26 to 50 of 51 NCSC Jobs in the UK excluding London

cross-HMG security principles), into usable, department-specific tools and guidance. Engage with OGDs and cross-HMG forums to ensure our frameworks align with DSIT, Cabinet Office and National Cyber Security Centre standards. Establish and maintain secure-by-design and explainability guardrails for AI across the estate. Provide enterprise-level architectural governance across AI pilots, ensuring reuse, integration and compliance. More ❯

cross-HMG security principles), into usable, department-specific tools and guidance. Engage with OGDs and cross-HMG forums to ensure our frameworks align with DSIT, Cabinet Office and National Cyber Security Centre standards. Establish and maintain secure-by-design and explainability guardrails for AI across the estate. Provide enterprise-level architectural governance across AI pilots, ensuring reuse, integration and compliance. More ❯

cross-HMG security principles), into usable, department-specific tools and guidance. Engage with OGDs and cross-HMG forums to ensure our frameworks align with DSIT, Cabinet Office and National Cyber Security Centre standards. Establish and maintain secure-by-design and explainability guardrails for AI across the estate. Provide enterprise-level architectural governance across AI pilots, ensuring reuse, integration and compliance. More ❯

migrating from on-prem to cloud solutions. Strong analytical skills for complex technical issues. Proven ability in designing cyber security systems and governance. Familiar with tools and frameworks (e.g. NCSC, NIST, MITRE, GDPR, PCI DSS). Deep understanding of security controls (e.g. firewalls, SIEM, SOC, DLP). Proficient in leading and coordinating incident response. Effective at managing multiple priorities under More ❯

embed cyber risk Improve processes, tools, and methodologies What were looking for Strong knowledge of cyber risk and enterprise risk registers Familiarity with frameworks like NIST, ISO 27001 or NCSC CAF Confident presenting to technical and exec audiences Skilled with reporting tools (Excel, Power BI, GRC platforms) Organised, proactive, and a clear communicator Whats on offer 30 days holiday plus More ❯

programmes, shaping national resilience, and influencing board level decision making. You will lead a cyber security technical team who deliver risk based assurance across systems and third parties, using NCSC aligned frameworks. This position requires a technically sharp leader with deep experience in cyber risk, security architecture and up to the minuet awareness, who can also engage stakeholders at the More ❯

programmes, shaping national resilience, and influencing board level decision making. You will lead a cyber security technical team who deliver risk based assurance across systems and third parties, using NCSC aligned frameworks. This position requires a technically sharp leader with deep experience in cyber risk, security architecture and up to the minuet awareness, who can also engage stakeholders at the More ❯

programmes, shaping national resilience, and influencing board level decision making. You will lead a cyber security technical team who deliver risk based assurance across systems and third parties, using NCSC aligned frameworks. This position requires a technically sharp leader with deep experience in cyber risk, security architecture and up to the minuet awareness, who can also engage stakeholders at the More ❯

Ollama on bare metal/private cloud Infrastructure: Air-gapped Kubernetes, local container registries Desirable Skills - Experience with defence/government IT security protocols - Knowledge of CIS benchmarks and NCSC guidelines - Familiarity with cross-domain solutions and data diodes - Understanding of classification marking and handling procedures More ❯

living threat management system throughout the contract duration. As CHECK Team Leader , you will lead and oversee penetration testing engagements for government and critical infrastructure clients, ensuring compliance with NCSC methodologies while delivering technical and strategic value. This role requires both Infrastructure and Application CHECK certifications alongside a UK Cyber Security Council Principal Professional Title in Security Testing. You will … systems and sensitive commercial environments, making Security Check (SC) clearance essential for role performance. Key Responsibilities Lead complex penetration testing engagements across infrastructure and application domains, ensuring adherence to NCSC CHECK methodologies. Personally conduct advanced security assessments when required, with expertise in network penetration testing, web application security, cloud infrastructure assessment, and modern technology stacks, including containerised environments and microservices … regular status updates and immediate notification of critical findings. Build long-term strategic partnerships through exceptional service delivery and proactive security guidance. Ensure all penetration testing activities comply with NCSC CHECK scheme requirements, maintaining meticulous documentation and audit trails. Implement and maintain quality management processes aligned with ISO 9001 and ISO 27001 standards, driving continuous improvement in service delivery and More ❯

network boundaries for sensitive or air-gapped systems. Understanding of secure and resilient network design principles, with experience applying government or regulated sector security frameworks, such as those from NCSC, ISO, or equivalent standards. Experience in implementing and assuring secure and controlled data transfer mechanisms between trusted and untrusted network zones, including one-way and brokered transfer patterns where required. More ❯

