26 to 50 of 127 Threat Modelling Jobs in the UK

Staff Security Engineer

Hiring Organisation
Data Idols
Location
London, Farringdon, United Kingdom
Employment Type
Permanent
Salary
£120000 - £150000/annum
secure-by-design culture across the business. Key responsibilities include: Driving application and product security initiatives across multiple engineering teams Conducting security reviews, threat modelling and risk assessments Implementing and improving vulnerability management processes Embedding security tooling into CI/CD pipelines and development workflows Partnering with developers … software development practices Experience working closely with software engineering teams Hands-on experience securing cloud environments (AWS, GCP or Azure) Experience with vulnerability management, threat modelling and security reviews Knowledge of CI/CD security and modern development practices Excellent stakeholder management and communication skills Eligibility Please note ...

Staff Software Security Engineer

Hiring Organisation
Data Idols
Location
London, Farringdon, United Kingdom
Employment Type
Permanent
Salary
£120000 - £150000/annum
secure-by-design culture across the business. Key responsibilities include: Driving application and product security initiatives across multiple engineering teams Conducting security reviews, threat modelling and risk assessments Implementing and improving vulnerability management processes Embedding security tooling into CI/CD pipelines and development workflows Partnering with developers … software development practices Experience working closely with software engineering teams Hands-on experience securing cloud environments (AWS, GCP or Azure) Experience with vulnerability management, threat modelling and security reviews Knowledge of CI/CD security and modern development practices Excellent stakeholder management and communication skills Eligibility Please note ...

Lead Software Security Engineer

Hiring Organisation
Data Idols
Location
London, Farringdon, United Kingdom
Employment Type
Permanent
Salary
£120000 - £150000/annum
secure-by-design culture across the business. Key responsibilities include: Driving application and product security initiatives across multiple engineering teams Conducting security reviews, threat modelling and risk assessments Implementing and improving vulnerability management processes Embedding security tooling into CI/CD pipelines and development workflows Partnering with developers … software development practices Experience working closely with software engineering teams Hands-on experience securing cloud environments (AWS, GCP or Azure) Experience with vulnerability management, threat modelling and security reviews Knowledge of CI/CD security and modern development practices Excellent stakeholder management and communication skills Eligibility Please note ...

Senior Technical Security Risk Consultant

Hiring Organisation
Sanderson Government and Defence
Location
London, United Kingdom
Employment Type
Permanent, Work From Home
Salary
£80,000
frameworks including ISO 27005 and NIST RMF Lead risk identification, assessment and treatment across applications, infrastructure and digital services Facilitate structured risk workshops and threat modelling sessions Assess solution architectures to identify security risks and control gaps Review and interpret IT Health Check outputs and define clear remediation … defence Proven ability to engage senior stakeholders and influence decisions Ability to translate technical findings into clear, actionable risk outcomes Confident leading risk workshops, threat modelling and control assessments Experience working within Agile delivery environments Strong analytical capability and sound judgement Any candidates must have an active ...

Cyber Security Architect - DV Cleared

Hiring Organisation
Synergize Consulting Ltd
Location
Portsmouth, Hampshire, United Kingdom
Employment Type
Contract
Contract Rate
GBP 35 Annual
activities, and ensuring secure-by-design principles are Embedded throughout the development life cycle. Key Skills & Experience Security Architecture and Secure-by-Design Principles Threat Modelling, Risk Assessment and Security Assurance DevSecOps and Secure CI/CD Pipelines Cloud Security (AWS, Azure or Hybrid Environments) Identity & Access Management … working within Defence, National Security or Highly Secure Environments Responsibilities Define and govern security architecture across cloud, DevSecOps, and AI/ML platforms. Conduct threat modelling, security risk assessments, and architecture reviews. Develop security patterns, standards, and controls for secure solution delivery. Support accreditation, assurance, and compliance activities. ...

Cyber Security Architect - DV Cleared

Hiring Organisation
Synergize Consulting Ltd
Location
Portsmouth, Hampshire, UK
Employment Type
Full-time
activities, and ensuring secure-by-design principles are Embedded throughout the development life cycle. Key Skills & Experience Security Architecture and Secure-by-Design Principles Threat Modelling, Risk Assessment and Security Assurance DevSecOps and Secure CI/CD Pipelines Cloud Security (AWS, Azure or Hybrid Environments) Identity & Access Management … working within Defence, National Security or Highly Secure Environments Responsibilities Define and govern security architecture across cloud, DevSecOps, and AI/ML platforms. Conduct threat modelling, security risk assessments, and architecture reviews. Develop security patterns, standards, and controls for secure solution delivery. Support accreditation, assurance, and compliance activities. ...

