Principal Solution Architect Application Deadline: 21 June 2026 Department: Sales Employment Type: Full Time Location: GBR Manchester Hardman Boulevard Reporting To: Andy Jarvis Description The Principal Solution Architect is a senior technical role within NCC Group's Sales Engineering & Field Strategy team, responsible for shaping and delivering complex, high value cyber security solutions across both professional and managed services. This role serves as a technical authority and strategic partner to clients, translating business challenges into secure, scalable, and commercially viable solutions. In addition to leading solution design and client engagements, the Principal Solution Architect plays a key role in mentoring and developing the wider team of Solution Architects. They provide technical guidance, coaching, and quality assurance to ensure consistency, innovation, and excellence in solution delivery. Acting as a role model and escalation point, they foster a culture of continuous improvement, collaboration, and technical curiosity across the team. This role requires a blend of deep technical expertise, commercial awareness, and strong interpersonal skills to influence stakeholders, support sales activities, and drive the evolution of NCC Group's service offerings in response to emerging threats and market demands. Key Responsibilities Lead the creation of technical solution designs and bid responses for large scale client opportunities, integrating services across NCC Group's offerings. Provide expert technical solution consultancy, including scope definition, approach, dependencies, assumptions, and cost modelling aligned with governance processes. Act as a senior technical advisor in client engagements, translating business needs into actionable cybersecurity solutions. Collaborate with Sales, Delivery, and Product Management teams to ensure alignment of proposed solutions with client requirements and internal capabilities. Own the quality assurance of client facing documentation, ensuring clarity, accuracy, and technical integrity. Mentor and support Solution Architects, acting as a technical escalation point. Identify market trends and gaps to inform service development and maintain competitive advantage. Contribute to account planning and opportunity development, supporting strategic growth initiatives. Deliver internal training and briefings on NCC Group services, research, and intellectual property. Represent NCC Group at client meetings, conferences, and industry events, occasionally requiring national travel. Skills, Knowledge & Expertise Proven experience in designing and delivering complex cyber security solutions in a pre sales or consulting capacity. Strong understanding of network architecture, IT infrastructure, cloud platforms (Azure, AWS), and emerging technologies. Deep knowledge of cybersecurity threats, threat actors, and mitigation strategies. Familiarity with penetration testing methodologies and outcomes. Demonstrable experience with at least two of the following frameworks: NIST, ISO 27001, PCI DSS, CIS Controls. Strong commercial acumen with the ability to balance client needs and profitability. Excellent communication skills, including the ability to present technical content to non technical audiences and senior stakeholders. Proficiency in Microsoft Office and technical documentation tools. Relevant certifications such as CISM, CISSP, CCSP, or equivalent demonstrable expertise. Desired Requirements Experience in integrating cybersecurity solutions into enterprise environments. Understanding of compliance and regulatory requirements across different sectors. Exposure to managed security services and operational security models. Experience working with international clients and multi region solution deployments. Knowledge of in region cyber security regulations, compliance and privacy frameworks. Job Benefits We have a high performance culture which is balanced evenly with world class well being initiatives and benefits: Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle to work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
Jun 15, 2026
Full time
Principal Solution Architect Application Deadline: 21 June 2026 Department: Sales Employment Type: Full Time Location: GBR Manchester Hardman Boulevard Reporting To: Andy Jarvis Description The Principal Solution Architect is a senior technical role within NCC Group's Sales Engineering & Field Strategy team, responsible for shaping and delivering complex, high value cyber security solutions across both professional and managed services. This role serves as a technical authority and strategic partner to clients, translating business challenges into secure, scalable, and commercially viable solutions. In addition to leading solution design and client engagements, the Principal Solution Architect plays a key role in mentoring and developing the wider team of Solution Architects. They provide technical guidance, coaching, and quality assurance to ensure consistency, innovation, and excellence in solution delivery. Acting as a role model and escalation point, they foster a culture of continuous improvement, collaboration, and technical curiosity across the team. This role requires a blend of deep technical expertise, commercial awareness, and strong interpersonal skills to influence stakeholders, support sales activities, and drive the evolution of NCC Group's service offerings in response to emerging