NCC Group

48 job(s) at NCC Group

NCC Group City Of Westminster, London
10/07/2026
Full time
Senior Software Developer Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR London Description This role is a Full Stack JavaScript Developer is responsible for designing, building, and maintaining secure, scalable, and high quality applications that extend and enhance our ITSM platform (ServiceNow). Operating within a cybersecurity focused Managed Services environment, this role requires strong full stack JavaScript expertise across backend, frontend, and API development, combined with a security first mindset. The developer will take ownership of end to end solutions-from requirements and design through implementation, testing, and support-working closely with ServiceNow administrators, engineers, and business stakeholders. Key Responsibilities Application Development: Design and develop custom JavaScript applications within our ServiceNow platform to automate business processes and resolve complex operational challenges. Requirements Gathering: Collaborate with stakeholders across the organization to understand their needs and translate them into technical solutions within ServiceNow. Security & Compliance: Implement secure coding practices aligned to SSDLC principles, including data protection, access control, and auditability. Customization and Integration: Customize existing applications and integrate with external systems and APIs to enhance functionality and user experience. Quality Assurance: Conduct thorough testing of developed applications and solutions. Ensure compliance with coding standards and best practices. Continuous Improvement: Identify technical debt and opportunities to improve platform reliability, developer experience, and delivery velocity. Documentation and Support: Create comprehensive documentation for developed applications and provide ongoing support and enhancements based on user feedback. Collaboration: Work closely with the System Administrators and other IT team members to ensure seamless implementation and operation of developed applications. Skills, Knowledge & Expertise Very strong knowledge of JavaScript, NodeJS and the React framework Experience with modern JavaScript tooling (ES6+, npm, build pipelines) Experience designing and consuming APIs in production environments Ability to write clean, maintainable, well documented code Understanding of Secure authentication & authorisation techniques Strong knowledge of both Server and Client Side JavaScript development General programming skills and understanding of secure software development lifecycle (SSDLC) Excellent communication and teamwork abilities Ability to manage multiple projects simultaneously and meet deadlines Creative thinking and problem solving skills Desirable Requirements Bachelor's degree in computer science, information systems, or related field Significant demonstrable experience specific to Full Stack JavaScript development. Other relevant certifications. Experience working in a security focused environment Knowledge of the ServiceNow Ecosystem is not a requirement, but would be useful. Job Benefits Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle-to-work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
NCC Group City Of Westminster, London
10/07/2026
Full time
Rail Cyber Security Lead Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR London Reporting To: Gary Cannon Description We are seeking a highly skilled Cyber Security Rail Lead to join our Global Transport practice. This role is pivotal in strengthening and expanding our cyber security capability within the global rail ecosystem, while also supporting cross-domain engagements in maritime, automotive, and aviation as needed. The ideal candidate will bring deep knowledge of operational technology (OT), rail systems, relevant international cyber security standards (including IEC 62443, TS 50701, IEC 63452), penetration testing methodologies, and the broader transport ecosystem. In addition to technical leadership, the individual will play a key role in supporting business development, building client trust, and elevating NCC Group's profile within the rail sector. This is a client-facing role requiring strong collaboration, communication and leadership skills. Key Responsibilities 1. Technical Leadership (Rail Cyber Security) Serve as the subject matter expert (SME) for rail cyber security across global engagements. Lead, design, and deliver complex cyber security assessments across both operational technology (OT) and information technology (IT) environments. Apply deep knowledge of rail-specific standards and frameworks, including: IEC 62443 (Industrial Cyber Security) TS 50701 (Railway Cyber Security) IEC 63452 (Railway Rolling Stock Cyber Security) Conduct or oversee penetration testing activities, vulnerability assessments, architecture reviews, risk assessment and threat modelling for rail clients. Provide expert interpretation of cyber security requirements for railway operators, manufacturers, and integrators. Ensure security recommendations are aligned with safety, operational continuity, and regulatory requirements across the rail ecosystem. 