26 to 50 of 137 Remote NCSC Jobs

management processes Support vulnerability management, penetration testing, and incident response Requirements for this role: 3+ years' experience in a senior cyber security role Strong knowledge of security frameworks (NIST, NCSC, CIS, MITRE ATT&CK) Hands-on experience with security tools: SIEM, IDS/IPS, firewalls, endpoint protection Expertise in Azure security and securing cloud platforms A solid understanding of vulnerabilities More ❯

work in the UK; willing to undergo DBS and Counter Terrorist Check. Desirable Skills: Certifications such as CISSP, or other relevant qualifications. Experience with additional frameworks (e.g., SOC2, NIST, NCSC CAF). More than 2 years' experience delivering IT or cybersecurity solutions. Benefits: 30 days annual leave + 8 bank holidays Additional day off for your birthday 3% employer pension More ❯

We are extremely proud of our Cyber team who are accountable for a large portfolio of high profile clients. With further growth in our pipeline, we have a new role for a Managing Security Architect tasked with embedding security best More ❯

to "Wrap security around Products". Proficient in Scripting languages such as PowerShell, YAML, JASON, etc. Experience in software security design review Strong knowledge of development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience More ❯

CloudFormation, Cloud-Init Leadership experience in complex, multi-disciplinary environments, delivering within deadlines and engaging stakeholders Skills in Containerization: Kubernetes, ECS/Fargate, Nomad; Security: Hashicorp Vault, PKI, TLS, NCSC Principles; Networking: VPC Peering, DNS, Service Mesh; Identity & Device Management: Keycloak, Entra ID, JAMF, Okta Role Responsibilities: Serve as a technical authority and hands-on engineer within an agile team More ❯

minimum of 5 years. Full UK driving licence. Ability to obtain (or currently hold) SC or DV clearance - this is non-negotiable and is set by the NSCS (National Cyber Security Centre ) for all Check Members. Willingness to travel for client engagements or on-site support. Travel is within the United Kingdom. CCL is an equal opportunities employer and positively More ❯

Smart energy and metering Oil and gas Water Civil Nuclear Transport (including aviation, rail, maritime, road and autonomous vehicles) Wider critical infrastructure Security standards relating to the sector, including: NCSC NIS Guidance and CAF ISO 27001 and ISO 27005 NERC CIP ISA-99/IEC 62443 NIST CSF. Additional information Please note that the interview stages may be subject to More ❯

Smart energy and metering Oil and gas Water Civil Nuclear Transport (including aviation, rail, maritime, road and autonomous vehicles) Wider critical infrastructure Security standards relating to the sector, including: NCSC NIS Guidance and CAF ISO 27001 and ISO 27005 NERC CIP ISA-99/IEC 62443 NIST CSF. Additional information Please note that the interview stages may be subject to More ❯

utilities, or similar regulated sectors. Strong understanding of Operational Technology (OT) environments, with hands-on experience in securing and modernising legacy systems, including DCS, SCADA, and ICS, aligned to NCSC CAF, IEC 62443, and NIST 800-82. Direct experience supporting Ofgem regulatory reporting and compliance, including preparation of ISSA returns, evidence packs, and action tracking in line with NIS More ❯

Have SC clearance or the ability to go through SC clearance Any SecOps related certification (including security vendor certificates) A understanding and demonstration of penetration testing and red-tanning (NCSC and CREST accredited schemes) Strong technical background in computing, networks and programming Excellent communication skills A genuine interest to work for multi-national clients in the security field. Further desirables More ❯

Guidelines). Has a comprehensive understanding of what it takes to comply with cyber security industry standards and frameworks in practise (e.g. ISO 27001, NIST CSF, SP 800-53, NCSC CAF, Cyber Essentials). Has a thorough understanding of cyber security threat and risk with the ability to think like an attacker and design controls that make a real difference. More ❯

mitigation planning & accreditation Familiar with: ISO27000, NIST SP800, JSP440, GovS 007, Common Criteria Understanding of platform security, firmware, cloud, and TEMPEST controls Degree in relevant field and/or NCSC-certified (e.g. CISSP, CISM) Strong documentation and stakeholder engagement skills If you're an SC-cleared Security Engineer looking for your next Outside IR35 contract in the defence space, we More ❯

mitigation planning & accreditation Familiar with: ISO27000, NIST SP800, JSP440, GovS 007, Common Criteria Understanding of platform security, firmware, cloud, and TEMPEST controls Degree in relevant field and/or NCSC-certified (e.g. CISSP, CISM) Strong documentation and stakeholder engagement skills If you're an SC-cleared Security Engineer looking for your next Outside IR35 contract in the defence space, we More ❯

