1 to 25 of 60 NCSC Jobs in the UK excluding London

security controls. Ensure solutions comply with 'Secure by Design' principles, corporate policies, and industry frameworks. Assess vulnerabilities, lead risk mitigation, and ensure compliance with industry standards (ISO 27001, NIST, NCSC). Contribute to security design documentation, options papers, and client presentations. Collaborate across 1st, 2nd, and 3rd lines of defense on cyber risk, compliance, and governance. Create and present design More ❯

gained as a Security Architect or in a technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF, AWS/Azure Architect, CISSP, CISM (or working towards CIISEC/UK Cyber More ❯

base on their severity and business impact. Leading the design, assurance, and continuous improvement of security systems and tooling, ensuring alignment with national cyber standards and best practices (e.g. NCSC, ISO 27001, NIST). Collaborating with architects, risk owners, and delivery teams to embed secure design principles and ensure the security operations centre (SOC) is equipped to handle emerging threats More ❯

/or corporate industry (financial services). Demonstrable experience in designing, implementing and managing security solutions tailored for cloud environments and aligned to industry-standard cybersecurity frameworks such as NCSC CAF/NIST/CIS. This includes proficiency in securing cloud platforms such as AWS, Azure, understanding cloud-native security services, and expertise in configuring security groups, IAM policies, and More ❯

Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain - Attack tree analysis. Working understanding More ❯

Council professional registration (e.g. Chartered, Principal, Practitioner). Experience with HMG/MoD security standards, policies, and frameworks. Exposure to Secure by Design principles and assurance tooling. Knowledge of NCSC CAF, ISO 27001 audits, NIST frameworks, and supplier assurance. Experience working in defence, government, or regulated industries. Additional Requirements Eligible for UK security clearance (SC or DV preferred). UK More ❯

Council professional registration (e.g. Chartered, Principal, Practitioner). Experience with HMG/MoD security standards, policies, and frameworks. Exposure to Secure by Design principles and assurance tooling. Knowledge of NCSC CAF, ISO 27001 audits, NIST frameworks, and supplier assurance. Experience working in defence, government, or regulated industries. Additional Requirements Eligible for UK security clearance (SC or DV preferred). UK More ❯

Governance, Risk, and Compliance Ideally, You'll Also Have: Security-related qualifications such as CISSP, CISM, CISMP, ISO27001 lead implementer or auditor, MBCI, or IAPP. Experience operating within an NCSC Assured Cyber Consultancy. Understanding of the cybersecurity regulatory landscape and assessment frameworks (e.g., NIS2, NIST CSF). Key delivery experience in cybersecurity strategy, transformation, and compliance. Sector experience in Government More ❯

cyber leaders Ideal Background Proven experience in cyber strategy, transformation, and risk management within complex organisations Strong knowledge of regulatory and security frameworks (e.g. NIST CSF, ISO27001, GDPR, NIS2, NCSC CAF) Experience across areas such as GRC, security architecture, threat management, or vulnerability management Outstanding communication and stakeholder engagement skills, with the ability to influence at C-suite and board More ❯

of cloud platforms such as AWS and Microsoft Azure, as well as Microsoft Entra ID and M365. Familiarity with frameworks such as NIST CSF, Cyber Assessment Framework (CAF), and NCSC Cloud Security Principles. Proven ability to influence stakeholders and support secure delivery in large, complex environments. Excellent communication skills and ability to collaborate with globally distributed teams. A degree in More ❯

further experience in the development and documentation of integrated solution and detailed designs encompassing both cloud and on premise environments. Understanding and awareness of industry frameworks such as NIST, NCSC CAF, CIS, IEC 62443. Knowledge of NIS-r Directive advantageous. Ability to evaluate and propose tooling and technologies within Severn Trent to enhance its security posture. Knowledge of Operation Technology More ❯

in this role Exceptional planning and communication skills are key for this role, and you’ll have a knowledge of security standards and processes such as ISO 27001 standards, (NCSC) CAF, Cyber Essentials, NIST and Cyber Essentials/Plus. We’ll also look for your experience in: Developing cyber policy and procedures Data protection and privacy Security change management Understanding More ❯

