26 to 50 of 98 Threat Modelling Jobs in England

equivalent experience Experience applying cyber security principles across the systems or product engineering lifecycle Knowledge of cyber risk management and vulnerability management Experience with threat modelling frameworks such as MITRE ATT and CK, DEF3ND, or EMB3D Awareness of industrial control systems or operational technology environments Working knowledge … subject to required skills, your application to our client in conjunction with this vacancy only. Key Skills Product Cyber Security Specialist, Cyber Risk Management, Threat Modelling, NIST CSF, Industrial Control Systems, Secure by Design, Defence ...

software, infrastructure, and platform engineering teams to improve security across systems and workflows Contribute across a broad range of security initiatives, including detection, hardening, threat analysis, infrastructure protection, and secure engineering practices Investigate vulnerabilities, suspicious activity, and emerging threats, helping drive remediation and operational improvements Build scalable solutions that … improve visibility, detection quality, and security operations efficiency Support security architecture and threat modelling discussions, helping teams make pragmatic, risk-aware decisions Evaluate new attack techniques, tooling, and security research, translating relevant findings into actionable engineering improvements Help strengthen security awareness and engineering best practices across the wider ...

OEMs, ground handling, avionics suppliers Safety‐critical OT networks and mission‐critical control systems Technical Delivery Perform and/or lead: OT penetration testing Threat modelling and risk assessments Security architecture review for aviation technologies Compliance assessments and gap analyses (Part‐IS, 62443, NIS2 where applicable) Oversee technical … networks, architectures, and protocols Security risk assessment in safety‐critical environments Hands‐on cyber security experience, such as: Penetration testing (OT preferred) Threat modelling Incident response Architecture review Comfortable providing client‐facing advisory services. Experience working in or with regulated environments. Ability to simplify complex cyber concepts ...

quickly. Own the code review culture and provide constructive, educational feedback that raises the bar for everyone. Embed secure coding practices across the team: threat modelling, security testing, and dependency management. Build observability into your systems from the start, covering instrumentation, logging, monitoring, and alerting, so that your … cloud infrastructure. Practical knowledge of cloud platforms (Azure/AWS) and containers (Docker/Kubernetes). Strong security fundamentals across OWASP, secure coding, threat modelling, and security testing. Proven ability to design scalable, maintainable architectures and evolve complex legacy systems. AI-Native Engineering Practice Demonstrable experience using ...

business acquisition-focused role responsible for building pipeline, generating revenue, and winning new customers for cybersecurity services including VAPT, Red Teaming, Product Security, Threat Modelling, and Vulnerability Management. The ideal candidate will have experience selling cybersecurity services or technology solutions and be comfortable engaging with enterprise … tenders, and customer due diligence requests Promote and sell services including: VAPT (Web, Mobile, API, Cloud, Infrastructure) Red Teaming/Adversary Simulation Vulnerability Management Threat Modelling Product Security/Secure SDLC Advisory Develop repeat business and cross-sell opportunities within customer accounts Maintain accurate CRM updates, pipeline forecasts ...

translate complex security risks into clear architectural decisions. A key aspect of the role is the ability to challenge existing designs, conduct architecture assurance, threat modelling, and risk analysis, and provide clear, practical security guidance that can be implemented by engineering teams. The position involves working in highly … methodical approach to problem solving, and the ability to consistently challenge assumptions by asking the right questions (“why” driven mindset). Strong experience in threat modelling, risk assessment, and security architecture assurance is expected, along with the ability to communicate effectively with both technical teams and senior stakeholders. ...

Threat & Adversarial AI Expert 6 Months Contract + Extension London Based 2 days in the office £500 to £600 a day Inside IR35 A pioneering financial institution is seeking an experienced Threat & Adversarial AI Expert to join their cybersecurity team. You will act as the primary architect … safety for the firm's generative AI ecosystem, ensuring agentic capabilities remain resilient against an evolving global threat landscape. As a Threat AI Expert, you will lead the organisation's Generative AI security strategy. Key responsibilities include: Advanced Threat Modelling: Leading structured sessions using STRIDE ...