mitigation planning & accreditation Familiar with: ISO27000, NIST SP800, JSP440, GovS 007, Common Criteria Understanding of platform security, firmware, cloud, and TEMPEST controls Degree in relevant field and/or NCSC-certified (e.g. CISSP, CISM) Strong documentation and stakeholder engagement skills If you're an SC-cleared Security Engineer looking for your next Outside IR35 contract in the defence space, we More ❯

mitigation planning & accreditation Familiar with: ISO27000, NIST SP800, JSP440, GovS 007, Common Criteria Understanding of platform security, firmware, cloud, and TEMPEST controls Degree in relevant field and/or NCSC-certified (e.g. CISSP, CISM) Strong documentation and stakeholder engagement skills If you're an SC-cleared Security Engineer looking for your next Outside IR35 contract in the defence space, we More ❯

mitigation planning & accreditation Familiar with: ISO27000, NIST SP800, JSP440, GovS 007, Common Criteria Understanding of platform security, firmware, cloud, and TEMPEST controls Degree in relevant field and/or NCSC-certified (e.g. CISSP, CISM) Strong documentation and stakeholder engagement skills If you're an SC-cleared Security Engineer looking for your next Outside IR35 contract in the defence space, we More ❯

mitigation planning & accreditation Familiar with: ISO27000, NIST SP800, JSP440, GovS 007, Common Criteria Understanding of platform security, firmware, cloud, and TEMPEST controls Degree in relevant field and/or NCSC-certified (e.g. CISSP, CISM) Strong documentation and stakeholder engagement skills If you're an SC-cleared Security Engineer looking for your next Outside IR35 contract in the defence space, we More ❯

mitigation planning & accreditation Familiar with: ISO27000, NIST SP800, JSP440, GovS 007, Common Criteria Understanding of platform security, firmware, cloud, and TEMPEST controls Degree in relevant field and/or NCSC-certified (e.g. CISSP, CISM) Strong documentation and stakeholder engagement skills If you're an SC-cleared Security Engineer looking for your next Outside IR35 contract in the defence space, we More ❯

mitigation planning & accreditation Familiar with: ISO27000, NIST SP800, JSP440, GovS 007, Common Criteria Understanding of platform security, firmware, cloud, and TEMPEST controls Degree in relevant field and/or NCSC-certified (e.g. CISSP, CISM) Strong documentation and stakeholder engagement skills If you're an SC-cleared Security Engineer looking for your next Outside IR35 contract in the defence space, we More ❯

any security gaps or vulnerabilities. Work with auditors to and supply evidence as required. Stay ahead of the security curve and make best practice recommendations to senior management (NIST, NCSC etc.) Be able to work autonomously on complex projects, gathering key information and making appropriate recommendations. Mentoring and support for other members of the Team. What You'll Bring Solid More ❯

Assurance within Defence or UK Government environments. Strong understanding of risk management frameworks and secure-by-design principles. Familiarity with government and defence security standards such as: HMG/NCSC IA Policies and Guidelines JSP440 and other MoD IA standards Cyber Essentials NIST, NIS-D ONR SyAPs (Security Assessment Principles) Excellent stakeholder communication skills – you can clearly explain complex security More ❯

and experience with leadership in a security functional role is essential. Recognised cyber security certifications and a track record of continuous professional development is preferred UK Cyber Security Council, NCSC, CISSP, CEH, SFIA etc. Deep technical knowledge of cyber security trends, threats, tools, and protocols -demonstratable vendor agnostic technical appreciation of both defensive and offensive Cyber Security with focus on More ❯

CISO, you will: Develop and implement a robust cybersecurity strategy to safeguard DBT's sensitive data and digital assets. Lead risk management, ensuring compliance with UK government standards (eg, NCSC, GDPR, and NIST frameworks). Oversee incident response, threat intelligence, and resilience planning to protect against cyber threats. Collaborate with cross-government partners, industry stakeholders, and international counterparts to enhance More ❯

analysis, and define security requirements for systems including remote access (VPNs) and secure OT-to-IT data exchange. Ensure compliance with industry standards such as ISO27001, NIS Directive , and NCSC's Cyber Assessment Framework (CAF) . Support long-term architectural planning, contributing to multi-year roadmaps and aligning solutions with regulatory and business strategy. What You'll Bring 3+ years More ❯

organisation. Implementing best-practice standards in the use of technology; appropriate and effective choice of technologies, database structures, documentation. Securing in-house software tools in-line, to align with NCSC guidelines and ultimately adhere to MOD requirements (i.e., Secure by Design and JSP440). Architecting and implementing cloud solutions to make software available to stakeholders reliably. Developing the technical knowledge More ❯