threats and market demands. Key Responsibilities Lead the creation of technical solution designs and bid responses for large scale client opportunities, integrating services across NCC Group's offerings. Provide expert technical solution consultancy, including scope definition, approach, dependencies, assumptions, and cost modelling aligned with governance processes. Act as a senior technical advisor in client engagements, translating business needs into actionable cybersecurity solutions. Collaborate with Sales, Delivery, and Product Management teams to ensure alignment of proposed solutions with client requirements and internal capabilities. Own the quality assurance of client facing documentation, ensuring clarity, accuracy, and technical integrity. Mentor and support Solution Architects, acting as a technical escalation point. Identify market trends and gaps to inform service development and maintain competitive advantage. Contribute to account planning and opportunity development, supporting strategic growth initiatives. Deliver internal training and briefings on NCC Group services, research, and intellectual property. Represent NCC Group at client meetings, conferences, and industry events, occasionally requiring national travel. Skills, Knowledge & Expertise Proven experience in designing and delivering complex cyber security solutions in a pre sales or consulting capacity. Strong understanding of network architecture, IT infrastructure, cloud platforms (Azure, AWS), and emerging technologies. Deep knowledge of cybersecurity threats, threat actors, and mitigation strategies. Familiarity with penetration testing methodologies and outcomes. Demonstrable experience with at least two of the following frameworks: NIST, ISO 27001, PCI DSS, CIS Controls. Strong commercial acumen with the ability to balance client needs and profitability. Excellent communication skills, including the ability to present technical content to non technical audiences and senior stakeholders. Proficiency in Microsoft Office and technical documentation tools. Relevant certifications such as CISM, CISSP, CCSP, or equivalent demonstrable expertise. Desired Requirements Experience in integrating cybersecurity solutions into enterprise environments. Understanding of compliance and regulatory requirements across different sectors. Exposure to managed security services and operational security models. Experience working with international clients and multi region solution deployments. Knowledge of in region cyber security regulations, compliance and privacy frameworks. Job Benefits We have a high performance culture which is balanced evenly with world class well being initiatives and benefits: Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle to work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
Associate Security Consultant - Accelerator Programme Application Deadline: 8 July 2026 Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR Cheltenham Jessop House Description Locations: Cheltenham or Manchester (hybrid, primarily remote) Application deadline: 10 July 2026 We're launching our Associate Security Consultant Accelerator Programme - a fast paced, structured pathway into cybersecurity consulting for high potential individuals who are curious, analytical, and commercially aware. This is not a purely technical programme. It is designed to develop well rounded consultants who can engage clients, solve problems, and deliver meaningful outcomes in security, risk, and assurance. Programme delivery: Primarily remote, with occasional in person sessions Interview process Held from August 2026 Candidates must be available during August-early September Includes: Structured interview Practical task/skills assessment Pre prepared presentation Start date: Monday 5 October 2026 What this programme is A 4-month, intensive training and development programme Designed to build core consulting capability alongside foundational security knowledge A blend of instructor led learning, practical exercises, client exposure, and real world scenarios Structured with clear milestones, feedback loops, and assessment points You'll build capability across consultancy, audit, and security domains, including: Consulting fundamentals Engagement lifecycles Client communication and stakeholder management Consultancy role play and scenario based delivery Security and assurance foundations ISO 27001, exposure to Lead Auditor and Implementer concepts ISO 42001 (AI governance) and emerging risk areas Supplier assurance and third party risk Applied consulting skills Report writing and presenting insights Running workshops and client sessionsCase studies and simulated engagements Broader security exposure Incident response fundamentals Privacy and PETs Security engineering basics Threat analysis, resilience, and organisational risk Cross functional collaboration across security disciplines Professional development Practical assignments and guided research tasks Exposure to real client environments One industry recognised certification (e.g. ISO 27001 or ISO 42001) The programme concludes with a final assessment in Manchester, with successful candidates progressing into consulting roles. Skills, Knowledge & Expertise We're deliberately not narrowing this to a specific background. Instead, we're looking for: Strong communication and interpersonal skills Natural problem solving and critical thinking ability Interest in security, risk, or consulting Ability to learn quickly and operate in structured programmes High levels of ownership, curiosity, and resilience Experience in cybersecurity is helpful but not required. No degree requirement - we care more about capability and mindset. Job Benefits Fast track into a consulting career in cybersecurity Structured development, not "sink or swim" Exposure to real clients, real problems, real delivery Clear pathway into a Delivery Consultant role