Threat & Adversarial AI Expert 6 Months Contract + Extension London Based 2 days in the office £500 to £600 a day Inside IR35 A pioneering financial institution is seeking an experienced Threat & Adversarial AI Expert to join their cybersecurity team. You will act as the primary architect … safety for the firm's generative AI ecosystem, ensuring agentic capabilities remain resilient against an evolving global threat landscape. As a Threat AI Expert, you will lead the organisation's Generative AI security strategy. Key responsibilities include: Advanced Threat Modelling: Leading structured sessions using STRIDE ...

IR35 Active SC Clearance Required Core Responsibilities Design and maintain secure architecture frameworks for enterprise systems across cloud, on-premises, and hybrid environments Conduct threat modelling, risk assessments, and security gap analyses across infrastructure and application layers Define and enforce security standards, reference architectures, and policy controls aligned ...

THROUGH UMBRELLA Role Description: "Core Responsibilities: Develop and maintain secure architecture frameworks for enterprise-grade systems, including cloud, on-premises, and hybrid environments Conduct threat modelling, risk assessments, and security gap analyses across infrastructure and application layers Define security standards, reference architectures, and policy controls based on industry … ensure secure software development lifecycles (SSDLC) Lead strategic initiatives in incident response planning, detection and mitigation strategies, and digital forensics Monitor advancements in threat intelligence and regulatory requirements, advising stakeholders on appropriate countermeasures Produce and maintain architectural documentation, ensuring traceability of security controls and compliance obligations Experience: Demonstrated experience ...

Midlands. Practitioner CERT capabilities and several team management experience is required – meaning you will be technically capable and experienced within Incident Response & Detection, Threat Intelligence & Hunting, Vulnerability Management, Attack Surface Reduction, Cyber Analysis, etc. You will also have large team leadership and motivation experience in some … monitoring and detecting cyber security threats and incidents in real-time. Collaborate with teams to conduct incident investigations and develop response plans. Lead proactive threat hunting initiatives. Manage vulnerability assessments and penetration testing programs. Develop and maintain threat intelligence capabilities. Essential experience includes: Extensive experience in managing cyber ...

world national security impact, while enjoying hybrid working and strong professional development opportunities. Skills Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration ...

assurance across complex systems or major programmes. Ability to produce clear architecture documentation and security artefacts. Strong understanding of secure design principles, risk management, threat modelling and security controls. Knowledge of UK Government/Defence security standards, guidance and assurance processes. Experience working with senior stakeholders across security … technical and non-technical audiences. Desirable experience Army programme experience or strong MOD stakeholder exposure. Experience with Sparx Enterprise Architect, ArchiMate, NAFv4 or similar modelling approaches. Knowledge of Joint Service Publications, NCSC guidance, ISO27001, NIST, CIS or related security frameworks. Experience across IAM, PKI, secure integration, cloud security, data ...

architectural governance artefacts. Ensure designs align with NCSC guidance , industry best practices (e.g., CIS Benchmarks), and organisational policy. Security Assurance Conduct security assessments and threat modelling against containerised and virtualised workloads. Validate platform configurations against security baselines, compliance frameworks, and risk appetite. Provide expert guidance during project delivery ...

architecture patterns, reference models, and solution blueprints. Lead security design for Base Metals OEMS platforms, ensuring alignment with performance, resilience, and regulatory requirements. Perform threat modelling, security risk assessments, and architecture reviews. Integrate security into DevOps pipelines, promoting DevSecOps best practices. Collaborate with engineering, infrastructure, and business teams ...

