76 to 100 of 110 Threat Modelling Jobs in England

Embed Secure by Design principles across system and solution delivery Conduct security design reviews and provide risk-based recommendations Support development of: Security architectures Threat models and risk assessments Security design documentation Ensure alignment with MOD and UK Government security standards Work with architects and delivery teams to integrate … Experience Proven experience implementing Secure by Design within MOD, Defence, or Government environments Strong background in security architecture and secure system design Experience conducting threat modelling and security risk assessments Knowledge of: NCSC Secure by Design guidance ISO 27001 or equivalent frameworks Secure SDLC methodologies Experience working within ...

change control procedures Experience designing or reviewing secure software supply chain and CI/CD security . Ability to interpret CVEs, CVSS scores, and threat intelligence feeds. Strong stakeholder engagement and communication skills with an ability to produce technical reports and articulate risk to non-specialists. Excellent written … technical security reports for assurance cycles Support compliance audit evidence packs (GovAssure/CAF, CE+, ISO 27001) Develop or update security standard documents (e.g. threat modelling, vulnerability mgmt) Support cyber input for IT, research or OT programmes Work with IT teams to co-author and test secure configuration ...

security solutions to support meeting industrial and security frameworks such as ISO 27000 series, PCI DSS, COBIT, NIST, OWASP. Proven experience in risk assessment, threat modelling and implementing security controls. Expertise in managing user identities and securing access to systems. Knowledge of encryption, hashing, and tokenization techniques ...

security solutions to support meeting industrial and security frameworks such as ISO 27000 series, PCI DSS, COBIT, NIST, OWASP. Proven experience in risk assessment, threat modelling and implementing security controls. Expertise in managing user identities and securing access to systems. Knowledge of encryption, hashing, and tokenization techniques ...

Experience in these areas would be helpful: Previous experience in financial services or another regulated sector (FCA, PRA, etc.) Exposure to security architecture reviews, threat modelling, and risk assessments at pace Comfort working in a product-led agile delivery model during periods of significant business change Recognised professional ...

maintain security controls across network, identity, endpoint, application and data layers. Define and enforce IAM, network segmentation, encryption and key management strategies. Lead threat modelling, risk assessments and security design reviews. Infrastructure & Cloud Architect scalable, highly available infrastructure (compute, storage, networking) Lead cloud security and infrastructure architecture (Azure ...

Code, Policy as Code and Architecture as Code. Proven ability in strategic planning and cloud transformation initiatives. Desirable: Diagrams as code, ie C4 Modelling and Structurizr, Mermaid, Plantuml, Desirable: Threat Modelling and Secure by design principles. Desirable: Understanding of ZTNA. This opportunity offers the chance to influence ...

error-free ingestion. Use Case & Detection Content Development Design, implement, test, and tune detection use cases based on attacker techniques (MITRE ATT&CK), threat intelligence, and risk appetite. Build correlation rules, anomaly-based detections, dashboards, and alerting workflows. Regularly review detection efficacy and reduce false positives through tuning … understanding of log formats (JSON, syslog, XML, CEF, etc.) and ingestion technologies (Syslog, API, Event Hubs, Kafka, Agents). Practical knowledge of detection engineering, threat modelling, and attacker behaviour analysis. Experience building and tuning correlation rules, searches, and dashboards. Familiarity with SOAR platforms and automation workflows. Security Knowledge ...

actionable design guidance rather than policy-only responses Participate in design forums and governance boards, strengthening secure-by-design delivery Support security risk assessments, threat modelling, and control gap analysis Key Skills Needed Ability to review an HLD (High level design) or LLD (low level design)and provide ...

Experienced in developing and managing Cyber Incident Response capabilities, including planning, implementation, and continuous improvement Proven experience designing and delivering Security Awareness programs, incorporating threat modelling, tabletop exercises, and war-gaming scenarios Desirable Skills & Experience Domain & Delivery Experience Experience working in both delivery and proposal environments Experience working ...

embedded properly into how things are built and run. You'll spend your time securing Kubernetes environments, running and tuning Splunk for logging and threat detection, and managing Nessus to track and drive vulnerability remediation. A big part of the role is integrating security into CI/CD pipelines … Splunk and Nessus. You'll understand container security, have some scripting or automation capability, and be comfortable working with security frameworks . Awareness of threat frameworks like ATT&CK is useful. It would help if you've worked with other SIEM tools, Microsoft Defender or DevSecOps pipelines ...