Jun 13, 2026
Full time
Associate Security Consultant - Accelerator Programme Application Deadline: 8 July 2026 Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR Cheltenham Jessop House Description Locations: Cheltenham or Manchester (hybrid, primarily remote) Application deadline: 10 July 2026 We're launching our Associate Security Consultant Accelerator Programme - a fast paced, structured pathway into cybersecurity consulting for high potential individuals who are curious, analytical, and commercially aware. This is not a purely technical programme. It is designed to develop well rounded consultants who can engage clients, solve problems, and deliver meaningful outcomes in security, risk, and assurance. Programme delivery: Primarily remote, with occasional in person sessions Interview process Held from August 2026 Candidates must be available during August-early September Includes: Structured interview Practical task/skills assessment Pre prepared presentation Start date: Monday 5 October 2026 What this programme is A 4-month, intensive training and development programme Designed to build core consulting capability alongside foundational security knowledge A blend of instructor led learning, practical exercises, client exposure, and real world scenarios Structured with clear milestones, feedback loops, and assessment points You'll build capability across consultancy, audit, and security domains, including: Consulting fundamentals Engagement lifecycles Client communication and stakeholder management Consultancy role play and scenario based delivery Security and assurance foundations ISO 27001, exposure to Lead Auditor and Implementer concepts ISO 42001 (AI governance) and emerging risk areas Supplier assurance and third party risk Applied consulting skills Report writing and presenting insights Running workshops and client sessionsCase studies and simulated engagements Broader security exposure Incident response fundamentals Privacy and PETs Security engineering basics Threat analysis, resilience, and organisational risk Cross functional collaboration across security disciplines Professional development Practical assignments and guided research tasks Exposure to real client environments One industry recognised certification (e.g. ISO 27001 or ISO 42001) The programme concludes with a final assessment in Manchester, with successful candidates progressing into consulting roles. Skills, Knowledge & Expertise We're deliberately not narrowing this to a specific background. Instead, we're looking for: Strong communication and interpersonal skills Natural problem solving and critical thinking ability Interest in security, risk, or consulting Ability to learn quickly and operate in structured programmes High levels of ownership, curiosity, and resilience Experience in cybersecurity is helpful but not required. No degree requirement - we care more about capability and mindset. Job Benefits Fast track into a consulting career in cybersecurity Structured development, not "sink or swim" Exposure to real clients, real problems, real delivery Clear pathway into a Delivery Consultant role
Associate Security Consultant - Accelerator Programme Application Deadline: 8 July 2026 Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR Manchester Hardman Boulevard Description Locations: Cheltenham or Manchester (hybrid, primarily remote) Application deadline: 10 July 2026 We're launching our Associate Security Consultant Accelerator Programme - a fast-paced, structured pathway into cybersecurity consulting for high-potential individuals who are curious, analytical, and commercially aware. This is not a purely technical programme. It is designed to develop well-rounded consultants who can engage clients, solve problems, and deliver meaningful outcomes in security, risk, and assurance. Programme delivery: Primarily remote, with occasional in-person sessions Interview process: Held from August 2026 Candidates must be available during August-early September Includes: Structured interview Practical task/skills assessment Pre-prepared presentation Start date: Monday 5 October 2026 What this programme is A 4-month, intensive training and development programme Designed to build core consulting capability alongside foundational security knowledge A blend of instructor-led learning, practical exercises, client exposure, and real-world scenarios Structured with clear milestones, feedback loops, and assessment points You'll build capability across consultancy, audit, and security domains, including: Consulting fundamentals Engagement lifecycles Client communication and stakeholder management Consultancy role play and scenario based delivery Security and assurance foundations ISO 27001, exposure to Lead Auditor and Implementer concepts ISO 42001 (AI governance) and emerging risk areas Supplier assurance and third party risk Applied consulting skills Report writing and presenting insights Running workshops and client sessions Case studies and simulated