12 of 12 Permanent Threat Modelling Jobs in the South West

roadmap, backlog and design decisions. Work with colleagues across product, development, and networks & infrastructure to embed security across the product lifecycle. Carry out threat modelling, secure design reviews and technical risk assessments for new and existing product capabilities. Assign pragmatic risk levels and support sensible prioritisation of remediation … software-led environment. Good understanding of how product and development teams operate, including how security considerations are balanced alongside product delivery. Strong experience of threat modelling, secure design review, vulnerability assessment and remediation prioritisation. The judgement to assess exploitability and business impact pragmatically Practical experience applying security across ...

engineering teams to embed automated security testing and guardrails into development workflows. Define, implement, and maintain secure development standards, including secure coding guidelines, threat modelling practices, and minimum-security requirements for applications and APIs. Partner with engineering, platform, and product teams to embed secure-by-design principles into … development team, providing hands-on technical leadership across design, development, and operation. Perform deep-dive security activities for the team, including threat modelling, code-level reviews, and vulnerability triage/remediation support. Oversee and coordinate third-party application security reviews, ensuring consistent assessment standards and effective risk management ...

practices across the organisation. Lead complex security architecture initiatives in collaboration with architects, engineers, and platform teams across business units. Own and deliver advanced threat modelling, secure design reviews, and risk assessments for high-impact systems. Drive and support critical risk remediation and vulnerability management, including root cause … continuously improve product security maturity. What you'll bring Strong hands-on experience contributing across multiple stages of the Secure Development Lifecycle, including threat modelling, secure coding, testing, and vulnerability management. Deep expertise in multiple of these domains with working knowledge of the others: modern applications, cloud, platforms ...

practices across the organisation. Lead complex security architecture initiatives in collaboration with architects, engineers, and platform teams across business units. Own and deliver advanced threat modelling, secure design reviews, and risk assessments for high-impact systems. Drive and support critical risk remediation and vulnerability management, including root cause … continuously improve product security maturity. What you'll bring Strong hands-on experience contributing across multiple stages of the Secure Development Lifecycle, including threat modelling, secure coding, testing, and vulnerability management. Deep expertise in multiple of these domains with working knowledge of the others: modern applications, cloud, platforms ...

practices across the organisation. Lead complex security architecture initiatives in collaboration with architects, engineers, and platform teams across business units. Own and deliver advanced threat modelling, secure design reviews, and risk assessments for high-impact systems. Drive and support critical risk remediation and vulnerability management, including root cause … continuously improve product security maturity. What you'll bring Strong hands-on experience contributing across multiple stages of the Secure Development Lifecycle, including threat modelling, secure coding, testing, and vulnerability management. Deep expertise in multiple of these domains with working knowledge of the others: modern applications, cloud, platforms ...

practices across the organisation. Lead complex security architecture initiatives in collaboration with architects, engineers, and platform teams across business units. Own and deliver advanced threat modelling, secure design reviews, and risk assessments for high-impact systems. Drive and support critical risk remediation and vulnerability management, including root cause … continuously improve product security maturity. What you'll bring Strong hands-on experience contributing across multiple stages of the Secure Development Lifecycle, including threat modelling, secure coding, testing, and vulnerability management. Deep expertise in multiple of these domains with working knowledge of the others: modern applications, cloud, platforms ...

practices across the organisation. Lead complex security architecture initiatives in collaboration with architects, engineers, and platform teams across business units. Own and deliver advanced threat modelling, secure design reviews, and risk assessments for high-impact systems. Drive and support critical risk remediation and vulnerability management, including root cause … continuously improve product security maturity. What you'll bring Strong hands-on experience contributing across multiple stages of the Secure Development Lifecycle, including threat modelling, secure coding, testing, and vulnerability management. Deep expertise in multiple of these domains with working knowledge of the others: modern applications, cloud, platforms ...

practices across the organisation. Lead complex security architecture initiatives in collaboration with architects, engineers, and platform teams across business units. Own and deliver advanced threat modelling, secure design reviews, and risk assessments for high-impact systems. Drive and support critical risk remediation and vulnerability management, including root cause … continuously improve product security maturity. What you'll bring Strong hands-on experience contributing across multiple stages of the Secure Development Lifecycle, including threat modelling, secure coding, testing, and vulnerability management. Deep expertise in multiple of these domains with working knowledge of the others: modern applications, cloud, platforms ...

practices across the organisation. Lead complex security architecture initiatives in collaboration with architects, engineers, and platform teams across business units. Own and deliver advanced threat modelling, secure design reviews, and risk assessments for high-impact systems. Drive and support critical risk remediation and vulnerability management, including root cause … continuously improve product security maturity. What you'll bring Strong hands-on experience contributing across multiple stages of the Secure Development Lifecycle, including threat modelling, secure coding, testing, and vulnerability management. Deep expertise in multiple of these domains with working knowledge of the others: modern applications, cloud, platforms ...

practices across the organisation. Lead complex security architecture initiatives in collaboration with architects, engineers, and platform teams across business units. Own and deliver advanced threat modelling, secure design reviews, and risk assessments for high-impact systems. Drive and support critical risk remediation and vulnerability management, including root cause … continuously improve product security maturity. What you'll bring Strong hands-on experience contributing across multiple stages of the Secure Development Lifecycle, including threat modelling, secure coding, testing, and vulnerability management. Deep expertise in multiple of these domains with working knowledge of the others: modern applications, cloud, platforms ...

world national security impact, while enjoying hybrid working and strong professional development opportunities. Skills Secure architecture design and secure-by-design principles Risk assessment, threat modelling, and vulnerability management Security frameworks: ISO 27001, NIST 800-30/53, OWASP Cloud security architecture (AWS, Azure, GCP) Incident response, penetration ...

Design Familiarity with: JSP440, JSP604/453, JSP490 Supplier Chain Assurance GDPR, PCI DSS, ICO ISO 27001, NIST CSF, CIS Controls v8 Skills in: Threat modelling (kill chain, attack trees, etc.) Cloud security (AWS, Azure), containerisation, firewalls Secure SDLC HLD/LLD review ITHC scoping and remediation Certifications ...