26 to 50 of 57 NCSC Jobs in the UK excluding London

delivering project documentation using SbD principles Experience in Security/Information Assurance (e.g., CESG Good Practice Guides) Experience in Security risk assessment (e.g., NCSC methodology) Commitment to quality, performance, and cost-efficiency Strong collaboration and teamwork skills Ability to work autonomously while maintaining professional integrity Proficient computer skills, including ...

analysts to integrate and manage security technologies, where you will integrate and manage security technologies ensuring compliance with UK regulations such as GDPR, NCSC Guidelines, industry best practices (ISO27001, CISSP) and contractual security obligations. Reporting to an ‘Expert of Technology’, as a Technology Engineer will be part of a team ...

standards, and repeatable remediation approaches. Security Standards & Assurance (40%) Support clients with security improvements aligned to frameworks such as Cyber Essentials, ISO27001 principles, and NCSC guidance. Contribute to internal and client-facing security reviews, readiness assessments, and improvement recommendations. Ensure designs and delivered solutions follow secure baseline standards and good ...

standards, and repeatable remediation approaches. Security Standards & Assurance (40%) Support clients with security improvements aligned to frameworks such as Cyber Essentials, ISO27001 principles, and NCSC guidance. Contribute to internal and client-facing security reviews, readiness assessments, and improvement recommendations. Ensure designs and delivered solutions follow secure baseline standards and good ...

build strong internal relationships with other members in the business. You will have worked in similar roles and have a strong knowledge of the NCSC CAF framework, with expert knowledge of Principal B, as well as the different compliance frameworks associated with the utilities world. Significant cyber security experience, some ...

Need: Clearance: Active SC. Experience: Proven track record in information assurance on large-scale HMG or government contracts. Standards: Strong knowledge of ISO27001, NIST, NCSC, and NPSA standards. Communication: Ability to influence stakeholders and build trusted customer relationships. Preferred: Experience with the Telecoms Security Act (TSA) or auditing. Why Apply ...

maintain the EUC layer of a large-scale Wintel and VMware Horizon environment. This platform underpins critical defence-sector systems and must meet stringent NCSC-aligned security and architectural standards. You’ll take ownership of the VDI/EUC stack end-to-end from design and build through to deployment ...

maintain the EUC layer of a large-scale Wintel + VMware Horizon environment. This work underpins critical defence-sector systems and must align to NCSC-aligned security and architectural standards. You should be proficient in VMware and experienced in developing VMware Horizon environments. If you can take charge of every ...

Working knowledge of ISO/IEC 27001 (risk, audit cycles, controls, evidence) Understanding of PCI DSS requirements and SAQ/attestation processes Awareness of NCSC best-practice guidance (cloud, phishing, access control, incident management, etc.) Experience producing clear, concise reports and presenting to stakeholders Ability to translate technical findings into ...

unionised, regulated, or safety-critical environments. Certification or formal training in change management (eg, PROSCI, APMG Change Practitioner, or ACMP). Desirable: Familiarity with NCSC Cyber Assessment Framework (CAF) or ISO 27019/IEC 62443. Previous experience in utilities, water, or energy infrastructure. Experience supporting business transformation within OT/ ...

vulnerability assessments and other associated activities as appropriate within the Trust to Identify, remediate and mitigate risks to the Trust. Liaise with NHS England, NCSC and other relevant bodies as required ensuring IT Security advisories, directives and notifications are actioned and logged. This includes but is not limited to CareCERT ...

government-led programmes is ideal but not essential. Strong knowledge in designing operational processes and service transition. Familiarity with Secure by Design principles, NCSC guidelines, Cyber Essentials, ISO 27001, UK GDPR, and Data Protection Act is preferred. Proficient in requirements gathering, stakeholder analysis, and documentation. Ability to produce and manage ...

frameworks and managing issue lifecycles from identification to resolution. Key Skills Security Controls Framework mapping with exposure to NIST, ISO 27001, NHS DSP toolkit, NCSC CAF and others Risk and issue assessment, tracking and management Compliance and evidence collation/management Governance reporting Stakeholder engagement Overall program management Responsibilities & Achievements ...

mark equipment Monitor and maintain network security, ensuring safe and appropriate use Assist with cyber incident response and promote cyber safety in line with NCSC/DFE guidelines Ensure compliance with GDPR, RPA, and Copyright Licensing Authority regulations Set up and operate AV equipment for assemblies, school events, and performances ...

stakeholders. Manage risk assessments, DPIAs, and supplier assurance reviews. Ensure compliance with relevant legislation and frameworks, including GDPR, Data Protection Act 2018, ISO 27001, NCSC guidance, and organisational policies. Develop, maintain, and enforce information security and assurance policies. Conduct audits and oversee remediation activities. Coordinate incident response investigations and ensure ...

vulnerability assessments and other associated activities as appropriate within the Trust to Identify, remediate and mitigate risks to the Trust. Liaise with NHS England, NCSC and other relevant bodies as required ensuring IT Security advisories, directives and notifications are actioned and logged. This includes but is not limited to CareCERT ...

could include occasional travel to sites in Chippenham and Exeter within the 1-2 days. The role: Conduct comprehensive cyber security audits aligned to NCSC CAF and other recognised frameworks. Assess organisational security posture across the full system lifecycle, ensuring compliance and identifying areas for improvement. Produce clear, actionable audit … What you'll bring: Ability to lead audits, engage stakeholders, and communicate findings effectively. Proven expertise in Cyber Security Auditing, with strong knowledge of: NCSC Cyber Assessment Framework (CAF). ISO 27000 series, NIST Cyber Security & Risk Management Frameworks. Legacy IA standards and NCSC guidance. Familiarity with MOD security frameworks ...

