collaboration with vendors for optimal value. Communicate effectively with stakeholders to drive the adoption of security tools and standards. Maintain an up-to-date threat model and regularly update the roadmap for ongoing protection. Requirements | Desirables: Strong technical security skills related to endpoint, cloud, and infrastructure security products, particularly more »
areas to address pain points and continuously improve connectivity capabilities. Communicate effectively with stakeholders to promote secure communication practices. Maintain an up-to-date threat model and cyber view of the network and connectivity landscape. Perform network assessments, audits, and optimisations to ensure performance, security, and compliance standards are more »
App security. Ability in software development or programming/scripting Experience in applied security research, cryptography, mathematics, or computer science Skills in application security threatmodelling, source code review, reverse engineering, fuzzing, and cloud service testing (AWS/Azure) Benefits: Life Assurance at 4x Basic Annual Salary; Pension more »
In-depth knowledge of security concepts, OWASP Top 10 and CWE 25 Understanding of current and emerging security technologies and threats. Proven experience with threatmodelling and risk analysis Experience with penetration testing and vulnerability analysis frameworks and tools Well versed with driving and implementing secure development practices more »
activities on relevant weapon system and missile programmes, with specific responsibilities for: Weapon system design and verification System and equipment integration RF system design Threat analysis Modelling & simulation activities associated with EW capability and performance We are recruiting to support two key areas of EW capability: Integrating Electromagnetic more »
in mixed SaaS, bespoke and platform environments. Technical aspects include Azure cloud, Azure Data Lake, Data Warehouse, Integration architectures (event, messaging, API), security models, threatmodelling, IDP integration and security designs, MI platforms, portals, MS Power platform and SharePoint. Work closely with Programme Managers, Business Domain leads and … lifecycle Key Requirements: Extensive integration architecture experience Experience integrating SAAS tools Experience working with different finance products e.g. SAP or Workday Actuarial or risk modelling experience Ideally you will have working within Insurance or financial services For a full consultation on this role please email your CV to Arc more »
inherently secure. - Ideally you will have worked across the system lifecycle, undertaking the security risk management activities required to support each phase, from initial threat and risks assessments and specification of security requirements, through to overseeing implementation and testing of socio-technical security architectures. You will also have experience … assurance workstreams for projects delivering secure systems and services within a government context. Undertaking and producing socio-technical security risk assessments, ideally including technical threatmodelling (e.g. using STRIDE). Development and implementation of risk management strategies and plans. Specification, development and technical assurance of security policies and … Knowledge and understanding of core cyber security risk management areas, including but not limited to: Security governance and risk management approaches, tools, and techniques. Threatmodelling (e.g. STRIDE) and socio-technical risk assessment (e.g. NIST 800-30) methodologies. Attack classification and characterisation frameworks (e.g. MITRE ATT&CK) Computer more »
inherently secure. - Ideally you will have worked across the system lifecycle, undertaking the security risk management activities required to support each phase, from initial threat and risks assessments and specification of security requirements, through to overseeing implementation and testing of socio-technical security architectures. You will also have experience … assurance workstreams for projects delivering secure systems and services within a government context. Undertaking and producing socio-technical security risk assessments, ideally including technical threatmodelling (e.g. using STRIDE). Development and implementation of risk management strategies and plans. Specification, development and technical assurance of security policies and … Knowledge and understanding of core cyber security risk management areas, including but not limited to: Security governance and risk management approaches, tools, and techniques. Threatmodelling (e.g. STRIDE) and socio-technical risk assessment (e.g. NIST 800-30) methodologies. Attack classification and characterisation frameworks (e.g. MITRE ATT&CK) Computer more »
be aligned to a product area and will be responsible for embedding security. This is a varied role which will see you carrying out threatmodelling, reviewing solution designs and challenging everything to find security issues. The role will require you to regularly engage and challenge key senior more »
London, England, United Kingdom Hybrid / WFH Options
Sportradar
Identify security breaches, implement corrective actions, and devise strategies to prevent future incidents. Collaborate with developers across Sportradar for in-depth security reviews and threat modeling. Work in an international team and environment. Automate application and infrastructure scanning and reporting. Mentor junior penetration testers and provide guidance on best … and IT infrastructure security best practices, including methodologies like OWASP Testing Guide andPTES Knowledgeof scripting languages (e.g., PowerShell, Python, Perl). Excellent understanding of threat modeling and SDLC/SSDLC processes. Effective communication skills across all organizational levels. Proven leadership and team mentoring experience. Preferred Qualifications and Skills: Demonstrable more »
/SoC security architecture development. Good understanding of SoC architecture, embedded systems, and hardware/software co-design principles. Expericence in developing and reviewing threat modeling. Deep knowledge on microarchitectural attacks, side channels, fault injections. Proficiency in Verilog RTL coding and scripting languages, such as: Perl, Python Experience in more »
doing: Identify security vulnerabilities from a wide pool of technological solutions Perform risk analysis to triage and manage the remediation or mitigation activity Perform threat modeling activities across a variety of applications and environments Perform security assessments of existing architecture and make security recommendations for new deployments or changes more »
