NCC Group

Role Description We are seeking a highly skilled and motivated Security Analyst Team Lead to guide and support our security operations team. The successful candidate will provide leadership, management, technical expertise, and mentorship to a team of security analysts, ensuring effective investigation of alerts, escalation to our customer, and continuous improvement of security operations. - Demonstrate the ability to confidently manage and mentor junior analysts at both R1 and R2 levels. - Provide guidance, oversight, and support in day-to-day operations. - Communicate clearly, consistently, and effectively in a remote environment. - Produce clear, thorough, and high-quality documentation, including incident reports, standard operating procedures, and technical playbooks. - Familiarity with security frameworks such as MITRE ATT&CK, NIST, or ISO 27001 is expected. - Work on a rotating shift pattern that includes both day and night shifts as well as occasional on-call duty. - Investigate security tickets, ensuring timely and thorough analysis, appropriate escalation, and effective resolution. - Validate filtering and tuning opportunities within the detection environment to reduce false positives and enhance alert fidelity. Qualifications - Experience working in a cyber security environment. - Proactive and experienced security professional with a strong background in security operations. - Exceptional communication skills, thriving in a fully remote environment. - Deep knowledge of security operations tools and practices, particularly with Splunk as the SIEM of choice. - Well-versed in security frameworks such as MITRE ATT&CK, NIST, or ISO 27001. - Strong analytical skills and a commitment to continuous learning in a fast-paced threat landscape. Requirements - Experience within a SOC analyst role, detection engineer, data engineer, or similar. - Strong use of Splunk Programming Language. - Strong understanding of Content Delivery Networks and AWS Cloud technologies. Desirable Requirements - Hands-on experience with Splunk SIEM, including alert triage, investigation, tuning, filtering, and rule development. - Strong analytical and investigative skills for assessing security alerts, tickets, and incident data. - Familiarity with established security frameworks such as MITRE ATT&CK, NIST, and ISO 27001. - Experience in tuning and optimizing detection content to reduce false positives and enhance alert fidelity. - Capable of drafting and maintaining clear, thorough, and professional technical documentation. - Strong understanding of common cyber threats, tactics, techniques, and procedures (TTPs). - Technically proficient in troubleshooting complex alerts and contributing to detection engineering initiatives. Desirable Certifications - Splunk Power User - CompTIA CySA + - CompTIA Security X - Blue Team Level Two - GCIH Behaviours - Demonstrates strong investigative instincts—able to piece together disparate data to uncover patterns, anomalies, and malicious activity. - Challenges assumptions and seeks root causes when identifying potential threats. - Goes beyond the minimum requirements to provide solutions and contributions that enhance the customer’s success and growth. - Strong leadership and team management abilities, with proven experience mentoring and guiding R1 and R2 level security analysts. - Capable of managing and prioritizing workloads across a rotating shift pattern. - Excellent verbal and written communication skills for effective collaboration in a fully remote environment. - Skilled in producing high-quality documentation, including incident reports, SOPs, playbooks, and investigation summaries. - Confident in conflict resolution, decision-making, and acting as the escalation point during complex security incidents. - Proactive in identifying areas for team and process improvement. - Ability to foster a culture of continuous learning and professional development within the team. - Self-motivated and dependable when working independently, particularly during out-of-hours or high-pressure situations. - Strong organizational and time management skills, ensuring adherence to deadlines and service level agreements (SLAs). Benefits - Flexible Working: Balance your work and personal life with our flexible working options. - Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. - Medicash & Critical Illness Scheme. - Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. - Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. - Green Car Scheme: Drive green and save money with our eco-friendly car scheme. - Cycle Scheme: Stay fit and healthy with our cycle-to-work scheme. - Special Time Off: Take time off for significant life events. - Family Planning: Benefit from generous maternity and paternity leave, as well as support for those undergoing fertility treatments.

