23 of 23 Permanent Threat Modelling Jobs in Stevenage

by the IS Security team Support IS Security to achieve regulatory and statutory compliance requirements Complete cyber risk assessments, including third party suppliers Apply threat modelling principles to complex system and solution designs to identify security risks and appropriate mitigations Support, monitor and recommend improvements to cyber incident … and governance requirements and identifying suitable controls. (essential) Experience of delivering cloud focused security solutions with a solid understanding of modern cyber threats and threat modelling techniques (preferred) Good understanding of security frameworks (NIST CSF, Mitre ATT&CK) (essential) What You’ll Get in Return: We are committed More ❯

integrated into business unit plans and delivery frameworks. Guide product teams on how to deliver change effectively while maintaining security and compliance standards. Apply threat modelling, data protection principles, and risk frameworks to business solutions. Promote the use of enterprise standards, guardrails, and architectural patterns where appropriate. Share … capability. About You Proven experience in a similar role within cyber security, IT risk, or resilience engineering. Strong understanding of security frameworks, risk management, threat modelling, and data protection regulations. Excellent stakeholder engagement and influencing skills at all levels of the organisation. Passionate about emerging trends in technology More ❯

will play a key role in fostering a proactive security culture. Preferred Skills, Qualifications and Experience Demonstrated mastery in securing iOS platforms, including advanced threat modelling and the design of sophisticated anti-cheat mechanisms. Excellent command of low-level systems programming and operating system internals. Extensive experience in … and information security teams, ensuring seamless integration of security features. Creative approach to security challenges with a relentless drive to stay ahead of emerging threat landscapes. Main Responsibilities Leading initiatives to identify, analyse, and reverse engineer sophisticated exploits, vulnerabilities, and cheat mechanisms, formulating and executing robust countermeasures. Defining, designing … direction on secure development practices. Providing technical leadership and mentorship to junior developers and security engineers, fostering a culture of continuous learning and proactive threat mitigation. Assessing emerging threat vectors and hacker tactics, then updating and refining security strategies and policies to maintain the Company’s competitive edge. More ❯

will play a key role in fostering a proactive security culture. Preferred Skills, Qualifications and Experience Demonstrated mastery in securing iOS platforms, including advanced threat modelling and the design of sophisticated anti-cheat mechanisms. Excellent command of low-level systems programming and operating system internals. Extensive experience in … and information security teams, ensuring seamless integration of security features. Creative approach to security challenges with a relentless drive to stay ahead of emerging threat landscapes. Main Responsibilities Leading initiatives to identify, analyse, and reverse engineer sophisticated exploits, vulnerabilities, and cheat mechanisms, formulating and executing robust countermeasures. Defining, designing … direction on secure development practices. Providing technical leadership and mentorship to junior developers and security engineers, fostering a culture of continuous learning and proactive threat mitigation. Assessing emerging threat vectors and hacker tactics, then updating and refining security strategies and policies to maintain the Company’s competitive edge. More ❯

play a key role in fostering a proactive security culture. Preferred Skills, Qualifications and Experience Demonstrated mastery in securing web client platforms, including advanced threat modelling and the design of sophisticated anti-cheat mechanisms. Excellent command in low-level systems programming, with extensive understanding of virtualisation and bytecode … Passionate for uncovering vulnerabilities and staying ahead of potential attackers. Creative approach to security challenges, with a relentless drive to stay ahead of emerging threat landscapes. Demonstrable ability to lead, coach, and inspire security engineering teams, driving best practices and ensuring continuous knowledge sharing. Main Responsibilities Leading initiatives to … refine and adapt security strategies. Providing technical leadership and mentorship to junior developers and security engineers, fostering a culture of continuous learning and proactive threat mitigation. Assessing emerging threat vectors and hacker tactics, then update and refine security strategies and policies to maintain the Company’s competitive edge. More ❯

our gas operations. Responsibilities: Securely integrate new technology capabilities into gas operations, ensuring robust security measures. Define and document security architecture blueprints, focusing on threat modelling and risk assessments. Establish security standards and best practises for cloud, physical, and operational technologies. Collaborate with development teams to embed security … controls into application design. Lead security architecture reviews and provide expert guidance on complex security challenges. Stay updated on the latest security threat assessment frameworks, including OWASP and MITRE ATT&CK. Assess and ensure compliance with industry regulations and security standards. Identify and mitigate risks associated with new technologies More ❯

managing mitigation controls, and contributing to DPIAs 🔍 Supporting HMG Secure-by-Design assurance across the entire delivery lifecycle 🛠️ Feeding into control design activities—DevSecOps, threat modelling, workshops, and design reviews 🧪 Managing and coordinating penetration testing and remediation efforts 🚨 Leading security incident response for the programme, from detection to More ❯

