51 to 75 of 278 NCSC Jobs in the UK

/CD) Familiar with scripting languages like PowerShell, YAML, JSON Expertise in application security tools and DevSecOps processes Understanding of key frameworks and standards (e.g. OWASP, NIST SSDF, ISO27001, NCSC) Experience with threat modelling, risk assessments, and secure design reviews Comfortable owning security strategy and tooling across complex, modern product landscapes Strong communicator - able to engage confidently with both engineers More ❯

implementing infrastructure components for the following Windows, Linux and Virtualisaiton technologies: -Windows Server 2019/2022 Active Directory and NTFS permissions DNS DHCP File Services Group Policy, CIS and NCSC Security Hardening NTP SQL Server Windows Server Update Server (WSUS) -Cloud AWS Azure -Virtualisation VMware vSphere VMware vCentre Microsoft Hyper-V Our Ideal Candidate: Constructing Windows and Linux infrastructure components More ❯

The salary for this role is £55,000. Do you bring a wealth of experience in leading and mentoring technical teams in an Azure Engineering or Technical Manager/Lead capacity, with a comprehensive understanding of Identity, Integration, and DevOps More ❯

We have a long track record of delivery and are trusted to work on some of the UK Government’s most important and sensitive projects. We are a National Cyber Security Centre Assured Service Provider. The Role and Responsibilities of a Cyber Security Consultant: As a Cyber Security Consultant, you will: Provide expert advice and guidance on Information Assurance topics. More ❯

by attainment of appropriate qualifications e.g. CISSP, ISO27001 Lead Implementor or relevant SANS GIAC or equivalent Knowledge of the NIST framework, PCI DSS, GDPR and NIS as well as NCSC cyber guidance. Experience working in an agile delivery environment would be highly advantageous. Specific cyber knowledge and demonstrable experience in at least one of the following areas: Cloud security, network More ❯

Firewalls, FortiAnalyzer, FortiManager. Knowledge of vulnerability management platforms (Tenable/Nessus/Qualys). Knowledge of threat intelligence, risk management, and cyber incident response frameworks. In-depth knowledge of NCSC Cyber Assessment Framework (CAF), PSN Compliance, Cyber Essentials, NIST, or ISO 27001. Qualifications: Degree or equivalent level qualification or experience. ITIL Foundation certification or equivalent. Professional Security Certifications CISSP, CISM More ❯

We're Looking For Strong knowledge of cyber risk management and frameworks (ISO27005, NIST). Experience in security architecture, cloud security, and risk assessment . Understanding of HMG and NCSC security policies, standards, and guidance . Excellent communication skills with the ability to translate security risks into business terms . Ability to work independently and collaboratively in a client-facing More ❯

addressing vulnerabilities and threats. Key Responsibilities: Vulnerability Management: Develop, implement, and operate vulnerability management capabilities using tools like Tenable One. Deploy, configure, and manage vulnerability assessment tools (e.g., Tenable, NCSC's Active Cyber Defence Toolkit) and Attack Surface Management tools. Deliver a seamless vulnerability management service across infrastructure and business units, ensuring the effectiveness of security measures. Threat Analysis: Utilize … with cross-functional teams. In-depth understanding of the current threat landscape and security best practices. Preferred Qualifications: Relevant certifications (e.g., CISSP, CEH, CompTIA Security+). Experience with the NCSC's Active Cyber Defence Toolkit. Familiarity with regulatory requirements and industry standards (e.g., GDPR, ISO 27001). Work Environment: This is a fully remote position, offering flexibility and the opportunity More ❯

role Experience in customer-facing roles Familiarity with HMG/MoD cyber policies, standards (e.g. JSP440), and processes Experience with Secure by Design implementation and related tooling Knowledge of NCSC Cyber Assurance Framework (CAF) and GovAssure audits Understanding of NIST Cyber Security Framework and risk assessment methods Experience with ISO/IEC 27001 audits and cyber security assurance Supplier assurance More ❯

platform lockdown and configurations. It would be nice if you had: Understanding of the engineering lifecycle. Knowledge of current Cryptographic technologies,Key ManagementSystems & practicalCOMSECimplementations in line with MOD/NCSC standards. Knowledge of Cyber Security & Airworthiness (RCTA-DO-326A/B, 355A & 356A). Security Clearance You must be eligible for full security clearance. For more information and guidance please … including Defence, Telecommunications, Energy and Finance to help secure national infrastructure and commerce in the UK and beyond. Our Practice is certified by the UK National Cyber Security Centre (NCSC) in the provision of advice and guidance to our customers. At Leonardo UK, we believe that a diverse and inclusive work environment unlocks our people's full potential and drives More ❯

configurations. It Would Be Nice If You Had Understanding of the engineering lifecycle. Knowledge of current Cryptographic technologies, Key Management Systems & practical COMSEC implementations in line with MOD/NCSC standards. Knowledge of Cyber Security & Airworthiness (RCTA-DO-326A/B, 355A & 356A). Security Clearance You must be eligible for full security clearance. For more information and guidance please … including Defence, Telecommunications, Energy and Finance to help secure national infrastructure and commerce in the UK and beyond. Our Practice is certified by the UK National Cyber Security Centre (NCSC) in the provision of advice and guidance to our customers. At Leonardo UK, we believe that a diverse and inclusive work environment unlocks our people’s full potential and drives More ❯

environments. Perform hands-on threat and risk assessments across cloud, network, and infrastructure stacks; specify mitigating controls where needed. Align security practices with NIST, PCI DSS, GDPR, NIS, and NCSC guidance. Influence senior delivery colleagues and third-party partners, driving security decisions without direct authority. Implement security-by-design frameworks at the portfolio scale and support organizational change. Provide independent … with a focus on Agile/DevOps. Expertise in threat and risk assessments across cloud, network, and infrastructure stacks. Strong working knowledge of NIST, PCI DSS, GDPR, NIS, and NCSC guidance. Relevant certifications such as CISSP, ISO 27001 Lead Implementer, or SANS GIAC (or equivalent). Proven track record of influencing senior colleagues and third-party partners without direct authority. More ❯

