201 to 225 of 239 Threat Modelling Jobs in the UK

and implement comprehensive security strategies for Payments System Upgrades. Conduct thorough risk assessments to identify potential security threats and develop mitigation strategies. Create comprehensive threat models aligning with MITRE ATTACK/STRIDE frameworks. Recommend the best controls & mitigations to potential vulnerabilities Ensure the design comply with relevant regulations and … would be within a financially regulated enterprise (e.g., PCI compliance). Proven experience working previously for financial organizations. Previous relevant experience in developing bespoke Threat Models leveraging frameworks like MITRE ATTACK & STRIDE. Proficiency in assessing the Identity & Access Management functions & associated risks during Acquisition process. Be able to understand More ❯

and maintain strong relationships with clients, becoming a trusted advisor. Strong understanding of foundational IT and networking concepts. Confident writing SIEM queries and performing threat-hunting. Excellent communication skills, both written and oral, to a range of audiences, including senior management. Responsibilities Compiling and presenting high quality monthly reports … clients. Assisting with training and support for our junior analysts. Proactively suggesting improvements for existing SIEM alarms and developing new use-cases based on threat intelligence and client threat models. Creating and improving SOC dashboards to give real-time visibility for clients and stakeholders. Onboarding new clients, including More ❯

and willing to undergo these checks. Expert knowledge of leading innovation in protective security, balancing security requirements against service innovation. Expert in combining external threat information, organizational context, and situational awareness to provide a holistic threat understanding capability, including the use of threat models. Ability to communicate … tailored threat information to relevant senior stakeholders across multiple teams. Able to provide technical leadership for specific experts (be they pen-testers, Security Architects, DevSecOps, product or compliance assurance, for example) in the context of driving change and being confident to challenge. Proven experience in developing approaches to effectively More ❯

opportunities to work with our Protect team to identify vulnerabilities in our product infrastructure and help define relevant security controls. Help defend a unique threat environment. Palantir offers an unparalleled opportunity to ply your craft on the bleeding edge of technology, software, and AI. With a wide range of … customers and global impact, our software is under constant threat from advanced persistent threats (APT). You get to think like an attacker and provide outside-the-box thinking on how to misuse our products. Core Responsibilities Perform offensive security assessments on highly complex products to identify vulnerabilities Perform … offensive security assessments within our software supply chain Collaborate with engineering teams on security controls, threat modeling, and security-critical code and architecture. Develop and implement offensive tooling and automation to scale your capabilities and knowledge Operate as an offensive security expert for our products to inform risk assessments More ❯

Evaluate security risks across client product portfolios and propose remediation solutions that align both technical requirements and business goals. Provide guidance on coding practices, threat modeling, and security testing strategies for embedded systems and IoT devices, ensuring adherence to relevant industry regulations. Partner with client R&D teams to … drive secure code reviews, conduct threat modeling, perform security risk and vulnerability assessments, and validate security controls. Stay informed on emerging cybersecurity threats within the IoT and medical device sectors and develop thought leadership content to represent PA’s expertise and viewpoint. Establish and nurture strong relationships with key … ATT&CK, PASTA, STRIDE) and familiarity with standards including FDA cybersecurity guidance. Demonstrated ability to assess security risks through recognized methods (e.g., penetration testing, threat modeling, security testing) and evaluate residual risks with compensating controls. Solid experience in applying and proving compliance with frameworks like NIST, IEC, HITRUST, HIPAA More ❯

secure software development lifecycle (SDLC) with a focus on secure coding practices in languages like Python, C++, Rust, Go and Kotlin/Java. Conduct threat modeling, vulnerability assessments and security code reviews across different platforms, ensuring security is embedded at every stage of the development lifecycle. Provide mentorship, guidance … s standards. Integration of security scanning tools (SAST, DAST, etc.) into CI/CD pipelines and runtime environments to ensure continuous security monitoring and threat detection across Alibaba Cloud, AWS, Azure, and on-prem systems. Proactively identify security risks and develop strategies for risk mitigation in a fast-paced … experience with one or more cloud platforms such as AWS, Microsoft Azure and Alibaba Cloud used in a hybrid environment. In-depth knowledge of threat modeling, risk assessment and development of mitigation strategies for large-scale, complex systems in a fast-paced environment. Experience integrating security scanning tools into More ❯

About the role Do you want to be at the forefront of cyber security, protecting people, data and systems from the evolving digital threat landscape? Are you looking to apply your technical expertise in a collaborative and forward-thinking environment? As a Technical Security Analyst, you'll be part … appropriately and remediated according to agreed timescales. Assisting in the creation, testing, and implementation of response and recovery plans in support of incident management threat modelling. Researching and investigating attack techniques and recommending ways to defend against them. Supporting the Security function in all aspects of Security operations and More ❯

directly impact our global user base Focusing on Automation. Developing automated, scalable security solutions. Efficiency is key Administering HashiCorp Vault for secrets management Performing threat modeling and analysis to identify and mitigate security risks Managing PKI, TLS, and GPG infrastructure Applying cryptography and security design principles to cloud environments … web apps, and mobile apps Proficiency in understanding authentication, authorization, and cryptography, with familiarity around modern security standards and best practices. Proficiency in data modelling of roles, permissions, and capabilities Experience with OAuth 2.0 nuances, best practices, and shortcomings Experience securely running and operating web applications, web services, and More ❯

