Cyber Security Threat Modelling Specialist
2 weeks ago
Insight Investment is looking for a Cyber Security Threat Modelling Specialist to join the growing team in Manchester. In this role, you will help to design/engineer, build and support activities for different phases of the application life cycle in support of the business. The role holder will have sound knowledge of cyber security principles for secure analysis, design, build, and support aspects with an emphasis on threat modelling frameworks, methodologies, techniques, backed by proven experience of successful application of threat modelling. The Threat Modelling Specialist will work closely with cross-functional teams, including IT (Cyber Security, Architecture, Product Development, Infrastructure), Information Risk, Corporate Risk, Legal, and various other Business Units to ensure the successful integration of security measures throughout the application/system lifecycle.
Role Responsibilities
- Collaborate with various teams (both internal and external stakeholders) to identify, analyse, and document potential security threats and vulnerabilities throughout the SDLC phase
- Conduct security assessments and threat modelling exercises, design reviews and contribute to mitigate the gaps/weaknesses identified for both on-premises and cloud-based environments, systems, and applications
- Assist with the delivery and implementation of new change capabilities identified in the strategy and roadmap into Insight and any additional control improvement identified from the risk management framework, risk assessment
- Provide security advice and support tech and business teams so Cyber Security team is can be more proactive in finding solutions to business/tech requirements
- Evaluate the effectiveness of existing security controls and recommend improvements to enhance the overall security posture
- Research emerging security trends and technologies and provide recommendations for adoption and integration
- Assist in the development of security policies, standards, and guidelines, and supporting the team with BAU issues
- Collaborate with peers and other cross-functional teams to identify and address security issues. (E.g., internal peers/Cyber Security colleagues, internal/external penetration testers and incident responders, cross functional product development/infrastructure, Architecture teams)
- Participate in security assessments, audits, and regulatory compliance initiatives and carrying out the resulting work to remediate the findings as required
- Security awareness and training – Play a key role in promoting a culture of security awareness and continuous improvement as part of their ongoing engagements
Experience Required
- Experience with Cyber Security controls in a range of technical environments
- Understanding of the technical security measures required for enterprise IT environments as described above with an appreciation for the fundamental ‘defence in depth’ and ‘zero trust’ approaches to IT security
- Structured approach to identification, prioritisation of threats and vulnerabilities, scoping and remediation work
- Strong understanding of security threats, attack vectors, and mitigation techniques
- Knowledge of secure design patterns, cryptography, and access control models
- Deep technical knowledge of web related technologies such Web applications, Web Services and REST-based Service Architectures and of network/web related protocols
- Experience with industry-standard threat modelling frameworks, such as STRIDE, DREAD, or PASTA
- Strong communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams
- Proficiency in creating and interpreting technical documentation, including data flow diagrams and use case diagrams
- Familiarity with security standards and regulations such as ISO 27001, NIST, MITRE, CIS and GDPR
- Demonstrated experience and success in similar threat modelling expert roles in highly regulated industry
- Degree in Computer Science, Cyber Security or a related field backed by equivalent work or education-related experience
- Minimum of 3-4 years of experience in threat modelling, secure software development, and application security
- Proven experience of developing and implementing threat modelling methodologies and processes
Insight is committed to being an inclusive employer and encourages applications from all suitably qualified applicants irrespective of background, circumstances, age, disability, gender identity, ethnicity, religion or belief and sexual orientation. If you are a candidate with a disability, or are assisting a candidate with a disability, and require an accommodation to apply for one of our jobs, please email us at TalentAcquisition@InsightInvestment.com
About Insight Investment
Insight Investment is a leading asset manager focused on designing investment solutions to meet its clients’ needs. Founded in 2002, Insight’s collaborative approach has delivered both investment performance and growth in assets under management. Insight manages assets across its core liability-driven investment, risk management, full-spectrum fixed income, currency and absolute return capabilities.
Insight has a global network of operations in the UK, Ireland, Germany, US, Japan and Australia. More information about Insight Investment can be found at: www.insightinvestment.com
-
Cyber Security Threat Modelling Specialist
2 weeks ago
Manchester, United Kingdom Insight Investment Full timeInsight Investment is looking for a Cyber Security Threat Modelling Specialist to join the growing team in Manchester. In this role, you will help to design/engineer, build and support activities for different phases of the application life cycle in support of the business. The role holder will have sound knowledge of cyber security principles for secure...
-
Cyber Security Threat Modelling Specialist
2 weeks ago
Manchester Area, United Kingdom Insight Investment Full timeInsight Investment is looking for a Cyber Security Threat Modelling Specialist to join the growing team in Manchester. In this role, you will help to design/engineer, build and support activities for different phases of the application life cycle in support of the business. The role holder will have sound knowledge of cyber security principles for secure...
-
Cyber Security Threat Modelling Specialist
2 weeks ago
Manchester Area, United Kingdom Insight Investment Full timeInsight Investment is looking for a Cyber Security Threat Modelling Specialist to join the growing team in Manchester. In this role, you will help to design/engineer, build and support activities for different phases of the application life cycle in support of the business. The role holder will have sound knowledge of cyber security principles for secure...
-
Cyber Security Consultant
3 months ago
Manchester, United Kingdom Cyber Security Specialists Full time**Cyber Security Consultant** Based in Manchester UK, we are an independent Cyber Security Consultancy providing Security Consultancy and Managed Security services across a wide range of markets, from multi-national Corporate Organisations and Government Agencies, through to smaller Businesses that want to develop strong security strategies. We are a UK...
