25 of 25 Contract Threat Modelling Jobs in the UK

Threat Modelling Consultant Rate - £550 per day Inside IR35 Location - London twice a week on site Duration - 6 months initial We are looking to recruit an experienced Threat Modelling Consultant to design and implement comprehensive threat models for 90-100 diverse applications. You will evaluate … application-generated logs, develop threat detection strategies and report findings to the Information Security team. This role requires deep expertise in Microsoft Azure security tools, log analytics and automation to enhance the customer's application anomaly detection capabilities. Key Responsibilities: Develop detailed threat models tailored for a large ...

product teams to ensure security is integrated into design and development activities. Provide architectural guidance across agile sprints and feature releases. Security Risk & Threat Analysis Conduct threat modelling independently across application and platform designs. Perform risk assessments to identify vulnerabilities and architectural weaknesses. Design appropriate security controls … Practice, supporting the maturity of the clients security architecture capability. Help identify capability gaps and support the development of consistent approaches across teams, including: Threat modelling frameworks Secure development lifecycle practices Security architecture standards Provide ad-hoc security architecture support across other programmes where needed. Essential Skills & Experience ...

appetite, and regulatory requirements. Solution Delivery : Provide architectural guidance during project lifecycle (HLD/LLD), review designs, and ensure solutions meet security requirements. Risk & Threat Management : Conduct threat modelling, assess vulnerabilities, and ensure appropriate mitigating controls are designed and implemented. Governance & Standards : Define and maintain security policies …/LLD, patterns, data flows). Hands on understanding of cloud environments (Azure/AWS/GCP), networks, applications, and data protection. Familiarity with threat modelling, risk assessment, and regulatory compliance. Excellent communication skills, able to explain complex security topics to technical and non-technical audiences. Technical standards ...

/Hybrid/Remote The ideal candidate will have an active Security clearance and a strong background in Cyber Security Assurance within a high-threat government environment. Skills and experience. Experience in producing GovAssure and Secure-By-Design assessments, including Risk Assessment Papers, Risk Treatment Plans, Risk Business Cases … Management Plans. Knowledge and experience with security architecture and Security Information and Event Management (SIEM) tools, such as Splunk, Defender, Sentinel, ELK, and Tenable Threat Modelling System solutions. Extensive understanding of cybersecurity threats, attack vectors, vulnerabilities, and security controls. Demonstrable knowledge of cybersecurity frameworks and standards, including ...

secure architecture patterns across cloud, infrastructure, applications, and data platforms. Provide architectural security guidance throughout the project lifecycle , including HLD and LLD reviews. Conduct threat modelling, vulnerability assessments, and risk analysis , ensuring appropriate mitigation strategies. Define and maintain security standards, policies, and guardrails aligned to regulatory obligations such … high-quality architecture documentation (HLD, LLD, security patterns, data flows). Hands-on understanding of cloud environments (Azure, AWS, or GCP) . Knowledge of threat modelling, risk assessment, and regulatory compliance frameworks . Strong communication skills with the ability to explain complex security concepts to both technical ...

teams, and strengthening enterprise security posture-particularly across Microsoft 365, Azure, data platforms, and AI-enabled solutions. You will play a key role in threat modelling, risk assessments, guardrail design & implementation, and delivering practical security guidance for engineering, data, and application/product teams. Rationale/deliverables: Contribute … enhanced productivity systems Support the roll-out of the new AI information security control framework Support the Data governance team Key Responsibilities Perform threat modelling (STRIDE), guardrail definition, and security posture assessments across applications, data platforms, APIs, cloud services, and SaaS ecosystems. Identify security control gaps , especially around ...

strong technical depth. Key Responsibilities: Define and implement secure architecture patterns across engineering platforms (CI/CD, build systems, runtime environments) Conduct security assessments, threat modelling, and gap analysis across platforms and pipelines Develop and embed DevSecOps best practices, including secure pipeline design and automated controls Establish …/CD pipelines, build tools, artifact repositories, and developer platforms Expertise in secure software delivery, vulnerability management, and platform security Experience with threat modelling, security frameworks, and maturity assessments Strong knowledge of application security, network security, and cloud security principles Excellent stakeholder management and communication skills Desirable: Experience ...

Integrate security controls into CI/CD pipelines and modern development workflows, enabling secure and automated deployment of cloud and AI workloads. Participate in threat modelling, risk assessment, and security design reviews for AI applications, APIs, and cloud services. Support evaluation and onboarding of emerging AI security tools … securing GenAI, Agentic AI, vector databases, model APIs, or data pipelines used by LLMs. Knowledge of responsible AI principles, model governance, or AI-specific threat modelling (e.g., adversarial ML, data poisoning, prompt injection). Background working in regulated industries such as Financial Services or Insurance. Strong stakeholder communication ...

help embed secure development practices across their software and related hardware products. Youll work closely with engineers and leadership to drive secure SDLC, lead threat modelling, assess vulnerabilities, and support alignment with the EU Cyber Resilience Act. Key experience: Product Security/Application Security/Secure SDL Familiarity … with threat modelling and vulnerability assessments Good understanding of software principles Secure coding principles/OWASP Ability to engage with software teams and speak their language Hands-on, engineering-facing role with real influence across product development. ...

currently looking for an experienced Security Design Consultant, to work on assignment with a financial services customer. As a Security Design Consultant, you conduct threat modelling and risk assessments, and be responsible for the design and implementation of secure architecture solutions and security controls. What they are looking … Architecture level experience in cyber security Threat modelling experience Risk assessment experience Strong understanding of security frameworks such as NIST and ISO 27001 Cloud experience Operational background/experience This is an exciting opportunity for an experienced Security Design Consultant to join a truly world-class business, which ...

