51 to 71 of 71 NCSC Jobs in the UK

policies, and disaster recovery processes. Oversee cybersecurity strategy, controls, testing (including penetration testing), and ongoing monitoring. Ensure compliance with FCA/PRA cyber requirements, NCSC guidance, and GDPR. Own the incident response plan for cyber events and support regulatory notifications if required. Oversee payment processing (Faster Payments, CHAPS, BACS, card ...

Number of Direct/Indirect Reports Direct employees: n/a Budget Other Main Interfaces External: UK Government bodies including - NPSA, OFGEM, NaCTSO, DESNZ, NCSC, Home Office. UK Police Forces Energy sector partners and utilities including the National Infrastructure Crime Reduction Partnership (NICRP) Wider UK industry and security community Internal ...

What is Security Architecture? Security Architecture is the practice of designing the technology, people and processes within computer systems to achieve security goals (National Cyber Security Centre). We are seeking an exceptionally capable Security Architects to join the company within the Security Architecture team within the Security Practice. … Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. NCSC Certified Cyber Professional in Security Architecture. IEng or CEng registered with UK Engineering body. Chartership through the British Computer Society. SABSA Chartered Security Architect Other Information Logiq ...

frameworks, and environments - ideal if you're looking to broaden your experience. Key Responsibilities: Conduct security audits and assessments against recognised frameworks (ISO27001, NIST, NCSC) Support risk management activities and improve security posture across client environments Assist with information governance processes and reporting Deliver client projects within agreed scope … cyber security/IT security role Experience in security assurance, audits, or compliance-focused work Good understanding of frameworks such as ISO27001, NIST, NCSC Knowledge of risk management and information governance Familiarity with regulations like GDPR/Data Protection Act Strong communication skills - comfortable working with clients and stakeholders Ability ...

Cyber Security Model, Secure By Design, Industry Security Notices Strong familiarity with UK Government security standards such as 007/SPF, NCSC Cloud Security Principles, NCSC Principles for Using Software as a Service (SaaS) securely, Cyber Essentials, and the CHECK penetration testing scheme Broad familiarity with UK Government physical ...

Data at Rest/In Transit), Protective Monitoring, and Security Auditing. Strong understanding of the ISO 27000 series, NIST Cyber Security & Risk Management Frameworks, NCSC CAF, and other industry standards. Familiarity with NCSC guidance and legacy Information Assurance (IA) standards. Experience with MOD security frameworks including … across OT environments including CNI and COMAH. Relevant certifications such as GICSP or ISA/IEC 62443 are desirable, alongside hands‐on delivery of NCSC CAF or GovAssure assessments. Experience of working in a SOC environment Other Information Logiq is committed to investing in people, offering a clear progression pathway ...

Proven experience leading cyber incidents, including response coordination and exercising Excellent communication and stakeholder influence skills across technical and non technical groups Familiarity with NCSC aligned approaches and/or frameworks such as NIST CSF Relevant professional qualifications such as CISSP or CISM To apply, we request that you submit … planning with hands on delivery to ensure both long term resilience and quick, tactical gains? Which cyber security governance or risk management frameworks (e.g., NCSC CAF, NIST CSF) have you implemented, and how have they influenced decision making and assurance in your previous organisations? The job advert closes ...

also be comfortable identifying new opportunities, supporting bids, and contributing to presales activities where required. Key Responsibilities Conduct comprehensive cyber security audits aligned to NCSC CAF and other recognised frameworks. Assess organisational security posture across the full system lifecycle, ensuring compliance and identifying areas for improvement. Produce clear, actionable audit … security risks. Essential Experience Ability to lead audits, engage stakeholders, and communicate findings effectively. Proven expertise in Cyber Security Auditing, with strong knowledge of: NCSC Cyber Assessment Framework (CAF). ISO 27000 series, NIST Cyber Security & Risk Management Frameworks. Legacy IA standards and NCSC guidance. Familiarity with MOD security frameworks ...

senior guidance during OT cyber incidents including containment, forensics, and recovery. Regulatory & Compliance Expertise · Interpret and apply NIS/NISR, Ofgem/Ofwat expectations, NCSC CAF and IEC62443 requirements. · Support audit readiness, evidence collation, and remediation planning. Client Engagement & Delivery Excellence · Own client relationships and act as senior point … familiarity with major OT/ICS vendors (Siemens, ABB, GE, Schneider Electric). · Experience applying frameworks such as IEC62443, NIST CSF, NIST 800‐82, NCSC CAF. · Senior-level stakeholder management experience. Certifications – Highly Desirable · OT/ICS Security/Safety Certifications · ISA/IEC 62443 Cybersecurity Expert · GIAC: GRID, GICSP ...

technical environments Execute social engineering assessments and physical security testing Produce detailed scoping documents and executive-level penetration testing reports aligned with CREST and NCSC standards Lead incident response investigations and digital forensic analysis when required Work independently on client-facing assessments whilst collaborating with senior consultants and team leaders … eligible with security vetting background) Preferred Qualifications & Certifications: CREST/CyberScheme CCTM/CSTM CCT/CSTL-INF or CCT/CSTL-APP (current) NCSC CHECK Team Leader (CTL) (current) or CHECK Team Member (CTM) (current) preferred but not essential CEH Advanced (AECH) or OSCP SANS GCIH, GPEN, or GWAPT ...

Introduction Saab UK is part of Scandinavia's largest defence company, bringing together the best of Swedish and British innovation. Saab offers world-leading solutions and services in defence, aviation, space, and civil security to ...