Information security professional certification Knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits or equivalent Experience applying threat modeling or other risk identification techniques or equivalent Experience implementing security solutions at the business division level or equivalent PREFERRED QUALIFICATIONS Experience with AWS … products and services Experience with any combination of the following: threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration and network security Experience with programming languages such as Python, Java, C++ Experience in cyber security incident response within corporate and cloud environments. Amazon is an More ❯

Information security professional certification Knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits or equivalent Experience applying threat modeling or other risk identification techniques or equivalent Experience implementing security solutions at the business division level or equivalent PREFERRED QUALIFICATIONS Experience with AWS … products and services Experience with any combination of the following: threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration and network security Experience with programming languages such as Python, Java, C++ Experience in cyber security incident response within corporate and cloud environments. Amazon is an More ❯

to help secure our foundational platforms such as OS kernels, virtualization, device emulation, firmware, and hardware. You will be responsible for conducting security reviews, threat modeling, developing tooling that will help detect security issues at scale, and hands-on security evaluations (pen-testing). The successful candidate must be … comfortable diving into complex engineering discussions and leveraging deep security expertise to ensure proper risk assessment and threat analysis is performed. You will provide crystal-clear technical direction and risk mitigation guidance for diverse engineering and business leaders at all levels. By applying your hard-earned years of practical … new security skills in the course of your duties. Key job responsibilities Security reviews for hardware including servers and devices. Penetration testing & vulnerability research. Threat modeling. Security training and outreach to internal development teams. Security guidance documentation. Assistance with recruiting activities. BASIC QUALIFICATIONS BS in Computer Science or related More ❯

and maintain strong relationships with clients, becoming a trusted advisor. Strong understanding of foundational IT and networking concepts Confident writing SIEM queries and performing threat-hunting Excellent communication skills, both written and oral, to a range of audiences, including senior management. Responsibilities Compiling and presenting high quality monthly reports … clients. Assisting with training and support for our junior analysts Proactively suggesting improvements for existing SIEM alarms and develop new use-cases based on threat intelligence and client threat models. Creating and improving SOC dashboards to give real time visibility for clients and stakeholders Onboarding new clients, including More ❯

designing secure systems. Experience implementing and integrating with secure RESTful Web Services. Experience with AWS security services such as KMS and ACM. Experience with threat modeling and an awareness of the Internet threat model. Experience with DevOps environments that support security at speed, i.e., SecDevOps. Ability to accurately More ❯

Your responsibilities will include: Security reviews for new products, technologies, and services Secure design, architecture, and implementation Secure development life-cycle (SDLC) practices including threat modeling and security testing Influence decision-makers and stakeholders to achieve a consistently high security bar Conduct network and/or application penetration testing … Experience programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language PREFERRED QUALIFICATIONS - Experience with any combination of the following: threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration and network security - Experience with programming languages such as Python, Java, C++ … Experience applying threat modeling or other risk identification techniques or equivalent Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and More ❯

low-latency systems and multi-cloud platforms (AWS, Azure, Alibaba Cloud) Collaborate with engineering teams to integrate secure coding practices into the SDLC Conduct threat modeling, vulnerability assessments, and code reviews Automate security processes through CI/CD integration using SAST, DAST, and related tools Assess third-party vendors … C++, Rust, Go, or Kotlin/Java Solid understanding of cloud and hybrid infrastructure security Experience securing both Windows and Linux environments Expertise in threat modeling, risk analysis, and security tooling Excellent communication and leadership skills More ❯

low-latency systems and multi-cloud platforms (AWS, Azure, Alibaba Cloud) Collaborate with engineering teams to integrate secure coding practices into the SDLC Conduct threat modeling, vulnerability assessments, and code reviews Automate security processes through CI/CD integration using SAST, DAST, and related tools Assess third-party vendors … C++, Rust, Go, or Kotlin/Java Solid understanding of cloud and hybrid infrastructure security Experience securing both Windows and Linux environments Expertise in threat modeling, risk analysis, and security tooling Excellent communication and leadership skills More ❯

provide opportunities for our engineers to pursue projects they are passionate about while maintaining work life harmony. Key Job Responsibilities Creating, updating, and maintaining threat models for a wide variety of web applications hosted on cloud Manual and Automated Secure Code Review, primarily in Java, Python and Javascript Development … other engineers on the team. BASIC QUALIFICATIONS Minimum of 8 years of web application security industry experience with at least four of the following: threat modeling experience, secure coding, identity management and authentication, Web Application Security, cryptography, penetration testing, cloud security, mobile security, and network security Intimate knowledge and More ❯