2. Rail Domain Expertise Provide expert understanding of the rail ecosystem, including: Signalling systems Rolling stock Control centres Wayside and trackside equipment Rail operational processes and safety requirements Translate complex rail operations knowledge into training and mentorship for internal teams. Act as the internal thought leader on emerging rail threats, vulnerabilities, and industry trends. 3. Business Development & Practice Growth Support the creation and growth of new rail opportunities globally. Build NCC Group's market presence in the rail sector through: Thought leadership (whitepapers, webinars, industry events) Client engagements and pre-sales support Partnerships with key rail OEMs, operators, and regulators Collaborate with engagement managers and leadership to define rail-focused service offerings. Contribute to bids, proposals, and technical scoping activities for prospective customers. 4. Cross-Domain Support (Multi-Modal Transport) Potentially support projects across maritime, automotive, and aviation domains as required, with team backing. Maintain awareness of common OT and safety-critical technologies across transport sectors. Promote knowledge-sharing across the wider Transport Cyber Security practice. 5. Teamwork, Collaboration & Mentorship Provide mentoring, guidance, and technical leadership to consultants at various levels. Work closely with colleagues across global teams to deliver integrated and high-quality engagements. Promote a collaborative, supportive, and inclusive team culture. 6. Client Engagement & Delivery Excellence Act as a trusted advisor to clients, providing clear, actionable cyber security recommendations. Communicate complex concepts in a clear, professional, and client-friendly manner. Ensure high-quality deliverables and maintain strong client satisfaction throughout engagements. Skills, Knowledge and Expertise Technical Experience Proven experience in rail cyber security, ideally within operators, OEMs, integrators, or a cyber consultancy. Strong experience working with and applying: IEC 62443 (critical infrastructure cyber security) TS 50701 (railway cyber security framework) IEC 63452 (rolling stock cyber security) Strong understanding of OT systems and technologies, including SCADA, industrial control systems (ICS), and safety-critical environments. Practical experience in penetration testing or security assessment methodologies (not necessarily a full-time tester, but capable). Experience with secure architecture review, threat modelling, and risk assessment in industrial or transport environments. Domain Knowledge In-depth understanding of the rail operational ecosystem, including signalling, rolling stock, safety systems, and regulatory standards. Direct experience working within or for rail operators, system suppliers, or rail-integrated cyber projects. Soft Skills & Professional Attributes Excellent communication skills in both technical and non-technical contexts. Strong client-facing experience and relationship management skills. Ability to lead engagements and influence stakeholders at all levels. Willingness to work collaboratively across geographies and disciplines. Ability to teach and mentor others on rail systems and cyber security. Desirable (Not Mandatory) Recognised cyber certifications (e.g., CISSP, GICSP, ISA/IEC 62443 CyberSecurity Expert). Experience contributing to industry standards or regulatory consultations. Background in safety engineering or systems engineering in transport. Benefits Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave differs for SOC shift workers, please speak to your TA partner for more information). Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco-friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle-to-work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
NCC Group Manchester, Lancashire
10/07/2026
Full time
NCC Group is seeking an Associate Director to shape Platform Security Architecture strategy across professional and managed services. The role leads architectural standards, drives innovation, and improves resilience, with a focus on cloud security and multi tenant platforms. Collaborating with senior stakeholders, you will influence engineering, operations, product and commercial decisions while advancing detection technologies and scalable platform engineering capabilities for client
NCC Group Manchester, Lancashire
10/07/2026
Full time
Associate Director, Platform Security Architecture Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR Manchester Hardman Boulevard Reporting To: Ronnie Miller Description This leadership role is responsible for shaping and driving the Platform and Security Architecture strategy across all platforms that have commercial or revenue impact, including those that are client-facing or used in the delivery of billable services. The Associate Director will lead the adoption of architectural standards across professional and managed services platforms, driving improvements in platform resilience, security, scalability, innovation, customer confidence, presales success, and operational efficiency. Acting as a recognised subject matter expert in cyber platform engineering, cloud security, and advanced detection technologies, the role will provide strategic technology leadership, influence platform evolution, and guide key business decisions across engineering, operations, product, and commercial functions. A key part of the role is collaborating with senior stakeholders to: Define and govern architectural standards across professional and