network boundaries for sensitive or air-gapped systems. Understanding of secure and resilient network design principles, with experience applying government or regulated sector security frameworks, such as those from NCSC, ISO, or equivalent standards. Experience in implementing and assuring secure and controlled data transfer mechanisms between trusted and untrusted network zones, including one-way and brokered transfer patterns where required. More ❯

network boundaries for sensitive or air-gapped systems. Understanding of secure and resilient network design principles, with experience applying government or regulated sector security frameworks, such as those from NCSC, ISO, or equivalent standards. Experience in implementing and assuring secure and controlled data transfer mechanisms between trusted and untrusted network zones, including one-way and brokered transfer patterns where required. More ❯

the Synoptix Cyber security capability. Skills Required: Essential: Knowledge of Secure by Design principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001/2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and/or system … development environments Effective communication and report-writing skills Ability to work independently as well as collaboratively within multidisciplinary teams Desirable: CISSP, CISM, or relevant NCSC-certified qualifications Experience with model-based systems engineering (MBSE) Experience supporting formal security assurance processes Understanding of space system architectures or satellite communications DevSecOps awareness or experience with security automation Benefits: Annual Company Bonus More ❯

the Synoptix Cyber security capability. Skills Required: Essential: Knowledge of Secure by Design principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001/2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and/or system … development environments Effective communication and report-writing skills Ability to work independently as well as collaboratively within multidisciplinary teams Desirable: CISSP, CISM, or relevant NCSC-certified qualifications Experience with model-based systems engineering (MBSE) Experience supporting formal security assurance processes Understanding of space system architectures or satellite communications DevSecOps awareness or experience with security automation Benefits: Annual Company Bonus More ❯

the Synoptix Cyber security capability. Skills Required: Essential: Knowledge of Secure by Design principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001/2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and/or system … development environments Effective communication and report-writing skills Ability to work independently as well as collaboratively within multidisciplinary teams Desirable: CISSP, CISM, or relevant NCSC-certified qualifications Experience with model-based systems engineering (MBSE) Experience supporting formal security assurance processes Understanding of space system architectures or satellite communications DevSecOps awareness or experience with security automation Benefits: Annual Company Bonus More ❯

the Synoptix Cyber security capability. Skills Required: Essential: Knowledge of Secure by Design principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001/2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and/or system … development environments Effective communication and report-writing skills Ability to work independently as well as collaboratively within multidisciplinary teams Desirable: CISSP, CISM, or relevant NCSC-certified qualifications Experience with model-based systems engineering (MBSE) Experience supporting formal security assurance processes Understanding of space system architectures or satellite communications DevSecOps awareness or experience with security automation Benefits: Annual Company Bonus More ❯

knowledge and practical experience with UK healthcare security standards and regulations, including demonstrable expertise with the NHS Data Security and Protection Toolkit (DSPT), Digital Technology Assessment Criteria (DTAC) and NCSC CAF. ISO 27001:2022 implementation & maintenance: Hands-on experience with the successful implementation, certification, and ongoing maintenance of an ISO 27001 Information Security Management System (ISMS), ideally to the … OCTAVE, FAIR). Incident response: Proven track record in developing, leading, and managing security incident response plans, including experience with major incident handling and communication with regulatory bodies (eg NCSC, ICO, NHS England). Policy & governance: Extensive experience in developing, implementing, and enforcing comprehensive information security policies, standards, and procedures. Regulatory compliance: Solid understanding of UK and EU data protection More ❯

knowledge and practical experience with UK healthcare security standards and regulations, including demonstrable expertise with the NHS Data Security and Protection Toolkit (DSPT), Digital Technology Assessment Criteria (DTAC) and NCSC CAF. ISO 27001:2022 implementation & maintenance: Hands-on experience with the successful implementation, certification, and ongoing maintenance of an ISO 27001 Information Security Management System (ISMS), ideally to the … OCTAVE, FAIR). Incident response: Proven track record in developing, leading, and managing security incident response plans, including experience with major incident handling and communication with regulatory bodies (eg NCSC, ICO, NHS England). Policy & governance: Extensive experience in developing, implementing, and enforcing comprehensive information security policies, standards, and procedures. Regulatory compliance: Solid understanding of UK and EU data protection More ❯

product development activities. Liaison with Security Accreditors and Security Assurance Coordinators in support of security accreditation. Preparation of Protection Profiles, Security Targets and Evaluation Management Plans, and liaison with NCSC and commercial evaluation teams in support of evaluation activities. Preparation of TEMPEST Control Plans, advising development teams on appropriate implementation techniques, and liaising with TEMPEST test facilities. Advising development teams … solutions for a military &/or commercial products and systems. Graduate degree in relevant engineering, computing or related scientific discipline, and/or evidence of further professional study. Registered NCSC certified professional at senior level or above, or NCSC recognised qualification, e.g. ISC2Certified Information System Security Professional. Knowledge of UK/NATO Information Assurance standards, procedures & systems, including Government Functional … Standard GovS 007: Security, HMG IS1&2, ISO27000 series standards, NIST SP800 series standards, JSP440, JSP604, guidance material provided by NCSC, CPNI and NIST. Practical experience of producing Security Accreditation documentation Practical experience of NCSC and Common Criteria security evaluation techniques. Knowledge of current crypto technologies and key management systems Model Base System Engineering (MBSE) knowledge Understanding operating systems, firmware More ❯