Role Description We are seeking a highly skilled and motivated Senior Account Manager to join our high-performing sales team. This role is responsible for managing and expanding complex, high-value client relationships, within the Technology, Financial Services, Healthcare, Industrials, Energy or Professional Services industries. You will lead consultative, executive-level engagements and drive the full sales lifecycle, including selling our complete portfolio of cybersecurity services. The ideal candidate excels at both acquiring net new clients and expanding revenue within existing accounts. You will play a critical role in helping customers design, develop, and mature their cyber resilience roadmaps by aligning internal cross-functional teams and service capabilities to evolving client needs. This is a fast-paced, high-impact opportunity in a dynamic, tech-driven environment. Qualifications - Proven experience in enterprise account management within Cybersecurity services, or Cybersecurity technology - Strong understanding of cybersecurity services such as penetration testing, risk assessments, regulatory compliance, and MXDR - Proven track record managing complex client portfolios and achieving revenue targets - Proficiency with Salesforce and analytics dashboards - Familiarity with cybersecurity and compliance frameworks (e.g., NIST, HIPAA, NERC CIP, FedRAMP) - Bachelor’s degree and/or certifications (CISSP, CISM) preferred - Experience working with C-suite stakeholders (CISO, CIO, CFO) Requirements - Manage renewals, upsells, expansions, and net new logo acquisition to drive account growth - Build strong, multi-threaded relationships with executive, business, and technical stakeholders - Lead strategic account planning and develop multi-quarter growth strategies - Collaborate cross-functionally with Product, Pre-Sales, Delivery, and Operations teams - Act as a customer advocate; resolve issues with urgency and accountability - Identify and execute cross-sell and upsell opportunities aligned with client goals - Leverage sales methodologies such as MEDDPICC, Challenger, and Value Selling - Maintain accurate forecasts, pipelines, and customer health metrics in CRM - Educate clients on industry trends, risk frameworks, and emerging cybersecurity threats Benefits - Flexible working - Financial & Investment - 401k - Health Insurance contributions - Life Assurance - Maternity & Paternity leave - Community & Volunteering Programmes - Employee Referral Program - Lifestyle & Wellness - Learning & Development

Role Description We are looking for a high-impact Service Delivery Manager (SDM) to join our Managed Services practice as a full-time contractor. You will be the strategic bridge between our technical Security Operations Centre (SOC) and our Asia Pacific clients. Your mission is to ensure excellence in service delivery, maintain rigorous security standards, and act as a trusted advisor to our clients’ cybersecurity staff and IT leadership. As an SDM, you aren’t just managing a contract; you are managing a partnership. You will oversee the entire lifecycle of the client relationship from onboarding and governance to incident escalation and service improvement. - Client Advocacy: Act as the primary point of contact for a dedicated portfolio of clients, ensuring their security requirements are met and exceeded. - Service Governance: Lead Monthly and Quarterly Business Reviews (MBRs/QBRs), translating SOC data and threat intelligence into actionable business insights. - Performance Management: Monitor and report on key performance indicators (KPIs) and SLAs, including MTTD, MTTR, and system uptime. - Incident Orchestration: Work closely with the NCC Technical Account Manager and serve as critical communication links during high-priority security incidents, managing expectations and technical updates between our SOC and IR teams and the client. - Service Improvement: Identify gaps in client security postures and recommend service enhancements, additional tooling, or policy changes to mitigate risk. - Contractual Oversight: Ensure all deliverables are met according to the Statement of Work (SOW) and manage the lifecycle of the contract. Qualifications - 3+ years in Service Delivery Management, Account Management, or IT Project Management, specifically within a Cybersecurity or Managed Services (MSP/MSSP) environment. - Technical Literacy: A strong understanding of cybersecurity fundamentals (SIEM, EDR, and Vulnerability Management) to effectively communicate with both engineers and senior management. - Communication Mastery: Capable of translating technical language into business impact to senior management. - Certifications (desirable): ITIL v4 Foundation, PMP, PRINCE2 or CISM. - Adaptability: Comfortable working in a fast-paced, high-pressure environment where threat landscapes change daily. Ways of working - Focusing on Clients and Customers. - Working as One NCC. - Always Learning. - Being Inclusive and Respectful. - Delivering Brilliantly. Benefits - Superannuation - Leaves Benefits include but not limited to: - Annual leave – 20 days - Sick Leave & caregivers Leave – 10 days - Marriage/Civil Partnership Leave (1 day) - Moving Home Leave (1 day) - Employee Assistance Program with access to confidential counselling support 24 hours a day, 7 days a week. This is a free service for up to 6 occasions per calendar year for you and your close family.

