1 to 25 of 111 Permanent Threat Modelling Jobs in the UK

Senior Cyber Security Engineer

Hiring Organisation
Financial Times
Location
Greater London, United Kingdom
Employment Type
Full Time
misconfiguration management so that findings are actionable, low-noise and owned by the right teams. Day to day, you’ll run practical threat-modelling sessions, review application and cloud designs, improve security playbooks, support vulnerability and misconfiguration remediation, and build automation that reduces toil. We’re looking … misconfiguration & vulnerability management: experience identifying and reducing infrastructure-as-code and AWS vulnerabilities & misconfigurations at scale through pragmatic guardrails, tooling and clear remediation paths. Threat modelling: confidence running lightweight, practical threat-modelling sessions that lead to useful engineering decisions and risk reduction. CI/ ...

Information Security Architect

Hiring Organisation
Allianz Commercial
Location
United Kingdom
Employment Type
Full Time
Security Architecture you will ensures that the design, operation, and governance of technology and business architectures align with regulatory requirements and the evolving threat landscape. You will ensures that security is embedded end-to-end across systems, processes, and third-party interactions by defining standards, conducting architecture reviews … stakeholders in building secure solutions based on best practices. This role also drives the continuous development of the security architecture capability, translates risk and threat intelligence into actionable design decisions, and acts as a key interface between business, IT, and security teams. It enables informed, risk-based decision-making ...

Security Architect

Hiring Organisation
Triad Group PLC
Location
London, United Kingdom
Employment Type
Permanent, Work From Home
Salary
£75,000
play a critical role in designing, assuring, and delivering secure solutions across our client engagements. You will champion Secure by Design principles and lead threat modelling activities to ensure risks are identified and mitigated early in the lifecycle. Working closely with stakeholders, you will define security architectures, ensure … Design - Embed security into every stage of the solution lifecycle, ensuring systems are designed with security controls from the outset rather than retrofitted. Threat Modelling - Lead and facilitate threat modelling exercises (e.g. STRIDE), identifying vulnerabilities and defining mitigations early in delivery Risk Assessment - Identify, assess ...

Cyber Security Engineer

Hiring Organisation
Financial Times
Location
Greater London, United Kingdom
Employment Type
Full Time
coding guidance so that security findings are clear, actionable and owned by the right teams. You’ll work closely with engineers to support practical threat modelling, triage application vulnerabilities, improve security playbooks and help teams remediate issues in a pragmatic way. You do not need … code security awareness: familiarity with security tooling in development workflows, such as SAST, software composition analysis, secret scanning or repository security controls. Threat modelling awareness: experience participating in, supporting or facilitating lightweight threat-modelling sessions for applications, services or new features. Automation mindset: ability to write ...

Head of Product Security - CISO function - BPL

Hiring Organisation
Jobleads-UK
Location
Greater London, England, United Kingdom
Responsibilities Own and drive the shift‐left security programme, ensuring security is integrated into the earliest stages of the software development lifecycle through threat modelling, secure design patterns, and automated tooling. Manage the security champions programme, recruiting, training, and supporting champions across all product squads. Own the developer … publish the security engagement model for product and engineering teams, including trigger points (new service, new integration, pre‐release), SLAs and escalation paths. Oversee threat modelling for new services and major changes, ensuring threat models are completed before development progresses beyond initial design. Own the security sign ...

Information Security Consultant

Hiring Organisation
Digital Waffle
Location
United Kingdom
position offering the opportunity to work with a diverse portfolio of clients, helping them strengthen their security posture and manage risk in an evolving threat landscape. You will play a key role in delivering security advisory services, conducting assessments, and supporting organisations in aligning with industry standards and best … practices. The role will also involve supporting clients with modern security challenges including threat modelling, secure-by-design practices, and emerging AI security considerations. Key Responsibilities Provide expert guidance on information security strategies, frameworks, and best practices Conduct security risk assessments, gap analyses, and audits Support clients ...

Security Architect JBLE1 NI

Hiring Organisation
Ocho
Location
Belfast, UK
it. The Role Security Architect is a design and advisory role, not a purely technical one. You will shape secure cloud solutions, lead threat modelling exercises, advise customers, and develop the engineers around you. Communication and client credibility matter here as much as technical depth. … embedding security throughout the software development lifecycle. Identify security issues in existing system designs and recommend mitigations that balance cost, risk, and usability. Lead threat modelling exercises and workshops with delivery teams and customers. Advise on security standards and regulatory requirements including NCSC, ISO, NIST, PCI, and GDPR. ...