Introduction Saab UK is part of Scandinavia's largest defence company, bringing together the best of Swedish and British innovation. Saab offers world-leading solutions and services in defence, aviation, space, and civil security to ...

security deliverables meet stringent customer and regulatory requirements. Key Responsibilities for the Product Security Engineer based in Surrey: Conduct security risk assessments (e.G. NCSC methodologies) Develop and deliver security artefacts in line with customer requirements Implement Secure by Design (SbD) principles across projects Support bids with security planning and estimates … Design principles and security-focused documentation. Experience in Information Assurance frameworks (e.G. CESG Good Practice Guides). Proven capability in security risk assessment (e.G. NCSC methodologies). Excellent communication and documentation skills. Collaborative team player with the ability to work autonomously. Adaptable and agile in response to changing project requirements. ...

ideal candidate will be Degree qualified in Information/Cyber Security, IT, Engineering, Mathematics, or Science and or Chartered Cyber Security Professional, ex-NCSC Certified Cyber Professional or ex-CLAS.. Knowledge: Essential: Experience of MOD policy in JSP440 and knowledge of NCSC guidance. Experience of working on MoD Secure ...

help shape what comes next. The role in real terms This is a senior, autonomous consultancy position. You’ll lead client engagements across UK NCSC Cyber Assessment Framework (CAF), ISO 27001 (including full end-to-end implementation), ISO 42001, NIST Cyber Security Framework v2.0 and Cyber Incident Exercising, advising … work closely with senior stakeholders, often translating complexity into something clear and actionable. We value breadth across recognised frameworks, with particular depth in UK NCSC Cyber Assessment Framework (CAF) and ISO 27001, alongside strong commercial consultancy exposure. You should be comfortable taking a client through an ISO 27001 journey ...

help shape what comes next. The role in real terms This is a senior, autonomous consultancy position. You’ll lead client engagements across UK NCSC Cyber Assessment Framework (CAF), ISO 27001 (including full end-to-end implementation), ISO 42001, NIST Cyber Security Framework v2.0 and Cyber Incident Exercising, advising … work closely with senior stakeholders, often translating complexity into something clear and actionable. We value breadth across recognised frameworks, with particular depth in UK NCSC Cyber Assessment Framework (CAF) and ISO 27001, alongside strong commercial consultancy exposure. You should be comfortable taking a client through an ISO 27001 journey ...

help shape what comes next. The role in real terms This is a senior, autonomous consultancy position. You’ll lead client engagements across UK NCSC Cyber Assessment Framework (CAF), ISO 27001 (including full end-to-end implementation), ISO 42001, NIST Cyber Security Framework v2.0 and Cyber Incident Exercising, advising … work closely with senior stakeholders, often translating complexity into something clear and actionable. We value breadth across recognised frameworks, with particular depth in UK NCSC Cyber Assessment Framework (CAF) and ISO 27001, alongside strong commercial consultancy exposure. You should be comfortable taking a client through an ISO 27001 journey ...

help shape what comes next. The role in real terms This is a senior, autonomous consultancy position. You’ll lead client engagements across UK NCSC Cyber Assessment Framework (CAF), ISO 27001 (including full end-to-end implementation), ISO 42001, NIST Cyber Security Framework v2.0 and Cyber Incident Exercising, advising … work closely with senior stakeholders, often translating complexity into something clear and actionable. We value breadth across recognised frameworks, with particular depth in UK NCSC Cyber Assessment Framework (CAF) and ISO 27001, alongside strong commercial consultancy exposure. You should be comfortable taking a client through an ISO 27001 journey ...

help shape what comes next. The role in real terms This is a senior, autonomous consultancy position. You’ll lead client engagements across UK NCSC Cyber Assessment Framework (CAF), ISO 27001 (including full end-to-end implementation), ISO 42001, NIST Cyber Security Framework v2.0 and Cyber Incident Exercising, advising … work closely with senior stakeholders, often translating complexity into something clear and actionable. We value breadth across recognised frameworks, with particular depth in UK NCSC Cyber Assessment Framework (CAF) and ISO 27001, alongside strong commercial consultancy exposure. You should be comfortable taking a client through an ISO 27001 journey ...

including ISO/IEC 27001, SOC 2 Type II, SOC 3, Cyber Essentials Plus, and CREST Oversee additional frameworks such as PCI DSS and NCSC standards (CIR/CHECK) Ensure certifications are maintained, renewed, and continuously improved Security Assurance Embed security and certification requirements into operational processes Maintain audit readiness … Develop assurance packs demonstrating strong security practices Regulatory & Industry Alignment Stay up to date with frameworks such as NIST CSF, GDPR, NIS2, and UK NCSC guidance Advise stakeholders on regulatory changes and their impact Ensure alignment with evolving cybersecurity standards Continuous Improvement Improve assurance processes and audit efficiency Provide reporting ...

status across all IT controls Conduct regular access and identity reviews; enforce multi-tenant data isolation and least-privilege principles Support audit readiness against NCSC Cyber Assessment Framework (CAF), CSA CAIQ, NIST, and our roadmap towards SOC 2 Establish and track quantifiable technical baselines - encryption coverage, log retention, API compliance … team Person Specification Broad exposure to IT operations, DevOps principles, or a related technical discipline. Familiarity with one or more governance frameworks (ISO 27001, NCSC CAF, NIST, SOC 2 or similar) - you do not need to be an expert in all of them Process-driven mindset - able to translate policy ...