• Help scale and modernize the legal function by designing and implementing efficient processes, supporting contract negotiations, and deploying legal technology. • Partner closely with Legal, Compliance, IT, HR, Sales, and other business teams to ensure legal operations enable the business while managing risk and maintaining compliance. • Identify, evaluate, implement, and administer AI‑enabled and other legal technology tools to improve efficiency, quality, and scalability across the legal function. • Act as a technical and operational partner to the General Counsel by configuring tools, managing implementations, and driving adoption. • Continuously assess and optimize legal workflows with a focus on automation, standardization, and measurable improvement. • Track and manage the lifecycle of commercial contract negotiations, ensuring visibility, accountability, and timely execution. • Independently negotiate and manage Non‑Disclosure Agreements (NDAs) using approved negotiation frameworks. • Design, implement, and maintain contract negotiation playbooks; support internal enablement and adoption. • Implement and oversee efficient processes for the execution of agreements. • Design and implement scalable processes supporting procurement, compliance, employment, and privacy initiatives.

• Generate a consistent flow of Sales Qualified Leads (SQLs). • Execute 50+ high-quality, research-backed touches per day (Email, LinkedIn, Phone, etc.). • Conduct initial discovery calls before handing off to BDM. • Maintain 100% accuracy in our CRM (Salesforce) by logging activities and leads appropriately.

Principal Solution Architect Department: Sales Employment Type: Full Time Location: USA Remote - Eastern Time Reporting To: Andy Jarvis Description The Principal Solution Architect is a senior technical role within NCC Group’s Sales Engineering & Field Strategy team, responsible for shaping and delivering complex, high-value cyber security solutions across both professional and managed services. This role serves as a technical authority and strategic partner to clients, translating business challenges into secure, scalable, and commercially viable solutions. In addition to leading solution design and client engagements, the Principal Solution Architect plays a key role in mentoring and developing the wider team of Solution Architects. They provide technical guidance, coaching, and quality assurance to ensure consistency, innovation, and excellence in solution delivery. Acting as a role model and escalation point, they foster a culture of continuous improvement, collaboration, and technical curiosity across the team. This role requires a blend of deep technical expertise, commercial awareness, and strong interpersonal skills to influence stakeholders, support sales activities, and drive the evolution of NCC Group’s service offerings in response to emerging threats and market demands. Key Responsibilities - Lead the creation of technical solution designs and bid responses for large-scale client opportunities, integrating services across NCC Group’s offerings. - Provide expert technical solution consultancy, including scope definition, approach, dependencies, assumptions, and cost modelling aligned with governance processes. - Act as a senior technical advisor in client engagements, translating business needs into actionable cybersecurity solutions. - Collaborate with Sales, Delivery, and Product Management teams to ensure alignment of proposed solutions with client requirements and internal capabilities. - Own the quality assurance of client-facing documentation, ensuring clarity, accuracy, and technical integrity. - Mentor and support Solution Architects, acting as a technical escalation point. - Identify market trends and gaps to inform service development and maintain competitive advantage. - Contribute to account planning and opportunity development, supporting strategic growth initiatives. - Deliver internal training and briefings on NCC Group services, research, and intellectual property. - Represent NCC Group at client meetings, conferences, and industry events, occasionally requiring national travel. Skills, Knowledge and Expertise Functional & Technical Skills - Proven experience in designing and delivering complex cyber security solutions in a pre-sales or consulting capacity. - Strong understanding of network architecture, IT infrastructure, cloud platforms (Azure, AWS), and emerging