20 of 20 Contract Threat Modelling Jobs in England

standardise assessments across platforms. Conduct comprehensive platform security reviews (build systems, CI/CD pipelines, runtime infrastructure, developer tooling) against defined framework criteria. Perform threat modelling and gap analysis, identifying vulnerabilities and systemic risks impacting source code, artifacts, and workloads. Engineering Platform Security Enablement Establish standardised secure architecture … security controls. Strong knowledge and understanding of service mesh, cryptography, network security, application security, vulnerability management, and risk management. Demonstrable ability to conduct threat modelling, platform security assessments, and gap analysis. Experience building and implementing maturity models, frameworks, or roadmaps in complex enterprise environments. Strong stakeholder management skills ...

Title: Cyber Threat Management Lead Location: London (2 days onsite per week) Duration: 6 months Rate: £670 via Umbrella Role Summary: We are Seeking a Cyber SME to improve cyber defence through threat intelligence, threat hunting, and detection engineering. Key Responsibilities: Apply cyber threat intelligence … strengthen network defence Conduct threat hunting and detection engineering Perform threat modelling and threat-led risk reduction Support purple team and offensive security testing to improve detections and controls Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation ...

strong technical depth. Key Responsibilities: Define and implement secure architecture patterns across engineering platforms (CI/CD, build systems, runtime environments) Conduct security assessments, threat modelling, and gap analysis across platforms and pipelines Develop and embed DevSecOps best practices, including secure pipeline design and automated controls Establish …/CD pipelines, build tools, artifact repositories, and developer platforms Expertise in secure software delivery, vulnerability management, and platform security Experience with threat modelling, security frameworks, and maturity assessments Strong knowledge of application security, network security, and cloud security principles Excellent stakeholder management and communication skills Desirable: Experience ...

deployment/integration of security capabilities into engineering teams within the product domain. You will drive security initiatives such as developing security requirements, threat modelling, strengthening application security, vulnerability reduction, etc., with the engineering teams. Reducing friction is paramount and we are all about fast feedback within existing … console for a developer to check. Support teams in a collaborative manner in matters of mobile application, web application, cloud and data security, with threat modelling, risk treatment and security advice across all security domains. If you can raise a PR to fix a security issue, do so. ...

development, engineering, and product teams, ensuring AppSec requirements are integrated early and effectively into design and delivery workflows. Perform and lead application security assessments, threat modelling sessions, design reviews, and secure code review consultations. Partner with Security Product Owners and engineering teams to ensure AppSec tooling, processes … centralised Centre of Excellence or security governance function. Strong capability in developing and governing AppSec policies, standards, and secure SDLC frameworks. Expert knowledge across threat modelling, secure design, application risk assessment, and secure code review techniques. Hands-on understanding of DevSecOps practices, CI/CD pipeline security ...

Integrate security controls into CI/CD pipelines and modern development workflows, enabling secure and automated deployment of cloud and AI workloads. Participate in threat modelling, risk assessment, and security design reviews for AI applications, APIs, and cloud services. Support evaluation and onboarding of emerging AI security tools … securing GenAI, Agentic AI, vector databases, model APIs, or data pipelines used by LLMs. Knowledge of responsible AI principles, model governance, or AI-specific threat modelling (e.g., adversarial ML, data poisoning, prompt injection). Background working in regulated industries such as Financial Services or Insurance. Strong stakeholder communication ...

delivery without owning build or operations. Key Responsibilities Attend regular project and design meetings to understand requirements and delivery milestones. Perform initial and iterative threat modelling for new features, integrations, and architectural changes. Advise on secure architecture design, including IAM, network segmentation, encryption, and data protection. Recommend … being consistently applied. Essential Experience Proven experience as a Security Architect or senior cyber security consultant in digital delivery environments. Strong Secure by Design, threat modelling, and risk-based security expertise. Experience advising product teams in agile, cloud-based delivery contexts. Confident engaging with architects, developers, and delivery ...

architecture patterns, reference models, and solution blueprints. Lead security design for Base Metals OEMS platforms, ensuring alignment with performance, resilience, and regulatory requirements. Perform threat modelling, security risk assessments, and architecture reviews. Integrate security into DevOps pipelines, promoting DevSecOps best practices. Collaborate with engineering, infrastructure, and business teams ...