Security Architect

Hiring Organisation
Searchability NS&D
Location
City of London, London, United Kingdom
Lead technical security design across infrastructure, cloud and application environments Collaborate with SMEs across Identity, Security Testing and Privacy Conduct risk assessments and support threat modelling activities Provide clear justification of design decisions to both technical and non-technical stakeholders Ensure alignment to industry standards and government security … Understanding of network security, encryption, authentication and access control Experience with security tooling such as SIEM, IDS, firewalls and vulnerability assessment tools Knowledge of threat modelling and risk assessment TO BE CONSIDERED: Please either apply through this advert or emailing me directly via robin.muirhead@searchability.com. For further information ...

Security Architect

Hiring Organisation
Searchability NS&D
Location
Manchester Area, United Kingdom
Lead technical security design across infrastructure, cloud and application environments Collaborate with SMEs across Identity, Security Testing and Privacy Conduct risk assessments and support threat modelling activities Provide clear justification of design decisions to both technical and non-technical stakeholders Ensure alignment to industry standards and government security … Understanding of network security, encryption, authentication and access control Experience with security tooling such as SIEM, IDS, firewalls and vulnerability assessment tools Knowledge of threat modelling and risk assessment TO BE CONSIDERED: Please either apply through this advert or emailing me directly via robin.muirhead@searchability.com. For further information ...

Senior Information Security Consultant

Hiring Organisation
Allianz Commercial
Location
Surrey, United Kingdom
Employment Type
Full Time
Salary
70000 GBP Annually
experienced Senior Information Security Consultant to join our team. This is a senior advisory role - you will provide expert guidance across security architecture review, threat modelling, and AI risk assessment, working closely with project teams, technology leads, and senior business stakeholders to ensure security risk is understood … Deliver security advisory services to the business, acting as a trusted consultant to stakeholders at all levels - from project teams to senior leadership. Lead threat modelling exercises across programs and key systems, translating findings into clear, business-relevant risk statements for non-technical audiences. Conduct security architecture reviews ...

Security Consultant- Threat modelling

Hiring Organisation
HCLTech
Location
United Kingdom, UK
risks and benefits of competing Security design options. Comfortable working on multiple challenging projects simultaneously. Mandatory skills Experience require with security consultancy delivery (e.g. threat modelling, secure design, driving decisions) Experience with cloud-native platforms and modern architectures Developing a more security-led perspective, rather than primarily infrastructure … practical application Gaining further exposure to security standards and regulatory frameworks (e.g. PCI DSS, data protection) Strengthening end-to-end security design capability (e.g. threat modelling, control coverage) Providing clearer examples of individual contribution and ownership in security decisions Any experience of these would be really useful Awareness ...

Security Consultant- Threat modelling

Hiring Organisation
HCLTech
Location
Manchester Area, United Kingdom
risks and benefits of competing Security design options. Comfortable working on multiple challenging projects simultaneously. Mandatory skills Experience require with security consultancy delivery (e.g. threat modelling, secure design, driving decisions) Experience with cloud-native platforms and modern architectures Developing a more security-led perspective, rather than primarily infrastructure … practical application Gaining further exposure to security standards and regulatory frameworks (e.g. PCI DSS, data protection) Strengthening end-to-end security design capability (e.g. threat modelling, control coverage) Providing clearer examples of individual contribution and ownership in security decisions Any experience of these would be really useful Awareness ...

Director, Security Engineering & Operations

Hiring Organisation
Jobleads-UK
Location
Greater London, England, United Kingdom
technology teams. Set and direct a secure SDLC strategy that engineers engage with, coaching and mentoring our application security engineer with running our threat modelling program, embedding security in CI/CD, and iteratively improving our vulnerability management processes. Partner with engineering leadership to ensure risk‐driven supply … with our CISO to shape and implement an AI security posture that is embedded in strong security foundations, helping us stay ahead of the threat landscape rather than reacting to it. Detection, Response & SOC Partnership Own the strategic relationship with our 24/7 outsourced SOC holding them ...

