18 of 18 Threat Modelling Jobs in the South East

Title: Cyber Threat Management Lead Location: London (2 days onsite per week) Duration: 6 months Rate: £670 via Umbrella Role Summary: We are Seeking a Cyber SME to improve cyber defence through threat intelligence, threat hunting, and detection engineering. Key Responsibilities: Apply cyber threat intelligence … strengthen network defence Conduct threat hunting and detection engineering Perform threat modelling and threat-led risk reduction Support purple team and offensive security testing to improve detections and controls Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation ...

client-facing role combining security architecture, risk management, and governance . Key Responsibilities Provide security advice and guidance across IT and business projects Conduct threat modelling and security impact assessments (SIAs) Define and review security requirements for applications and infrastructure Review conceptual, logical, and physical solution designs Manage … security architecture within complex environments Strong knowledge of ISO 27001/ISMS and security governance frameworks CISSP (or equivalent certification) Experience with risk assessments, threat modelling, and security design reviews Broad technical understanding across: Application security (e.g. OWASP, IAM, cryptography) Infrastructure security (networks, endpoints, cloud) Operational security (incident ...

cloud infrastructures. Contribute to blogs and research within the Cyberfort community. Experience Required The successful candidate will possess proven experience in cybersecurity, security architecture, threat modelling, or related fields within Public Sector and MOD and will have achieved or be working towards Full Membership of CIISEC … NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling – Kill Chain – Attack tree analysis. Certifications: AWS/Azure Security Professional, CCSP, CISSP, CISM, CIISEC, UK Cyber Security Council registration (Chartered ...

security risks, issues, and mitigation plans throughout the delivery lifecycle. Ensure security requirements are captured, validated, and integrated into design and delivery documentation. Support threat modelling, risk assessments, and security reviews. Maintain and update assurance artefacts, including design documentation, risk registers, and compliance checklists. Facilitate security sign … governance processes. Strong communication and stakeholder engagement skills. Ability to interpret technical documentation and translate security requirements into actionable tasks. Desirable Skills Experience with threat modelling tools and techniques. Knowledge of cloud security (AWS, Azure, GCP). Understanding of regulatory and compliance frameworks. Background in cyber security ...

Product Security Management System (PSMS) and propose improvements when gaps or inefficiencies are identified. Support evidence generation required for Cybersecurity Conduct security analyses , threat modelling and vulnerability assessments within the digital engineering environment. Support incident investigations and maintain accurate records of product-security-relevant decisions . Essential Skills … product, system or cyber security engineering industries. (Internal BAE Systems training is available for Product Security specialism) An awareness of secure-by-design principles , threat modelling, risk assessment methodologies and security control design. Practical knowledge of security policies, standards and good practice frameworks in highly regulated industries Experience ...

Product Security Management System (PSMS) and propose improvements when gaps or inefficiencies are identified. Support evidence generation required for Cybersecurity Conduct security analyses , threat modelling and vulnerability assessments within the digital engineering environment. Support incident investigations and maintain accurate records of product-security-relevant decisions . Essential Skills … product, system or cyber security engineering industries. (Internal BAE Systems training is available for Product Security specialism) An awareness of secure-by-design principles , threat modelling, risk assessment methodologies and security control design. Practical knowledge of security policies, standards and good practice frameworks in highly regulated industries Experience ...

Product Security Management System (PSMS) and propose improvements when gaps or inefficiencies are identified. Support evidence generation required for Cybersecurity Conduct security analyses , threat modelling and vulnerability assessments within the digital engineering environment. Support incident investigations and maintain accurate records of product-security-relevant decisions . Essential Skills … product, system or cyber security engineering industries. (Internal BAE Systems training is available for Product Security specialism) An awareness of secure-by-design principles , threat modelling, risk assessment methodologies and security control design. Practical knowledge of security policies, standards and good practice frameworks in highly regulated industries Experience ...

optimisation of Microsoft Defender for Cloud Develop and enforce Azure security policies, standards, and guardrails Implement Zero Trust principles across Azure workloads Conduct threat modelling and architecture risk assessments Review and remediate security findings from Defender, vulnerability tools, and audits Collaborate with Operations teams to drive timely remediation ...

actionable design guidance rather than policy-only responses Participate in design forums and governance boards, strengthening secure-by-design delivery Support security risk assessments, threat modelling, and control gap analysis Key Skills Needed Ability to review an HLD (High level design) or LLD (low level design)and provide ...

delivering an Information Security strategy in a way that balances risk reduction, business enablement and operational pragmatism Strong experience leading security risk assessments, threat modelling, incident management and remediation of security weaknesses in a structured, risk‐based way Significant experience managing external audits, customer assurance and recognised security ...

embedded properly into how things are built and run. You'll spend your time securing Kubernetes environments, running and tuning Splunk for logging and threat detection, and managing Nessus to track and drive vulnerability remediation. A big part of the role is integrating security into CI/CD pipelines … Splunk and Nessus. You'll understand container security, have some scripting or automation capability, and be comfortable working with security frameworks . Awareness of threat frameworks like ATT&CK is useful. It would help if you've worked with other SIEM tools, Microsoft Defender or DevSecOps pipelines ...

current and emerging technologies to select or recommend the best solutions for the future state architecture. Knowledge of application security, MITRE ATT&CK and Threat Modelling. Broad knowledge of controls in the industry (NIST, ISO, PCI, SOC, CSF, ISO27001, SABSA and TOGAF) Identity and Access Management (SAML, OAuth, certs … Identifying security flaws in solutions through threat modelling, architectural assessments and design reviews Identity and Access Management, Data Leakage Prevention, Network and Infrastructure Security Cryptography, Encryption and Key Management, Secrets Management, TLS, IPSec, Ciphers, X509 Application Security Design, DevSecOps, Agile practices, Shift Left concepts and automation You have ...

remediation of security risks within live environments. Key responsibilities include: Leading triage of security issues and tickets within client systems Conducting risk assessments, threat modelling, and security impact assessments Supporting remediation of vulnerabilities and driving resolution of findings Providing clear, actionable security guidance to technical and business teams ...

security patterns. Inputting into High-Level Designs (HLDs) and Low-Level Designs (LLDs) with explicit security controls. Conducting threat modelling (STRIDE, attack trees, kill chain analysis). Identifying and documenting security requirements for systems, networks, and cloud services. Ensuring designs meet classification requirements Security Controls & Patterns Advising ...

assessment, remediation) Implement risk-based security solutions aligned to enterprise standards Work closely with infrastructure, application and OT teams to embed security controls Support threat modelling, secure design, and Zero Trust frameworks Key Skills & Experience: Strong experience as a Security Architect/Cybersecurity Architect Proven expertise in vulnerability ...

landscapes. Work closely with infrastructure, application, and OT teams to embed security controls into architectures and operations. Provide architectural guidance on secure system design, threat modelling, and risk-based decision making. Support continuous improvement of vulnerability management processes and overall security posture. Essential skills/knowledge/experience ...

Cyber Essentials Plus. Manage and optimise security platforms covering: Endpoint protection Identity protection Defender XDR Conditional access and device compliance Lead vulnerability assessments, threat modelling, incident response planning, and recovery testing. Strengthen information governance, data protection, and secure configuration baselines. Own security-focused change control, coordinate penetration testing ...

call for customer service improvements Assist with the onboarding and building an understanding of customer business risks Work with the onboarding consultants to build Threat Models and maintain them during live service Allocated Technical Account Manager to act as a first point of contact for operational matters and proactive ...