Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Design and implement a Threat Modelling framework to enhance cybersecurity.
- Company: Join a leading cybersecurity team focused on innovative security solutions.
- Benefits: Competitive salary, flexible working options, and opportunities for professional growth.
- Why this job: Make a real impact by driving security best practices in enterprise environments.
- Qualifications: 7-12 years in Security Testing with hands-on Threat Modelling experience.
- Other info: Be part of a proactive team that values problem-solving and customer-first approaches.
The predicted salary is between 70000 - 90000 £ per year.
We are looking for an experienced Security Consultant-Threat Modelling to join our client's growing cybersecurity team. This role is ideal for someone passionate about building secure architectures, identifying risks early in the design phase, and driving security best practices across enterprise environments. You will play a key role in defining and scaling threat modelling capabilities, working closely with architects, developers, and business stakeholders.
Responsibilities
- Design and implement an enterprise-wide Threat Modelling framework
- Define reference architectures for microservices, APIs, cloud, and event-driven systems
- Establish and scale threat modelling processes and governance
- Onboard applications and teams into the threat modelling lifecycle
- Conduct end-to-end threat modelling exercises (manual + automated approaches)
- Identify threat vectors and create actionable threat models
- Present findings and explain risks to developers and stakeholders
- Provide remediation guidance and coordinate mitigation efforts
- Integrate threat-informed scenarios (ATT&CK-based) into design practices
- Align with broader security strategies such as Zero Trust, IAM, and monitoring
- Define automation strategies (CI/CD integration, repositories, knowledge base/RAG, quality controls)
Qualifications
- 7-12 years in Security Testing / Application Security
- 2-5 years of hands-on Threat Modelling & Security Risk Assessment
- Strong experience with methodologies: STRIDE, DREAD, PASTA
- Deep understanding of OWASP Top 10 and common vulnerabilities
- Experience in enterprise security architecture
- Ability to translate technical risks into business impact
- Strong stakeholder communication & presentation skills
- Proven ability to handle client-facing security engagement
Good to Have
- Cloud security expertise (AWS / Azure / GCP)
- Experience integrating security into DevSecOps pipelines
- Familiarity with MITRE ATT&CK framework
Key Deliverables
- Enterprise Threat Modelling Framework & multi-quarter roadmap
- Reference architectures and reusable threat patterns
- Control validation & assurance framework (KPIs / KRIs)
- Executive-level briefings and decision support documentation
What our client is looking For
- A proactive security leader who can drive strategy and execution
- Someone who can simplify complex security concepts for diverse audiences
- A problem solver with a customer-first mindset
Security Consultant-Threat Modelling in Norwich employer: KBC Technologies Group
Contact Detail:
KBC Technologies Group Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Consultant-Threat Modelling in Norwich
✨Tip Number 1
Network like a pro! Reach out to your connections in the cybersecurity field, attend industry events, and engage in online forums. The more people you know, the better your chances of landing that Security Consultant role.
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your threat modelling projects and any relevant frameworks you've designed. This will give potential employers a clear view of what you can bring to their team.
✨Tip Number 3
Prepare for interviews by brushing up on your communication skills. Be ready to explain complex security concepts in simple terms, as you'll need to present findings to both technical and non-technical stakeholders.
✨Tip Number 4
Don't forget to apply through our website! We have a range of opportunities that could be perfect for you. Plus, it’s a great way to ensure your application gets the attention it deserves.
We think you need these skills to ace Security Consultant-Threat Modelling in Norwich
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Security Consultant-Threat Modelling role. Highlight your experience with threat modelling frameworks and methodologies like STRIDE and DREAD. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about cybersecurity and how you can contribute to our client's team. Be sure to mention any relevant projects or experiences that showcase your expertise.
Showcase Your Communication Skills: Since this role involves presenting findings to stakeholders, make sure to highlight your communication skills in your application. We love candidates who can simplify complex security concepts for diverse audiences, so don’t hold back!
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It helps us keep track of your application and ensures you don’t miss out on any important updates. Plus, we love seeing applications come directly from our site!
How to prepare for a job interview at KBC Technologies Group
✨Know Your Threat Modelling Frameworks
Make sure you’re well-versed in the methodologies like STRIDE, DREAD, and PASTA. Be ready to discuss how you've applied these frameworks in past roles, as this will show your practical experience and understanding of threat modelling.
✨Showcase Your Communication Skills
Since you'll be presenting findings to developers and stakeholders, practice explaining complex security concepts in simple terms. Use examples from your previous work to demonstrate how you’ve effectively communicated risks and remediation strategies.
✨Prepare for Scenario-Based Questions
Expect questions that ask you to identify threat vectors or create actionable threat models on the spot. Brush up on your ability to think critically and apply your knowledge to hypothetical situations, as this will highlight your problem-solving skills.
✨Align with Broader Security Strategies
Familiarise yourself with concepts like Zero Trust and IAM. Be prepared to discuss how you can integrate these strategies into threat modelling processes, showing that you understand the bigger picture of enterprise security.