technical design authority , influencing major decisions, investment cases, and long-term roadmaps Define pragmatic security guardrails that support delivery at pace Lead threat modelling, resilience, and risk-based design at enterprise scale Mature Zero Trust, Secure by Design, and cloud security capabilities Partner with senior technology and business … architecture background with deep cyber security architecture expertise Experience defining enterprise-level security strategy and design Strong understanding of cyber security principles, patterns, and threat-based design Experience across hybrid estates (cloud and on-premise) Confident acting as a senior design authority and advisor Experience setting standards and guardrails ...

continuously improve security controls across endpoints, identity, networks, SaaS platforms, cloud services, and on-premise systems. Identify vulnerabilities and misconfigurations through scanning, logging, threat modelling, and configuration reviews, driving remediation with technical teams and service owners. Support secure delivery of web applications and APIs, working closely with … reduce organisational risk. Ensure security-related changes and risks are communicated clearly and promptly to the wider business. Stay up to date with threat intelligence and emerging risks, translating insights into actionable security improvements. Provide the Head of IT & Change with a weekly security report. Mentor ...

architecture across platforms, infrastructure, applications, networking, and IAM. Embed security principles into solution design across a multi-cloud environment. Conduct architecture and design reviews, threat modelling, and risk assessments. Partner with enterprise and solution architects to ensure security is considered from project inception. Drive adoption of secure design ...

delivering an Information Security strategy in a way that balances risk reduction, business enablement and operational pragmatism Strong experience leading security risk assessments, threat modelling, incident management and remediation of security weaknesses in a structured, risk‐based way Significant experience managing external audits, customer assurance and recognised security ...

/API, Networking & Infrastructure/Platforms) are designed securely. Serve as the main technical expert for security architecture Perform design reviews, risk assessments, and threat modelling to identify and mitigate security risks within security designs. Support security audits, ensuring compliance with frameworks like ISO27001 and GDPR. Support incident ...

ensuring strong performance, resilience, and effective risk control. Maintain and take ownership of the Group-wide cyber security risk register, including conducting risk assessments, threat modelling, and defining mitigation strategies. Take the lead on security incident management, ensuring timely response, clear stakeholder communication, and ongoing improvement of processes. ...

ensuring strong performance, resilience, and effective risk control. Maintain and take ownership of the client-wide cyber security risk register, including conducting risk assessments, threat modelling, and defining mitigation strategies. Take the lead on security incident management, ensuring timely response, clear stakeholder communication, and ongoing improvement of processes. ...

security patterns. Inputting into High-Level Designs (HLDs) and Low-Level Designs (LLDs) with explicit security controls. Conducting threat modelling (STRIDE, attack trees, kill chain analysis). Identifying and documenting security requirements for systems, networks, and cloud services. Ensuring designs meet classification requirements Security Controls & Patterns Advising ...

Quality Engineering & Secure Development: Create automated tests, including unit, integration, and functional tests. Apply secure-by-design principles in all coding activities, participating in threat modelling where appropriate. Contribute to code reviews and continuously improve code quality within the squad. Maintain documentation for services, features, and reusable components. ...

learning, and experimentation. Governance, Security & Compliance : Take ownership of security leadership within engineering: embedding secure-by-design practices, ensuring data protection, and conducting regular threat modelling and reviews. Standards Compliance : Ensure engineering practices and systems comply with ISO27001, SOC2, and other relevant standards. Budget & Reporting : Participate in budget ...

assessment, remediation) Implement risk-based security solutions aligned to enterprise standards Work closely with infrastructure, application and OT teams to embed security controls Support threat modelling, secure design, and Zero Trust frameworks Key Skills & Experience: Strong experience as a Security Architect/Cybersecurity Architect Proven expertise in vulnerability ...

monitoring. Experience leading data security roadmaps from current to target state, identifying required capabilities, technology changes, dependencies, risks, and timelines. Expertise performing data-focused threat modelling (e.g. STRIDE, MITRE ATT&CK, DREAD) to identify risks and recommend architectural mitigations. Excellent advisory skills with the ability to provide architectural ...

domain. Experience working with cyber and security requirements down to the system control level. Experience conducting cyber and information security risk assessment activities including threat modelling, vulnerability analysis and analysis of mitigations. This is not an exhaustive list, and we are keen to hear from you even ...

proactive approach to securing LBG's mobile apps enabling mobile engineers across the bank to operate with confidence and agility in an ever-evolving threat landscape. We're passionate about our shared passion for delivering new features for customers across our brands in the mobile space. Your Responsibilities This … security framework, including associated services (penetration testing, research, consultancy etc.). Your Profile Essential Skills/Knowledge/Experience Experience of Mobile platform security, threat modelling and mitigation techniques Capable of conducting regular reviews of our mobile application security posture using your hands-on experience. Develop and maintain ...