1 to 25 of 32 Threat Modelling Jobs in the South West

resilient to evolving cyber and information threats. Key Responsibilities Identify, interpret, and integrate security requirements throughout the product and system development lifecycle . Lead threat modelling and risk assessments , applying recognised frameworks such as ISO/IEC 27001, NIST 800-30/53, and ISO 31000. … configure industry-standard threat-modelling tools (e.g., STRIDE-based tools, attack-tree tooling). Provide expert advice on secure architectures, ensuring risks are understood, prioritised, and mitigated. Ensure compliance with MOD and HMG standards, including JSPs, Def Stan 05-138/05-139 , and ISN 23/ ...

practices throughout the software development lifecycle, with a strong emphasis on 'shift-left' principles to embed security early in the process. You will facilitate threat modelling workshops to help product teams identify, assess, and mitigate potential threats. You will also collaborate closely with other functions within the CISO … Cloud serverless transformation projects. You will have the ability to work with infrastructure as code and understand complex architectures. You will Lead/facilitate threat modelling workshops with SMEs. Engage with key stakeholders to identify threats and recommend countermeasures. Participate in architectural reviews of Product cloud implementations against ...

throughout the delivery lifecycle, working closely with infrastructure engineers, architects, and project/programme managers. You'll define and enforce secure configuration baselines, conduct threat modelling and risk assessments, integrate monitoring and alerting, and produce clear security artefacts that guide operational teams. Candidates must be eligible to obtain … controls across hybrid/on-prem Microsoft and Azure-centric environments. Define/enforce hardening standards (e.g., CIS Benchmarks, Microsoft Security Baselines). Perform threat modelling, risk assessments, and security validation/UAT; support incident response. Maintain SBOMs to support vulnerability management and supply-chain assurance. Integrate ...

throughout the delivery lifecycle, working closely with infrastructure engineers, architects, and project/programme managers. You'll define and enforce secure configuration baselines, conduct threat modelling and risk assessments, integrate monitoring and alerting, and produce clear security artefacts that guide operational teams. Candidates must be eligible to obtain … controls across hybrid/on-prem Microsoft and Azure-centric environments. Define/enforce hardening standards (e.g., CIS Benchmarks, Microsoft Security Baselines). Perform threat modelling, risk assessments, and security validation/UAT; support incident response. Maintain SBOMs to support vulnerability management and supply-chain assurance. Integrate ...

throughout the delivery lifecycle, working closely with infrastructure engineers, architects, and project/programme managers. You’ll define and enforce secure configuration baselines, conduct threat modelling and risk assessments, integrate monitoring and alerting, and produce clear security artefacts that guide operational teams. Candidates must be eligible to obtain … controls across hybrid/on-prem Microsoft and Azure-centric environments. Define/enforce hardening standards (e.g., CIS Benchmarks, Microsoft Security Baselines). Perform threat modelling, risk assessments, and security validation/UAT; support incident response. Maintain SBOMs to support vulnerability management and supply-chain assurance. Integrate ...

. Youll dissect designs, model attack paths, and show engineering teams what good really looks like. Depending on the engagement, you might run a threat model, assess CI/CD pipelines, learn a vendor DSL for a PoC, or build internal tooling. We dont expect you to know everything … just to be curious, practical, and willing to dive in. What Youll Do Threat Modelling & Architecture Reviews: Break down AWS services, map trust boundaries, build attack trees, and define security requirements before code ships. Security Automation: Build IaC-driven checks, Lambda/Step Function tooling, CI/ ...

What You'll Do Core Responsibilities: Conduct advanced penetration testing across network infrastructure, web applications, and mobile platforms for enterprise clients Perform vulnerability assessments, threat modelling, and risk analysis across diverse technical environments Execute social engineering assessments and physical security testing Produce detailed scoping documents and executive-level … growth-focused security consultancy—not a commodity testing mill ✓ Continuous Learning: Access to research funding, certification sponsorship, conference attendance, and exposure to cutting-edge threat landscapes The Application Process This is a carefully selected search—we're looking for genuine penetration testing professionals with the technical depth to advise ...

What You'll Do Core Responsibilities: Conduct advanced penetration testing across network infrastructure, web applications, and mobile platforms for enterprise clients Perform vulnerability assessments, threat modelling, and risk analysis across diverse technical environments Execute social engineering assessments and physical security testing Produce detailed scoping documents and executive-level … growth-focused security consultancy—not a commodity testing mill ✓ Continuous Learning: Access to research funding, certification sponsorship, conference attendance, and exposure to cutting-edge threat landscapes The Application Process This is a carefully selected search—we're looking for genuine penetration testing professionals with the technical depth to advise ...

What You'll Do Core Responsibilities: Conduct advanced penetration testing across network infrastructure, web applications, and mobile platforms for enterprise clients Perform vulnerability assessments, threat modelling, and risk analysis across diverse technical environments Execute social engineering assessments and physical security testing Produce detailed scoping documents and executive-level … growth-focused security consultancy—not a commodity testing mill ✓ Continuous Learning: Access to research funding, certification sponsorship, conference attendance, and exposure to cutting-edge threat landscapes The Application Process This is a carefully selected search—we're looking for genuine penetration testing professionals with the technical depth to advise ...