managed services platforms. Drive platform innovation and the adoption of emerging technologies, including AI and machine learning. Improve platform resilience, scalability, and security. Shape long term technology strategy aligned to business objectives. Increase operational efficiency and customer value through platform transformation. Support strategic client engagements and presales opportunities with senior level technical assurance. Key Responsibilities Define and govern architectural standards for professional and managed service platforms, ensuring a unified, scalable, and secure technology foundation. Maintain strong partnerships with internal technology and security teams to ensure architecture decisions align with enterprise standards and governance requirements. Lead high complexity customer workshops spanning consulting, implementation, technical assurance, and managed services. Support strategic sales opportunities by providing authoritative architectural guidance and technical assurance. Shape platform strategy across managed services environments, cyber tooling ecosystems, and operational platforms. Partner with senior leadership to define and deliver long term technology strategy and innovation roadmaps. Evaluate and integrate emerging technologies, including AI/ML enhanced detection, workflow automation, and next generation platform engineering capabilities. Design secure multi tenant architectures, cloud native solutions, integration frameworks, and advanced telemetry platforms. Develop reference architectures, engineering frameworks, and design patterns used across engineering and cyber defence teams. Provide technical leadership and guidance on platform design, infrastructure as code, security controls, and platform hardening best practices. Drive the maturity of AI powered workflows, including detection generation, anomaly analysis, automated response, and operational optimisation initiatives. Provide senior level architectural advisory support across engineering, operations, product, commercial, and executive functions. Skills, Knowledge & Expertise Significant experience defining and leading global engineering and platform strategies within professional services and managed services environments. Strong experience with enterprise technologies and platforms such as Microsoft, Splunk, ServiceNow, Cyber security tooling, and large scale operational or automation platforms. Experience designing and governing secure, scalable cloud and platform architectures. Strong planning, organisational, and prioritisation skills. Excellent stakeholder management and relationship building capabilities. Strong communication skills with the ability to explain complex technical concepts to both technical and non technical audiences. Strong analytical, problem solving, and decision making skills. Ability to work independently while collaborating effectively across multiple teams. High attention to detail and commitment to quality. Adaptability and resilience in a fast paced, evolving environment. Experience with AI, machine learning, and automation technologies within cyber security and platform engineering environments. Experience supporting customer facing architecture engagements and strategic presales activities. Expertise in cyber platform engineering, cloud security, and advanced detection technologies. Job Benefits We have a high performance culture which is balanced evenly with world class wellbeing initiatives and benefits: Flexible Working - Balance your work and personal life with our flexible working options. Enhanced Holiday Allowance - Enjoy 25 days of holiday plus bank holidays, with the option to buy up to 5 additional days. Medicash & Critical Illness Scheme Financial & Investment Benefits - Pension, Life Assurance and Share Save Scheme. Community & Volunteering Programmes - Opportunities to make a difference through volunteering. Green Car Scheme - Drive greener while saving money. Cycle Scheme - Support for cycling to work and staying active. Special Time Off - Additional leave for key life moments, including marriage/civil partnership, becoming a grandparent, and welcoming a new pet. Family Planning Support - Generous maternity and paternity leave, plus support for fertility treatment.
NCC Group Cheltenham, Gloucestershire
09/07/2026
Full time
NCC Group in Cheltenham is looking for a Senior Data Platform Engineer to design, build, and optimize scalable data pipelines. This role involves working with AWS technologies to enable data-driven decision-making through reliable datasets for analytics and machine learning solutions. The ideal candidate will have strong AWS experience, proficiency in Python, and the ability to ensure data is well-governed and optimized. The position offers flexible working options and a generous holiday allowance.
NCC Group Manchester, Lancashire
09/07/2026
Full time
NCC Group is seeking a Team Lead for their SOC in Manchester. This role focuses on leading a skilled team to monitor and analyze threats using advanced security tools. The ideal candidate will enhance client protection and lead incident resolution in a high-pressure environment. The position requires strong experience in SOC roles and a passion for cybersecurity. Beneficial certifications include those from Microsoft, CompTIA, and GIAC. Join NCC Group and contribute to securing critical infrastructures.