Security Architect

Hiring Organisation
GUARDIAN NEWS AND MEDIA
Location
London, UK
Employment Type
Full-time
oversight for business, technology, and transformation initiatives. Review solution, application, infrastructure, and cloud designs to ensure security requirements are incorporated from the outset. Conduct threat modelling, security risk assessments, and architecture reviews to identify and mitigate security risks. Collaborate with engineering, infrastructure, product, and business teams to embed … Google Cloud Platform. Knowledge of industry security frameworks and standards, including ISO 27001, NIST, CIS Controls, and OWASP. Experience conducting security architecture reviews, threat modelling, and risk assessments. Strong understanding of identity and access management, network security, encryption, vulnerability management, and security monitoring technologies. Ability to balance security ...

Senior Security Engineer

Hiring Organisation
Sopra Steria
Location
Farnborough, Hampshire, South East, United Kingdom
Employment Type
Permanent
Salary
£65,000
current DV Clearance. What youll be doing: Lead the design and implementation of platform-wide security architectures and strategies. Drive secure SDLC practices including threat modelling, misuse cases, and risk analysis. Oversee security operations including vulnerability scanning, penetration testing, and assessments. Manage and optimise security tooling (Firewalls, VPNs … compliance teams to embed security-by-design. What youll bring : Strong background in network security, SIEM, IDAM, endpoint protection, and cloud security. Knowledge of threat intelligence, IOC analysis, and detection engineering. Experience in secure SDLC, code review, and threat modelling (incl. misuse cases). Understanding of encryption ...

Security Solutions Architect

Hiring Organisation
Huxley Associates
Location
City of London, London, United Kingdom
Employment Type
Permanent
design, scalable, and aligned to business and regulatory requirements. Working closely with architecture, engineering, and delivery teams, you will produce high-level designs, conduct threat modelling and risk assessments, and provide architectural leadership throughout project lifecycles. Key Responsibilities Develop high-level security architecture and solution designs for enterprise … technology initiatives. Evaluate emerging technologies and security tooling, providing recommendations and business justification. Conduct threat modelling, security risk assessments, and secure-by-design reviews. Define security controls, network architectures, and data flow models for internal and external integrations. Provide technical guidance to engineering, testing, and delivery teams during ...

Security Solutions Architect

Hiring Organisation
Huxley Associates
Location
City of London, London, United Kingdom
Employment Type
Permanent
Salary
£110000 - £130000/annum + Bonus & Benefits Package
design, scalable, and aligned to business and regulatory requirements. Working closely with architecture, engineering, and delivery teams, you will produce high-level designs, conduct threat modelling and risk assessments, and provide architectural leadership throughout project lifecycles. Key Responsibilities Develop high-level security architecture and solution designs for enterprise … technology initiatives. Evaluate emerging technologies and security tooling, providing recommendations and business justification. Conduct threat modelling, security risk assessments, and secure-by-design reviews. Define security controls, network architectures, and data flow models for internal and external integrations. Provide technical guidance to engineering, testing, and delivery teams during ...

Cyber GRC Consultant (DV Cleared)

Hiring Organisation
Sanderson Government and Defence
Location
South West, United Kingdom
Employment Type
Permanent, Work From Home
cloud infrastructures. Contribute to blogs and research within the business community. Experience Required The successful candidate will possess proven experience in cybersecurity, security architecture, threat modelling, or related fields within Public Sector and MOD and will have achieved or be working towards Full Membership of CIISEC … NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain - Attack tree analysis. Working understanding of: Cloud security including Azure, Amazon Web Service, Key Management Systems, Containerisation, Network Security Groups ...

Cyber GRC Consultant (DV Cleared)

Hiring Organisation
Sanderson Government and Defence
Location
Cambridgeshire, East Anglia, United Kingdom
Employment Type
Permanent
cloud infrastructures. Contribute to blogs and research within the business community. Experience Required The successful candidate will possess proven experience in cybersecurity, security architecture, threat modelling, or related fields within Public Sector and MOD and will have achieved or be working towards Full Membership of CIISEC … NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling - Kill Chain - Attack tree analysis. Working understanding of: Cloud security including Azure, Amazon Web Service, Key Management Systems, Containerisation, Network Security Groups ...