Familiarity with AI-assisted security tools, machine learning concepts for detection, or data-driven security analytics. Understanding of how AI can be applied to threat detection, anomaly detection, investigation support, and security operations automation. Awareness of emerging AI-driven attack techniques, including adversarial AI and automated exploitation methods. Familiarity … engineering and security teams to integrate AI-enabled security capabilities into operational processes. Support incident investigations using advanced analytics, AI-assisted tooling, and structured threat analysis techniques. Conduct threat modelling and security architecture reviews with a focus on emerging AI-enabled risks and system complexity. Identify vulnerabilities ...

person clients call when they need to understand how to modernise their security architecture, navigate a compliance challenge, or respond to an evolving threat landscape. You will own relationships with a portfolio of blue-chip enterprise clients , guiding them on their journey toward Zero Trust, SASE, and SSE adoption … clarity. Serve as a trusted thought partner as clients navigate regulatory compliance requirements, security frameworks (e.g. NIST, ISO 27001, NIS2, DORA), and evolving threat environments. Identify and shape new opportunities within existing accounts, recognising client challenges and translating them into well-formed propositions. Technical Leadership Provide authoritative guidance ...

remediation tracking, and clear reporting aligned to regulatory expectations. Security Architecture & Change Enablement • Act as a security architect for projects and change initiatives. • Perform threat modelling where appropriate and define proportionate, practical controls across endpoints, cloud, identity, and data. Collaboration & Continuous Improvement • Partner with IT and Engineering teams ...

required. Bristol/Corsham access would be ideal. Key experience areas include: Security Architecture Secure by Design NCSC CAF/NIST/ISO27001 Threat modelling and risk assessment Cloud Security (AWS/Azure/GCP) Security assurance and accreditation activities Defence or wider Public Sector environments Strong stakeholder ...

with the highest security standards. Design and create secure Enterprise-Grade Architectures Across Cloud, Hybrid, and On-Prem Environments Conduct comprehensive risk assessments and threat modelling to proactively identify vulnerabilities and develop effective mitigation strategies Develop and maintain security policies and frameworks that adhere to industry standards such ...

identity management (e.g., Entra ID), and secure application development. Deliver clear cybersecurity advice to technical and non-technical stakeholders on Azure security best practices, threat protection, and compliance. Champion 'Secure by Design' across IT infrastructure, emphasizing Azure Defender, Sentinel, and application security controls. What were looking for Expertise … application security (e.g., OWASP, DevSecOps), and network segmentation. Strong knowledge of Azure-specific security tools (e.g., Azure Security Center, Key Vault, Policy, Private Link), threat modelling, secure SDLC, and assurance processes. Experience delivering "secure by design" in regulated sectors (e.g., finance, healthcare, critical infrastructure), including Azure compliance certifications ...

infrastructure security through Terraform-based infrastructure as code Automating security validation and policy enforcement using cloud-native tools and policy-as-code approaches Supporting threat modelling and secure design across engineering teams Managing vulnerability remediation workflows and ensuring issues are resolved within defined risk and compliance timelines Implementing … including IAM, networking and container security Experience integrating security controls into CI/CD pipelines (e.g. GitHub Actions) Practical exposure to vulnerability management and threat remediation processes Experience collaborating with SOC, cyber defence or enterprise security teams Understanding of modern application architectures and cloud-native systems Ability to adapt ...

change control procedures Experience designing or reviewing secure software supply chain and CI/CD security . Ability to interpret CVEs, CVSS scores, and threat intelligence feeds. Strong stakeholder engagement and communication skills with an ability to produce technical reports and articulate risk to non-specialists. Excellent written … technical security reports for assurance cycles Support compliance audit evidence packs (GovAssure/CAF, CE+, ISO 27001) Develop or update security standard documents (e.g. threat modelling, vulnerability mgmt) Support cyber input for IT, research or OT programmes Work with IT teams to co-author and test secure configuration ...

Design Familiarity with: JSP440, JSP604/453, JSP490 Supplier Chain Assurance GDPR, PCI DSS, ICO ISO 27001, NIST CSF, CIS Controls v8 Skills in: Threat modelling (kill chain, attack trees, etc.) Cloud security (AWS, Azure), containerisation, firewalls Secure SDLC HLD/LLD review ITHC scoping and remediation Certifications ...

Design Familiarity with: JSP440, JSP604/453, JSP490 Supplier Chain Assurance GDPR, PCI DSS, ICO ISO 27001, NIST CSF, CIS Controls v8 Skills in: Threat modelling (kill chain, attack trees, etc.) Cloud security (AWS, Azure), containerisation, firewalls Secure SDLC HLD/LLD review ITHC scoping and remediation Certifications ...