Microsoft 365 security leveraging Purview, Conditional Access, MFA to safeguard modern workplaces. Ensuring compliance with GDPR (DPA 2018), Cyber Essentials (Basic & Plus), and ISO 27001, supported by frameworks like NCSC and NIST. Operating around cybersecurity fundamentals: CIA (Confidentiality, Integrity, Availability), proactive threat prevention, and rapid incident response About You You're naturally aligned with MSP-style work, deeply familiar with … designing and delivering compliance aligned services across GDPR, Cyber Essentials, ISO 27001. Proficient in using Microsoft 365 security stack: Purview, Defender, Conditional Access, MFA. Fluent in cybersecurity frameworks (CIA, NCSC, NIST) and modern threat prevention approaches. Why Curveball Make a real impact : You'll lead the cybersecurity footprint across clients and services. True partnership : We treat clients like collaborators, not More ❯

assessments for new applications and infrastructure, translating risks into actionable controls. * Network Security: Design secure network architectures, segmentation strategies, and firewall configurations. * Governance & Compliance: Ensure alignment with NIS regulations, NCSC CAF, and ISO27001 standards. * Stakeholder Engagement: Act as a trusted advisor to senior leaders, translating technical risks into business insights. What You'll Bring Essential: * 5+ years in IT solution … development (architecture, infrastructure, cloud) * Proven experience with threat modelling and security architecture * Strong knowledge of NIS, NCSC CAF, and ISO27001 * Experience working with external audit and certification bodies * Familiarity with Agile, DevOps, and other SDLC methodologies Desirable: * Degree in Computer Science, Engineering, or related field * Experience in regulated environments (e.g., Distribution Network Operators) Who Should Apply? This role is ideal More ❯

assessments for new applications and infrastructure, translating risks into actionable controls Network Security: Design secure network architectures, segmentation strategies, and Firewall configurations Governance & Compliance: Ensure alignment with NIS regulations, NCSC CAF, and ISO27001 standards Stakeholder Engagement: Act as a trusted advisor to senior leaders, translating technical risks into business insights. What You'll Bring Essential. 5+ years in IT solution … development (architecture, infrastructure, cloud). Proven experience with threat modelling and security architecture. Strong knowledge of NIS, NCSC CAF, and ISO27001. Experience working with external audit and certification bodies. Familiarity with Agile, DevOps, and other SDLC methodologies Desirable. Degree in Computer Science, Engineering, or related field. Experience in regulated environments (eg, Distribution Network Operators) Who Should Apply? This role is More ❯

and client site requirements. Sponsorship is not available. Who we are: Cyber Guarded Ltd is a long-established and independent cyber security company based in Belfast. As the premier NCSC-approved supplier for CHECK Penetration Testing in Northern Ireland, including Cyber Incident Exercising being conducted at the highest levels, along with Cyber Advisor - Cyber Essentials, we support clients across both … Cyber Scheme Team Member (CSTM) or CREST Registered Penetration Tester (CRT) or have the technical ability and motivation to gain the above qualifications in the near future to achieve NCSC CHECK Penetration Testing status. What You’ll Do: Perform infrastructure, web, cloud, and OT penetration testing Produce clear, actionable reports and remediation advice Engage with clients through the full testing More ❯

cloud, hybrid, and on-prem platforms, and ensuring systems are resilient and secure-by-design. Key Duties: Champion Secure by Design principles across teams and platforms. Align architecture with NCSC, GovAssure, ISO27001, PCI-DSS, and GDPR standards. Guide and support technical teams in making risk-aware, security-focused decisions. Shape roadmaps, frameworks, and compliance plans that support innovation. Provide expert … security. Lead contributions to the GovAssure process and other audit/compliance activities. Requirements: Proven experience in security architecture and leadership. Strong understanding of compliance frameworks and cybersecurity standards (NCSC, ISO27001, GDPR, PCI-DSS). Experience in cloud, hybrid, and on-premise environments. Excellent communication, mentoring, and problem-solving skills. Ability to influence technical decisions and guide teams across multiple More ❯