technologies. - Deep knowledge of cybersecurity threats, threat actors, and mitigation strategies. - Familiarity with penetration testing methodologies and outcomes. - Demonstrable experience with at least two of the following frameworks: NIST, ISO 27001, PCI DSS, CIS Controls. - Strong commercial acumen with the ability to balance client needs and profitability. - Excellent communication skills, including the ability to present technical content to non-technical audiences and senior stakeholders. - Proficiency in Microsoft Office and technical documentation tools. - Relevant certifications such as CISM, CISSP, CCSP, or equivalent demonstrable expertise. Desired Requirements - Experience in integrating cybersecurity solutions into enterprise environments. - Understanding of compliance and regulatory requirements across different sectors. - Exposure to managed security services and operational security models. - Experience working with international clients and multi-region solution deployments. - Knowledge of in-region cyber security regulations, compliance and privacy frameworks Benefits - Flexible working - Financial & Investment - 401k - Life Assurance - Maternity & Paternity leave - Community & Volunteering Programmes - Employee Referral Program - Lifestyle & Wellness - Health Insurance contributions available - Learning & Development

Solution Architect Department: Sales Employment Type: Full Time Location: USA Remote - Eastern Time Reporting To: Andy Jarvis Description The Solution Architect is a technical role within NCC Group’s Sales Engineering & Field Strategy team, responsible for designing and shaping cybersecurity solutions that address client needs across professional and managed services. This role works closely with clients and internal teams to understand requirements, scope engagements, and develop commercially viable solutions aligned with NCC Group’s capabilities. Solution Architects lead solution design for small-to-medium opportunities and support more complex engagements under the guidance of Senior and Principal Solution Architects. They contribute to proposals, statements of work, and technical documentation, ensuring clarity and accuracy. This role requires strong technical knowledge, excellent communication skills, and the ability to collaborate effectively across sales, delivery, and product teams. Key Responsibilities - Develop technical solution designs for client opportunities, ensuring feasibility and alignment with NCC Group’s service portfolio. - Act as a technical advisor during pre-sales engagements, supporting scope definition and solution shaping. - Produce high-quality client-facing documentation, including proposals, statements of work, and presentations. - Collaborate with Sales, Delivery, and Product Management teams to ensure solutions meet client requirements and internal standards. - Support bid responses and RFx submissions with technical input and cost considerations. - Maintain awareness of cybersecurity trends and NCC Group service offerings to inform solution design. - Assist Senior and Principal Solution Architects on complex, multi-service engagements. - Contribute to internal initiatives to improve presales processes, templates, and best practices. Skills, Knowledge and Expertise Minimum Requirements - Experience in a presales, solution architecture, or technical consultancy role within cybersecurity or technology services. - Strong understanding of core cybersecurity domains (e.g. offensive security, defensive operations, cloud security, GRC). - Ability to design and Ability to design and communicate solutions clearly to technical and non-technical stakeholders. Familiarity with frameworks such as ISO 27001, NIST, or CIS Controls. - Commercial awareness with the ability to balance client requirements and profitability. - Excellent written and verbal communication skills. - Proficiency in Microsoft Office and technical documentation tools. Desired Requirements - Security certifications such as CISSP, CISM, or equivalent experience. - Experience responding to RFPs and shaping solutions for multi-service opportunities. - Knowledge of managed security services (e.g., SOC, MDR) and incident response readiness. - Exposure to regulated sectors (e.g. Financial Services, Energy, Critical Infrastructure). - Familiarity with privacy and compliance frameworks (e.g. GDPR). Benefits - Flexible working - Financial & Investment - 401k - Life Assurance - Maternity & Paternity leave - Community & Volunteering Programmes - Employee Referral Program - Lifestyle & Wellness - Health Insurance contributions available - Learning & Development

