26 to 50 of 85 Threat Modelling Jobs in England

competitive salary (Inside IR35) and benefits. Visa sponsorship is not available. You will be responsible for Conducting security assessments of AI solutions, including threat modelling Developing governance frameworks, security standards, and best practice for AI adoption Designing controls for identity, access management, auditability, and human oversight Supporting implementation … injection, jailbreaks, data leakage, poisoning, model extraction/inversion) Strong background in security architecture, IAM, Zero Trust, audit controls, and secure integration Experience in threat modelling and security reviews across complex environments Practical, delivery-focused mindset with ability to enable innovation securely Must have right to work ...

part of a bigger team, working with a group of a Senior Security Architects and Digital Engineering stakeholders to produce security architecture artifacts, threat modelling, design assurance, and reusable patterns that strengthen the programme’s security posture. Key Responsibilities: You will lead and deliver core security architecture outputs … including: Digital Engineering Security Artifacts and Engagement Report Security Requirements Specification Security Principles Framework Infrastructure Mapping Document & Security Architecture Design Pack Threat Modelling Report Reusable Security Pattern Library Knowledge Transfer Pack (training materials, handover content, recorded walkthroughs) We are looking for someone with: Extensive Security Architecture/Security ...

ensure compliance and security standard processes. Evaluate and integrate new identity tools, authentication platforms and access capabilities. Drive continuous improvement through risk assessments, threat modelling, and automation. You will need: Whilst the business is looking for the below, a big part of what they're also looking … Okta, CyberArk, Ping, or preferably Microsoft Entra ID. Ability to define standards, partner cross-functionally (IT, GRC, Engineering), and drive risk reduction through threat modelling, compliance (NIST, ISO, GDPR), and ongoing optimisation of identity systems. Experience working with cloud identity (Azure, AWS, or GCP). What ...

have the opportunity to do as a Security Architect Define and own security architecture Design secure cloud and on-prem solutions Deliver threat modelling and define requirements Align with frameworks (NIST, ISO, CIS) Provide risk-based security guidance Govern delivery of security controls Engage senior technical … technical stakeholders About the Candidate The right Security Architect should have: Strong background in security across cloud, network or apps Knowledge of threat modelling and secure design Familiarity with frameworks (NIST, ISO, CIS) Experience across delivery lifecycles Strong stakeholder communication skills What’s in it for you? Salary ...

looking for a Cyber Threat & Vulnerability Analyst to join our Cyber Security team, helping protect the systems that deliver essential water services to millions of customers every day. You'll play a key role in identifying, assessing, and reducing cyber risk across a large and complex technology estate, making … closely with technical teams and business stakeholders to keep our services safe, resilient, and running smoothly. What you'll be doing as a Cyber Threat & Vulnerability Analyst: As a Cyber Threat & Vulnerability Analyst, you'll be responsible for supporting and improving how we identify, assess, and manage cyber ...

into the full product lifecycle, from concept through to release Conduct hands-on security assessments across web, mobile, and backend applications Lead and support threat modelling activities for new features and systems Collaborate closely with engineering teams to design secure architectures Integrate and optimise security tooling such … similar Solid knowledge of web or mobile security, with willingness to broaden across both Good understanding of networking fundamentals and operating systems Experience conducting threat modelling and explaining security trade-offs to stakeholders Ability to script and automate tasks using languages such as Python, JavaScript, or Go Knowledge ...

Threat & Adversarial AI Expert 6 Months Contract + Extension London Based 2 days in the office £500 to £600 a day Inside IR35 A pioneering financial institution is seeking an experienced Threat & Adversarial AI Expert to join their cybersecurity team. You will act as the primary architect … safety for the firm's generative AI ecosystem, ensuring agentic capabilities remain resilient against an evolving global threat landscape. As a Threat AI Expert, you will lead the organisation's Generative AI security strategy. Key responsibilities include: Advanced Threat Modelling: Leading structured sessions using STRIDE ...

Profile Summary Seeking security engineer to join our Proactive Security team, this role will focus on the development of security technology stack to ensure threat mitigation is in place through offensive and preventive measures. Duties and Responsibilities Threat Modelling & Risk Analysis: Develop and maintain threat models … tooling integration and orchestration. Develop and implementation of SOAR capabilities that aligns with existing technology stack. Experience with KMS systems and methodologies. Identity based threat detection and prevention. Privileged Access and Session Management SIEM Management: Design, implement, and maintain of workspaces, including data connectors, Logic App, Function App, analytics ...

application architectures. Ensure all Data Security architecture and cloud infrastructure accommodates the latest security and software lifecycle patterns. Standard Technical Skills & Competencies Experience conducting threat modelling, penetration testing, and vulnerability assessments across AI/ML ecosystems, including data pipelines, model APIs, and supporting infrastructure. Hands on expertise with … Working knowledge of machine learning concepts, data processing techniques, and common AI/ML frameworks (e.g., PyTorch, Scikit learn, LangChain) — considered a strong advantage. Threat Analysis & Vulnerability Assessment: Conduct regular threat assessments to identify vulnerabilities in AI/ML systems. Develop benchmarks, tools and scripts to automate vulnerability ...

application architectures. • Ensure all Data Security architecture and cloud infrastructure accommodates the latest security and software lifecycle patterns. Standard Technical Skills & Competencies • Experience conducting threat modelling, penetration testing, and vulnerability assessments across AI/ML ecosystems, including data pipelines, model APIs, and supporting infrastructure. • Hands on expertise with … Working knowledge of machine learning concepts, data processing techniques, and common AI/ML frameworks (e.g., PyTorch, Scikit learn, LangChain) — considered a strong advantage. Threat Analysis & Vulnerability Assessment: • Conduct regular threat assessments to identify vulnerabilities in AI/ML systems. • Develop benchmarks, tools and scripts to automate vulnerability ...