Security Architect

Hiring Organisation
CBSbutler Holdings Limited trading as CBSbutler
Location
Portsmouth, Hampshire, United Kingdom
Employment Type
Contract
Contract Rate
£600 - £650/day
covering DevSecOps, policy-as-code and secure CI/CD pipelines. Leading software supply chain security, including SBOMs, artefact signing and software provenance. Conducting threat modelling and security risk assessments. Chairing security working groups and collaborating with multinational stakeholders. Engaging with senior leadership to communicate security risks, assurance … environments. Strong background in cloud security architecture across multi-cloud and edge platforms. Experience implementing Secure by Design principles and DevSecOps practices. Expertise in: Threat modelling and risk management Policy-as-Code CI/CD security controls Software Supply Chain Security SBOMs, artefact signing and software provenance Excellent ...

Senior Application Security Engineer - DevSecOps & Cloud Security

Hiring Organisation
Additional Resources
Location
London, United Kingdom
Employment Type
Permanent
Salary
£70000 - £80000/annum
service documentation. Supporting development teams with the adoption and integration of security tooling and best practices. Contributing to wider cyber security initiatives, including threat modelling and compliance activities. What we are looking for: Previously worked as a Senior Application Security Engineer, Lead Application Security Engineer, Principal Application Security … such as GitHub and GitHub Actions Highly skilled in Terraform and Python Strong understanding of Azure security controls and cloud security governance Experience with threat modelling in software engineering contexts Knowledge of ISO 27001 and its relevance to secure engineering Familiar with Agile and DevSecOps methodologies Eligible ...

Cloud Security Consultant

Hiring Organisation
83zero Limited
Location
City of London, London, United Kingdom
Employment Type
Permanent, Work From Home
governance models Supporting the design and deployment of secure cloud infrastructure Embedding security throughout the cloud lifecycle using Secure by Design principles Conducting threat modelling and architecture reviews Working with cross-functional teams to integrate secure cloud solutions across hybrid IT environments Implementing security automation, orchestration and DevSecOps … Google Cloud Platform (GCP) Secure cloud governance and operating models DevSecOps, Infrastructure as Code (IaC) and CI/CD security Zero Trust security principles Threat modelling and security architecture reviews Cloud networking, identity and access management, application and data security Security automation and orchestration Relevant cloud security certifications ...

Cloud Security Consultant

Hiring Organisation
83zero Ltd
Location
London, South East, England, United Kingdom
Employment Type
Full-Time
Salary
£80,000 - £100,000 per annum
governance models Supporting the design and deployment of secure cloud infrastructure Embedding security throughout the cloud lifecycle using Secure by Design principles Conducting threat modelling and architecture reviews Working with cross-functional teams to integrate secure cloud solutions across hybrid IT environments Implementing security automation, orchestration and DevSecOps … Google Cloud Platform (GCP) Secure cloud governance and operating models DevSecOps, Infrastructure as Code (IaC) and CI/CD security Zero Trust security principles Threat modelling and security architecture reviews Cloud networking, identity and access management, application and data security Security automation and orchestration Relevant cloud security certifications ...

Cyber Security - Senior GRC Consultant (DV Cleared)

Hiring Organisation
Sanderson Government & Defence
Location
Cambridgeshire, England, United Kingdom
cloud infrastructures. Contribute to blogs and research within the Cyberfort community. Experience Required The successful candidate will possess proven experience in cybersecurity, security architecture, threat modelling, or related fields within Public Sector and MOD and will have achieved or be working towards Full Membership of CIISEC … NPSA and NCSC security policies, standards and guidance. Have experience building and implementing secure by design principals within the software development lifecycle (SDLC). Threat Modelling – Kill Chain – Attack tree analysis. Certifications: AWS/Azure Security Professional, CCSP, CISSP, CISM, CIISEC, UK Cyber Security Council registration (Chartered ...

AWS Security Lead

Hiring Organisation
Anson McCade
Location
London Area, United Kingdom
cloud architectures across complex enterprise environments. Define cloud security patterns, standards and best practices. Champion Security by Design throughout the software delivery lifecycle. Conduct threat modelling, risk assessments and security architecture reviews. Work closely with solution architects, engineering teams and security specialists to deliver secure cloud platforms. Drive … Experience with Infrastructure as Code using Terraform and/or CloudFormation. Solid understanding of cloud networking, identity, encryption and Zero Trust principles. Experience performing threat modelling and cloud risk assessments. Knowledge of security frameworks such as NIST, ISO 27001, CIS and GDPR. Excellent stakeholder engagement and communication skills. ...