and concise written and verbal communications to senior stakeholders on complex issues Relevant certifications such as GRCP, ISC2 CGRC, or CRISC or willingness to obtain Experience of working with NCSC & CAF cyber security standards and guidance Excellent leadership skills, with an ability to build, motivate and inspire teams through periods of ambiguity, comfortable working in a complex environment and across More ❯

of security technologies such as firewalls, IDS/IPS, endpoint protection, encryption, IAM, and SIEM systems. Strong understanding of security frameworks and standards, including ISO 27001, NIST, GDPR, and NCSC Cyber Essentials Plus, with experience in compliance management. Excellent leadership and communication skills, capable of conveying security concepts to diverse audiences and building consensus. Analytical skills and problem-solving abilities More ❯

to resolution ? Running tailored security awareness training for teams ? Maintaining continuous oversight of emerging threats, vulnerabilities, and ensuring swift action ? Supporting alignment with future certification frameworks such as GovAssure, NCSC CAF, ISO27001 Requirements: ? In-depth knowledge of NIST, ISO27001, ISO27701, NCSC, and Cabinet Office security best practices Proven track record across full security lifecycle: risk management, governance, incidents, pen testing More ❯

to resolution ? Running tailored security awareness training for teams ? Maintaining continuous oversight of emerging threats, vulnerabilities, and ensuring swift action ? Supporting alignment with future certification frameworks such as GovAssure, NCSC CAF, ISO27001 Requirements: ? In-depth knowledge of NIST, ISO27001, ISO27701, NCSC, and Cabinet Office security best practices Proven track record across full security lifecycle: risk management, governance, incidents, pen testing More ❯

to resolution ? Running tailored security awareness training for teams ? Maintaining continuous oversight of emerging threats, vulnerabilities, and ensuring swift action ? Supporting alignment with future certification frameworks such as GovAssure, NCSC CAF, ISO27001 Requirements: ? In-depth knowledge of NIST, ISO27001, ISO27701, NCSC, and Cabinet Office security best practices Proven track record across full security lifecycle: risk management, governance, incidents, pen testing More ❯

to resolution ? Running tailored security awareness training for teams ? Maintaining continuous oversight of emerging threats, vulnerabilities, and ensuring swift action ? Supporting alignment with future certification frameworks such as GovAssure, NCSC CAF, ISO27001 Requirements: ? In-depth knowledge of NIST, ISO27001, ISO27701, NCSC, and Cabinet Office security best practices Proven track record across full security lifecycle: risk management, governance, incidents, pen testing More ❯

effective incident management by overseeing the effective coordination and escalation across internal departments while engaging with external stakeholders, vendors, and UK authorities such as the National Cyber Security Centre (NCSC) . This is an exciting opportunity for a proactive professional to shape and strengthen the University’s approach to cyber incident management. Job Purpose The Incident Response Lead will lead … stakeholder to ensure appropriate escalation and coordination between functional groups/departments. You will be familiar with and expected to engage with UK authorities including National Cyber Security Centre (NCSC) and others. Aside from coordination and engagement of stakeholders, the post will also lead on the development of an incident response framework as part of the university’s’ continuous improvement More ❯

in secure, complex environments • Strong knowledge of IaaS, PaaS, SaaS, and Infrastructure as Code (e.g., Terraform, Ansible, ARM, CloudFormation) • Familiarity with cloud governance, security frameworks, and regulatory standards (e.g., NCSC, CIS, ISO 27001) • Demonstrated success in designing enterprise-scale cloud platforms and DevOps-enabling architectures • Experience working with Agile teams and cross-functional project stakeholders • Relevant certifications in AWS, Azure More ❯

Knowledge of cloud vendor partner programs, such as AWS APN and Azure Partners Experience with well-architected frameworks Knowledge of UK public sector technology guidance and frameworks, such as NCSC's Cyber Assessment Framework (CAF) and the Technology Code of Practice (TCoP) Agile practices such as Scrum, XP, and/or Kanban Experience using Test Driven Development (TDD) An increasing More ❯

Knowledge of cloud vendor partner programs, such as AWS APN and Azure Partners Experience with well-architected frameworks Knowledge of UK public sector technology guidance and frameworks, such as NCSC's Cyber Assessment Framework (CAF) and the Technology Code of Practice (TCoP) Agile practices such as Scrum, XP, and/or Kanban Experience using Test Driven Development (TDD). An More ❯

Knowledge of cloud vendor partner programs, such as AWS APN and Azure Partners Experience with well-architected frameworks Knowledge of UK public sector technology guidance and frameworks, such as NCSC’s Cyber Assessment Framework (CAF) and the Technology Code of Practice (TCoP) Agile practices such as Scrum, XP, and/or Kanban Experience using Test Driven Development (TDD) An increasing More ❯

Knowledge of cloud vendor partner programs, such as AWS APN and Azure Partners Experience with well-architected frameworks Knowledge of UK public sector technology guidance and frameworks, such as NCSC's Cyber Assessment Framework (CAF) and the Technology Code of Practice (TCoP) Agile practices such as Scrum, XP, and/or Kanban Experience using Test Driven Development (TDD) An increasing More ❯

clearance are a must, along with significant experience in similar roles across Cloud/IT based solutions for Defence customers. Deep knowledge of HMG standards (including MOD-specific JSP), NCSC and NIST 800 standards is a given, along with how to apply these across a variety of different solution spaces. This role will be a key leadership position, interacting with More ❯