NCC Group Manchester, Lancashire
09/07/2026
Full time
Team Lead, SOC Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR Manchester Hardman Boulevard Description Today, it is an unavoidable fact that your business-critical infrastructure and systems are at risk of attack. The key to good security is a clear understanding of what is most critical to the business. Where you do not have enough internal resources, time or skills to monitor and manage your IT environment 24/7, NCC Group can help, freeing up your skilled employees to focus on value add activity. NCC Group provide a range of managed and hosted services delivered from our UK based Security Operations Centre SOC which operates 24/7, 365 days a year. Our team of over 30 accredited security experts are available 24/7, dealing daily with over 200 million log events and providing support for over 5,000 network devices. NCC Group's Cloud XDR Team provide a world class Extended Detection and Response (XDR) services, detecting, responding and mitigating cyber attacks on our customers networks in our Security Operations Centres using the Microsoft Sentinel ecosystem. The Cloud XDR Team are looking for a Team Lead with a passion for security to join the team to help the customers get the most out of our services and to protect their networks. This is an opportunity to join a technically advanced and talented team and help NCC Group build and deliver world class services to our customers. This role is ideal for a seasoned SOC Analyst with experience in cyber security looking to broaden their scope of cyber skills with a strong focus on detection and response to cyber incidents. Key Responsibilities Monitor global systems looking for potential threats, vulnerabilities and indicators of compromise. Perform in-depth analysis of security alerts utilizing Microsoft XDR suite (Sentinel/Defender etc) Act as incident handlers during high priority incidents Provide Incident remediation and prevention documentation and recommendations to customers based on defined procedures and analyst experience. Document and conform to processes related to security monitoring procedures. Provide customer service that always exceeds our customers' expectations. Initiate escalation procedure to counteract potential threats, vulnerabilities and threat actors. Compilation and review of service focused reporting. Act as an escalation point for more junior members of the team, providing assistance and mentoring where necessary. Providing assistance to XDR SOC Analysts on general Triage and Threat Hunting engagements. Contributing to the continuous improvement of SOC procedures and documentation. Actively liaise with clients in order to understand specific risk areas and act as a touch point for issues raised Perform other duties as assigned. Skills, Knowledge & Expertise Experience / Skills Experience working in relevant SOC analyst roles Practical knowledge and experience of security and networking toolsets such including Microsoft's XDR suite (Sentinel/Defender) Pre-existing, in-depth knowledge of common network protocols and endpoint detection/forensics Pre-existing, in-depth knowledge of Windows and Linux based operating systems. Experience in the extensive analysis of common security incidents. Ability to stay calm in highly sensitive and high-pressure incidents. Certifications The following certifications are desirable, but not a requirement. Successful candidates that do not possess these certifications may be tasked with working towards them at the beginning of their employment: Azure based certifications (SC-200, AZ-500, MS-500) GIAC GCIA/GCIH CREST CPSA / CRIA / CMRE / CNIA / CHIA CompTIA Security+ CompTIA Network+ Other relevant certifications. Job Benefits Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco-friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle-to-work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
NCC Group City Of Westminster, London
09/07/2026
Full time
NCC Group in Westminster is seeking a Senior Data Platform Engineer to design and optimise scalable data pipelines for advanced analytics and machine learning solutions. You will collaborate closely with the Data Science team using AWS technologies. The ideal candidate has strong experience in AWS environments, Python proficiency, and works well in a flexible environment. The position offers generous holiday allowance and various benefits, including a Green Car Scheme and family planning options.
