Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Evaluate and mitigate cyber threats while contributing to security development.
- Company: Join BAE Systems, a leader in defence and security.
- Benefits: Enjoy competitive salary, flexible working, and extensive health benefits.
- Why this job: Make a real impact in cybersecurity and develop your skills in a supportive team.
- Qualifications: Experience with threat modelling frameworks and risk management essential.
- Other info: Inclusive culture that values diversity and offers excellent career growth.
The predicted salary is between 44000 - 66000 £ per year.
Job Title: Senior Threat Modeler
Location: Preston or Frimley. We offer a range of hybrid and flexible working arrangements – please speak to your recruiter about the options for this particular role
Salary: Circa £55,000 dependent on experience
What you\’ll be doing:
- Maintains an in-depth understanding of the external and internal security environment and how the organisation reacts to security threats
- Contributes to, plans and delivers activities in support of organisational and security development needs in accordance with regulatory requirements and changes in the threat landscape
- The assessment, validation and reporting of information on current and potential cyber threats to maintain an organisation\’s situational awareness
- Identifying security gaps and building attack simulations to support Purple Team engagements by illustrating potential attack patterns to prioritise future remediation efforts
- Is a subject matter expert (SME) on emerging threats and will work on complex issues as a fully contributory member of the Threat Modelling Team, with limited guidance from the Line Manager
- Produces reports detailing key threats and risks to the organisation at a strategic level for business units to digest
Your skills and experiences:
Essential:
- An understanding of threat modelling frameworks and processes e.g. STRIDE-LM, MITRE ATT&CK etc.
- An understanding of risk management frameworks e.g. NIST
- Knowledge of security control (and maturity) frameworks e.g. NIST (e.g. CSMA, CSF), ISO 27000 series and an understanding of the types and functions of security controls
Desirable:
- Relevant IT degree or industry recognised certification
- Relevant industry experience
Benefits:
As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts – you may also be eligible for an annual incentive.
The Threat Modelling Team:
Based in the Active Defence team in the UK SOC Team, we proactively evaluate systems, applications and networks to identify potential risks and threats and implement appropriate controls to mitigate those risks. Working closely with other UK SOC Teams and working in an open and supportive team, this is a great opportunity for professional development through training courses and certifications and developing your leadership skills.
Why BAE Systems?
This is a place where you\’ll be able to make a real difference. You\’ll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you\’ll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.
Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks.
We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
#J-18808-Ljbffr
Senior Threat Modeler employer: Onyx-Conseil
Contact Detail:
Onyx-Conseil Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Threat Modeler
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, especially those already at BAE Systems. A friendly chat can open doors and give you insider info on what they're really looking for.
✨Tip Number 2
Show off your skills! Prepare to discuss your experience with threat modelling frameworks and risk management in detail. Use real-life examples to illustrate how you've tackled security challenges in the past.
✨Tip Number 3
Practice makes perfect! Get ready for potential technical assessments or interviews by brushing up on your knowledge of security controls and attack simulations. The more prepared you are, the more confident you'll feel!
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen. Plus, it shows you're genuinely interested in joining the team at BAE Systems. Don’t miss out!
We think you need these skills to ace Senior Threat Modeler
Some tips for your application 🫡
Know Your Stuff: Make sure you really understand the key skills and experiences mentioned in the job description. Highlight your knowledge of threat modelling frameworks and risk management processes in your application to show us you're the right fit.
Tailor Your Application: Don’t just send a generic CV and cover letter! Customise your application to reflect how your experience aligns with the role. Use specific examples that demonstrate your expertise in security controls and threat assessment.
Be Clear and Concise: When writing your application, keep it clear and to the point. We appreciate well-structured responses that get straight to the heart of your qualifications and experiences without unnecessary fluff.
Apply Early!: We might close the vacancy early if we get enough applications, so don’t wait around! Head over to our website and submit your application as soon as you can to ensure you don’t miss out on this opportunity.
How to prepare for a job interview at Onyx-Conseil
✨Know Your Threat Models
Make sure you brush up on threat modelling frameworks like STRIDE-LM and MITRE ATT&CK. Be ready to discuss how you've applied these in past roles, as this will show your depth of understanding and practical experience.
✨Understand Risk Management
Familiarise yourself with risk management frameworks such as NIST. Be prepared to explain how you've used these frameworks to identify and mitigate risks in previous positions, as this will demonstrate your capability to handle complex security issues.
✨Prepare for Technical Questions
Expect technical questions about security controls and maturity frameworks like ISO 27000 series. Practise articulating your knowledge clearly, as this will help you convey your expertise effectively during the interview.
✨Showcase Your Teamwork Skills
Since the role involves working closely with other teams, be ready to share examples of how you've collaborated in the past. Highlighting your ability to work in an open and supportive environment will resonate well with the interviewers.
