51 to 75 of 105 Threat Modelling Jobs in the South East

with scripting languages like PowerShell, YAML, JSON Hands-on with application security tools and DevSecOps processes Understanding of frameworks and standards like OWASP, NIST SSDF, ISO27001, NCSC Experience with threat modelling, risk assessments, and secure design reviews Confident owning security strategy and tooling across complex product landscapes A strong communicator - able to engage with engineers and execs alike More ❯

ll do Secure product & platform delivery (cloud‐native focus) • Provide hands‐on cyber consultancy across digital product lifecycles, championing Secure by Design and privacy‐by‐default. • Conduct and iterate threat models for new features and integrations; translate findings into actionable design and control decisions. • Advise on secure architecture for modern platforms (segmentation, identity/access, encryption, data protection, secrets More ❯

ll do Secure product & platform delivery (cloud‐native focus) • Provide hands‐on cyber consultancy across digital product lifecycles, championing Secure by Design and privacy‐by‐default. • Conduct and iterate threat models for new features and integrations; translate findings into actionable design and control decisions. • Advise on secure architecture for modern platforms (segmentation, identity/access, encryption, data protection, secrets More ❯

ll do Secure product & platform delivery (cloud‐native focus) • Provide hands‐on cyber consultancy across digital product lifecycles, championing Secure by Design and privacy‐by‐default. • Conduct and iterate threat models for new features and integrations; translate findings into actionable design and control decisions. • Advise on secure architecture for modern platforms (segmentation, identity/access, encryption, data protection, secrets More ❯

and review of secure architecture across major change programmes. Define and implement SDLC security standards and best practices. Develop and enforce API security standards and secure integration models. Conduct threat modelling and risk assessments for new technology initiatives. Support DevSecOps practices and secure CI/CD pipelines. Collaborate with engineering, architecture, and compliance teams to embed security from More ❯

Knowledge of security standards and frameworks (e.g., ISO 27001, NIST, CIS). Familiarity with security technologies such as firewalls, web proxies/remote access solutions. Experience with ZTNA, CTI, threat modelling is beneficial. Bachelor’s degree in information security, Computer Science, or a related field, or relevant industry experience. Relevant security certifications (e.g., CISSP, CISM, CEH) are highly More ❯

ie cyber security asset management, attack surface management, etc) Pragmatic application of zero-trust philosophies Cloud based security (GCP, AWS and Azure) Pentest scoping and analysis experience Application security Threat modelling To apply for this position please submit your CV. More ❯

ie cyber security asset management, attack surface management, etc) Pragmatic application of zero-trust philosophies Cloud based security (GCP, AWS and Azure) Pentest scoping and analysis experience Application security Threat modelling To apply for this position please submit your CV. More ❯

ie cyber security asset management, attack surface management, etc) Pragmatic application of zero-trust philosophies Cloud based security (GCP, AWS and Azure) Pentest scoping and analysis experience Application security Threat modelling To apply for this position please submit your CV. Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this More ❯

Cloud Security, and DevSecOps. You have experience with security frameworks (NIST, ISO 27001) and a proven track record of securing large-scale, high-availability systems. You are adept at threat modelling, security architecture review, and penetration testing concepts. Prior experience in the O&G (Oil & Gas) sector, government projects, or other critical infrastructure is a significant advantage. You More ❯

leveraging tools such as Prisma Cloud to automate pipeline security checks. Collaborate with DevOps and Infrastructure teams to integrate security into CI/CD pipelines. Conduct risk assessments and threat modelling for cloud-based applications and services. Manage identity and access management (IAM), encryption and key management systems. Respond to and investigate cloud security incidents and breaches. Ensure More ❯

leveraging tools such as Prisma Cloud to automate pipeline security checks. Collaborate with DevOps and Infrastructure teams to integrate security into CI/CD pipelines. Conduct risk assessments and threat modelling for cloud-based applications and services. Manage identity and access management (IAM), encryption and key management systems. Respond to and investigate cloud security incidents and breaches. Ensure More ❯

leveraging tools such as Prisma Cloud to automate pipeline security checks. Collaborate with DevOps and Infrastructure teams to integrate security into CI/CD pipelines. Conduct risk assessments and threat modelling for cloud-based applications and services. Manage identity and access management (IAM), encryption and key management systems. Respond to and investigate cloud security incidents and breaches. Ensure More ❯