NCC Group Cheltenham, Gloucestershire
09/07/2026
Full time
Senior Data Platform Engineer Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR Cheltenham Jessop House Description Manchester, Cheltenham or London We are seeking a skilled Data Engineer to join our Engineering team, responsible for designing, building, and optimising scalable data pipelines that power advanced analytics and machine learning solutions. You will play a key role in enabling data-driven decision-making by delivering high-quality, reliable datasets to tools such as Amazon SageMaker and other analytics platforms. Key Responsibilities We are looking for a Data Engineer to work closely with the Data Science team to develop robust data pipelines that feed analytics and machine learning tools such as Amazon SageMaker and third-party platforms like Databricks. You will leverage AWS technologies such as EMR, S3, EKS and Airflow to process and orchestrate high-volume datasets, ensuring solutions are scalable, resilient and cost-efficient. You will also play a key role in embedding data loss prevention (DLP) principles and controls into data pipelines to protect sensitive information, while ensuring data is reliable, accessible, well-governed and optimised for downstream consumption. Skills, Knowledge & Expertise Essential Strong experience in data engineering within AWS cloud environments. Hands on experience with AWS big data technologies such as EMR, S3 and SageMaker. Proficiency in Python for building scalable data pipelines and processing frameworks. Experience with Apache Spark for distributed data processing. Experience designing and maintaining scalable batch and real time data pipelines. Solid understanding of ETL/ELT design patterns and data modelling techniques. Experience with workflow orchestration tools such as Apache Airflow (ideally deployed on AWS). Familiarity with containerisation and orchestration using Docker and Kubernetes (EKS). Experience with infrastructure as code (e.g. Terraform) and CI/CD/GitOps practices. Proven ability to optimise performance and reduce cloud costs through partitioning, clustering and workload management. Understanding of data security principles, including data loss prevention (DLP). Desirable Experience with Databricks or similar third party big data platforms. Knowledge of real time streaming technologies (e.g. Kafka, Kinesis). Experience implementing data governance and compliance frameworks. Familiarity with monitoring and observability tools in AWS environments. Exposure to Lakehouse or modern data platform architectures. Job Benefits Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco-friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle-to-work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
NCC Group City Of Westminster, London
09/07/2026
Full time
Senior Data Platform Engineer Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR London Description We are seeking a skilled Data Engineer to join our Engineering team, responsible for designing, building, and optimising scalable data pipelines that power advanced analytics and machine learning solutions. You will play a key role in enabling data-driven decision-making by delivering high-quality, reliable datasets to tools such as Amazon SageMaker and other analytics platforms. Key Responsibilities We are looking for a Data Engineer to work closely with the Data Science team to develop robust data pipelines that feed analytics and machine learning tools such as Amazon SageMaker and third party platforms like Databricks. You will leverage AWS technologies such as EMR, S3, EKS and Airflow to process and orchestrate high-volume datasets, ensuring solutions are scalable, resilient and cost efficient. You will also play a key role in embedding data loss prevention (DLP) principles and controls into data pipelines to protect sensitive information, while ensuring data is reliable, accessible, well governed and optimised for downstream consumption. Skills, Knowledge & Expertise - Essential Strong experience in data engineering within AWS cloud environments. Hands on experience with AWS big data technologies such as EMR, S3 and SageMaker. Proficiency in Python for building scalable data pipelines and processing frameworks. Experience with Apache Spark for distributed data processing. Experience designing and maintaining scalable batch and real time data pipelines. Solid understanding of ETL/ELT design patterns and data modelling techniques. Experience with workflow orchestration tools such as Apache Airflow (ideally deployed on AWS). Familiarity with containerisation and orchestration using Docker and Kubernetes (EKS). Experience with infrastructure as code (e.g. Terraform) and CI/CD/GitOps practices. Proven ability to optimise performance and reduce cloud costs through partitioning, clustering and workload management. Understanding of data security principles, including data loss prevention (DLP). Desirable Experience with Databricks or similar third party big data platforms. Knowledge of real time streaming technologies (e.g. Kafka, Kinesis). Experience implementing data governance and compliance frameworks. Familiarity with monitoring and observability tools in AWS environments. Exposure to Lakehouse or modern data platform architectures. Job Benefits Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programme: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle to work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
NCC Group City Of Westminster, London
07/07/2026
Full time
NCC Group is seeking a highly skilled Aviation Cyber Security Lead to join their Global Transport Practice. This role requires expertise in aviation cyber security and offers a hybrid working model from locations such as Cheltenham, Manchester, or London. The successful candidate will shape aviation services, mentor colleagues, and engage clients in technical delivery and business development. Essential experience includes working with airports, airlines, and aviation-specific security frameworks.
NCC Group Cheltenham, Gloucestershire
06/07/2026
Full time
NCC Group is seeking a CNI Cyber Security Consultant in Cheltenham, UK, to help organizations navigate critical national infrastructure challenges and improve cyber resilience. The role offers hybrid working with some travel, and focuses on compliance with regulatory frameworks such as NIS and NIS2. The ideal candidate will lead client engagements, delivering meaningful improvements in resilience and regulatory readiness. Qualifications such as SC clearance and experience in operational technology environments are preferred.