Responsibilities Design end-to-end API security architecture across cloud and on-premise environments. Define API security standards covering authentication, authorization, encryption, and threat protection. Lead architectural reviews, threat modelling, and risk assessments for API integrations. Select, architect, and optimize API gateways, WAFs, and security controls. Develop … patterns). Nice to Have Certifications: CISSP, CCSP, GIAC, SABSA. Experience with DevSecOps, container security, and microservices architecture. Knowledge of SIEM, API analytics, and threat intelligence. ...

World Class Defence Organisation based in Stevenage, Hertfordshire is currently looking to recruit 8x SOC Threat Detection Analyst subcontractors on an initial 6 month contract. This role can start on an SC Security Clearance basis, however DV Clearance will be required down the line. This role would suit someone … from a Cyber Security Analyst, SOC Analyst or Threat Detection Analyst background. Hourly Rate: 45ph - 85 per hour. There are 8 positions being recruited across the mid-senior level. Overtime rate of time and a quarter. Contract Duration: 6 Months initially and long-term thereafter. Shift pattern ...

Defining identity, access and network security models within cloud platforms • Working closely with engineering and DevOps teams to embed security controls • Producing architecture documentation, threat models and security design reviews Experience within financial services, fintech or regulated environments would be beneficial. Interested? Please apply below Cloud Security Architect, Cyber ...

Kafka, MQ), asynchronous processing Cloud & Infrastructure: Cloud-native design, containerisation (Docker, Kubernetes), CI/CD pipelines Data: Distributed data systems, RDBMS/NoSQL, data modelling, data consistency patterns Security: Secure-by-design principles, IAM, encryption, threat modelling, regulatory compliance Resilience: High availability, fault tolerance, disaster recovery, observability ...

experience designing secure enterprise or cloud architectures. Strong knowledge of cloud security (eg, AWS, Azure, or GCP). Experience with security architecture frameworks and threat modelling methodologies. Understanding of identity and access management, network security, and data protection. Ability to advise stakeholders and guide technical teams on security ...

Architecture & Design Define and review secure architectures across enterprise IT and OT environments. Act as technical authority for secure system design and implementation. Lead threat modelling, risk assessments, and security design reviews. Ensure compliance with defence security standards and secure-by-design principles. Security Assurance & Governance Deliver independent ...

adaptable, and proactive approach to securing mobile apps enabling mobile engineers across the bank to operate with confidence and agility in an ever-evolving threat landscape. We're passionate about our shared passion for delivering new features for customers across our brands in the mobile space. Your responsibilities: This … security framework, including associated services (penetration testing, research, consultancy etc.). Your Profile Essential skills/knowledge/experience: * Experience of Mobile platform security, threat modelling and mitigation techniques *Capable of conducting regular reviews of our mobile application security posture using your hands-on experience. *Develop and maintain ...

role with no trackside/site access required. Key Responsibilities Cybersecurity Governance & Assurance Produce and maintain: Cyber Security Management Plans (CSMP) Risk assessments and threat models Assurance and compliance documentation Control framework mappings Align artefacts to client standards (TfL/Network Rail) and industry frameworks Support continual improvement … quality oversight to junior engineers/graduate staff Essential Experience Cybersecurity governance & assurance in enterprise or critical infrastructure environments Proven delivery of: Risk assessments Threat modelling Cyber security management documentation Control framework mapping Strong knowledge of ISO/IEC 27001 and IEC 62443 Solid understanding of network architecture ...

operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Ability to perform triage of security events to determine their scope, priority ...

secure by design practices, with technical delivery teams for both existing systems and new systems, e.g. use of internal or external guidance, leading Threat Modelling activity. Nurture the use of secure technical practices to deliver technical excellence. Support experimentation and innovation in solving problems. Contributes to the development ...

integrity and security best practices. Translate business and risk requirements into secure architectural solutions spanning IT and OT environments. Develop architecture artefacts such as threat models, design patterns, and solution blueprints aligned with strategic frameworks. Support programmes through architecture governance processes and risk assessments. Conduct architecture reviews and security ...

environments and work closely with technical and non-technical stakeholders. Key Skills Security architecture in high-security environments RMADS, accreditation, HMG standards, NCSC principles Threat modelling and risk assessment Network, cloud, IAM, and data security Strong stakeholder communication ...

Engineering Assurance Define and maintain the programme Cyber Security Plan, including CUI handling, secure development practices and compliance evidence. Lead cyber risk assessments, threat modeling and vulnerability assessments for embedded systems, software, firmware and Special Test Equipment (STE). Guide teams on secure coding, static/dynamic code analysis ...

help embed secure development practices across their software and related hardware products. Youll work closely with engineers and leadership to drive secure SDLC, lead threat modelling, assess vulnerabilities, and support alignment with the EU Cyber Resilience Act click apply for full job details ...

basis. The end customer is one of the largest financial services institutions in the world as well. Job Description: We are seeking an experienced Threat Modeling Consultant to design and implement comprehensive threat models for 90-100 diverse applications. The consultant will evaluate application-generated logs, develop threat … deep expertise in Microsoft Azure security tools, log analytics, and automation to enhance the customer’s application anomaly detection capabilities. Key Responsibilities: Develop detailed threat models tailored for a large portfolio of applications with varying threat categories. Analyze logs generated by applications using Azure Log Analytics and Azure ...