8 of 8 NCSC Jobs in Somerset

technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG/NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF, AWS/Azure Architect, CISSP, CISM (or working towards CIISEC/ ...

delivery strategy, roadmaps, and governance Oversee cloud platforms (Azure, AWS, GCP) and DevOps practices Manage stakeholders, suppliers, and SLAs Ensure compliance with GDS, NCSC, and public sector standards Required Experience: Strong background in service or delivery management (digital or legacy) Practical ITIL knowledge and Agile/DevOps delivery experience Experience ...

Technical Oversight: Guide the adoption of Infrastructure as Code (IaC), containerization, and hybrid cloud architectures. Risk & Compliance: Ensure all delivery aligns with GDS guidelines, NCSC security principles, and public procurement frameworks. Requirements Experience: Proven track record in service delivery within digital or legacy environments, specifically using an Industrialised Delivery Model. ...

regulatory and compliance frameworks (e.g. NIST, CIS Controls, ISO 27001, Cyber Essentials Plus). Experience aligning infrastructure builds with cyber security standards such as NCSC guidance, CIS benchmarks, or Microsoft Security Baselines. Experience implementing monitoring, logging, and alerting toolsets including SIEM and threat detection platforms. Understanding of data classification, encryption ...

development, review, and maintenance of RMADS (Risk Management and Accreditation Documentation Sets) Ensure compliance with MoD security policies, standards, and frameworks (e.g., JSP440, JSP604, NCSC guidance) Liaise with accrediting authorities, system owners, and delivery teams to achieve and maintain accreditation Conduct risk assessments and advise on appropriate mitigations Track ...

technical environments Execute social engineering assessments and physical security testing Produce detailed scoping documents and executive-level penetration testing reports aligned with CREST and NCSC standards Lead incident response investigations and digital forensic analysis when required Work independently on client-facing assessments whilst collaborating with senior consultants and team leaders … eligible with security vetting background) Preferred Qualifications & Certifications: CREST/CyberScheme CCTM/CSTM CCT/CSTL-INF or CCT/CSTL-APP (current) NCSC CHECK Team Leader (CTL) (current) or CHECK Team Member (CTM) (current) preferred but not essential CEH Advanced (AECH) or OSCP SANS GCIH, GPEN, or GWAPT ...

also be comfortable identifying new opportunities, supporting bids, and contributing to presales activities where required. Key Responsibilities Conduct comprehensive cyber security audits aligned to NCSC CAF and other recognised frameworks. Assess organisational security posture across the full system lifecycle, ensuring compliance and identifying areas for improvement. Produce clear, actionable audit … security risks. Essential Experience Ability to lead audits, engage stakeholders, and communicate findings effectively. Proven expertise in Cyber Security Auditing, with strong knowledge of: NCSC Cyber Assessment Framework (CAF). ISO 27000 series, NIST Cyber Security & Risk Management Frameworks. Legacy IA standards and NCSC guidance. Familiarity with MOD security frameworks ...

Data at Rest/In Transit), Protective Monitoring, and Security Auditing. Strong understanding of the ISO 27000 series, NIST Cyber Security & Risk Management Frameworks, NCSC CAF, and other industry standards. Familiarity with NCSC guidance and legacy Information Assurance (IA) standards. Experience with MOD security frameworks including ...