Sales Specialist - MXDR Department: Sales Employment Type: Full Time Location: USA Remote - Eastern Time Description The Opportunity: The Sales Specialist is a quota-bearing role responsible for driving growth across NCC Group’s propositions with a key focus on Managed Extended Detection and Response (MXDR). Working in close partnership with Client Executives, Account Managers, Sales Engineering, Portfolio and Delivery to help assess, develop, shape and drive pre-qualified proposition opportunities across tier-1, enterprise and mid-market customers - bringing commercial insight, market understanding, and strategic influence to develop and close executable, profitable business. The Sales Specialist ensures NCC Group’s propositions are positioned to deliver measurable client outcomes while maintaining pricing discipline and delivery feasibility. Key Responsibilities Strategic Deal Support & Advisory - Provide deep propositions expertise in services offerings to support teams during customer engagements, RFPs, and proposal development. - Partner with Client Executives and Account Managers to craft tailored value propositions aligned to client-specific challenges and industry trends. - Collaborate with Sales Engineering and Solutions Architecture teams to validate scope, feasibility, and commercial structure. - Lead or contribute to customer-facing presentations, workshops, and strategy sessions where deep service credibility and trust are paramount. - Ownership of the pricing strategy, contract structure and commercial risk to maximise competitive offering and win rate. - Track and influence pipeline development in key accounts and support progression through critical deal stages. - Act as a bridge between Sales and Product/Delivery to communicate market feedback and inform portfolio evolution. - Support internal training and enablement efforts by mentoring account teams and sharing insights on emerging trends, competitors, and technologies. - Run and orchestrate campaigns to boost business in area of expertise. Commercial & Business Case Development - Develop and refine business cases and ROI models that demonstrate client value and align with commercial strategy. - Ensure proposals maintain pricing discipline, margin integrity, commercial compliance, and delivery readiness. - Support the development of strategic deal frameworks and reusable assets. Enablement & Collaboration - Partner with account managers as one team to pursue and close complex opportunities. - Coach sales teams on best practices for opportunity qualification, complex deal structuring and execution. Skills, Knowledge & Expertise Technical Skills - Experienced with contracts (SOWs, MSAs, SLAs) and commercial structures. - Strong understanding of Managed Extended Detection and Response (MXDR) to include SOC/SIEM, Threat Intelligent and Threat Management, Identity and Access Management, Attack Surface Management, EDR, DFIR, OT/IT security and NDR. - Knowledgeable in global security and compliance frameworks including GDPR, HIPAA, and ISO 27001, and how they map to managed services and advisory offerings. - Adept at aligning commercial, technical, and operational components into cohesive MXDR and cyber‑resilience value propositions, ensuring strong narratives across presales, delivery, and customer success. - Knowledge of Microsoft, Splunk and Sentinel One technologies would be beneficial but not essential. Functional Skills - Leads complex cybersecurity deals, balancing client needs, risk, and profitability. - Builds strong commercial models and business cases. - Trusted advisor to senior stakeholders; supports high level negotiations. - Coaches account teams on positioning complex services. Job Benefits - Flexible Working: Balance your work and personal life with our flexible working options. - Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. - Medicash & Critical Illness Scheme - Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. - Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. - Green Car Scheme: Drive green and save money with our eco-friendly car scheme. - Cycle Scheme: Stay fit and healthy with our cycle-to-work scheme. - Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. - Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.

