1 to 25 of 41 Threat Modelling Jobs in the South West

You will champion secure development practices throughout the software development lifecycle, with a strong emphasis on 'shift-left' principles to embed security early in the process. You will facilitate threat modelling workshops to help product teams identify, assess, and mitigate potential threats. You will also collaborate closely with other functions within the CISO organisation, including Application Security, Offensive … daily significant change to complex Cloud serverless transformation projects. You will have the ability to work with infrastructure as code and understand complex architectures. You will Lead/facilitate threat modelling workshops with SMEs. Engage with key stakeholders to identify threats and recommend countermeasures. Participate in architectural reviews of Product cloud implementations against security best practice, relevant threats … security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview process for this role is two stages including a technical competency-based question and a task. Working Schedule This role More ❯

You will champion secure development practices throughout the software development lifecycle, with a strong emphasis on 'shift-left' principles to embed security early in the process. You will facilitate threat modelling workshops to help product teams identify, assess, and mitigate potential threats. You will also collaborate closely with other functions within the CISO organisation, including Application Security, Offensive … daily significant change to complex Cloud serverless transformation projects. You will have the ability to work with infrastructure as code and understand complex architectures. You will Lead/facilitate threat modelling workshops with SMEs. Engage with key stakeholders to identify threats and recommend countermeasures. Participate in architectural reviews of Product cloud implementations against security best practice, relevant threats … security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview process for this role is two stages including a technical competency-based question and a task. Working Schedule This role More ❯

You will champion secure development practices throughout the software development lifecycle, with a strong emphasis on 'shift-left' principles to embed security early in the process. You will facilitate threat modelling workshops to help product teams identify, assess, and mitigate potential threats. You will also collaborate closely with other functions within the CISO organisation, including Application Security, Offensive … daily significant change to complex Cloud serverless transformation projects. You will have the ability to work with infrastructure as code and understand complex architectures. You will Lead/facilitate threat modelling workshops with SMEs. Engage with key stakeholders to identify threats and recommend countermeasures. Participate in architectural reviews of Product cloud implementations against security best practice, relevant threats … security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview process for this role is two stages including a technical competency-based question and a task. Working Schedule This role More ❯

You will champion secure development practices throughout the software development lifecycle, with a strong emphasis on 'shift-left' principles to embed security early in the process. You will facilitate threat modelling workshops to help product teams identify, assess, and mitigate potential threats. You will also collaborate closely with other functions within the CISO organisation, including Application Security, Offensive … daily significant change to complex Cloud serverless transformation projects. You will have the ability to work with infrastructure as code and understand complex architectures. You will Lead/facilitate threat modelling workshops with SMEs. Engage with key stakeholders to identify threats and recommend countermeasures. Participate in architectural reviews of Product cloud implementations against security best practice, relevant threats … security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview process for this role is two stages including a technical competency-based question and a task. Working Schedule This role More ❯

across enterprise and solution architectures. Assist in security assessments of existing architectures, identifying gaps and recommending improvements to enhance resilience and compliance. Gain hands-on experience in security architecture modelling, threat modelling, and secure design reviews. Learn to integrate security into the systems engineering lifecycle, from requirements analysis through to implementation and operations. Develop practical knowledge of More ❯

Cyber Security Threat Hunter Bristol/Hybrid Working £75,000 - £85,000 + benefits Fantastic new permanent opportunity for an experienced Security Engineer with strong Threat Engineering/Hunting experience required to join this specialist financial services business to help them deliver a range of proactive threat hunting cyber security projects. As a specialist Threat Hunter … you will be responsible for proactively searching for and identifying threat actors that have evaded traditional security defences. This role requires a deep understanding of attacker tactics, techniques, and procedures (TTPs), MITRE ATT&CK Framework, cyber kill chain as well as the ability to analyse large datasets to uncover hidden threats. The ideal candidate will be a creative and … as part of a team to enhance their security posture. Skills Required: A strong proven background within Cyber Security engineering and at least 2-3 years' experience dedicated to Threat Hunting, Threat Intelligence and Threat Modelling. Proven experience in a SOC, CIRT, or similar security operations environment. Deep understanding of network protocols, operating systems (Windows, Linux, macOS More ❯

standards and guidelines. Developing organisational strategies that address information control requirements. Identifying and monitoring environmental and market trends and proactively assessing impact on business strategies, benefits and risks. Performing threat modelling and risk assessments to develop a holistic picture of threat. Developing new architectures that mitigate the risks posed by new technologies and business practices. Accurately delivering high More ❯

Design principles, de-risk complex change, and simplify security. Key Responsibilities Deliver expert cyber consultancy across digital product lifecycles Drive Secure by Design and privacy by default principles Lead threat modelling, translating findings into actionable design guidance Define secure architecture for modern cloud platforms Guide teams on secure coding, reviews and best practice Support incident response and foster More ❯