engagements Broader security exposure Incident response fundamentals Privacy and PETs Security engineering basics Threat analysis, resilience, and organisational risk Cross functional collaboration across security disciplines Professional development Practical assignments and guided research tasks Exposure to real client environments One industry recognised certification (e.g. ISO 27001 or ISO 42001) The programme concludes with a final assessment in Manchester, with successful candidates progressing into consulting roles. Skills, Knowledge & Expertise We're deliberately not narrowing this to a specific background. Instead, we're looking for: Strong communication and interpersonal skills Natural problem solving and critical thinking ability Interest in security, risk, or consulting Ability to learn quickly and operate in structured programmes High levels of ownership, curiosity, and resilience Experience in cybersecurity is helpful but not required. No degree requirement - we care more about capability and mindset. Job Benefits Fast track into a consulting career in cybersecurity Structured development, not "sink or swim" Exposure to real clients, real problems, real delivery Clear pathway into a Delivery Consultant role
Jun 12, 2026
Full time
Associate Security Consultant - Accelerator Programme Application Deadline: 8 July 2026 Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR Manchester Hardman Boulevard Description Locations: Cheltenham or Manchester (hybrid, primarily remote) Application deadline: 10 July 2026 We're launching our Associate Security Consultant Accelerator Programme - a fast-paced, structured pathway into cybersecurity consulting for high-potential individuals who are curious, analytical, and commercially aware. This is not a purely technical programme. It is designed to develop well-rounded consultants who can engage clients, solve problems, and deliver meaningful outcomes in security, risk, and assurance. Programme delivery: Primarily remote, with occasional in-person sessions Interview process: Held from August 2026 Candidates must be available during August-early September Includes: Structured interview Practical task/skills assessment Pre-prepared presentation Start date: Monday 5 October 2026 What this programme is A 4-month, intensive training and development programme Designed to build core consulting capability alongside foundational security knowledge A blend of instructor-led learning, practical exercises, client exposure, and real-world scenarios Structured with clear milestones, feedback loops, and assessment points You'll build capability across consultancy, audit, and security domains, including: Consulting fundamentals Engagement lifecycles Client communication and stakeholder management Consultancy role play and scenario based delivery Security and assurance foundations ISO 27001, exposure to Lead Auditor and Implementer concepts ISO 42001 (AI governance) and emerging risk areas Supplier assurance and third party risk Applied consulting skills Report writing and presenting insights Running workshops and client sessions Case studies and simulated engagements Broader security exposure Incident response fundamentals Privacy and PETs Security engineering basics Threat analysis, resilience, and organisational risk Cross functional collaboration across security disciplines Professional development Practical assignments and guided research tasks Exposure to real client environments One industry recognised certification (e.g. ISO 27001 or ISO 42001) The programme concludes with a final assessment in Manchester, with successful candidates progressing into consulting roles. Skills, Knowledge & Expertise We're deliberately not narrowing this to a specific background. Instead, we're looking for: Strong communication and interpersonal skills Natural problem solving and critical thinking ability Interest in security, risk, or consulting Ability to learn quickly and operate in structured programmes High levels of ownership, curiosity, and resilience Experience in cybersecurity is helpful but not required. No degree requirement - we care more about capability and mindset. Job Benefits Fast track into a consulting career in cybersecurity Structured development, not "sink or swim" Exposure to real clients, real problems, real delivery Clear pathway into a Delivery Consultant role
NCC Group is seeking a DFIR Managing Consultant in Manchester to lead incident response engagements. The role involves managing a team of skilled consultants, providing hands-on support during cyber incidents, and ensuring effective communication. Candidates should have extensive experience in incident response and digital forensics, strong leadership capabilities, and relevant professional certifications. This position offers opportunities for team development and contributes to the enhancement of internal processes and capabilities.
May 31, 2026
Full time
NCC Group is seeking a DFIR Managing Consultant in Manchester to lead incident response engagements. The role involves managing a team of skilled consultants, providing hands-on support during cyber incidents, and ensuring effective communication. Candidates should have extensive experience in incident response and digital forensics, strong leadership capabilities, and relevant professional certifications. This position offers opportunities for team development and contributes to the enhancement of internal processes and capabilities.