managing mitigation controls, and contributing to DPIAs 🔍 Supporting HMG Secure-by-Design assurance across the entire delivery lifecycle 🛠️ Feeding into control design activities—DevSecOps, threat modelling, workshops, and design reviews 🧪 Managing and coordinating penetration testing and remediation efforts 🚨 Leading security incident response for the programme, from detection to More ❯

secure Azure architectures across IaaS, PaaS, and SaaS. Define and enforce security best practices, frameworks, and policies (e.g., Zero Trust, NIST, CIS). Perform threat modeling, risk assessments, and security reviews for cloud solutions. Implement and manage tools such as Microsoft Defender for Cloud, Sentinel, Azure Security Center, and More ❯

secure Azure architectures across IaaS, PaaS, and SaaS. Define and enforce security best practices, frameworks, and policies (e.g., Zero Trust, NIST, CIS). Perform threat modeling, risk assessments, and security reviews for cloud solutions. Implement and manage tools such as Microsoft Defender for Cloud, Sentinel, Azure Security Center, and More ❯

Infrastructure as Code tools like Terraform and Bicep Excellent communication skills and the ability to support and mentor junior colleagues Desirable Skills Experience with threat modelling Background working on globally distributed systems Exposure to financial services or highly regulated environments Who Should Apply: This role is suited to More ❯

performance optimization across environments. Ensure cloud architectures support observability, fault tolerance, and high availability. Data Engineering & Intelligent Systems Guide the engineering team in data modelling, data access patterns, and efficient use of databases (MSSQL, PostgreSQL, MySQL). Work with data engineers to enable secure, efficient data movement between systems … reliable data sources and APIs. Security Engineering & Governance Partner with security engineers to integrate security throughout the software lifecycle (shift-left security, secure coding, threat modelling). Own the implementation of secure authentication/authorization practices, audit logging, encryption at rest/in transit, and other application security More ❯

you to leverage your Android platform knowledge, reverse engineering and mobile security expertise to keep the Business one step ahead in today’s dynamic threat landscape. Preferred skills and experience Experience in Android security, mobile threat modelling and developing anti-cheat measures. Proficient in low-level systems More ❯

you to leverage your iOS platform knowledge, reverse engineering and mobile security expertise to keep the Business one step ahead in today’s dynamic threat landscape. Preferred Skills, Qualifications and Experience Experience in iOS security, mobile threat modelling and developing anti-cheat measures. Proficient in low-level More ❯

role will challenge you to leverage your programming, reverse engineering, and obfuscation techniques, to keep the Company one step ahead in today’s dynamic threat landscape. Preferred Skills, Qualifications and Experience Experience and interest in JavaScript security, threat modelling, developing anti-bot measures and creating robust obfuscation More ❯

including automation for configuration scanning and remediation. Act as a subject matter expert on cloud security within engineering, providing guidance during design reviews and threat modelling sessions. Harden Kubernetes environments and enforce secure cluster configurations. Secure and manage infrastructure using Infrastructure-as-Code, with a focus on Terraform. More ❯

SRE principles, Understanding of GIS datasets including analysis, Experience configuring and optimizing GitHub workflows including Terraform/Tofu IaC, Understanding of security concerns including threat modelling, IAM and encryption. More ❯

SRE principles, Understanding of GIS datasets including analysis, Experience configuring and optimizing GitHub workflows including Terraform/Tofu IaC, Understanding of security concerns including threat modelling, IAM and encryption. More ❯

scale-up previously) You'll be skilled in building and working with security tools and automation solutions. You'll have a solid foundation in threat modelling, risk assessment, and penetration testing. Amazing if you've came from a software engineering background, but at the very least you'll More ❯

scale-up previously) You'll be skilled in building and working with security tools and automation solutions. You'll have a solid foundation in threat modelling, risk assessment, and penetration testing. Amazing if you've came from a software engineering background, but at the very least you'll More ❯

scale-up previously) You'll be skilled in building and working with security tools and automation solutions. You'll have a solid foundation in threat modelling, risk assessment, and penetration testing. Amazing if you've came from a software engineering background, but at the very least you'll More ❯

code reviews and provide clear remediation guidance to engineering teams. Embed automated security checks into CI/CD pipelines using existing AppSec tools. Perform threat modelling and contribute to secure design decisions. Develop PoCs to demonstrate risk and impact of discovered vulnerabilities. Requirements: 5+ years of hands-on More ❯

delivered everywhere. What you'll do: Embed security across the platform, from source to prod. Architect security controls across distributed, cloud-native systems. Lead threat modeling and security reviews (and get people to enjoy them) Pen-test services and infra (ethically, please). Extend security automation and monitoring with … RASP, and securing cloud (preferably AWS). Strong grasp of container security, API security, IaC, and CI/CD. You’ve done pen testing, threat modeling, and maybe even built some of your own security tools. Big bonus if you’ve secured artifact systems or supply chains before. Bigger More ❯