-
Cyber Security Specialist
3 days ago
Manchester, United Kingdom Cyber Security Jobsite Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Specialist to join our team in Manchester. As an Operational Cyber Developer, you will play a key role in building our new Manchester hub and contributing to the growth of our Operational Cyber practice.Key ResponsibilitiesUnderstand various development methodologies and their application in...
-
Cyber Security Specialist
5 days ago
Manchester, United Kingdom Cyber Security Jobsite Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Specialist to join our team in Manchester. As an Operational Cyber Developer, you will play a key role in building our new Manchester hub and contributing to the growth of our Operational Cyber practice.Key ResponsibilitiesUnderstand various development methodologies and their application in...
-
Cyber / IT Security Specialist
2 weeks ago
Manchester, United Kingdom Insight Investment Full timeInsight Investment is looking for a Cyber Security Threat Modelling Specialist to join the growing team in Manchester. In this role, you will help to design/engineer, build and support activities for different phases of the application life cycle in support of the business. The role holder will have sound knowledge of cyber security principles for secure...
-
Cyber Security Consultant
4 days ago
Manchester, United Kingdom Cyber Security Specialists Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Consultant to join our team at Cyber Security Specialists. As a Cyber Security Consultant, you will be responsible for providing expert advice and guidance on cloud security architectures, risk management, and compliance.Key ResponsibilitiesDesign and implement secure cloud-based solutions for...
-
Head of Cyber Security Threat Operations
4 days ago
Manchester, United Kingdom Home Office Full timeJob summaryReporting directly to the Head of Cyber Security Operations, the Head of Cyber Threat Operations oversees the Threat Intelligence, Threat Hunting and Threat & Vulnerability Management functions within the Cyber Security Operations Centre (CSOC).This critical role involves leading teams who work hard to stay one step ahead of threat actors by...
-
Cyber Security Threat Operations Lead
2 days ago
Manchester, United Kingdom Government Recruitment Service Full timeAbout the RoleThis is a critical position within the Government Recruitment Service, responsible for overseeing the Threat Intelligence, Threat Hunting, and Threat & Vulnerability Management functions within the Cyber Security Operations Centre (CSOC).Key ResponsibilitiesOversee and improve the triage and prioritization of cyber threat intelligence, threat...
-
Cyber Security Threat Operations Lead
2 days ago
Manchester, United Kingdom Government Recruitment Service Full timeAbout the RoleThis is a critical position within the Government Recruitment Service, responsible for overseeing the Threat Intelligence, Threat Hunting, and Threat & Vulnerability Management functions within the Cyber Security Operations Centre (CSOC).Key ResponsibilitiesOversee and improve the triage and prioritization of cyber threat intelligence, threat...
-
Cyber Defence Expert
3 days ago
Manchester, United Kingdom Cyber Security Jobsite Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Specialist to join our team in Manchester. As an Operational Cyber Developer, you will play a key role in building our new Manchester hub and contributing to the growth of our Operational Cyber practice.Key ResponsibilitiesUnderstand various development methodologies and their application in...
-
Operational Cyber Developer
3 days ago
Manchester, United Kingdom Cyber Security Jobsite Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Specialist to join our team in Manchester. As an Operational Cyber Developer, you will play a key role in building our new Manchester hub and contributing to the growth of our Operational Cyber practice.Key ResponsibilitiesUnderstand various development methodologies and their application in...
-
Cyber Defence Expert
5 days ago
Manchester, United Kingdom Cyber Security Jobsite Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Specialist to join our team in Manchester. As an Operational Cyber Developer, you will play a key role in building our new Manchester hub and contributing to the growth of our Operational Cyber practice.Key ResponsibilitiesUnderstand various development methodologies and their application in...
-
Operational Cyber Developer
5 days ago
Manchester, United Kingdom Cyber Security Jobsite Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Specialist to join our team in Manchester. As an Operational Cyber Developer, you will play a key role in building our new Manchester hub and contributing to the growth of our Operational Cyber practice.Key ResponsibilitiesUnderstand various development methodologies and their application in...
-
Cyber Security Specialist
11 hours ago
Manchester, United Kingdom Betfred Group Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Specialist to join our team at Betfred Group. As a key member of our Information Cyber Security Team, you will play a strategic role in safeguarding our organisation's assets, both in the UK and internationally.Key ResponsibilitiesDrive Cyber Security Strategy: Shape and drive the organisation's...
-
Cyber Security Specialist
8 hours ago
Manchester, United Kingdom Betfred Group Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Specialist to join our team at Betfred Group. As a key member of our Information Cyber Security Team, you will play a strategic role in safeguarding our organisation's assets, both in the UK and internationally.Key ResponsibilitiesDrive Cyber Security Strategy: Shape and drive the organisation's...
-
Cyber Security Operations Specialist
3 days ago
Manchester, United Kingdom Smart DCC Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Operations Specialist to join our team at Smart DCC. As a key member of our security operations team, you will play a critical role in protecting our organization's cyber security measures and responding to potential threats.Key ResponsibilitiesIncident Response: Analyze and respond to security...
-
Cyber Security Operations Specialist
3 days ago
Manchester, United Kingdom Smart DCC Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Operations Specialist to join our team at Smart DCC. As a key member of our security operations team, you will play a critical role in protecting our organization's cyber security measures and responding to potential threats.Key ResponsibilitiesIncident Response: Analyze and respond to security...
-
Cyber Security Incident Response Specialist
5 days ago
Manchester, United Kingdom BT Security Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Operations Centre Monitoring and Response Team Member to join our team at BT Security. As a key member of our team, you will play a vital role in responding to immediate security threats on commercial networks across the globe.Key ResponsibilitiesMonitor security alerts and events across various...
