13 of 13 Contract Threat Modelling Jobs in the UK excluding London

primary security partner for product and engineering teams - ensuring applications are designed, built and maintained with robust security at their core. You will lead threat modelling, manage vulnerability backlogs, support incident response, and help uplift security maturity across development squads. Key Responsibilities Define and implement product security policies … tooling and standards across the SDLC Lead threat modelling for new and existing applications Own the product vulnerability backlog, prioritising and tracking remediation Liaise on bug bounty findings and ensure timely fixes Conduct root cause analysis for security incidents and systemic issues Act as Incident Commander or Investigation ...

World Class Defence Organisation based in Stevenage, Hertfordshire is currently looking to recruit 8x SOC Threat Detection Analyst subcontractors on an initial 6 month contract. This role can start on an SC Security Clearance basis, however DV Clearance will be required down the line. This role would suit someone … from a Cyber Security Analyst, SOC Analyst or Threat Detection Analyst background. Hourly Rate: £45ph - £85 per hour. There are 8 positions being recruited across the mid-senior level. Overtime rate of time and a quarter. Contract Duration: 6 Months initially and long-term thereafter. Shift pattern ...

industries Ability to produce high-quality architectural documentation Confidence engaging with senior stakeholders and regulatory bodies Familiarity with NIST, SANS, ITU frameworks Experience in threat modelling, risk assessment, and audit engagement Technical areas you'll influence: Application security & secure SDLC Network/app segmentation & micro-segmentation Zone-based … architectures and secure legacy migration WAAP, NGFW, NIDS/NIPS, DDoS protection API gateways, reverse proxies, AuthN/AuthZ Architecture modelling tools (BizzDesign, Archi, UML) Working across hybrid legacy and modern networking landscapes Preferred qualifications: Degrees in Cybersecurity, Computer Science, Software Engineering, or related fields Architecture certifications such ...

commit to working in Central London 1 day a week. Job Requirements: Work with project teams to understand product requirements and delivery milestones. Conduct threat modelling to identify security risks across applications, integrations, and cloud-based architectures . Advise on secure-by-design solutions , including access controls, encryption ...

security practices across CI/CD and operational environments. Experience required: Hands on experience working with SIEM technologies and security monitoring Awareness of modern threat models (eg. MITRE ATT&CK) Understanding of CI/CD pipelines and security controls within DevOps environments Building and maintaining SOC detections ...

through to commissioning and in-service support. Role Overview You will act as the cyber security assurance lead, providing technical leadership across: Security architecture Threat & risk assessment Standards & compliance Security testing & validation Assurance documentation You'll work closely with product, delivery, and customer security teams to ensure security … support) Engage with customer security teams to align on strategy, assurance, and risk appetite Define security requirements and design secure architectures (zones & conduits) Perform threat modelling and risk assessments; define appropriate controls Define and oversee security testing, including FAT, SAT, and penetration testing Assess third-party components against ...

Define and maintain engineering and architectural standards, patterns, and best practices. Conduct option evaluations, risk assessments, and make informed technology recommendations. API, Integration & Data Modelling Design API ecosystems including versioning, discovery, governance, throttling, and security. Define schemas, data contracts, and integration patterns for internal and external systems. Promote consistent … point of contact for architectural decision-making. Security, Compliance & Quality Assurance Ensure secure-by-design principles across all solutions. Support threat modelling, risk assessments, and compliance with security and data protection requirements. Drive non-functional requirement definition (performance, scalability, availability, resilience). Support test strategy and quality engineering ...

services + maintaining a strong security culture. Investigating security incidents and breaches, performing vulnerability scans for releases, vulnerability risk assessments + remediation planning. Conducting threat modelling to identify risks and inform secure design decisions. Providing assurance over patching operations, release notes + change management activities. Assessing external threat ...

fundamentally different remit. Key Responsibilities Embed Secure by Design principles across system, software and infrastructure development Support delivery teams with security requirements definition, threat modelling and risk assessment Interpret and apply relevant defence and government security policies and standards Identify security risks early and support proportionate mitigation strategies ...

production rollout. Define secure user journeys for remote password reset and identity verification. Ensure alignment to enterprise security standards, compliance and threatmodelling outputs. Produce architecture artefacts (HLD, LLD, patterns, data flows, integration specs). Guide engineers during build and validate controls in testing. Essential Experience Strong background ...

security testing including SAST, DAST, and penetration testing. Understanding of authentication and authorization frameworks (OAuth, JWT, SAML) and familiarity with secure coding practices and threat modelling Experience in test automation tools, frameworks, and practices. The successful candidate will have experience working in a fast-paced and multi-vendor ...

Role: Lead each project and programme with Secure by Design Identify security risks, constraints, and dependencies, and translate these into clear, prioritised recommendations. Facilitate threat modelling and risk workshops with multidisciplinary teams. Define pragmatic security control expectations aligned to service risk and context. Produce concise written outputs that ...

security architecture posture (Entra ID/OIDC, encryption, key management, network zoning, data protection). Produce a high-level design (HLD) with C4 diagrams, threat model (e.g., STRIDE), privacy/data handling assessment, and decision logs (ADRs). Build the architecture runway for Phase 2, with principles, patterns, guardrails … estimated remediation effort. Deliverables (by end of the audit) HLD with current vs target C4 diagrams. Threat model and NFR catalogue with measurable acceptance criteria. Architectural risk/assumptions/issues log and ADRs. Option analysis with cost/benefit and effort estimates. Phased roadmap, integration inventory, and high ...