clients are diverse, and we cover many sectors with particular specialisms in Government, High-end Defence Assurance and Telecommunications. We work closely with the NCSC developing new schemes such as Cross Domain Solutions Testing (https://www.ncsc.gov.uk/blog-post/ncsc-cross-domain-industry-pilot-stage-2) and … are members of all current NCSC and CREST testing schemes - as a result we conduct interesting and challenging work that isn t on offer elsewhere. What will you be doing? Management and delivery of penetration testing services to clients to include the following: Scoping, Financial and risk management, delivery of … proposals and participating in client presentations. What will you need to do it? Clear and demonstrable understanding of penetration testing and red-teaming including NCSC and CREST accredited schemes. Proven experience working within the UK cybersecurity industry. Demonstrable understanding and practical application of information security principles. Strong technical background more »
Newport, Wales, United Kingdom Hybrid / WFH Options
Resourcing Group
Senior CyberSecurity Role or equivalent (Health Care desired). A professional CyberSecurity qualification or membership. E.g. CISMP, CISSP, CASP, ISC2, CompTIA, Tiger, NCSC An understanding of Cyber Sec regulations e.g. NIS-D Proven experience of leading CyberSecurity projects. The ability to convey complex IT problems to non more »
including penetration tests, hardware & software compliance, and PCI, and ensure any gaps are addressed. Work with external stakeholders and information security groups including DCMS, NCSC and accreditor organisations and others to improve cybersecurity standards. Oversee the security review of third-party suppliers and systems. Manage the Cyber Essentials, GovAssure more »
clients are diverse, and we cover many sectors with particular specialisms in Government, High-end Defence Assurance and Telecommunications. We work closely with the NCSC developing new schemes such as Cross Domain Solutions Testing (https://www.ncsc.gov.uk/blog-post/ncsc-cross-domain-industry-pilot-stage-2) and … are members of all current NCSC and CREST testing schemes - as a result we conduct interesting and challenging work that isn’t on offer elsewhere. What will you be doing? Management and delivery of penetration testing services to clients to include the following: Scoping, Financial and risk management, delivery of … proposals and participating in client presentations. What will you need to do it? Clear and demonstrable understanding of penetration testing and red-teaming including NCSC and CREST accredited schemes. Proven experience working within the UK cybersecurity industry. Demonstrable understanding and practical application of information security principles. Strong technical background more »
Infrastructure services are provided at a high level, regularly reviewing and auditing key partners and vendors Represent the council at supplier meetings. Ensure that NCSC and infosec guidance is considered as part of any design or changes to the council Infrastructure. Manage 3rd parties relating to IP Addressing, VLAN Management more »
Burton Upon Trent, England, United Kingdom Hybrid / WFH Options
Clinigen
Security, Security Operations Centre and Investigations, Incident Management and Security Engineering. Good understanding and practical experience of CyberSecurity Frameworks and standards such as NCSCsecurity principles, NIST Framework, ISO 27001, ISO27005, IEC62443 etc. Good understanding of Cyber Assurance Framework and experience with working with Regulators and providing compliance updates more »
the heart of everything we do must always come first. An understanding of compliance and regulatory frameworks such as the NationalCyberSecurityCentre (NCSC) Cyber Assessment Framework (CAF) and ISA/IEC 62443, ISO/IEC 27001/27002, and GDPR. Working knowledge of security technologies including SIEM, SOAR more »
Senior CyberSecurity Role or equivalent (Health Care desired). A professional CyberSecurity qualification or membership. E.g. CISMP, CISSP, CASP, ISC2, CompTIA, Tiger, NCSC An understanding of Cyber Sec regulations e.g. NIS-D Proven experience of leading CyberSecurity projects. The ability to convey complex IT problems to non more »
24x7", ensuring our clients can defend at speed. CyberOne is credited and authorised by the world’s leading standards bodies such as the NationalCyberSecurityCentre, CREST and ISO. We care about providing the best possible service and reducing business risk, and our values reflect this: customer first, relentless more »
24x7", ensuring our clients can defend at speed. CyberOne is credited and authorised by the world’s leading standards bodies such as the NationalCyberSecurityCentre, CREST and ISO. We care about providing the best possible service and reducing business risk, and our values reflect this: customer first, relentless more »
Bristol, Avon, South West, United Kingdom Hybrid / WFH Options
Babcock
/onsite and three days working from home. Essential experience of the Information Assurance Officer Working knowledge HMG IA Standards, NationalCyberSecurityCentre (NCSC) IA Publications, and MOD JSP440 Experience of international standards including ISO27000, ISO28000 and NIST CyberSecurity Framework Providing customer facing ISO27k/ISO28k advice and more »
EC2. Experience required: * Designing AWS architectures that align to the AWS Well-Architected Framework * Designing AWS architectures for public sector secure organisations, aligned to NCSC Cloud Security principles, ideally using AWS PALZ or similar This is a 3 month contract initially outside IR35. Candidates can work out of offices in more »
South Central Ambulance Service NHS Foundation Trust
Berkshire to Hampshire. We also cover Sussex for Patient Transport Services. The role will also work alongside technical specialists and third-party services including NCSC and NHS England's CareCERT service, drawing on their skills and knowledge to provide a cohesive support service and to help deliver the future Digital more »