NCC Group Cheltenham, Gloucestershire
06/07/2026
Full time
NCC Group is looking for a Developer to enhance its Threat Intelligence capabilities in Cheltenham. You will build, deploy, and maintain application extensions for cyber threat intelligence platforms, requiring proficiency in Python and Bash. The role involves collaborating in a DevOps environment and offers a flexible working arrangement, generous holiday allowance, and additional benefits.
NCC Group City Of Westminster, London
06/07/2026
Full time
NCC Group is seeking a Developer for its Cyber Services team in Westminster. The successful candidate will enhance our cyber threat intelligence capability by building, deploying, and maintaining application extensions along with automation tools. Key responsibilities include linking backend systems and providing robust support to enhance operational efficiency. The role requires proficiency in Python, Bash, and cloud computing fundamentals, particularly AWS. The company offers a balanced work-life with flexible working options.
NCC Group City Of Westminster, London
06/07/2026
Full time
Developer Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR London Description NCC's Threat Intelligence engineering team is looking for a Developer to support analysts and engineers in delivering a world-class cyber threat intelligence capability. This role will do so by building, deploying, securing, monitoring, and maintaining application extensions, automations, and auxiliary tooling for our primary Threat Intelligence platforms. Key Responsibilities Building, deploying, securing, monitoring, and maintaining our existing Python application extensions and CLI tooling Connecting diverse backend systems together to break down siloed data repositories Plugging the technical gap between our developers, engineers, and analysts by providing automations and tooling Support engineers, developers, and analysts by providing robust support for automatable processes Identifying automation opportunities within the department Skills, Knowledge & Expertise Essential Capabilities and Understanding Proficiency in Python and Bash, particularly in connecting backend systems and building CLI tooling Cloud networking and computing concepts, particularly in AWS Working in a DevOps team Containerisation technologies, including Docker and Kubernetes Security principals involved when working with cloud computing technologies Concise explanations of complex technical topics to other members of a DevOps team Problem solving and creative thinking to build new solutions from the ground-up Preferable Capabilities and Understanding Backend system development Data management and transformation Threat Intelligence tooling and platforms, such as OpenCTI or MISP Familiarity with STIX2/TAXII2 standards Working on open-source software Any additional programming/scripting/development experience Job Benefits Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco-friendly car scheme. Cycle Schem e: Stay fit and healthy with our cycle-to-work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
NCC Group Cheltenham, Gloucestershire
06/07/2026
Full time
Developer Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR Cheltenham Jessop House Description NCC's Threat Intelligence engineering team is looking for a Developer to support analysts and engineers in delivering a world-class cyber threat intelligence capability. This role will do so by building, deploying, securing, monitoring, and maintaining application extensions, automations, and auxiliary tooling for our primary Threat Intelligence platforms. Key Responsibilities Building, deploying, securing, monitoring, and maintaining our existing Python application extensions and CLI tooling Connecting diverse backend systems together to break down siloed data repositories Plugging the technical gap between our developers, engineers, and analysts by providing automations and tooling Support engineers, developers, and analysts by providing robust support for automatable processes Identifying automation opportunities within the department Skills, Knowledge & Expertise Essential Capabilities and Understanding Proficiency in Python and Bash, particularly in connecting backend systems and building CLI tooling Cloud networking and computing concepts, particularly in AWS Working in a DevOps team Containerisation technologies, including Docker and Kubernetes Security principals involved when working with cloud computing technologies Concise explanations of complex technical topics to other members of a DevOps team Problem solving and creative thinking to build new solutions from the ground-up Preferable Capabilities and Understanding Backend system development Data management and transformation Threat Intelligence tooling and platforms, such as OpenCTI or MISP Familiarity with STIX2/TAXII2 standards Working on open-source software Any additional programming/scripting/development experience Job Benefits Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco-friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle-to-work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
NCC Group Cheltenham, Gloucestershire
06/07/2026
Full time