Design principles, de-risk complex change, and simplify security. Key Responsibilities Deliver expert cyber consultancy across digital product lifecycles Drive Secure by Design and privacy by default principles Lead threat modelling, translating findings into actionable design guidance Define secure architecture for modern cloud platforms Guide teams on secure coding, reviews and best practice Support incident response and foster More ❯

project teams to ensure Secure by Design principles are embedded from the ground up. Key Responsibilities: Identify and integrate security requirements throughout the product and system development lifecycle. Lead threat modelling and risk assessments, applying frameworks such as ISO/IEC 27001, NIST 800-30/53, and ISO 31000. Advise on secure architectures and develop strategies to More ❯

project teams to ensure Secure by Design principles are embedded from the ground up. Key Responsibilities: Identify and integrate security requirements throughout the product and system development lifecycle. Lead threat modelling and risk assessments, applying frameworks such as ISO/IEC 27001, NIST 800-30/53, and ISO 31000. Advise on secure architectures and develop strategies to More ❯

project teams to ensure Secure by Design principles are embedded from the ground up. Key Responsibilities: Identify and integrate security requirements throughout the product and system development lifecycle. Lead threat modelling and risk assessments, applying frameworks such as ISO/IEC 27001, NIST 800-30/53, and ISO 31000. Advise on secure architectures and develop strategies to More ❯

Burp Suite, Kali Linux, and custom NCC Group platforms. Expect to learn manual testing techniques alongside automated approaches You’ll observe live client engagements, gaining exposure to different industries, threat models, and testing methodologies Midway through the programme, you’ll deliver a graduation project; this could be a research piece, a custom tool, or a deep-dive into a More ❯

Burp Suite, Kali Linux, and custom NCC Group platforms. Expect to learn manual testing techniques alongside automated approaches You’ll observe live client engagements, gaining exposure to different industries, threat models, and testing methodologies Midway through the programme, you’ll deliver a graduation project; this could be a research piece, a custom tool, or a deep-dive into a More ❯

you be doing? Manage security controls across on prem and AWS environments. Lead incident response, vulnerability assessments and pentest co-ordination. Manage IAM systems and support Engineering teams with threat modelling and secure development practices. Own ISO27001, Cyber Essentials+, PCI-DSS and GDPR compliance. Manage physical security (access control etc) What experience do you need? 2+ years experience More ❯

you be doing? Manage security controls across on prem and AWS environments. Lead incident response, vulnerability assessments and pentest co-ordination. Manage IAM systems and support Engineering teams with threat modelling and secure development practices. Own ISO27001, Cyber Essentials+, PCI-DSS and GDPR compliance. Manage physical security (access control etc) What experience do you need? 2+ years experience More ❯

what you will be involved in: Identify security requirements and ensure the integration of security controls during the product development lifecycle Develop and implement risk management strategies Perform security threat modelling and risk assessments applying security controls to mitigate any threats identified Collaborate with the development teams to ensure the adoption of Secure by Design principles Identify security More ❯

what you will be involved in: Identify security requirements and ensure the integration of security controls during the product development lifecycle Develop and implement risk management strategies Perform security threat modelling and risk assessments applying security controls to mitigate any threats identified Collaborate with the development teams to ensure the adoption of Secure by Design principles Identify security More ❯

what you will be involved in: Identify security requirements and ensure the integration of security controls during the product development lifecycle Develop and implement risk management strategies Perform security threat modelling and risk assessments applying security controls to mitigate any threats identified Collaborate with the development teams to ensure the adoption of Secure by Design principles Identify security More ❯

what you will be involved in: Identify security requirements and ensure the integration of security controls during the product development lifecycle Develop and implement risk management strategies Perform security threat modelling and risk assessments applying security controls to mitigate any threats identified Collaborate with the development teams to ensure the adoption of Secure by Design principles Identify security More ❯

what you will be involved in: Identify security requirements and ensure the integration of security controls during the product development lifecycle Develop and implement risk management strategies Perform security threat modelling and risk assessments applying security controls to mitigate any threats identified Collaborate with the development teams to ensure the adoption of Secure by Design principles Identify security More ❯

security requirement input is provided across the programme to ensure that the new technology is secure by design Support the teams to interpret security requirements of the project Conduct threat modelling and pen testing to identify threats and establish controls Support wider teams with security advice and guidance in both a verbal and written format Lead delivery of More ❯

build a scalable, adaptable, and proactive approach to securing customer's mobile apps, enabling mobile engineers across the bank to operate with confidence and agility in an ever-evolving threat landscape. We're passionate about our shared passion for delivering new features for customers across our brands in the mobile space. This role will be pivotal in building, delivering … role is the design and delivery of a world-class security framework, including associated services (penetration testing, research, consultancy etc.). Essential skills & experience: Experience of Mobile platform security, threat modelling and mitigation techniques Capable of conducting regular reviews of our mobile application security posture using your hands-on experience. Develop and maintain pen-testing security tools, scripts More ❯

build a scalable, adaptable, and proactive approach to securing customer’s mobile apps, enabling mobile engineers across the bank to operate with confidence and agility in an ever-evolving threat landscape. Passionate about our shared passion for delivering new features for customers across our brands in the mobile space. This role will be pivotal in building, delivering, and driving … of a world-class security framework, including associated services (penetration testing, research, consultancy etc.). What we need from you/essential skills & experience: • Experience of Mobile platform security, threat modelling and mitigation techniques • Capable of conducting regular reviews of our mobile application security posture using your hands-on experience. • Develop and maintain pen-testing security tools, scripts More ❯

build a scalable, adaptable, and proactive approach to securing customer’s mobile apps, enabling mobile engineers across the bank to operate with confidence and agility in an ever-evolving threat landscape. Passionate about our shared passion for delivering new features for customers across our brands in the mobile space. This role will be pivotal in building, delivering, and driving … of a world-class security framework, including associated services (penetration testing, research, consultancy etc.). What we need from you/essential skills & experience: • Experience of Mobile platform security, threat modelling and mitigation techniques • Capable of conducting regular reviews of our mobile application security posture using your hands-on experience. • Develop and maintain pen-testing security tools, scripts More ❯