Security team. This role focuses on security engineering, SIEM development, detection engineering, and security automation. The successful candidate will help enhance the bank's threat detection and response capabilities across on-premise and cloud environments. Key Responsibilities Develop and maintain threat detection use cases, threat hunting content … optimise SIEM capabilities, including log onboarding, analytics rules, dashboards, playbooks, and data connectors. Build and maintain SOAR workflows and security automation capabilities. Support threat modelling, security control reviews, and risk assessments for new technology initiatives. Integrate security tooling and develop automated remediation and configuration monitoring solutions. Improve detection ...

enterprise-scale infrastructure. Security is a major investment area for the business, with a strong focus on cloud security, cyber resilience, automation, and intelligent threat detection.This is an opportunity to join a collaborative team where security is seen as a business enabler — not a blocker.The RoleThis is a hands … integrations Build intelligent detection and response workflows Develop automation solutions using scripting and AI-assisted tooling Lead technical investigations and incident response activities Improve threat visibility and reduce false positives through detection engineering Conduct vulnerability management and remediation initiatives Partner with engineering, infrastructure, and DevOps teams to embed security ...

policies, network segmentation, and secrets management Configure and tune SIEM (or similar) for cloud-focused detection Establish logging, monitoring, and alerting requirements based on threat modelling Investigate and respond to cloud security events Risk & Compliance Identify, articulate, and escalate security risks to senior leadership with mitigation plans Track ...

troubleshooting. Governance, Risk and Compliance Apply GRC principles across designs and deployments. Review and improve customer security policies and standards. Perform risk assessments, threat modelling, and compliance gap analysis. Advise on ISO 27001, NIST, PCI DSS, and GDPR. Threat and Vulnerability Management Interpret threat intelligence ...

architectural governance artefacts. Ensure designs align with NCSC guidance , industry best practices (e.g., CIS Benchmarks), and organisational policy. Security Assurance Conduct security assessments and threat modelling against containerised and virtualised workloads. Validate platform configurations against security baselines, compliance frameworks, and risk appetite. Provide expert guidance during project delivery ...

CASB, FWaaS, segmentation, and secure web access • Integrate Zero Trust solutions with identity providers, SIEM/SOAR platforms, and endpoint security tooling • Conduct threat modelling, risk assessments, and security architecture reviews • Troubleshoot complex deployment and access issues across enterprise environments • Provide technical leadership and guidance across security ...

cloud deployments (private/public). Design and scope IT Health Checks and interpret outcomes. Identify and mitigate security risks in solution architectures. Conduct threat modelling and risk analysis. Design proportional security controls using native cloud technologies. Produce security architecture artefacts including standards and blueprints. What ...

controls into engineering workflows. Collaborate with software development teams to improve secure coding practices. Develop and maintain monitoring, logging, and incident response automation. Support threat modelling and secure architecture reviews. Drive DevSecOps best practices across engineering teams. Contribute to platform engineering and cloud-native application delivery. Required Experience ...

developer platforms (IDPs), or technical enablement teams Experience in a highly regulated industry (e.g., Aerospace & Defence, Finance, Critical Infrastructure) Exposure to secure coding practices, threat modelling, and secure-by-design approaches Experience leading hybrid delivery teams (e.g., internal and external/partner teams) Familiarity with ITSM and incident ...

similar platforms • Oversee integration of Zero Trust solutions with identity providers, SIEM/SOAR tooling, endpoint security, and cloud environments • Conduct architecture reviews, threat modelling exercises, gap assessments, and security strategy workshops • Lead proof-of-concept exercises, vendor evaluations, and technical validation sessions • Provide senior technical leadership ...

principles are embedded across IT and business projects, acting as a key point of expertise for cybersecurity solutions. Responsibilities include implementing security controls, conducting threat modelling and architecture reviews, and defining secure configurations and standards. The role also ensures systems include robust monitoring, detection, incident response, and recovery ...

that will fundamentally change how their Application Security is Delivered within the SDLC. Early Phases of the Programme have already defined the Target Architecture, Threat Model & Prompt Engineering Strategy . The Next Stage is to Transform this Foundation into a Production - Grade Capability Used Daily by Engineering Teams , enabling … Agent Behaviours Policy Frameworks & Guardrails Tool Schemas & Execution Constraints Implement Protections Against: Prompt Injection Jailbreak Attempts Unsafe Tool Execution Ensure Alignment with Defined AASA Threat Model & Governance Standards Evaluation, Metrics & Assurance: Build & Maintain a Full Evaluation Framework , including: Golden Datasets & Regression Test Suites Precision/Recall Measurement for Vulnerability ...

Drive the organisation’s Zero Trust roadmap and long-term cyber security strategy. Provide governance and architectural oversight across transformation and security programmes. Conduct threat modelling, risk assessments, and security gap analysis for critical business services. Promote secure-by-design methodologies and modern security frameworks across the organisation. ...

Experienced in developing and managing Cyber Incident Response capabilities, including planning, implementation, and continuous improvement Proven experience designing and delivering Security Awareness programs, incorporating threat modelling, tabletop exercises, and war-gaming scenarios Desirable Skills & Experience Domain & Delivery Experience Experience working in both delivery and proposal environments Experience working ...

Code, Policy as Code and Architecture as Code. Proven ability in strategic planning and cloud transformation initiatives. Desirable: Diagrams as code, ie C4 Modelling and Structurizr, Mermaid, Plantuml, Desirable: Threat Modelling and Secure by design principles. Desirable: Understanding of ZTNA. This opportunity offers the chance to influence ...