3 of 3 Permanent Threat Modelling Jobs in Stoke-on-Trent

and static application security testing tools. Excellent understanding and experience with manual security testing to find vulnerabilities and logical issues. Knowledge and understanding of OWASP and its utilisation within threat modelling. Experience of software development and languages. Working knowledge of CI and CD pipelines and associated security tooling. Use of planned structured methodologies for conducting and reporting on Web … to ensure that security is considered throughout the lifecycle. Identifying and managing any security flaws within our software through appropriately liaising with external bodies where necessary. Performing risk assessments, threat modelling and design reviews to ensure effective security controls. Identifying opportunities for converting manual tasks into automated processes and identify tooling to support such automation. By applying to More ❯

that security and resilience are integrated into business unit plans and delivery frameworks. Guide product teams on how to deliver change effectively while maintaining security and compliance standards. Apply threat modelling, data protection principles, and risk frameworks to business solutions. Promote the use of enterprise standards, guardrails, and architectural patterns where appropriate. Share knowledge with peers and wider … teams to strengthen overall security capability. About You Proven experience in a similar role within cyber security, IT risk, or resilience engineering. Strong understanding of security frameworks, risk management, threat modelling, and data protection regulations. Excellent stakeholder engagement and influencing skills at all levels of the organisation. Passionate about emerging trends in technology and operating models, including Lean More ❯

for cloud infrastructure (primarily AWS), including automation for configuration scanning and remediation. Act as a subject matter expert on cloud security within engineering, providing guidance during design reviews and threat modelling sessions. Harden Kubernetes environments and enforce secure cluster configurations. Secure and manage infrastructure using Infrastructure-as-Code, with a focus on Terraform. Requirements: 5+ years of hands More ❯