3 of 3 Threat Modelling Jobs in Midlothian

capabilities (eg SAST, DAST, SCA, container and cloud security tooling) Define and implement secure engineering standards, including secure coding, infrastructure-as-code security, and threat modelling practices Partner with Vulnerability Management and broader security teams to ensure effective identification, prioritisation, and remediation of risks in line with agreed … DevSecOps environments Experience embedding security into CI/CD pipelines (eg using AWS, Azure, or GitHub-based workflows) Strong knowledge of secure development practices, threat modelling, and vulnerability management Solid understanding of modern software engineering practices and cloud-native architectures Why Join? Be part of a long-term ...

early-stage scoping and risk assessment activities for new and evolving services. Interpret security policies, standards, and accreditation requirements to define appropriate controls. Conduct threat modelling and risk assessments to identify and mitigate vulnerabilities. Review solution architecture and detailed designs to ensure alignment with security requirements. Maintain … assessment within enterprise-scale digital environments. Proven track record of contributing to the secure delivery of new digital services. Good understanding of current cyber threat landscape, security standards, and best practice. Experience working within agile delivery teams alongside internal stakeholders and third-party suppliers. Ability to take ownership ...

guidance to digital transformation projects. Activities will cover cyber security and risk throughout service lifecycle. Key Responsibilities Be aware of the current cyber threat landscape and industry best practices and standards. Support initial scoping and risk assessment of a change project. Interpret security best practice and accreditation requirements … determine security requirements Adapt existing cyber security standards and controls to fit specific change projects Carry out threat modelling and risk assessments Review high- and low-level designs drafted by solution architects. Maintain a security design assessment for new services Carry out basic hands-on security assessments (e.g. ...