Cloud Security Engineer

Hiring Organisation
Hays Technology
Location
Manchester, United Kingdom
Employment Type
Contract
Contract Rate
£580 - £630/day £580 - £630 Inside IR35
with infrastructure engineering teams to securely deliver cloud solutions. Acting as a Subject Matter Expert (SME) for cloud security services and best practices. Conducting threat modelling, security reviews, and security testing activities. Supporting the adoption and optimisation of CSPM/SSPM tooling and policy-as-code security controls. … Bicep. Experience with CSPM/SSPM solutions, cloud security tooling, and cloud governance. Knowledge of Kubernetes and modern cloud security architectures. Experience with threat modelling, security testing, and cloud security standards. Understanding of authentication, cryptography, networking, and enterprise security principles. Familiarity with policy-as-code security tools such ...

Application Security Engineering Manager

Hiring Organisation
Jobleads-UK
Location
Greater London, England, United Kingdom
earn their trust and enable their best work, you need to be genuinely close to the craft — able to engage at depth on threat modelling, agentic security tooling, SDLC design, and application risk. You’ll also own AppSec strategy and be accountable for how the function scales alongside … engineering context into a clear, prioritised programme of work with measurable outcomes. Be a credible technical partner to your team — engage substantively on threat models, security architecture, agentic tooling design, and risk decisions, and be willing to get into the details when it matters. Define and maintain the team ...

Senior Mobile Security Specialist

Hiring Organisation
FDM Group
Location
Bristol, Avon, England, United Kingdom
Employment Type
Contractor
Contract Rate
£100,000 - £120,000 per annum
evolve the mobile security framework across the organisation's mobile platforms. Conduct and oversee mobile application penetration testing, vulnerability assessments and remediation activities. Perform threat modelling, security analysis and risk assessments for mobile applications and supporting services. Define and promote secure development standards, application hardening techniques and mobile … experience in mobile application security, with approximately 10+ years in cyber security, application security or a related field. Deep expertise in mobile penetration testing, threat modelling, vulnerability management and security assurance. Strong knowledge of OWASP MASVS, MASTG and industry-recognised mobile security standards and testing methodologies. Proven experience ...

IT Security Architect

Hiring Organisation
ARC IT Recruitment
Location
London, United Kingdom
Employment Type
Permanent
Salary
GBP Annual
real scope to shape how security architecture is delivered across the business. The role You will conduct security design reviews end to end, perform threat modelling, author security standards and patterns, and provide architecture consultancy to project teams across the business. You will build deep knowledge … Solid IAM background covering federation, SSO, MFA, and privileged access Experience in a regulated environment, either financial services or consultancy with FS clients Proven threat modelling and security design review experience, with the ability to write clear security standards Strong differentiators: Awareness of AI and LLM security risks ...

Infrastructure Security Architect - DV Cleared

Hiring Organisation
CBSbutler Holdings Limited trading as CBSbutler
Location
Basingstoke, Hampshire, United Kingdom
Employment Type
Contract
Contract Rate
£700 - £800/day
highly secure infrastructure and network environments within a classified defence programme. Working within a multi-disciplinary engineering team, you will define security architectures, conduct threat modelling and risk assessments, and ensure compliance with stringent security and accreditation requirements across complex IT and networked systems. Key Skills & Experience Proven … zoning Firewalls, IDS/IPS and boundary security controls PKI, encryption and key management Identity & Access Management (IAM/PAM) Secure-by-Design principles Threat modelling and security risk assessment Experience producing security architecture artefacts and supporting accreditation activities. Knowledge of NCSC guidance, JSP 440, Secure by Design ...

Systems Engineer - Product Security (Edgewing)

Hiring Organisation
BAE Systems
Location
Farnborough, Hampshire, United Kingdom
Employment Type
Permanent
Salary
GBP Annual
Product Security Management System (PSMS) and propose improvements when gaps or inefficiencies are identified. Support evidence generation required for Cybersecurity Conduct security analyses , threat modelling and vulnerability assessments within the digital engineering environment. Support incident investigations and maintain accurate records of product-security-relevant decisions . Essential Skills … product, system or cyber security engineering industries. (Internal BAE Systems training is available for Product Security specialism) An awareness of secure-by-design principles , threat modelling, risk assessment methodologies and security control design. Practical knowledge of security policies, standards and good practice frameworks in highly regulated industries Experience ...

