understanding of cloud security principles and Zero Trust architectures. Familiarity with NCSC, GDS, and UK government security frameworks-such as Secure by Design, Cloud Security Principles, and Government Functional Standards. Desirable Qualifications: Microsoft Azure Fundamentals ...

frameworks such as NIST RMF/CSF What We're Looking For Experience in cyber security engineering, architecture, or assurance Strong knowledge of JSP440, NCSC guidance, or Secure by Design (SbD) Experience with risk assessment, accreditation, and security controls Familiarity with NIST frameworks Background in defence, government, or secure environments ...

awareness of emerging cyber security threats, trends, and best practices Essential Skills & Experience Experience working with MoD security policy, including JSP440 Strong knowledge of NCSC guidance and UK defence security standards Experience supporting MoD Secure by Design (SbD) projects Practical experience in security risk assessment and risk treatment methodologies Understanding ...

hybrid & multi‐cloud environments. Familiar with implementing and working with standards and frameworks (IEC 62443, NIST CSF, ISO 27000 series, MITRE ATT&CK, GDPR, NCSC CAF and NIS/NIS2 regulations). Ability to explain threat‐based and risk‐informed security considerations in clear business terms. #LI ...

Produce clear, evidence-based reports with remediation guidance Support clients through certification and improvements Manage your own workload and stay aligned with IASME/NCSC updates What You’ll Need CE+ Assessor (or eligible to become one) 2+ years in cyber security/assurance Experience with vulnerability scanning tools Strong ...

Nice to Have Understanding of the engineering lifecycle. Knowledge of current Cryptographic technologies, Key Management Systems & practical COMSEC implementations in line with MOD/NCSC standards. Knowledge of Cyber Security & Airworthiness (RCTA-DO-326A/B, 355A & 356A). Security Clearance You must be eligible for full security clearance. ...

monitoring tools Solid understanding of threat intelligence, vulnerability management, and remediation practices Knowledge of cyber frameworks and regulations including GDPR, NIS, and National Cyber Security Centre guidance Familiarity with frameworks such as MITRE ATT&CK and ITIL processes Experience operating within complex, regulated environments (e.g. public sector, financial services) Strong ...

core data centre infrastructure, including physical servers, storage, backup and disaster recovery solutions. Ensuring compliance with security frameworks including ISO27001, Cyber Essentials Plus and NCSC guidance. You will have - Strong hands-on experience with Microsoft Azure, including administration, security and identity services. Proven expertise in VMware and Hyper-V virtualisation ...

classified environments Automation experience (Ansible, Terraform, scripting) Experience with Nessus/Tenable or similar tools Familiarity with JSP 440/441/453 and NCSC guidance Role Purpose To deliver security operations for a private cloud platform, ensuring systems are actively monitored, vulnerabilities are managed, and services remain secure, compliant ...

Defence, Government, or other secure environments Previous experience working with Army or MOD systems Knowledge of secure development and architecture principles Understanding of OWASP, NCSC Cloud Security Principles, and GDPR Experience delivering complex technology transformation or modernisation programmes Strong communication and stakeholder management skills Desirable: Experience working within SFIA-aligned ...

threat modelling (e.g. STRIDE, attack trees) and risk analysis Strong understanding of security frameworks and best practice such as ISO 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure/NCSC CAF, HMG Security Policy Framework. Knowledge ...

define security requirements and advise on risk mitigation strategies. Ensure adherence to security frameworks, regulatory requirements, and industry standards including GDPR, OWASP, and NCSC principles. Support the design and implementation of DevSecOps pipelines, secure CI/CD processes, and automated security tooling. Contribute to enterprise security strategy, architecture governance … lifecycle (SSDLC) practices. Knowledge of secure architecture patterns, secure web application development, and API security. Experience implementing and governing security controls aligned to OWASP, NCSC Cloud Security Principles, and GDPR. Strong understanding of authentication and authorisation technologies including SAML, OAuth2, OpenID Connect, Active Directory, ADFS, and LDAP. Experience supporting penetration ...

management lifecycles. Experience working within multi-supplier or SIAM environments. Ability to interpret and govern SOC and vulnerability management outputs. Knowledge of NIST CSF, NCSC guidance, or UK Government security frameorks. Experience within Defence or other highly regulated environments. Exposure to ISMS, audit, assurance, and ITIL practices. ...