Security Design Consultant

Hiring Organisation
HCLTech
Location
City Of Bristol, England, United Kingdom
risks are understood, controlled and aligned to organisational risk appetite, regulatory obligations and industry best practice. Key Responsibilities Core Responsibilities Lead security design reviews, threat modelling and risk assessments for applications, infrastructure, cloud services and third-party solutions. Define and recommend proportionate security controls, patterns and design guardrails … Experience and Skills Extensive experience in cyber security, security consulting, risk assessment or security architecture within regulated environments, ideally financial services. Strong knowledge of threat modelling methodologies, secure design principles, attack vectors and mitigating controls across network, application and cloud domains. Practical understanding of cloud security, secure application ...

Security Design Consultant

Hiring Organisation
HCLTech
Location
Manchester Area, United Kingdom
ensure security risks are understood, controlled and aligned to organisational risk appetite, regulatory obligations and industry best practice. Key Responsibilities Lead security design reviews, threat modelling and risk assessments for applications, infrastructure, cloud services and third-party solutions. Define and recommend proportionate security controls, patterns and design guardrails … Experience and Skills Extensive experience in cyber security, security consulting, risk assessment or security architecture within regulated environments, ideally financial services. Strong knowledge of threat modelling methodologies, secure design principles, attack vectors and mitigating controls across network, application and cloud domains. Practical understanding of cloud security, secure application ...

Security Design Consultant

Hiring Organisation
HCLTech
Location
Leeds, England, United Kingdom
ensure security risks are understood, controlled and aligned to organisational risk appetite, regulatory obligations and industry best practice. Key Responsibilities Lead security design reviews, threat modelling and risk assessments for applications, infrastructure, cloud services and third-party solutions. Define and recommend proportionate security controls, patterns and design guardrails … Experience and Skills Extensive experience in cyber security, security consulting, risk assessment or security architecture within regulated environments, ideally financial services. Strong knowledge of threat modelling methodologies, secure design principles, attack vectors and mitigating controls across network, application and cloud domains. Practical understanding of cloud security, secure application ...

Security Design Consultant

Hiring Organisation
HCLTech
Location
City Of Bristol, England, United Kingdom
ensure security risks are understood, controlled and aligned to organisational risk appetite, regulatory obligations and industry best practice. Key Responsibilities Lead security design reviews, threat modelling and risk assessments for applications, infrastructure, cloud services and third-party solutions. Define and recommend proportionate security controls, patterns and design guardrails … Experience and Skills Extensive experience in cyber security, security consulting, risk assessment or security architecture within regulated environments, ideally financial services. Strong knowledge of threat modelling methodologies, secure design principles, attack vectors and mitigating controls across network, application and cloud domains. Practical understanding of cloud security, secure application ...

Staff Security Engineer

Hiring Organisation
Data Idols
Location
London, Farringdon, United Kingdom
Employment Type
Permanent
Salary
£120000 - £150000/annum
secure-by-design culture across the business. Key responsibilities include: Driving application and product security initiatives across multiple engineering teams Conducting security reviews, threat modelling and risk assessments Implementing and improving vulnerability management processes Embedding security tooling into CI/CD pipelines and development workflows Partnering with developers … software development practices Experience working closely with software engineering teams Hands-on experience securing cloud environments (AWS, GCP or Azure) Experience with vulnerability management, threat modelling and security reviews Knowledge of CI/CD security and modern development practices Excellent stakeholder management and communication skills Eligibility Please note ...

Staff Software Security Engineer

Hiring Organisation
Data Idols
Location
London, Farringdon, United Kingdom
Employment Type
Permanent
Salary
£120000 - £150000/annum
secure-by-design culture across the business. Key responsibilities include: Driving application and product security initiatives across multiple engineering teams Conducting security reviews, threat modelling and risk assessments Implementing and improving vulnerability management processes Embedding security tooling into CI/CD pipelines and development workflows Partnering with developers … software development practices Experience working closely with software engineering teams Hands-on experience securing cloud environments (AWS, GCP or Azure) Experience with vulnerability management, threat modelling and security reviews Knowledge of CI/CD security and modern development practices Excellent stakeholder management and communication skills Eligibility Please note ...