6 of 6 Threat Modelling Jobs in Avon

practices throughout the software development lifecycle, with a strong emphasis on 'shift-left' principles to embed security early in the process. You will facilitate threat modelling workshops to help product teams identify, assess, and mitigate potential threats. You will also collaborate closely with other functions within the CISO … Cloud serverless transformation projects. You will have the ability to work with infrastructure as code and understand complex architectures. You will Lead/facilitate threat modelling workshops with SMEs. Engage with key stakeholders to identify threats and recommend countermeasures. Participate in architectural reviews of Product cloud implementations against ...

cloud deployments (private/public). Design and scope IT Health Checks and interpret outcomes. Identify and mitigate security risks in solution architectures. Conduct threat modelling and risk analysis. Design proportional security controls using native cloud technologies. Produce security architecture artefacts including standards and blueprints. What ...

delivering high-quality cyber risk assessments and assurance in complex digital environments, preferably in government or critical infrastructure. Strong knowledge of cyber risk management, threat modelling, security architecture, and IT Health Checks, including experience with SaaS and cloud security. Skilled at applying cyber security standards, regulatory frameworks ...

portfolio of assignments, advising on risk, architecture, and secure delivery for nationally critical systems. Key responsibilities include • Engaging directly with client teams to understand threat landscape, risk appetite, and delivery constraints • Defining and documenting proportionate security architectures aligned to business outcomes • Leading threat modelling and security design ...

alerting/response workflows. Understanding of the Microsoft Cloud Adoption Framework, Azure Landing Zones and the Well-Architected Framework. Familiarity with DevSecOps practices: threat modelling, dependency and container scanning, SBOM management, and shift-left security. Comfortable collaborating with software engineers and SREs; able to translate platform capabilities into ...

Elicit and document business and functional requirements with embedded security and privacy considerations. Produce security-aware artefacts, including Business Requirements Documents (BRDs), Functional Specifications, Threat Modelling inputs, Risk Assessment reports, and Security Requirements Traceability Matrix (SRTM). Support the identification and documentation of service assets, data flows ...