CNI Cyber Security Consultant Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR Cheltenham Jessop House Description Managing Consultant, Critical National Infrastructure Hybrid with regular travel to client and operational sites across the UK, sometimes at short notice. Operators of essential services face a rapidly evolving threat landscape, especially as IT and OT environments continue to converge and regulatory expectations rise. NCC Group's Consulting & Implementation practice helps organisations strengthen cyber resilience by assessing risk, improving controls, implementing secure architectures, and preparing for regulatory oversight. Our OT capability covers ICs, SCADA, and industrial networks, with services including threat modelling, attack surface mapping, embedded and firmware review, and security architecture design. Key Responsibilities As a CNI Managing Consultant, you will help organisations navigate frameworks such as the Cyber Assessment Framework (CAF), NIS and NIS2, translating them into proportionate, actionable improvement plans. Your work directly strengthens the resilience of the UK's critical sectors, which continue to face enduring and significant threat activity. You will lead client engagements across the full consulting lifecycle from discovery and assessment through roadmap and implementation. The role includes shaping and delivering work in OT and CNI environments, preparing clients for regulator inspections, and providing clear recommendations that support safety, availability, and operational uptime. Over the next 12-24 months, you will deliver measurable improvements in client resilience, maturity, and regulatory readiness. You may also integrate NCC Group's wider capabilities, such as our Microsoft verified MXDR service for continuous monitoring and response. Skills, Knowledge and Expertise You will succeed in this role if you: Apply structured, evidence led assessment methods to identify risks and provide proportionate, achievable improvements Communicate clearly with engineering, operations, IT and leadership stakeholders, ensuring complex issues are presented in a way that informs decisions Lead delivery teams, ensure high quality outputs, and maintain strong relationships built on trust and clarity Navigate OT environments confidently, bringing practical understanding of ICT, SCADA, industrial networks, and the operational realities around safety and uptime Work effectively with regulatory frameworks such as NIS, NIS2, and the NCSC CAF. Understand how to prepare organisations for regulatory oversight, including evidence packs and roadmap development Draw on wider capability where useful, including incident readiness and IT/OT convergence retainers delivered jointly with Dragos Hold SC clearance (or above). When it comes to qualifications and certifications, these are helpful but not mandatory: GICSP, ISA/IEC 62443 certificates, CISSP, CISM, CSSA. Benefits We have a high performance culture which is balanced evenly with world class well being initiatives and benefits: Flexible Working: Balance your work and personal life with our flexible working options. Enhanced Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle to work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
NCC Group City Of Westminster, London
06/07/2026
Full time
Senior Engineer - MXDR Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR London Description As a Senior MXDR Engineer, you are a true multitasker with both technical depth and strong communication skills. Deploying and maintaining MXDR solutions is your core responsibility - your "bread and butter." You assess customer needs, collaborate with stakeholders across organizational levels, and ensure their environments become safer and more resilient against threats. Your expertise is also a trusted resource within the team. Whether it's helping the SOC interpret the logging associated with a Splunk alert, troubleshooting CPU spikes of CrowdStrike agents during a DFIR engagement, or assisting SDM in interpreting technical questions - you're the go to person. This role requires a broad skill set. A major focus is on technical consultancy, meaning a strong technical foundation, professional communication skills, and a passion for continuous learning are essential. We're looking for someone with experience with SIEM & EDR tools. We see MXDR as Microsoft Sentinel, Splunk, CrowdStrike or Sentinel One. Familiarity with these platforms is a strong plus. Because this is a customer facing role, you should feel confident engaging with clients in both in person and digital environments. As part of a global organization, proficiency in written and spoken English is a must. Key Responsibilities Implement and support MXDR solutions for customers, ensuring effective deployment and configuration. Independently operate in multidisciplinary teams for projects, proactively contributing to client deliverables and addressing internal and external technical and organizational challenges. Serve as a Subject Matter Expert on specific MXDR tools, supporting and advising customers and colleagues across teams. Continuously improve the MXDR services through automation, process enhancements and knowledge sharing. Skills, Knowledge & Expertise Expert knowledge of cybersecurity and proficiency in one or multiple MXDR technologies. Demonstrated ability to analyze and interpret complex data. Strong leadership and communication skills. Exceptional client engagement and problem solving skills. Job Benefits We have a high-performance culture which is balanced evenly with world class well being initiatives and benefits: Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco-friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle to work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
