Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join a dynamic team to enhance security through threat modelling and architecture reviews.
- Company: Be part of a forward-thinking company driving digital transformation for clients.
- Benefits: Enjoy flexible work options, competitive salary, and opportunities for professional growth.
- Why this job: Make a real impact in cybersecurity while collaborating with diverse teams and leaders.
- Qualifications: 8+ years in tech, strong GCP skills, and experience with threat modelling methodologies required.
- Other info: Ideal for those passionate about continuous learning and tackling complex security challenges.
The predicted salary is between 48000 - 72000 £ per year.
As a Senior Engineer - Threat Modelling you will be a part of a smart cross-functional team delivering digital business transformation solutions to our clients. This position entails an individual contributor role focused on Security Architecture and Threat Modelling, encompassing governance, evaluation of public cloud services, and conducting security reviews for Public Cloud Providers. Collaboration and partnership with Engineering, Information Security, Program Management, and Development teams are essential. The candidate will conduct technical architecture reviews to pinpoint security opportunities, identify exploitable threats, and propose mitigation strategies.
Your Impact
- Conduct thorough threat modeling exercises utilizing established methodologies and frameworks.
- Maintain a rigorous standard of excellence in identifying potential threats and specifying effective mitigation controls.
- Manage the lifecycle of identified threats and associated controls, ensuring timely updates and adjustments as necessary.
- Deliver comprehensive threat models and related tasks within specified timeframes.
- Offer constructive feedback, support, and suggestions for enhancing the existing threat modeling process.
- Present findings and progress updates to senior leadership, team members, and relevant technical stakeholders.
Qualifications
- 8+ years of experience in a range of technologies and processes.
- Proficiency in GCP - essential.
- Strong knowledge of security architecture principles, frameworks, and best practices.
- Experience working with threat modeling methodologies such as MITRE ATT&CK, STRIDE, PASTA etc.
- Overall experience in Cybersecurity: 5+ years.
- Security practices encompassing authentication, authorization, logging/monitoring, encryption, infrastructure security, and network/segmentation.
- Knowledge of cloud security frameworks.
- Knowledge of Rest API.
- Knowledge in scripting languages and Infrastructure as Code (Terraform, CloudFormation).
- Familiarity with Jira or other ticketing systems – essential.
- Technical architecture design and review skills – essential.
- Ability to identify vulnerabilities using CWE or OWASP.
- Knowledge of operating systems and their hardening techniques.
- Understanding of development concepts such as CICD, Pipelines, and SDLC.
- Penetration testing knowledge is also super useful.
- Familiarity with Cloud Development Kit (CDK) and GitOps.
- Experience operating in a DevOps/agile team environment.
- Understanding of docker, Kubernetes, serverless architecture, and Helm.
- Exposure to platforms like Snowflake, MongoDB, Terraform Cloud, GitHub, and Databricks.
- Strong analytical skills, diligence, and attention to detail.
- Willingness to conduct research using vendor documentation.
- Capability to create and maintain high-quality documentation.
- Possession of an adversary mindset.
- Continuous learning attitude towards new technologies and methodologies.
- Strong problem-solving skills.
- Excellent communication and collaboration abilities.
- Ability to build and nurture relationships across cross-functional teams.
Cyber Security Engineer employer: ApTask
Contact Detail:
ApTask Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Cyber Security Engineer
✨Tip Number 1
Familiarise yourself with the specific threat modelling methodologies mentioned in the job description, such as MITRE ATT&CK and STRIDE. Being able to discuss these frameworks in detail during your interview will demonstrate your expertise and commitment to the role.
✨Tip Number 2
Showcase your experience with GCP by preparing examples of past projects where you implemented security measures in cloud environments. This will help you illustrate your hands-on knowledge and how it aligns with our needs at StudySmarter.
✨Tip Number 3
Brush up on your technical architecture design skills and be ready to discuss how you've identified vulnerabilities in previous roles. Highlighting your analytical skills and problem-solving abilities will set you apart from other candidates.
✨Tip Number 4
Prepare to discuss your experience working in cross-functional teams, especially in a DevOps or agile environment. Emphasising your collaboration and communication skills will show us that you can effectively work with various stakeholders at StudySmarter.
We think you need these skills to ace Cyber Security Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in Cyber Security, particularly focusing on GCP and threat modelling methodologies like MITRE ATT&CK or STRIDE. Use specific examples to demonstrate your skills and achievements.
Craft a Compelling Cover Letter: In your cover letter, express your passion for Cyber Security and how your background aligns with the role. Mention your experience with security architecture principles and your ability to collaborate with cross-functional teams.
Showcase Technical Skills: Clearly outline your technical skills related to the job description, such as knowledge of scripting languages, Infrastructure as Code, and familiarity with tools like Jira. This will help you stand out as a qualified candidate.
Prepare for Interviews: Be ready to discuss your previous projects and experiences in detail. Prepare to explain your approach to threat modelling and how you've identified and mitigated threats in past roles. Practice articulating your thought process clearly.
How to prepare for a job interview at ApTask
✨Showcase Your GCP Expertise
Make sure to highlight your proficiency in Google Cloud Platform (GCP) during the interview. Be prepared to discuss specific projects where you've implemented security measures in GCP, as this is essential for the role.
✨Familiarise Yourself with Threat Modelling Methodologies
Brush up on threat modelling methodologies such as MITRE ATT&CK, STRIDE, and PASTA. Be ready to explain how you've applied these frameworks in past roles and how they can be beneficial in identifying and mitigating threats.
✨Demonstrate Your Technical Architecture Skills
Prepare to discuss your experience with technical architecture design and review. Think of examples where you've pinpointed security opportunities and proposed effective mitigation strategies, as this will showcase your analytical skills.
✨Communicate Effectively
Since collaboration is key in this role, practice articulating your thoughts clearly. Be ready to present findings and updates as if you were addressing senior leadership, ensuring you convey complex information in an understandable manner.