What You'll Do Core Responsibilities: Conduct advanced penetration testing across network infrastructure, web applications, and mobile platforms for enterprise clients Perform vulnerability assessments, threat modelling, and risk analysis across diverse technical environments Execute social engineering assessments and physical security testing Produce detailed scoping documents and executive-level … growth-focused security consultancy—not a commodity testing mill ✓ Continuous Learning: Access to research funding, certification sponsorship, conference attendance, and exposure to cutting-edge threat landscapes The Application Process This is a carefully selected search—we're looking for genuine penetration testing professionals with the technical depth to advise ...

cloud deployments (private/public). Design and scope IT Health Checks and interpret outcomes. Identify and mitigate security risks in solution architectures. Conduct threat modelling and risk analysis. Design proportional security controls using native cloud technologies. Produce security architecture artefacts including standards and blueprints. What ...

Develop and maintain a monthly security dashboard/report for stakeholders. Governance, Risk & Compliance Represent Operations in internal and external audits Lead and document Threat Modelling, Risk Assessments and security reviews. Ensure compliance with internal ISMS and external frameworks. Documentation & Communication Write and maintain security documentation for tenders ...

Contract Duration: 6–12 months+Currently have a Security Architect role available in Bristol, Hybrid 2 days a week. This role will require experience in Threat modelling, NIST, IAM, encryption and a dependable ability to engage with stakeholders with a range of knowledge on the Security sector. The Candidate … Trust Architecture Azure Cloud Cloud-native security controls Stakeholder engagement DevOps Collaboration Experience Proven experience in multiple security architecture roles. In-depth knowledge of Threat analysis systems, network segmentation, and secure configuration practices. Practical expertise in Zero Trust principles, encryption technologies, vulnerability management, and endpoint hardening. Strong stakeholder engagement ...

vulnerability assessment Experience securing hardware products controlled by software would be an advantage Experience applying AI to security and development use cases Familiar with threat modelling frameworks, and having experience with automated tools Knowledge and skills Excellent communication and collaboration skills to work effectively with cross-functional teams ...

vulnerability assessment Experience securing hardware products controlled by software would be an advantage Experience applying AI to security and development use cases Familiar with threat modelling frameworks, and having experience with automated tools Knowledge and skills Excellent communication and collaboration skills to work effectively with cross-functional teams ...

related fields (e.g., Security Engineering, Security Operations, Application Security) The Role Provide security architecture guidance for internal technology projects. Review solution designs and perform threat modelling to identify risks. Recommend security controls and contribute to security-by-design reference architectures. Support the development of security governance and best ...

technology environments. In this role, you will: Collaborate with solution and technical architects to define security architecture for advanced enterprise and operational systems. Lead threat modelling exercises and provide expert guidance on risk mitigation. Advise on security requirements through the full system lifecycle, including design, delivery, and operational ...

Mobile Security Engineer Work Location: Bristol (2days) Your Profile Essential Skills/Knowledge/Experience Experience of Mobile platform security, threat modelling and mitigation techniques Capable of conducting regular reviews of our mobile application security posture using your hands-on experience Develop and maintain pen-testing security tools ...

delivery of a world-class security framework, including associated services (penetration testing, research, consultancy etc.). Essential skills & experience: Experience of Mobile platform security, threat modelling and mitigation techniques Conducting regular reviews of our mobile application security posture using your hands-on experience. Develop and maintain pen-testing ...

Mobile Security Engineer Work Location: Bristol (2days) Your Profile Essential Skills/Knowledge/Experience Experience of Mobile platform security, threat modelling and mitigation techniques Capable of conducting regular reviews of our mobile application security posture using your hands-on experience Develop and maintain pen-testing security tools ...

details below, and make your application today. Work Location: Bristol (2days) Your Profile Essential Skills/Knowledge/Experience Experience of Mobile platform security, threat modelling and mitigation techniques Capable of conducting regular reviews of our mobile application security posture using your hands-on experience Develop and maintain ...

high-availability systems. Partner with product, SRE, and network engineering to deliver roadmap features from concept to GA with security-by-design. Contribute to threat modeling, architecture reviews, and compliance/audit readiness for Tier 0 services. ...

high-availability systems. Partner with product, SRE, and network engineering to deliver roadmap features from concept to GA with security-by-design. Contribute to threat modeling, architecture reviews, and compliance/audit readiness for Tier 0 services. ...

high-availability systems. Partner with product, SRE, and network engineering to deliver roadmap features from concept to GA with security-by-design. Contribute to threat modeling, architecture reviews, and compliance/audit readiness for Tier 0 services. ...

high-availability systems. Partner with product, SRE, and network engineering to deliver roadmap features from concept to GA with security-by-design. Contribute to threat modeling, architecture reviews, and compliance/audit readiness for Tier 0 services. ...