Senior Security Consultant – Hardware and Embedded Security Department: Cyber Services and Capabilities Employment Type: Full Time Location: CAN Waterloo Description Senior Security Consultant – Hardware and Embedded Security Location: Waterloo, Canada Thanks for checking out our latest opportunity. We’re thrilled that YOU are considering joining our team! We’re NCC Group – a global leader in security consulting with a relentless passion for cutting-edge research and technical excellence. Security isn’t just what we do; it’s who we are. Our culture thrives on collaboration, continuous learning, and a deep commitment to delivering outstanding results. At NCC Group, we don’t just identify vulnerabilities – we’re shaping the future of security, and we need someone like you to help us do it. We’re on the lookout for an experienced Security Engineer or Researcher to join our Hardware and Embedded Security consulting practice. Key Accountabilities What you’ll do: As a Senior Security Consultant, you’ll be the technical lead on complex projects, driving security assessments and providing expert advice to clients. Your main responsibilities will include: - Conducting in-depth penetration testing, code reviews, and security analysis. - Leading research and reverse engineering efforts on emerging technologies and attacks. - Guiding clients through secure design practices such as threat modelling and attack surface enumeration. - Mentoring junior team members and contributing to internal tools and research initiatives. - Working on diverse projects, often remotely, but with travel to client sites when needed. Skills To be successful in this role, you should have - Solid experience in software or hardware security - In-depth technical expertise in driver code auditing, bootloaders, secure boot, and embedded system architectures - Proficiency in C/C++ for security-focused code review - A solid understanding of firmware reverse engineering and security analysis - Strong communication skills – you’ll need to explain complex vulnerabilities to clients in clear terms - A Bachelor’s degree in Computer Science, Engineering, or a related field is desirable. Additionally, it is highly beneficial if you have experience with any of the following: - Cryptography knowledge - Black-box reverse engineering - Familiarity with UEFI platform firmware, ARM/x86 architectures, and secure boot architectures - Experience with SDR, wireless protocols (Bluetooth, Wi-Fi, ZigBee, etc.), or storage controllers like NVMe, SATA, and eMMC. Benefits What do we offer in return? We have a high-performance culture which is balanced evenly with world-class well-being initiatives and benefits: - Flexible Working: Balance your work and personal life with our flexible working options. - Holiday Allowance: Enjoy 20 days of holiday, plus and additional floating day to choose at your leisure - Pension, Medical and Dental cover as well as Life Assurance - Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. - Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. - Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.

Payroll Analyst Department: HR Employment Type: Fixed Term Contract Location: USA Remote - Eastern Time Compensation: $80,000 / year Description The Payroll Specialist is responsible for accurately processing NCC Group’s US bi-weekly and semi-monthly payrolls, payroll adjustments, and manual checks for approximately 400 employees using Workday. The role ensures compliance across multiple states, supports payroll audits, and provides specialist guidance to employees and internal teams. Key Responsibilities - Work closely with HR Operations and run monthly audit reports to ensure all changes are processed accurately and on time. - Set up multi-state unemployment insurance accounts and manage applications with tax service provider. - Verify payroll information for new hires and terminations. - Audit payroll data to ensure accuracy in employee records, garnishments, and tax withholdings. - Verify and fund Fidelity for 401k Deferral, Match, Roth, Loans, and Health Savings Account transactions. - Track and update ESPP contributions. - Provide information required for annual 401k and workers’ compensation audits. - File quarterly Washington Labor & Industries returns. - Reconcile quarterly and annual payroll tax reporting (QTD/YTD). - Manage W-2 and W2c processing and publication. - Review employee W4, home address, and payment election changes. - Liaise with employees professionally on payroll matters. Skills, Knowledge & Expertise Essential - Workday Payroll experience is essential. - Experience working in a multistate and multicompany environment. - Strong communication skills and ability to build effective working relationships. - Excellent organisational skills and attention to detail. Desired - Previous experience working in a corporate finance or payroll department. - Experience with CloudPay (preferred but not essential). Job Benefits - Flexible Working: Balance your work and personal life with our flexible working options. - Health Insurance Plan - 401k - Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. - Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and moving home. - Family Planning: Benefit from our generous parental leave.