NCC Group City Of Westminster, London
04/07/2026
Full time
Transport Practice Managing Consultant Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR London Reporting To: Gary Cannon Description Role: Cyber Security Aviation Lead (Global Transport) Locations: Cheltenham, Manchester or London - Hybrid/Global Remit We are seeking a highly skilled Cyber Security Aviation Lead to join our Global Transport Practice. This role will serve as the subject matter expert (SME) for aviation cyber security, covering operational technology (OT), safety critical aviation systems, and regulatory standards across the global aviation ecosystem. You will play a pivotal role in shaping NCC Group's aviation offerings, supporting delivery, mentoring colleagues, engaging clients, and driving growth in the aviation market. While aviation is the primary focus, the role also offers opportunities to work across rail, maritime, and automotive with full support from the wider transport team. This is a client facing, collaborative, and technically hands on role suited to someone with solid aviation cyber experience who can also support business development activities. Key Responsibilities Aviation Cyber Security Leadership Act as the global aviation cyber security SME, providing expert knowledge of: Part IS and other aviation specific security frameworks ISA/IEC 62443 requirements and application to aviation OT Penetration testing techniques relevant to OT and aviation systems Avionics, airport infrastructure, ground systems, airline operational technologies Lead and oversee cyber engagements within the aviation ecosystem, including: Airports, ANSPs, MNO, airlines, OEMs, ground handling, avionics suppliers Safety critical OT networks and mission critical control systems Technical Delivery Perform and/or lead: OT penetration testing Threat modelling and risk assessments Security architecture review for aviation technologies Compliance assessments and gap analyses (Part IS, 62443, NIS2 where applicable) Oversee technical quality, ensuring best in class delivery to clients. Business Development & Practice Growth Support the creation and refinement of NCC Group's aviation services and propositions. Work with business development teams to: Identify opportunities Create proposals Participate in client meetings and presentations Represent NCC Group at aviation cyber conferences, industry forums, and working groups. Collaboration & Cross-Transport Support Operate as part of the wider Global Transport Practice, contributing to multi modal cyber projects. When required (and with team support), step into cyber roles in: Rail Maritime Automotive Work closely with colleagues across geographies to develop integrated cyber security solutions. Knowledge Sharing & Mentoring Coach and mentor internal consultants on aviation cyber security concepts, systems, and regulations. Develop internal guidance, training materials, and workbooks/playbooks. Promote a collaborative, high performance culture. Client Engagement Act as a trusted advisor to stakeholders at all levels. Ensure exceptional client experience through clear communication, professionalism, and delivery excellence. Build long term relationships with global aviation customers. Skills, Knowledge and Expertise Essential Experience & Skills Proven experience in the aviation ecosystem, such as working with: Airports Airlines OEMs Avionics manufacturers ANSPs Strong understanding of aviation operational technologies and safety critical systems. Knowledge of: Part IS ISA/IEC 62443 OT networks, architectures, and protocols Security risk assessment in safety critical environments Hands on cyber security experience, such as: Penetration testing (OT preferred) Threat modelling Incident response Architecture review Comfortable providing client facing advisory services. Experience working in or with regulated environments. Ability to simplify complex cyber concepts for diverse audiences. Desirable Skills Certifications (one or more): GICSP, CISSP, CISM, CRT/OSCP, CISA, CCSFP, 62443 certificates, CREST Background in engineering, avionics, or airport operations. Experience with NIS/NIS2, EASA, FAA, ICAO cyber requirements. Experience contributing to sales or pre sales cycles. Benefits What do we offer in return? We have a high performance culture which is balanced evenly with world class well being initiatives and benefits: Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle to work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
NCC Group
04/07/2026
Full time
NCC Group is seeking a Senior Software Developer to design, build, and maintain secure JavaScript applications within our ITSM platform. This role emphasizes full-stack development within a cybersecurity-focused environment, requiring strong collaboration with various stakeholders. The ideal candidate must possess extensive JavaScript expertise, a problem-solving mindset, and the ability to manage multiple projects. Benefits include flexible working, generous holiday allowance, and participation in community programs.