26 to 50 of 125 Threat Modelling Jobs in England

cloud-compatible controls, templates, and "as code" modules. Collaborate with engineering teams to embed security into CI/CD, IaC, and DevSecOps pipelines. Lead threat modelling exercises and train non-security stakeholders in its application. About the requirements: Strong knowledge of industry frameworks (NIST CSF, ISO/ ...

SABSA. • Ability to provide security consultancy across multiple projects, advising on risk, treatment options, and controls. • Demonstrable experience conducting information security risk assessments, threat modelling and guiding others on effective risk management. • Experience scoping and managing penetration testing for internal and third-party solutions. • Excellent written and verbal ...

portfolio of assignments, advising on risk, architecture, and secure delivery for nationally critical systems. Key responsibilities include • Engaging directly with client teams to understand threat landscape, risk appetite, and delivery constraints • Defining and documenting proportionate security architectures aligned to business outcomes • Leading threat modelling and security design ...

reviewing and identifying security control gaps in design documents, providing recommendations for amendments and mitigation. We are looking for: Strong experience of performing threat modelling exercises Experience of reviewing high/low level architecture definition documents for compliance against security policies and standards Knowledge of technology risk ...

multi-cloud security standards and reference blueprints (Azure Policy/Initiatives, AWS Control Tower, SCPs) Own security architecture patterns and contribute to HLDs, LLDs, threat models and risk assessments Set assurance and evidence requirements for internal teams and third-party suppliers Establish policy-as-code standards , including exception handling ...

technology environments. In this role, you will: Collaborate with solution and technical architects to define security architecture for advanced enterprise and operational systems. Lead threat modelling exercises and provide expert guidance on risk mitigation. Advise on security requirements through the full system lifecycle, including design, delivery, and operational ...

implementing security controls across CI/CD pipelines and cloud infrastructure Driving improvements in secure development maturity, tooling, and automation Supporting teams with threat modelling, secure architecture patterns, and cloud security best practices Working closely with central security, platform, and engineering teams to balance risk, delivery, and usability ...

implementing security controls across CI/CD pipelines and cloud infrastructure Driving improvements in secure development maturity, tooling, and automation Supporting teams with threat modelling, secure architecture patterns, and cloud security best practices Working closely with central security, platform, and engineering teams to balance risk, delivery, and usability ...

implementing security controls across CI/CD pipelines and cloud infrastructure Driving improvements in secure development maturity, tooling, and automation Supporting teams with threat modelling, secure architecture patterns, and cloud security best practices Working closely with central security, platform, and engineering teams to balance risk, delivery, and usability ...

outcomes. About You We're looking for someone with a blend of technical expertise and delivery mindset: Hands-on application security experience: secure coding, threat modelling, SAST/DAST tooling. Strong knowledge of SDLC and CI/CD integration, with experience securing software throughout its lifecycle. Pragmatic, delivery ...

alerting/response workflows. Understanding of the Microsoft Cloud Adoption Framework, Azure Landing Zones and the Well-Architected Framework. Familiarity with DevSecOps practices: threat modelling, dependency and container scanning, SBOM management, and shift-left security. Comfortable collaborating with software engineers and SREs; able to translate platform capabilities into ...

senior stakeholders, and leadership Experience aligning solutions to: Enterprise reference architectures Security principles, standards, and patterns 3. Governance, Risk & Regulatory Alignment Strong experience in: Threat modelling Security assessments feeding into design Ability to map: Policy control implementation evidence Experience designing solutions aligned to regulatory frameworks (explicitly mentions DORA … across: Security Infrastructure Platforms Application teams Acts as a security SME and consultant , not just a designer 5. Tooling & Documentation (Mandatory but Supporting) Architecture modelling tools: BizzDesign, Archi, UML (at least one) Delivery tooling: Jira (task & project management) Confluence (formal documentation) Excellent written documentation skills (this is strongly emphasised ...

