15 of 15 Threat Modelling Jobs in the North West

risks and benefits of competing Security design options. Comfortable working on multiple challenging projects simultaneously. Mandatory skills Experience require with security consultancy delivery (e.g. threat modelling, secure design, driving decisions) Experience with cloud-native platforms and modern architectures Developing a more security-led perspective, rather than primarily infrastructure … practical application Gaining further exposure to security standards and regulatory frameworks (e.g. PCI DSS, data protection) Strengthening end-to-end security design capability (e.g. threat modelling, control coverage) Providing clearer examples of individual contribution and ownership in security decisions Any experience of these would be really useful Awareness ...

primary security resource for development teams, providing technical advice on vulnerability fixes and secure coding practices (e.g., adherence to the OWASP Top 10). Threat Modelling: Conduct formal threat modelling exercises for new features and application architectures to proactively identify and mitigate design flaws. B. Systems ...

primary security resource for development teams, providing technical advice on vulnerability fixes and secure coding practices (e.g., adherence to the OWASP Top 10). Threat Modelling: Conduct formal threat modelling exercises for new features and application architectures to proactively identify and mitigate design flaws. B. Systems ...

part of a bigger team, working with a group of a Senior Security Architects and Digital Engineering stakeholders to produce security architecture artifacts, threat modelling, design assurance, and reusable patterns that strengthen the programme’s security posture. Key Responsibilities: You will lead and deliver core security architecture outputs … including: Digital Engineering Security Artifacts and Engagement Report Security Requirements Specification Security Principles Framework Infrastructure Mapping Document & Security Architecture Design Pack Threat Modelling Report Reusable Security Pattern Library Knowledge Transfer Pack (training materials, handover content, recorded walkthroughs) We are looking for someone with: Extensive Security Architecture/Security ...

quickly. Own the code review culture and provide constructive, educational feedback that raises the bar for everyone. Embed secure coding practices across the team: threat modelling, security testing, and dependency management. Build observability into your systems from the start, covering instrumentation, logging, monitoring, and alerting, so that your … cloud infrastructure. Practical knowledge of cloud platforms (Azure/AWS) and containers (Docker/Kubernetes). Strong security fundamentals across OWASP, secure coding, threat modelling, and security testing. Proven ability to design scalable, maintainable architectures and evolve complex legacy systems. AI-Native Engineering Practice Demonstrable experience using ...

with the highest security standards. Design and create secure Enterprise-Grade Architectures Across Cloud, Hybrid, and On-Prem Environments Conduct comprehensive risk assessments and threat modelling to proactively identify vulnerabilities and develop effective mitigation strategies Develop and maintain security policies and frameworks that adhere to industry standards such ...

identity management (e.g., Entra ID), and secure application development. Deliver clear cybersecurity advice to technical and non-technical stakeholders on Azure security best practices, threat protection, and compliance. Champion 'Secure by Design' across IT infrastructure, emphasizing Azure Defender, Sentinel, and application security controls. What were looking for Expertise … application security (e.g., OWASP, DevSecOps), and network segmentation. Strong knowledge of Azure-specific security tools (e.g., Azure Security Center, Key Vault, Policy, Private Link), threat modelling, secure SDLC, and assurance processes. Experience delivering "secure by design" in regulated sectors (e.g., finance, healthcare, critical infrastructure), including Azure compliance certifications ...

Experience in these areas would be helpful: Previous experience in financial services or another regulated sector (FCA, PRA, etc.) Exposure to security architecture reviews, threat modelling, and risk assessments at pace Comfort working in a product-led agile delivery model during periods of significant business change Recognised professional ...

maintain security controls across network, identity, endpoint, application and data layers. Define and enforce IAM, network segmentation, encryption and key management strategies. Lead threat modelling, risk assessments and security design reviews. Infrastructure & Cloud Architect scalable, highly available infrastructure (compute, storage, networking) Lead cloud security and infrastructure architecture (Azure ...

continuously improve security controls across endpoints, identity, networks, SaaS platforms, cloud services, and on-premise systems. Identify vulnerabilities and misconfigurations through scanning, logging, threat modelling, and configuration reviews, driving remediation with technical teams and service owners. Support secure delivery of web applications and APIs, working closely with … reduce organisational risk. Ensure security-related changes and risks are communicated clearly and promptly to the wider business. Stay up to date with threat intelligence and emerging risks, translating insights into actionable security improvements. Provide the Head of IT & Change with a weekly security report. Mentor ...

GIAC GICSP, 62443 and similar Have delivered OT projects within a critical national infrastructure client ideally in the transport subsector. Ability to combine MITRE Threat Modelling, OT & Enterprise, aligned to IEC/ISA 62443. Experience with TS 50701 (IEC63452) standard. Practical experience as controls systems engineer or industrial ...

Quality Engineering & Secure Development: Create automated tests, including unit, integration, and functional tests. Apply secure-by-design principles in all coding activities, participating in threat modelling where appropriate. Contribute to code reviews and continuously improve code quality within the squad. Maintain documentation for services, features, and reusable components. ...

from malicious attacks. What you’ll need Applying Agile methodologies to support engineers and deliver on multiple challenging product initiatives simultaneously, driving engineering excellence. Threat model by deconstructing technical solutions, identifying threats and vulnerabilities and assessing risks. Use experience to analyse the risks and benefits of design options … technologies including Cloud and AI Exposure to contemporary architectures eg. RESTful APIs and containerised microservices. Up-to date on emerging threats and experienced with threat modelling frameworks eg. STRIDE/MITRE ATT&CK. Significant knowledge of cyber security domains and how they apply to Enterprise business environments eg. ...

Design, build, and ship reliable backend services and APIs in Python (Flask) that power core product functionality. Own features end-to-end: data modelling (Postgres), API design, testing, production rollout and ongoing improvements. Help uphold strong engineering standards through thoughtful code reviews, testing discipline, clean architecture, and pragmatic decision … Payments/fintech knowledge (reconciliation, idempotency, auditability, ledger concepts). Experience with distributed systems patterns (queues, background jobs, retries, rate limiting). Security experience (threat modelling, OWASP-style concerns, secure API design). Familiarity with Terraform. Why join us? £60k salary + equity 40 days holiday (incl. bank ...

supply chain security Advising on secure application and software development Contributing to physical security testing activities Delivering security awareness sessions Completing risk assessments and threat modelling Writing and reviewing security policies and governance documentation Experience required: 2+ years experience in information or cyber security Previous consultancy experience with ...