Embed Secure by Design principles across system and solution delivery Conduct security design reviews and provide risk-based recommendations Support development of: Security architectures Threat models and risk assessments Security design documentation Ensure alignment with MOD and UK Government security standards Work with architects and delivery teams to integrate … Experience Proven experience implementing Secure by Design within MOD, Defence, or Government environments Strong background in security architecture and secure system design Experience conducting threat modelling and security risk assessments Knowledge of: NCSC Secure by Design guidance ISO 27001 or equivalent frameworks Secure SDLC methodologies Experience working within ...

change control procedures Experience designing or reviewing secure software supply chain and CI/CD security . Ability to interpret CVEs, CVSS scores, and threat intelligence feeds. Strong stakeholder engagement and communication skills with an ability to produce technical reports and articulate risk to non-specialists. Excellent written … technical security reports for assurance cycles Support compliance audit evidence packs (GovAssure/CAF, CE+, ISO 27001) Develop or update security standard documents (e.g. threat modelling, vulnerability mgmt) Support cyber input for IT, research or OT programmes Work with IT teams to co-author and test secure configuration ...

security solutions to support meeting industrial and security frameworks such as ISO 27000 series, PCI DSS, COBIT, NIST, OWASP. Proven experience in risk assessment, threat modelling and implementing security controls. Expertise in managing user identities and securing access to systems. Knowledge of encryption, hashing, and tokenization techniques ...

security solutions to support meeting industrial and security frameworks such as ISO 27000 series, PCI DSS, COBIT, NIST, OWASP. Proven experience in risk assessment, threat modelling and implementing security controls. Expertise in managing user identities and securing access to systems. Knowledge of encryption, hashing, and tokenization techniques ...

error-free ingestion. Use Case & Detection Content Development Design, implement, test, and tune detection use cases based on attacker techniques (MITRE ATT&CK), threat intelligence, and risk appetite. Build correlation rules, anomaly-based detections, dashboards, and alerting workflows. Regularly review detection efficacy and reduce false positives through tuning … understanding of log formats (JSON, syslog, XML, CEF, etc.) and ingestion technologies (Syslog, API, Event Hubs, Kafka, Agents). Practical knowledge of detection engineering, threat modelling, and attacker behaviour analysis. Experience building and tuning correlation rules, searches, and dashboards. Familiarity with SOAR platforms and automation workflows. Security Knowledge ...

actionable design guidance rather than policy-only responses Participate in design forums and governance boards, strengthening secure-by-design delivery Support security risk assessments, threat modelling, and control gap analysis Key Skills Needed Ability to review an HLD (High level design) or LLD (low level design)and provide ...

security patterns. Inputting into High-Level Designs (HLDs) and Low-Level Designs (LLDs) with explicit security controls. Conducting threat modelling (STRIDE, attack trees, kill chain analysis). Identifying and documenting security requirements for systems, networks, and cloud services. Ensuring designs meet classification requirements Security Controls & Patterns Advising ...

assessment, remediation) Implement risk-based security solutions aligned to enterprise standards Work closely with infrastructure, application and OT teams to embed security controls Support threat modelling, secure design, and Zero Trust frameworks Key Skills & Experience: Strong experience as a Security Architect/Cybersecurity Architect Proven expertise in vulnerability ...

monitoring. Experience leading data security roadmaps from current to target state, identifying required capabilities, technology changes, dependencies, risks, and timelines. Expertise performing data-focused threat modelling (e.g. STRIDE, MITRE ATT&CK, DREAD) to identify risks and recommend architectural mitigations. Excellent advisory skills with the ability to provide architectural ...

proactive approach to securing LBG's mobile apps enabling mobile engineers across the bank to operate with confidence and agility in an ever-evolving threat landscape. We're passionate about our shared passion for delivering new features for customers across our brands in the mobile space. Your Responsibilities This … security framework, including associated services (penetration testing, research, consultancy etc.). Your Profile Essential Skills/Knowledge/Experience Experience of Mobile platform security, threat modelling and mitigation techniques Capable of conducting regular reviews of our mobile application security posture using your hands-on experience. Develop and maintain ...

landscapes. Work closely with infrastructure, application, and OT teams to embed security controls into architectures and operations. Provide architectural guidance on secure system design, threat modelling, and risk-based decision making. Support continuous improvement of vulnerability management processes and overall security posture. Essential skills/knowledge/experience ...

management Familiarity with CIS benchmarks for OCI and applying them in real environments Relevant OCI certifications (e.g., Architect Associate/Professional, Security) Exposure to threat modelling or risk assessment for cloud platform designs ...