Data at Rest/In Transit), Protective Monitoring, and Security Auditing. Strong understanding of the ISO 27000 series, NIST Cyber Security & Risk Management Frameworks, NCSC CAF, and other industry standards. Familiarity with NCSC guidance and legacy Information Assurance (IA) standards. Experience with MOD security frameworks including ...

What is Security Architecture? Security Architecture is the practice of designing the technology, people and processes within computer systems to achieve security goals (National Cyber Security Centre). We are seeking an exceptionally capable Security Architects to join the company within the Security Architecture team within the Security Practice. … Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council for Secure Systems Architecture. NCSC Certified Cyber Professional in Security Architecture. IEng or CEng registered with UK Engineering body. Chartership through the British Computer Society. SABSA Chartered Security Architect Other Information Logiq ...

security documentation Support clients in defining business led security requirements and secure-by-design solutions Interpret and apply ISO 27001/ISO 27002, NIST, NCSC CAF, and MOD security frameworks Engage confidently with technical and non-technical stakeholders, including senior leaders Contribute to bid support and presales activity where required … Bring Strong experience in security governance, risk, and information assurance Deep understanding of ISO 27000-series standards and security risk frameworks Familiarity with NCSC guidance and legacy IA standards Experience operating within MOD/defence-aligned security frameworks (e.g. JSP 604, JSP 440, JSP 902) Ability to clearly articulate risk ...

Skills Required: Essential: Knowledge of Secure by Design principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001/2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security … development environments Effective communication and report-writing skills Ability to work independently as well as collaboratively within multidisciplinary teams Desirable: CISSP, CISM, or relevant NCSC-certified qualifications Experience with model-based systems engineering (MBSE) Experience supporting formal security assurance processes Understanding of space system architectures or satellite communications DevSecOps awareness ...

plan to support policy adoption Coordinate messaging across internal teams, suppliers, and delivery partners Translate complex security policy frameworks (e.g. JSP 440, ISO27001, NIST, NCSC ) into audience-appropriate materials Produce clear communication outputs such as FAQs, dashboards, briefing packs and campaign content Track policy updates, engagement gaps, and risks linked … uptake Essential Skills & Experience: Background in cybersecurity , cyber policy , or information assurance Familiarity with frameworks such as JSP 440 , JSP 604 , ISO27001 , NIST , and NCSC Cloud Security Principles Experience delivering communications or policy engagement in secure or regulated environments Strong written and verbal communication skills - comfortable engaging both technical ...

guidance materials. Maintain a structured policy framework that aligns with organisational requirements, legal obligations and external standards (e.g. JSP 440 , JSP 604 , ISO27001 , NCSC , NIST , GDPR ). Collaborate with cyber, risk, legal, assurance and delivery stakeholders to ensure policies are fit-for-purpose and support effective implementation. Track changes … clear, referenceable policy content. Skills & Experience Active SC Clearance Strong understanding of security and cyber policy frameworks including: JSP 440/JSP 604 NCSC Cloud Security Principles ISO27001/NIST Cybersecurity Framework Information assurance, data protection and risk governance in regulated environments Proven experience in writing, reviewing and maintaining formal ...

such as Cyber Essentials. *Key Tasks Include: * Lead the development, implementation, and monitoring of Estyn's IT compliance framework, ensuring alignment with government policies, NCSC guidance, and relevant legislation. Work closely with the Inspection Operations and Quality Assurance Manager to ensure the smooth running of our critical IT systems. Oversee … such as Cyber Essentials. *Key Tasks Include: * Lead the development, implementation, and monitoring of Estyn's IT compliance framework, ensuring alignment with government policies, NCSC guidance, and relevant legislation. Work closely with the Inspection Operations and Quality Assurance Manager to ensure the smooth running of our critical IT systems. Oversee ...

cyber assurance activities across systems, services, and third-party suppliers Assess and assure compliance against frameworks such as ISO 27001, NIST, Cyber Essentials, and NCSC guidance Conduct and review risk assessments, control testing, and security assurance reports Provide expert advice on security-by-design for new and existing services Support … Skills & Experience Essential: Strong experience in cyber assurance, cyber risk, or information security governance Proven knowledge of security standards and frameworks (ISO 27001, NIST, NCSC, etc.) Experience assessing technical and organisational security controls Ability to translate cyber risk into clear, business-focused language Confident stakeholder engagement at senior and delivery ...