1 to 25 of 54 NCSC Jobs in the UK excluding London

would be great if you had: Cloud security reference architectures, such as AWS and Azure. NIST Cybersecurity Framework and SP 800-53 controls. NCSC guidance and standards. Secure-by-Design methodologies. Specialist security domains such as Identity and Access Management, Infrastructure Security, and Data Security. If you are interested ...

Army programme experience or strong MOD stakeholder exposure. Experience with Sparx Enterprise Architect, ArchiMate, NAFv4 or similar modelling approaches. Knowledge of Joint Service Publications, NCSC guidance, ISO27001, NIST, CIS or related security frameworks. Experience across IAM, PKI, secure integration, cloud security, data flows and security architecture patterns. Experience reviewing HLDs ...

technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF, AWS/Azure Architect, CISSP, CISM (or working towards CIISEC/ ...

OAuth, OpenID Connect, Active Directory, LDAP, ADFS) Secure application development (Java or .NET) Agile delivery environments API-driven architectures Security frameworks and principles (OWASP, NCSC guidance) Data protection and GDPR-compliant design Desirable Experience Defence, central government or highly regulated environments SC cleared environments Data architecture and modern data platforms ...

legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain ...

NIST, ISO 27001, CAF, or Cyber Essentials Experience working with government, defence, or critical national infrastructure clients Additional certifications such as CREST, OSCP, or NCSC Certified Professional If this sounds like the right next step, apply now or get in touch for a confidential conversation. Candidates must be eligible ...

escalation point for complex issues * Strong customer-facing and communication skills ________________________________________ Knowledge Requirements: * UK Government and security frameworks, including: o NCSC guidance o GDS standards o Secure by Design principles o Cloud Security Principles o Technology Code of Practice * Experience designing secure/air-gapped environments * Expertise in cloud-native ...

Experience supporting cloud-hosted environments, particularly Google Cloud Platform (GCP). Experience of MOD Cloud (MODCloud) programmes or secure cloud transformation initiatives. Familiarity with NCSC guidance and secure-by-design principles. Knowledge of security frameworks including JSP 440, JSP 604, NIST, ISO27001, or Cyber Assessment Framework (CAF). Relevant certifications ...

migration tooling Strong understanding of cloud networking, monitoring, logging and IAM Experience working in secure, regulated, government or public sector environments Knowledge of NCSC, GDS, Secure by Design or UK Government technology standards would be useful Active SC or DV clearance preferred Relevant certifications: Candidates should ideally hold at least ...

Portsmouth area at least twice a week Desired: Relevant certifications including CISSP, CISM, CRISC, ISO 27001 Lead Implementer or Auditor, CCSP, CySA+, NCSC CCP, or GIAC If this sounds like you - get in touch or apply now for a confidential conversation. Oscar Associates (UK) Limited is acting as an Employment ...

including remediating findings with both software and configurations Supporting security configuration improvements across our Microsoft 365 environment Supporting the maintenance of Cyber Essentials Plus, NCSC CAF and other compliance frameworks Contributing to risk management processes, including maintaining risk registers Helping to develop, test and maintain Business Continuity and Disaster Recovery ...

more of the following areas: Product, project, or cyber security within engineering-led environments. Security frameworks and standards such as NIST 800-series, NCSC guidance, or equivalent. Security risk assessment and assurance methodologies. Secure by Design (SbD) implementation and security documentation production. Information Assurance, Cyber Security, or Systems Security Engineering. ...

assessing software and infrastructure source code from a security standpoint Solid grounding in Continuous Security, CI and CD techniques Knowledge of security standards including NCSC, NIST, CIS, PCI, GDPR, OWASP ASVS, HIPAA, SOC2 Understanding of common attack vectors including OWASP Top 10, SQL injection, XSS, XXE and MITM Good programming ...

/CD pipeline design (eg, Jenkins, GitHub Actions). Security Knowledge: Comprehensive understanding of secure-by-design principles, cloud security guidance (eg, NCSC), and government security classifications (OFFICIAL, OFFICIAL-SENSITIVE). Communication & Artefacts: A proven track record of producing high-quality architectural artefacts (C4 models, ADRs) and confidently translating complex ...

customer facing and stakeholder management skills. Experience producing and reviewing architecture artefacts using TOGAF and recognised architecture frameworks. Knowledge of UK Government security frameworks, NCSC guidance, Secure by Design, Zero Trust, and cloud security principles. Experience with network automation, orchestration, and air-gapped or highly secure environments. Relevant certifications such ...

customer facing and stakeholder management skills. Experience producing and reviewing architecture artefacts using TOGAF and recognised architecture frameworks. Knowledge of UK Government security frameworks, NCSC guidance, Secure by Design, Zero Trust, and cloud security principles. Experience with network automation, orchestration, and air-gapped or highly secure environments. Relevant certifications such ...

such as CISSP, CISM, CASP/SecurityX or ChCSP Desirable Knowledge of engineering lifecycle gate reviews Experience with Crypto technologies, COMSEC and MOD/NCSC standards Knowledge of ARP4754A/ARP4761 The successful candidate will either already have active SC clearance or will be able to secure this quickly ...

Water Civil Nuclear Transport (including aviation, rail, maritime, road and autonomous vehicles) Wider critical infrastructure Security standards relating to the sector, including: NCSC NIS Guidance and CAF ISO 27001 and ISO 27005 NERC CIP ISA-99/IEC 62443 NIST CSF. Please be aware that some of our UK roles ...

Assurance within Defence or UK Government environments. Strong understanding of risk management frameworks Familiarity with government and defence security standards such as: HMG/NCSC IA Policies and Guidelines JSP440 and other MoD IA standards Cyber Essentials NIST, NIS-D You will ideally hold CISM/CISSP or similar higher ...

Practical experience applying MOD SbD principles within defence programmes Experience working in defence or wider public sector cyber security environments Familiarity with the CAF, NCSC guidance, GovAssure, or related frameworks A professional certification such as CISMP or CCP, or active progress towards CISSP or CISM A cyber security related degree ...

policies and standards Knowledge of technology risk and controls including relevant tools and techniques Good understanding and practical experience of Cyber Security Frameworks including NCSC CAF, NIST and ISO 27001 Must have at least 2 years' cyber security experience. Excellent communication skills with the ability to deal with conflicting priorities. ...

assess and manage cyber security risks proportionately, balancing risk appetite, security controls and operational needs. Strong knowledge of security policies, standards and frameworks, including NCSC guidance and defence-in-depth principles. Confident communicator who can explain complex security concepts clearly to technical teams, senior leaders, programme boards and external stakeholders. ...

technical reports for clients Supporting and collaborating with a wider team of cyber security consultants on varied projects Maintaining testing activities in line with NCSC CHECK and CREST methodologies What They're Looking For: Active SC Clearance (essential) Current CHECK Team Member status (essential) Proven experience delivering penetration testing engagements ...

architectures spanning hybrid cloud, data platforms, secure networks, and edge environments Support integration across MOD, allied, and industry systems Ensure compliance with MOD standards, NCSC CAF, ISO 27001, and Zero Trust principles Contribute to technical governance, design reviews, and assurance activities Engage with senior stakeholders and present architectural recommendations Assess ...

frameworks such as NIST RMF/CSF What We're Looking For Experience in cyber security engineering, architecture, or assurance Strong knowledge of JSP440, NCSC guidance, or Secure by Design (SbD) Experience with risk assessment, accreditation, and security controls Familiarity with NIST frameworks Background in defence, government, or secure environments ...