App) SDLC Implementation and Testing Software development or programming/scripting abilities Applied security research Applied cryptography, mathematics or computer science experience. Application security threatmodelling Source code review Reverse engineering Fuzzing Cloud Service testing (AWS/Azure) Behaviours: Focusing on Clients and Customers Working as One NCC … Asia- Pacific and United Arab Emirates. We are passionate about helping our customers to protect their brand, value and reputation against the ever-evolving threat landscape. We fuel that passion with investment in our people and our business. Our values and code of ethics are at the heart of more »
Greater London, England, United Kingdom Hybrid / WFH Options
Oliver Bernard
information security framework and risk mitigation activity for the company. You’ll have the chance to be involved in everything from security assessments and threatmodelling to triage of security events, ownership of policies ad procedures and even working with development and engineering teams to drive application security. more »
and champion security within your current role, you're very likely to be successful. You will be training developers on writing secure code, perform threatmodelling and security testing of applications, run SAST, DAST, SCA and secret scanning tools, manage the bug bounty program and lead incident response more »
cloud infrastructure deployments through automation. Create and deploy CI/CD pipelines using Azure DevOps. Automate the provisioning of deployment pipelines and infrastructure. Perform threat landscape analysis and apply a risk-based approach to security. Lead security initiatives, including the development of security requirements, threatmodelling, and more »
will engineering teams to create solutions that solve or remediate security problems. This will involve a range of activities, including (but not limited to) threatmodelling, selection and configuration of DevSecOps tools, high-level and detailed security designs. About you We are looking for a Senior Security Engineer … with experience in design and implementing cloud native applications in the cloud. You should have demonstrable experience in Threatmodelling, design and implementing security controls in the cloud environment (AWS or Azure) Design and implementing cloud native and hybrid solutions in major public cloud platforms. Understanding of cryptographic more »
and solution designs , to help advise project managers and developers across the business. Maintain awareness of current and emerging security risks and the changing threat landscape and recommend mitigating solutions to project managers and developers to help ensure security enhancement and controls are pro-actively applied across the LGRI … preferred) and/or AWS security technologies is essential. Expertise and practical experience of Information Security frameworks including NIST, ISO27001/17 and STRIDE ThreatModelling Framework. Understanding of general security practices such as encryption, IAM, PAM, penetration testing, container security, security information and event management etc. and more »
the Governance, Risk, and Compliance (GRC) team to inform on risk, compliance, and assurance matters related to the portfolio of change initiatives. Ensure that Threat Modeling is implemented for identified programs, projects, and engineering initiatives within the portfolio. Work closely with the Security Culture team to ensure alignment and more »
ideal candidate for the Security Architect will have the following skills and experience: Extensive experience designing security solutions, primarily for on-prem Experience with ThreatModelling frameworks Thorough knowledge of Information Security controls Excellent communication skills, with the ability to translate complex engineering terms into language that business more »
inherently secure. - Ideally you will have worked across the system lifecycle, undertaking the security risk management activities required to support each phase, from initial threat and risks assessments and specification of security requirements, through to overseeing implementation and testing of socio-technical security architectures. You will also have experience … assurance workstreams for projects delivering secure systems and services within a government context. Undertaking and producing socio-technical security risk assessments, ideally including technical threatmodelling (e.g. using STRIDE). Development and implementation of risk management strategies and plans. Specification, development and technical assurance of security policies and … Knowledge and understanding of core cyber security risk management areas, including but not limited to: Security governance and risk management approaches, tools, and techniques. Threatmodelling (e.g. STRIDE) and socio-technical risk assessment (e.g. NIST 800-30) methodologies. Attack classification and characterisation frameworks (e.g. MITRE ATT&CK) Computer more »
Bristol, Avon, South West, United Kingdom Hybrid / WFH Options
Hargreaves Lansdown Asset Management Limited
all product teams, dealing with complex projects daily and serving as the escalation point for the Product Security Specialist (PSS). You will lead threatmodelling workshops and engage with key stakeholders to identify threats and recommend countermeasures. Additionally, you will lead a team of Product Security Specialists … a team of Product Security Specialist (PSS). Providing leadership, technical guidance, and support to the Product Security Specialists. You will lead/facilitate threatmodelling workshops with SMEs. Engaging with key stakeholders to identify threats and recommend countermeasures. Collaborating with strategy, transformation, and digital engineering parts of … such as OWASP, NIST, and ISO Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threatmodelling and risk assessments. Interview process The interview process for this role is two stages including a technical competency-based questions and a more »
software systems by reviewing designs, auditing code, and performing penetration tests. The role involves developing and implementing vulnerability mitigation strategies, conducting risk assessments and threatmodelling, and managing vulnerabilities using industry standards. You will act as a security expert, proactively identifying and addressing potential threats, and integrating robust more »
Chichester, West Sussex, South East, United Kingdom
Natures Way Foods
IT Security Engineer role. preferably manufacturing but not essential. Key Responsibilities Responsible for educating the workforce on information security through training and building awareness. Threatmodelling, mitigation, validation, including software and hardware penetration testing. Work with all functions of the IT department to design security into the system … and drive security reviews. Develop tools to assist in modelling, analysis, detection, and prevention of security threats. Secure the system while ensuring ease of use for the user and network operations. Stay current on industry developments affecting security and privacy policy. Implement security measures, plans and polices to resolve more »