through to commissioning and in-service support. ?? Role Overview You will act as the cyber security assurance lead, providing technical leadership across: ?? Security architecture ?? Threat & risk assessment ?? Standards & compliance ?? Security testing & validation ?? Assurance documentation You'll work closely with product, delivery, and customer security teams to ensure security … support) ?? Engage with customer security teams to align on strategy, assurance, and risk appetite ?? Define security requirements and design secure architectures (zones & conduits) ?? Perform threat modelling and risk assessments; define appropriate controls ?? Define and oversee security testing, including FAT, SAT, and penetration testing ?? Assess third-party components against ...

cybersecurity requirements within the client's environment, including rail-specific systems, legacy OT, and modern industrial platforms. Support developing and delivering security risk assessments, threat models, and control frameworks following the relevant standards. Contribute to the production and review of assurance artefacts, including security cases, risk registers, control implementation … operational technology (OT) environments, including SCADA systems, field devices, industrial protocols, and control network architectures. Firm grounding in cybersecurity principles for critical infrastructure, including threat modelling, risk analysis, defence-in-depth, and zero-trust architectures. Demonstrated ability to define, implement, and assure security controls across complex OT/ ...

Design and own end-to-end security architectures aligned with MOD and defence standards Provide security assurance across system designs, solutions, and integrations Conduct threat modelling, risk assessments, and security design reviews Ensure compliance with relevant frameworks including JSP 440, JSP 604, NIST, ISO 27001, and MOD security ...

sensitivity of the work. Key Responsibilities Provide information security and assurance advice across defence systems and programmes Support security risk assessments, threat modelling, and mitigation planning Ensure compliance with MOD security policies and frameworks including JSP 440, JSP 604, ISO 27001, NIST Contribute to accreditation and assurance activities ...

Proven experience in security architecture or secure systems engineering in complex IT/OT environments, creating technical designs for diverse stakeholders. Strong knowledge of threat modelling, secure architectures, and assurance processes. Experience delivering "secure by design" in regulated sectors (e.g., critical national infrastructure, defence). Proficiency in architecture ...

ensure compliance and security standard processes. Evaluate and integrate new identity tools, authentication platforms and access capabilities. Drive continuous improvement through risk assessments, threat modelling, and automation. What you'll need to succeed Strong practical experience in designing and running Identity and Access Management (IAM) solutions for both ...

connectors, and Copilot Studio bots Establish reference architectures and reusable patterns for role-based security, data design, integration, eventing, and observability Lead architecture reviews, threat modeling, and solution design approvals; produce HLD/LLD, sequence diagrams, deployment topologies, and data models Integration & Data Architect secure integrations with Azure services ...

security testing including SAST, DAST, and penetration testing. Understanding of authentication and authorization frameworks (OAuth, JWT, SAML) and familiarity with secure coding practices and threat modelling Experience in test automation tools, frameworks, and practices. The successful candidate will have experience working in a fast-paced and multi-vendor ...

experience with agents : LangChain, AutoGPT, CrewAI, or custom agent frameworks • Regulated industry background : Financial services, healthcare, or other domains with compliance requirements • Security/threat modelling expertise : Understanding of adversarial AI, prompt injection, or system security • Real-time systems experience : Trading systems, fraud detection, or other low-latency ...

experience with agents: LangChain, AutoGPT, CrewAI, or custom agent frameworks • Regulated industry background: Financial services, healthcare, or other domains with compliance requirements • Security/threat modelling expertise: Understanding of adversarial AI, prompt injection, or system security • Real-time systems experience: Trading systems, fraud detection, or other low-latency ...

blue-green), and infrastructure-as-code. Establish robust observability (metrics, logs, traces) and capacity/scale models for high-throughput, highly available services. Lead threat modeling, architecture reviews, and audit readiness for Tier 0 services; ensure security and privacy are embedded through the lifecycle. Mentor engineers, influence cross ...

blue-green), and infrastructure-as-code. Establish robust observability (metrics, logs, traces) and capacity/scale models for high-throughput, highly available services. Lead threat modeling, architecture reviews, and audit readiness for Tier 0 services; ensure security and privacy are embedded through the lifecycle. Mentor engineers, influence cross ...

blue-green), and infrastructure-as-code. Establish robust observability (metrics, logs, traces) and capacity/scale models for high-throughput, highly available services. Lead threat modeling, architecture reviews, and audit readiness for Tier 0 services; ensure security and privacy are embedded through the lifecycle. Mentor engineers, influence cross ...