26 to 49 of 49 JSP 440 Jobs

expected but not mandatory. Thorough understanding of modern IT infrastructure, applications and Cloud based technologies. Strong understanding of Secure by Design principles and MOD security policies and requirements (e.g. JSP 440, JSP 605, DEFCON 658). Proven analytical skills with a logical approach to problem-solving and the ability to develop innovative ideas and effective solutions. Effective More ❯

Provide strategic guidance on secure cloud adoption, data protection, and architectural risk management Conduct security assessments, identifying risks and proposing effective mitigation strategies Ensure compliance with MOD policies, including JSP 440, and NCSC cloud security principles Work closely with delivery teams, architects, and senior stakeholders to embed security throughout the solution lifecycle Support security assurance and accreditation activities … based systems Essential Skills & Experience: Proven experience as a Security Architect within MOD or wider defence/public sector environments Strong understanding of MOD security protocols and delivery frameworks (JSP 440, DEFCONs, etc.) Demonstrable experience in cloud security (Azure, AWS or hybrid environments), ideally within secure or classified settings Expertise in risk management, security governance, and assurance practices More ❯

Provide strategic guidance on secure cloud adoption, data protection, and architectural risk management Conduct security assessments, identifying risks and proposing effective mitigation strategies Ensure compliance with MOD policies, including JSP 440, and NCSC cloud security principles Work closely with delivery teams, architects, and senior stakeholders to embed security throughout the solution lifecycle Support security assurance and accreditation activities … based systems Essential Skills & Experience: Proven experience as a Security Architect within MOD or wider defence/public sector environments Strong understanding of MOD security protocols and delivery frameworks (JSP 440, DEFCONs, etc.) Demonstrable experience in cloud security (Azure, AWS or hybrid environments), ideally within secure or classified settings Expertise in risk management, security governance, and assurance practices More ❯

extensive experience, including but not limited to: Delivering cross-cutting Engineering; Security Architectures Providing security assurance services supporting Defence Digital, DE&S, or Strategic Command Supporting MOD projects following JSP 604/453 and JSP 440 methodologies, including Secure by Design (SbD) Knowledge of the following is also necessary: Defence CIS, Land Tactical CIS, pan-Government, and More ❯

testing Modelling Cyber security risks using established and novel frameworks Essential experience of the Principal Cyber Security Consultant: In-depth knowledge of MoD Security policy In-depth knowledge of JSP440 and JSP604 Experienceof SbD and the application of it to MoD Products, Services or Systems The ability to evaluate established and novel cyber security solution concepts and strategies The ability More ❯

testing Modelling Cyber security risks using established and novel frameworks Essential experience of the Principal Cyber Security Consultant: In-depth knowledge of MoD Security policy In-depth knowledge of JSP440 and JSP604 Experienceof SbD and the application of it to MoD Products, Services or Systems The ability to evaluate established and novel cyber security solution concepts and strategies The ability More ❯

into secure, compliant, and cost-effective Azure solutions. Collaborate with cybersecurity teams to ensure solutions meet UK government security classifications, accreditation processes, and relevant compliance frameworks (eg NCSC, MOD JSP, ISO 27001). Support deployment automation and Infrastructure-as-Code (IaC) approaches leveraging Azure Resource Manager (ARM), Bicep, or Terraform. Conduct Azure cost optimisation, performance tuning, and cloud governance … obtain clearance required). Desirable Skills Experience working in Defence, Aerospace, or Government sectors. Familiarity with enterprise network integration and Legacy system interfacing. Knowledge of MOD standards such as JSP 440, JSP 604, and Secure by Design principles. Exposure to Microsoft Purview, Defender for Cloud, or other advanced security services. TOGAF or SABSA certification. Certifications (Mandatory) Microsoft More ❯

are we looking for? This role of Project Security Advisor is great for you if: Strong understanding of HMG and MOD security frameworks, including SPF/GovS 007, SAL, JSP 440, and CSM. Experience conducting audits, investigations, and risk management. Knowledge of HMG/MOD information and cyber security principles, standards, and best practices. We're all about More ❯

Industry to include; Secure By Design (SBD), CISSP, HMG Information, Assurance Policies, Standards and Guidelines, including the Security Policy Framework, the CESG IA Portfolio and MoD JSPs such as JSP440, JSP604 (plus other standard MoD IA methods). As leading players in MOD's cyber security transformation to Secure by Design (SbD), we are looking for team members and leaders More ❯

accreditation, ensuring all necessary documentation is up to date Support MOD SAQ (Supplier Assurance Questionnaire) compliance, working with internal teams to meet security requirements such as MOD Security Policy JSP440 Ensure adherence to government and financial sector security regulations across the agency Internal training Delivery compliance training to staff on GDPR, security awareness and best practices and ISO requirements Ensure More ❯

accreditation, ensuring all necessary documentation is up to date Support MOD SAQ (Supplier Assurance Questionnaire) compliance, working with internal teams to meet security requirements such as MOD Security Policy JSP440 Ensure adherence to government and financial sector security regulations across the agency Internal training Delivery compliance training to staff on GDPR, security awareness and best practices and ISO requirements Ensure More ❯