business risk models and associated material, in support of operational cyber security and business planning activity across a range of different domains or sectors against recognised standards (e.g. ISO27001, NCSC CAF, NIS Directive, UK GovAssure) Identify mitigations for cyber risk in a given business or operational scenario and threat environment Lead and deliver cyber security audits, risk reviews and control More ❯

business risk models and associated material, in support of operational cyber security and business planning activity across a range of different domains or sectors against recognised standards (e.g. ISO27001, NCSC CAF, NIS Directive, UK GovAssure) Identify mitigations for cyber risk in a given business or operational scenario and threat environment Lead and deliver cyber security audits, risk reviews and control More ❯

business risk models and associated material, in support of operational cyber security and business planning activity across a range of different domains or sectors against recognised standards (e.g. ISO27001, NCSC CAF, NIS Directive, UK GovAssure) Identify mitigations for cyber risk in a given business or operational scenario and threat environment Lead and deliver cyber security audits, risk reviews and control More ❯

security certification. Desirable Full Membership of the Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. NCSC Certified Cyber Professional in Security Architecture. IEng or CEng registered with UK Engineering body. Chartership through the British Computer Society. SABSA Chartered Security Architect Other information: Logiq is committed to More ❯

security certification. Desirable Full Membership of the Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. NCSC Certified Cyber Professional in Security Architecture. IEng or CEng registered with UK Engineering body. Chartership through the British Computer Society. SABSA Chartered Security Architect Other information: Logiq is committed to More ❯

security certification. Desirable Full Membership of the Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. NCSC Certified Cyber Professional in Security Architecture. IEng or CEng registered with UK Engineering body. Chartership through the British Computer Society. SABSA Chartered Security Architect Other information: Logiq is committed to More ❯

security certification. Desirable Full Membership of the Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. NCSC Certified Cyber Professional in Security Architecture. IEng or CEng registered with UK Engineering body. Chartership through the British Computer Society. SABSA Chartered Security Architect Other information: Logiq is committed to More ❯

certificate management lifecycle, and drive our transition to quantum-safe cryptography and automated certificate renewal. You'll be at the forefront of modernising our cryptographic practices, aligning with NIST, NCSC, and ENISA standards, and enabling secure digital innovation. This role will influence the future direction of our cyber strategy and help us build a resilient, agile cryptographic capability. What you More ❯

certificate management lifecycle, and drive our transition to quantum-safe cryptography and automated certificate renewal. You'll be at the forefront of modernising our cryptographic practices, aligning with NIST, NCSC, and ENISA standards, and enabling secure digital innovation. This role will influence the future direction of our cyber strategy and help us build a resilient, agile cryptographic capability. What you More ❯

certificate management lifecycle, and drive our transition to quantum-safe cryptography and automated certificate renewal. You'll be at the forefront of modernising our cryptographic practices, aligning with NIST, NCSC, and ENISA standards, and enabling secure digital innovation. This role will influence the future direction of our cyber strategy and help us build a resilient, agile cryptographic capability. What you More ❯

certificate management lifecycle, and drive our transition to quantum-safe cryptography and automated certificate renewal. You'll be at the forefront of modernising our cryptographic practices, aligning with NIST, NCSC, and ENISA standards, and enabling secure digital innovation. This role will influence the future direction of our cyber strategy and help us build a resilient, agile cryptographic capability. What you More ❯

certificate management lifecycle, and drive our transition to quantum-safe cryptography and automated certificate renewal. You'll be at the forefront of modernising our cryptographic practices, aligning with NIST, NCSC, and ENISA standards, and enabling secure digital innovation. This role will influence the future direction of our cyber strategy and help us build a resilient, agile cryptographic capability. What you More ❯

week Salary: Competitive, dependent on qualifications and relevant experience Key Skills Secure GCP architecture design (IAM, encryption, VPC Service Controls) Cloud security assessments and gap analyses Compliance with GDPR, NCSC Cloud Security Principles, ISO 27001 Threat modelling, risk assessments, and vulnerability management GCP security tooling (Security Command Center, Cloud Armor, etc.) CI/CD pipeline security integration Infrastructure as Code More ❯