and international security standards including the International Standards Organisation (ISO) 27000 series, NIST CyberSecurity Framework, Risk Management Framework, and Special Publication 800 Series, NCSCCyber Assessment Framework, and other industry frameworks. Familiarity with NCSC and industry best practice guidance. Experience in MOD security policy, processes, and practices (inc Joint … Full Membership of the Chartered Institute of Information Security (CIISec). Chartered or Principal status via the UK CyberSecurity Council for Risk Management. NCSC Certified Cyber Professional in Risk Management. IEng or CEng registered with UK Engineering body. Chartership through the British Computer Society. - Company benefits include: Discretionary more »
in investigating security breaches, in delivering security training and awareness initiatives. Must hold certifications in information security i.e. Certified Information Systems Security Professional (CISSP), NCSC IA Architect/SIRA (Senior) or ex-CLAS (current or previously held) Experience of using Agile project delivery toolsets: Jira, Confluence, ServiceNow, CI/CD. more »
Employment Type: Permanent
Salary: £70000 - £85000/annum to £85,000 (DOE) Negotiable, Bonus
Croydon, Surrey, South East, United Kingdom Hybrid / WFH Options
Syntax Consultancy Limited
in investigating security breaches, in delivering security training and awareness initiatives. Must hold certifications in information security i.e. Certified Information Systems Security Professional (CISSP), NCSC IA Architect/SIRA (Senior) or ex-CLAS (current or previously held) Experience of using Agile project delivery toolsets: Jira, Confluence, ServiceNow, CI/CD. more »
Security Accreditors and Security Assurance Coordinators in support of security accreditation. Preparation of Protection Profiles, Security Targets and Evaluation Management Plans, and liaison with NCSC and commercial evaluation teams in support of evaluation activities. Preparation of TEMPEST Control Plans, advising development teams on appropriate implementation techniques and liaising with TEMPEST … or commercial products and systems. Graduate degree in relevant engineering, computing or related scientific discipline, and/or evidence of further professional study. Registered NCSC certified professional at senior level or above, or NCSC recognised qualification, e.g. ISC2Certified Information System Security Professional. Knowledge of UK/NATO Information Assurance standards … systems, including Government Functional Standard GovS 007: Security, HMG IS1&2, ISO27000 series standards, NIST SP800 series standards, JSP440, JSP604, guidance material provided by NCSC, CPNI and NIST. Practical experience of producing Security Accreditation documentation Practical experience of NCSC and Common Criteria security evaluation techniques. Knowledge of current crypto technologies more »
or substantial relevant experience. Strong knowledge of OT risk management, cyber threats, and I&C systems operations. Expertise in information security standards like ISO27000, NCSC, GDPR, and ICS standards such as IEC 62443, NIST SP. Ability to communicate effectively and build relationships with key project stakeholders. Desirable Attributes: Prior experience more »
london (city of london), south east england, United Kingdom
Henderson Scott
or enterprise patch management tools TenableOne or enterprise vulnerability management tools Sound knowledge of industry best practices such as OWASP, Cybersecurity framework and NCSC guidance Security legislation and regulatory frameworks exposure and awareness FCA or equivalent GDPR - General Data Protection Regulation PCI DSS - Payment Card Industry Data Security Standard more »
for include - Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), MSc Information Security, Achieved Senior or Lead level certification in the NCSC’s Certified Cyber Professional scheme in one or more of Security and Information Risk Advisor (SIRA), IA Architect, IA Auditor, IT Security Officer, Full membership more »
Greater London, England, United Kingdom Hybrid / WFH Options
Made Tech
/CD tools and practices Up-to-date understanding of, and ensuring compliance to, security standards and regulations including GDS Technology Code of Practice, NCSCCyber Principles, ISO27001, SoC, NIST, PCI, and GDPR Up-to-date understanding of testing the security of software and infrastructure using appropriate security tools including more »
london, south east england, United Kingdom Hybrid / WFH Options
Made Tech
/CD tools and practices Up-to-date understanding of, and ensuring compliance to, security standards and regulations including GDS Technology Code of Practice, NCSCCyber Principles, ISO27001, SoC, NIST, PCI, and GDPR Up-to-date understanding of testing the security of software and infrastructure using appropriate security tools including more »
london, south east england, United Kingdom Hybrid / WFH Options
Morgan Law
including penetration tests, hardware & software compliance, and PCI, and ensure any gaps are addressed. Work with external stakeholders and information security groups including DCMS, NCSC and accreditor organisations and others to improve cybersecurity standards. Oversee the security review of third-party suppliers and systems. Manage the Cyber Essentials, GovAssure more »
or enterprise patch management tools TenableOne or enterprise vulnerability management tools Sound knowledge of industry best practices such as OWASP, Cybersecurity framework and NCSC guidance more »
Farnborough, England, United Kingdom Hybrid / WFH Options
Shaw Daniels Solutions
ISO 27001 standards and any other relevant standards e.g. ISO31000 & ISO22301. Good knowledge of industry best practice such as security maturity models, OWASP and NCSC Experience of working within an InfoSec focused role. Able to solve problems identified through audit, risk assessment or incidents. Proven experience of Risk Management. Proven more »