Systems Engineer - Product Security (Edgewing)

Hiring Organisation
BAE Systems
Location
Guildford, Surrey, United Kingdom
Employment Type
Permanent
Salary
GBP Annual
Product Security Management System (PSMS) and propose improvements when gaps or inefficiencies are identified. Support evidence generation required for Cybersecurity Conduct security analyses , threat modelling and vulnerability assessments within the digital engineering environment. Support incident investigations and maintain accurate records of product-security-relevant decisions . Essential Skills … product, system or cyber security engineering industries. (Internal BAE Systems training is available for Product Security specialism) An awareness of secure-by-design principles , threat modelling, risk assessment methodologies and security control design. Practical knowledge of security policies, standards and good practice frameworks in highly regulated industries Experience ...

Systems Engineer - Product Security (Edgewing)

Hiring Organisation
BAE Systems
Location
Sandhurst, Berkshire, United Kingdom
Employment Type
Permanent
Salary
GBP Annual
Product Security Management System (PSMS) and propose improvements when gaps or inefficiencies are identified. Support evidence generation required for Cybersecurity Conduct security analyses , threat modelling and vulnerability assessments within the digital engineering environment. Support incident investigations and maintain accurate records of product-security-relevant decisions . Essential Skills … product, system or cyber security engineering industries. (Internal BAE Systems training is available for Product Security specialism) An awareness of secure-by-design principles , threat modelling, risk assessment methodologies and security control design. Practical knowledge of security policies, standards and good practice frameworks in highly regulated industries Experience ...

Systems Engineer Product Security (Edgewing)

Hiring Organisation
BAE Systems
Location
United Kingdom
Product Security Management System (PSMS) and propose improvements when gaps or inefficiencies are identified. Support evidence generation required for Cybersecurity Conduct security analyses , threat modelling and vulnerability assessments within the digital engineering environment. Support incident investigations and maintain accurate records of product-security-relevant decisions . Essential Skills … product, system or cyber security engineering industries. (Internal BAE Systems training is available for Product Security specialism) An awareness of secure-by-design principles , threat modelling, risk assessment methodologies and security control design. Practical knowledge of security policies, standards and good practice frameworks in highly regulated industries Experience ...

Microsoft AI Engineer / Azure Artificial Intelligence Engineer

Hiring Organisation
Huxley Associates
Location
City of London, London, United Kingdom
Employment Type
Permanent
Salary
£50000 - £90000/annum
Governance team The AI Security Engineer is responsible for securing AI platforms and systems against adversarial threats. The role focuses on technical security controls, threat modelling, red teaming, and continuous monitoring of AI systems. Role details Title: AI Engineer/Azure Artificial Intelligence Engineer Location: can be either … programming experience (Python, C#, or Java) Your role will focus on:- Design and implement security controls for AI and LLM systems Perform AI-specific threat modelling and risk analysis Lead red team and blue team testing of AI platforms This is a really interesting role and a great ...

AI Security Engineer

Hiring Organisation
Experis
Location
London, United Kingdom
Employment Type
Contract
defence to deliver agentic infosec solutions aligned to our target operating model Key Responsibilities * Design security solutions for AI-driven and agentic systems * Conduct threat modelling (AI-specific and traditional) and risk reviews * Support the embedding security across the end-to-end agentic SDLC (design, test, release, governance … information security, ideally with a hands-on background in application or infrastructure security * Solid understanding of core security principles and architectures Experience with: o Threat modelling o Secure system design o Embedding security within the SDLC * Exposure to AI and agentic systems (practical or conceptual), including: o Security ...

AI Security Engineer

Hiring Organisation
17918
Location
Rugby, Warwickshire, United Kingdom
defence to deliver agentic infosec solutions aligned to our target operating model Key Responsibilities Design security solutions for AI-driven and agentic systems Conduct threat modelling (AI-specific and traditional) and risk reviews Support the embedding security across the end-to-end agentic SDLC (design, test, release, governance … information security, ideally with a hands-on background in application or infrastructure security Solid understanding of core security principles and architectures Experience with: o Threat modelling o Secure system design o Embedding security within the SDLC Exposure to AI and agentic systems (practical or conceptual), including: o Security ...

Cyber Security Engineer - Assistant Vice President

Hiring Organisation
Mizuho
Location
Greater London, United Kingdom
Employment Type
Full Time
Profile Summary Seeking security engineer to join our Proactive Security team, this role will focus on the development of security technology stack to ensure threat mitigation is in place through offensive and preventive measures. Duties and Responsibilities Threat Modelling & Risk Analysis: Develop and maintain threat models … tooling integration and orchestration. Develop and implementation of SOAR capabilities that aligns with existing technology stack. Experience with KMS systems and methodologies. Identity based threat detection and prevention. Privileged Access and Session Management SIEM Management: Design, implement, and maintain of workspaces, including data connectors, Logic App, Function App, analytics ...