DFIR Managing Consultant Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR Manchester Hardman Boulevard Role Purpose: To manage and service NCC Group clients within the Incident Response space. The Managing Consultant plays a critical role within the DFIR team of experienced consultants, delivering high quality incident response and proactive services to clients. The role involves leading and contributing to detailed technical analysis, managing incident response activities, and ensuring effective communication and coordination throughout an engagement. With a strong focus on technically supporting clients during live incidents, the Managing Consultant is also expected to contribute to projects enhancing the team's internal capabilities through continuous improvement of processes, tooling, and technical approaches. Applying strong foundational DFIR skills and a meticulous, detail oriented approach to analysis, the Managing Consultant provides trusted expertise and guidance to clients during complex and high pressure situations. The role also includes line management responsibilities, with opportunities to mentor, support, and develop junior consultants, fostering technical excellence, professional growth, and a collaborative team culture. Key Responsibilities Leadership in coordinating a team of experienced DFIR consultants deployed during an engagement, promoting effective collaboration, clear communication, and high quality delivery throughout investigative and incident response engagements. Actively responding to cyber security incidents, providing hands on technical analysis, containment, mitigation, and remediation support to clients. Demonstrating calm, confident incident leadership and sound judgement in client Incident Management scenarios, including high pressure and time critical environments. Delivering thorough, high quality incident response investigations that support client decision making and recovery. Collaborating with clients and internal stakeholders to identify, resolve, document, and improve response to security incidents. Delivery of proactive engagements, such as first responder training and technical tabletops to clients to aid in their improvement of handling incidents. Supporting the development of team capability through mentoring, knowledge sharing, and line management of junior consultants. Skills, Knowledge & Expertise Extensive experience working in incident response, digital forensics, or security operations, with a demonstrable focus on incident response delivery. Proven experience leading teams during cyber incidents, providing clear incident management and technical direction to clients. Strong knowledge of enterprise security controls and common defensive technologies. Ability to design and develop scripts, tooling, or automation to enhance investigative effectiveness and response efficiency. Hands on experience triaging and investigating Windows, Linux, and macOS hosts. Demonstrable experience delivering incident response engagements within cloud environments. Ability to produce clear, high quality written and verbal outputs, including reports, presentations, recommendations, and executive level findings for clients. Relevant professional certifications such as CREST CPIA, CRIA, CCNIA, or CCHIA, and or SANS certifications including GCFA, GNFA, or GCIH. Experience delivering technical tabletop exercises and leading clients through incident scenarios to test and improve processes and response capability. Strong understanding of common enterprise technologies and configurations, including cloud platforms such as Azure, Microsoft 365, AWS, and GCP.
May 31, 2026
Full time
DFIR Managing Consultant Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR Manchester Hardman Boulevard Role Purpose: To manage and service NCC Group clients within the Incident Response space. The Managing Consultant plays a critical role within the DFIR team of experienced consultants, delivering high quality incident response and proactive services to clients. The role involves leading and contributing to detailed technical analysis, managing incident response activities, and ensuring effective communication and coordination throughout an engagement. With a strong focus on technically supporting clients during live incidents, the Managing Consultant is also expected to contribute to projects enhancing the team's internal capabilities through continuous improvement of processes, tooling, and technical approaches. Applying strong foundational DFIR skills and a meticulous, detail oriented approach to analysis, the Managing Consultant provides trusted expertise and guidance to clients during complex and high pressure situations. The role also includes line management responsibilities, with opportunities to mentor, support, and develop junior consultants, fostering technical excellence, professional growth, and a collaborative team culture. Key Responsibilities Leadership in coordinating a team of experienced DFIR consultants deployed during an engagement, promoting effective collaboration, clear communication, and high quality delivery throughout investigative and incident response engagements. Actively responding to cyber security incidents, providing hands on technical analysis, containment, mitigation, and remediation support to clients. Demonstrating calm, confident incident leadership and sound judgement in client Incident Management scenarios, including high pressure and time critical environments. Delivering thorough, high quality incident response investigations that support client decision making and recovery. Collaborating with clients and internal stakeholders to identify, resolve, document, and improve response to security incidents. Delivery of proactive engagements, such as first responder training and technical tabletops to clients to aid in their improvement of handling incidents. Supporting the development of team capability through mentoring, knowledge sharing, and line management of junior consultants. Skills, Knowledge & Expertise Extensive experience working in incident response, digital forensics, or security operations, with a demonstrable focus on incident response delivery. Proven experience leading teams during cyber incidents, providing clear incident management and technical direction to clients. Strong knowledge of enterprise security controls and common defensive technologies. Ability to design and develop scripts, tooling, or automation to enhance investigative effectiveness and response efficiency. Hands on experience triaging and investigating Windows, Linux, and macOS hosts. Demonstrable experience delivering incident response engagements within cloud environments. Ability to produce clear, high quality written and verbal outputs, including reports, presentations, recommendations, and executive level findings for clients. Relevant professional certifications such as CREST CPIA, CRIA, CCNIA, or CCHIA, and or SANS certifications including GCFA, GNFA, or GCIH. Experience delivering technical tabletop exercises and leading clients through incident scenarios to test and improve processes and response capability. Strong understanding of common enterprise technologies and configurations, including cloud platforms such as Azure, Microsoft 365, AWS, and GCP.