Security Professional. Knowledge of UK/NATO Information Assurance standards, procedures & systems, including Government Functional Standard GovS 007: Security, HMG IS1&2, ISO27000 series standards, NIST SP800 series standards, JSP440, JSP604, guidance material provided by NCSC, CPNI and NIST. Practical experience of producing Security Accreditation documentation Practical experience of NCSC and Common Criteria security evaluation techniques. Knowledge of current crypto More ❯

within public sector/govt. Broad understanding of Security across SecOps, Cloud, Infrastructure, Networks & Engineering. Knowledge of Government cyber requirements related to Defence and Security e.g. Secure by Design, JSP 440. Excellent stakeholder management – must be able to articulate Security principles to both technical and non-technical stakeholders. Previous experience of using appropriate methodologies to identify, assess and manage More ❯

Personnel Security across the business. Maintain and evolve security policies and procedures to reflect changing business needs, in line with Government Functional Standards such as GovS 007: Security and JSP 440/441/490 . Work in collaboration with HR, IT, and Facilities to embed security into all relevant functions and projects. Oversee security vetting procedures for More ❯

Nice to have) Experience of supporting development in a government or defence sector; Hands-on experience of configuring CI/CD tools and Kubernetes; Knowledge of MOD policies (e.g. JSP 440); Experience with Slunk, Elastic SIEM, Nessus/Tenable Management of SOC processes Environment and Benefits We have modern offices in Cody Technology Park and have well established More ❯

technical certifications. Experience with infrastructure automation tools such as PowerShell, Ansible and Terraform. Understanding of datacentre power and cooling requirements. Knowledge of secure environments and security regulations such as JSP 440 or SCIDA. Experience with monitoring tools like SCOM or SolarWinds. If you are interested in this role but not sure if your skills and experience are exactly More ❯

in highly governed environments with tight SLAs. Skilled in patch management and system update procedures. It would be great if you had: Experience with secure environments and familiarity with JSP 440 and SCIDA requirements. Proficiency in scripting (e.g., Bash, Python) for secure automation. Familiarity with vulnerability management tools such as OpenSCAP and Nessus. Exposure to Red Hat deployment More ❯

in highly governed environments with tight SLAs. Skilled in patch management and system update procedures. It would be great if you had: Experience with secure environments and familiarity with JSP 440 and SCIDA requirements. Proficiency in scripting (e.g., Bash, Python) for secure automation. Familiarity with vulnerability management tools such as OpenSCAP and Nessus. Exposure to Red Hat deployment More ❯

the following: Essential Ability to travel and work onboard surface and sub-surface vessels Ability to travel for projects as and when required (occasionally includes foreign travel) Knowledge of JSP440/441 Working knowledge of SharePoint Knowledge and experience with information management MOD security clearance or be willing to undergo Security Clearance to DV level Desirable Skills Some knowledge of More ❯

the following: Essential Ability to travel and work onboard surface and sub-surface vessels Ability to travel for projects as and when required (occasionally includes foreign travel) Knowledge of JSP440/441 Working knowledge of SharePoint Knowledge and experience with information management MOD security clearance or be willing to undergo Security Clearance to DV level Desirable Skills Some knowledge of More ❯

the following: Essential Ability to travel and work onboard surface and sub-surface vessels Ability to travel for projects as and when required (occasionally includes foreign travel) Knowledge of JSP440/441 Working knowledge of SharePoint Knowledge and experience with information management MOD security clearance or be willing to undergo Security Clearance to DV level Desirable Skills Some knowledge of More ❯

choice of technologies, database structures, documentation. Securing in-house software tools in-line, to align with NCSC guidelines and ultimately adhere to MOD requirements (i.e., Secure by Design and JSP440). Architecting and implementing cloud solutions to make software available to stakeholders reliably. Developing the technical knowledge of direct reports through pair-programming and identification of courses relevant to the More ❯

you will be responsible for safeguarding government information while protecting Rowden’s personnel, data, and facilities. You will play a critical role in maintaining compliance with GovS 007 and JSP 440, ensuring Rowden adheres to government frameworks and security standards. In this role, you will administer and continuously enhance Rowden’s Security Management System, fostering a strong security More ❯

in highly governed environments with tight SLAs. Skilled in patch management and system update procedures. It would be great if you had: Experience with secure environments and familiarity with JSP 440 and SCIDA requirements. Proficiency in scripting (, Bash, Python) for secure automation. Familiarity with vulnerability management tools such as OpenSCAP and Nessus. Exposure to Red Hat deployment tools More ❯