various sources to detect and respond to potential threats in real-time. Develop, implement, and fine-tune detection rules and correlation logic to improve threat detection capabilities. Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. Maintain and optimize security information and event … management systems and other security tools used in the SOC. Collaborate with other teams to enhance threat intelligence, improve incident response procedures, and provide regular reports on security posture. A day in the life As a Security Engineer in Detections, your day revolves around safeguarding our digital assets. This … response activities. You will be responsible for coordinating and facilitating security response activities, fine-tuning detection rules. You'll investigate potential incidents, collaborate with threat intelligence teams, and develop new detection algorithms. About the team AWS-SOC Team manages security issues across the globe. A security engineer within the More ❯

various sources to detect and respond to potential threats in real-time. Develop, implement, and fine-tune detection rules and correlation logic to improve threat detection capabilities. Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. Maintain and optimize security information and event … management systems and other security tools used in the SOC. Collaborate with other teams to enhance threat intelligence, improve incident response procedures, and provide regular reports on security posture. A day in the life As a Security Engineer in Detections, your day revolves around safeguarding our digital assets. This … response activities. You will be responsible for coordinating and facilitating security response activities, fine-tuning detection rules. You'll investigate potential incidents, collaborate with threat intelligence teams, and develop new detection algorithms. About the team AWS-SOC Team manages security issues across the globe. A security engineer within the More ❯

various sources to detect and respond to potential threats in real-time. - Develop, implement, and fine-tune detection rules and correlation logic to improve threat detection capabilities. - Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. - Maintain and optimize security information and event … management systems and other security tools used in the SOC. - Collaborate with other teams to enhance threat intelligence, improve incident response procedures, and provide regular reports on security posture. A day in the life As a Security Engineer in Detections, your day revolves around safeguarding our digital assets. This … response activities. You will be responsible for coordinating and facilitating security response activities, fine-tuning detection rules. You'll investigate potential incidents, collaborate with threat intelligence teams, and develop new detection algorithms. About the team Diverse Experiences Amazon Security values diverse experiences. Even if you do not meet all More ❯

be responsible for the execution of a number of company-wide initiatives, including topics related to secure software development, vulnerability management, secure code analysis, threat modeling, and bug bounty operations. As a senior contributor, you will partner with engineering and product teams to identify and mitigate security risks early … ll help shape the future of application security at Samsara, acting as a subject matter expert in Python and Go security, and running detailed threat modeling sessions for both production systems and internal tooling. At Samsara, we value working backwards from outcomes. Your ability to define success, influence across … the design and implementation of scalable security controls including static code analysis (SAST), software composition analysis (SCA), and secret scanning pipelines. Perform in-depth threat models of critical systems and features, working with engineering and infrastructure teams to mitigate identified risks. Act as a subject matter expert in Python More ❯

be responsible for the execution of a number of company-wide initiatives, including topics related to secure software development, vulnerability management, secure code analysis, threat modeling, and bug bounty operations. As a senior contributor, you will partner with engineering and product teams to identify and mitigate security risks early … ll help shape the future of application security at Samsara, acting as a subject matter expert in Python and Go security, and running detailed threat modeling sessions for both production systems and internal tooling. At Samsara, we value working backwards from outcomes. Your ability to define success, influence across … the design and implementation of scalable security controls including static code analysis (SAST), software composition analysis (SCA), and secret scanning pipelines. Perform in-depth threat models of critical systems and features, working with engineering and infrastructure teams to mitigate identified risks. Act as a subject matter expert in Python More ❯

will be responsible for analyzing the security of applications and services, discovering and addressing security issues, building security automation, and quickly reacting to new threat scenarios. You will have the opportunity to learn from, and be mentored by, those who are building and securing our cutting-edge services. A … as you gain new security skills in the course of your duties. Key job responsibilities Application security reviews Mobile security reviews Secure architecture design Threat modeling Projects and research work as needed Security training and outreach to internal development teams Security guidance documentation Security tool development Security metrics delivery … Python, Java, C++ Expert knowledge of network security in the cloud 5+ years of experience in application security with any combination of the following: threat modeling experience, secure design reviews, code reviews, pen-testing Expertise in multiple security domains such as identity management and authentication, cryptography, networking, web protocols More ❯

CD) pipelines, ensuring rapid, secure, and reliable deployment of JavaScript applications. Develop and maintain automated security tools for static code analysis, penetration testing, and threat modelling. Implement real-time monitoring, alerting, and response strategies for security incidents. About You: Strong proficiency in Cloud Environment ideally in GCP services (Compute … like vulnerability scanning, encryption, authentication, and secrets management (Vault, Key Management Service). Experience with SIEM platforms (Splunk, Datadog, or equivalent) for monitoring and threat detection. You thrive when working as part of a team, are comfortable in a fast-paced environment, have excellent written and verbal English skills More ❯

the highest-value tasks. Join the stores AppSec organization to work hard, have fun, and make history! Key job responsibilities Creating, updating, and maintaining threat models for a wide variety of software projects. Manual and Automated Secure Code Review, primarily in Java, Python, and Javascript. Development of security automation … or equivalent qualification or extensive years of demonstrated experience in areas such as application security, offensive security and/or systems security. Understanding of threat modeling, manual source code review, security vulnerabilities, attacker exploit techniques, and methods for their remediation. Excellent written and verbal communication skills with the ability More ❯