principles. Collaborate with external security partners to conduct penetration testing and manage results—removing false positives and translating validated findings into actionable improvements for engineering teams. Conduct and lead threat modeling activities to identify real-world attack vectors and apply pragmatic controls that reduce risk. Support incident response efforts, assist in the development of remediation plans, deploy fixes, and More ❯

principles. Collaborate with external security partners to conduct penetration testing and manage results—removing false positives and translating validated findings into actionable improvements for engineering teams. Conduct and lead threat modeling activities to identify real-world attack vectors and apply pragmatic controls that reduce risk. Support incident response efforts, assist in the development of remediation plans, deploy fixes, and More ❯

and delivering security architecture across hybrid, cloud, and on-premises environments. Navigating complex technical ecosystems that span operational tech, cloud, and on-premise systems. Producing high-quality deliverables, from threat models and risk assessments to secure architecture blueprints. Collaborating with cross-functional teams and clients, translating technical detail into business language. Partnering with client teams, project managers, and technical More ❯

our Operational Technology team. You'll work on live and upcoming projects across critical infrastructure sectors including energy, water, renewables, and manufacturing-designing secure OT networks and leading advanced threat mitigation strategies. What You'll Do: Design and secure OT networks across regulated industries Lead threat modelling, penetration testing, and red teaming in ICS environments Engineer security More ❯

secure software at speed. What You'll Lead & Deliver Embed security into the SDLC from architecture through production Automate guardrails and integrate security tooling into CI/CD Drive threat modelling + security design reviews for new features Create internal security tools, libraries, and developer workflows Mentor engineers and uplift security engineering craft Partner with product & platform teams More ❯

secure software at speed. 🧠 What You’ll Lead & Deliver Embed security into the SDLC from architecture through production Automate guardrails and integrate security tooling into CI/CD Drive threat modelling + security design reviews for new features Create internal security tools, libraries, and developer workflows Mentor engineers and uplift security engineering craft Partner with product & platform teams More ❯

secure software at speed. 🧠 What You’ll Lead & Deliver Embed security into the SDLC from architecture through production Automate guardrails and integrate security tooling into CI/CD Drive threat modelling + security design reviews for new features Create internal security tools, libraries, and developer workflows Mentor engineers and uplift security engineering craft Partner with product & platform teams More ❯

secure software at speed. 🧠 What You’ll Lead & Deliver Embed security into the SDLC from architecture through production Automate guardrails and integrate security tooling into CI/CD Drive threat modelling + security design reviews for new features Create internal security tools, libraries, and developer workflows Mentor engineers and uplift security engineering craft Partner with product & platform teams More ❯

Docker. Embedding security into CI/CD pipelines (Jenkins, GitHub Actions, CodePipeline) through SAST/DAST and dependency scanning. Collaborating with developers and product teams to promote DevSecOps practices, threat modelling and secure coding. Conducting security assessments, monitoring for vulnerabilities and leading remediation efforts. Operating and extending monitoring, logging and alerting systems for both performance and security. Managing More ❯

Docker. Embedding security into CI/CD pipelines (Jenkins, GitHub Actions, CodePipeline) through SAST/DAST and dependency scanning. Collaborating with developers and product teams to promote DevSecOps practices, threat modelling and secure coding. Conducting security assessments, monitoring for vulnerabilities and leading remediation efforts. Operating and extending monitoring, logging and alerting systems for both performance and security. Managing More ❯

Docker. Embedding security into CI/CD pipelines (Jenkins, GitHub Actions, CodePipeline) through SAST/DAST and dependency scanning. Collaborating with developers and product teams to promote DevSecOps practices, threat modelling and secure coding. Conducting security assessments, monitoring for vulnerabilities and leading remediation efforts. Operating and extending monitoring, logging and alerting systems for both performance and security. Managing More ❯

Docker. Embedding security into CI/CD pipelines (Jenkins, GitHub Actions, CodePipeline) through SAST/DAST and dependency scanning. Collaborating with developers and product teams to promote DevSecOps practices, threat modelling and secure coding. Conducting security assessments, monitoring for vulnerabilities and leading remediation efforts. Operating and extending monitoring, logging and alerting systems for both performance and security. Managing More ❯