Skip to main content
Search
MENU
  • Home
  • About the Council
  • Standards and Registration
  • Careers and Learning
  • Ethics
  • Events
  • Corporate Membership
  • Get Involved
  • Contact
  • About the Council
  • Vision and Mission
  • What we do
  • Meet the Team
  • Board of Trustees
  • Our Working Groups
  • Impact Report 2023-24
  • Work for the Council
  • Standards and Registration
  • About Professional Standards
  • Standard for Professional Competence and Commitment
  • Chartered
  • Principal
  • Practitioner
  • Associate
  • Benefits of Professional Registration
  • The Registration Process
  • Specialism Roadmap
  • Become Professionally Registered
  • Professional Register
  • Continuing Professional Development (CPD)
  • FAQs
  • Careers and Learning
  • Why work in cyber security?
  • Getting Started
  • Cyber Access Hub
  • Cyber Access Network
  • How do I get into cyber? FAQs
  • Entry Routes - Training
  • Entry Routes - Qualifications
  • Cyber Careers Framework
  • Career Mapping Quiz
  • Certification Framework Tool
  • Developing your career
  • Managing cyber talent
  • Glossary of cyber terms
  • Outreach and Diversity
  • Role Models
  • Ethics
  • Ethical Declaration
  • Ethical Principles for individuals
  • Ethics scenarios
  • Corporate Membership
  • Member directory
  • Member Login
  • Get Involved
  • News
  • Events
  • Blogs
  • Thought Leadership
  • On Demand Webinars
  • Volunteering
  • Contact
  • Newsletter Signup
What are you looking for?
Close
UK Cybersecurity council Logo
  • Home
  • News
  • Build Your Path: Cyber's Yellow Team

Build Your Path: Cyber's Yellow Team

12:00 Tuesday, 01 August 2023
UK Cyber Security Council
  • Facebook
  • Twitter
  • Linkedin
  • Copy link

Secure System Architecture and Design: Cyber’s Yellow Team

Cyber attacks are increasing year on year, and as malicious hackers get more inventive, so too do cyber security professionals as they work to keep essential digital infrastructure secure.

Due to this, much of cyber defence can be perceived as reactive to the general public. However, a system will hugely benefit from a secure design from the outset rather than relying on retroactive fixes.

Known as the yellow team in cyber professional circles, these are the people with a security first mindset who focus on building a system that is as secure as possible from the outset. Once built, the red team, also known as ethical hackers, stress test the finished system to identify any potential weaknesses so that they can be remedied. It’s vital that the yellow team creates the strongest possible system, as this can determine whether an organisation’s data remains secure when under attack.

As a result, secure system architects are some of the most technical roles in cyber security, suiting candidates that enjoy complex problem solving, as well as good team players who can cooperate with the red and blue teams.

However, being a part of the yellow team isn’t all about building systems with security in mind, it’s also about catching those with malign intentions. This is often done through a ‘honeypot’, or a trap laid to catch hackers. These are sacrificial computer systems intended to attract threat actors, which can provide useful information about their methods when designing stronger systems. It can also distract cyber aggressors from other more important targets, drawing attention away.

Information gained through honeypots can help not only the yellow team in building more secure system architecture, it can also provide useful information for the red and blue teams to understand the methods of cyber criminals.

As social engineering attacks are also on the rise, which involve a perpetrator using manipulative communication tactics to gain information, it can also be the job of the yellow team to educate the workplace on the risks of such communications. This prevents unsuspecting staff members from giving away vital information about the secure system the yellow team have worked to build.

As a specialism, secure system design can lead in many directions. Career progression can look like moving into other developmental roles, secure operations, or cyber security management.

Earlier this year, the Council launched its security testing pilot programme, creating the first opportunity for cyber professionals to become chartered practitioners. Keep an eye on the Council’s website for updates on becoming chartered in secure system architecture and design.

To learn more about careers in cyber’s yellow team, visit: https://www.ukcybersecuritycouncil.org.uk/careers-and-learning/cyber-career-framework/secure-system-architecture-design/

Related News

UK Cyber Security Council leaders honoured in The Powerlist 2023

28 October 2022

Chartering a Cyber Future Strategy 2025

10 October 2022

Our Newly Appointed Trustees

30 September 2022

See all News
  • Facebook
  • Twitter
  • Linkedin
  • Copy link
  • Home
  • About the Council
  • Thought Leadership
  • News
  • Events
  • Contact
  • Work for the Council
  • Membership
  • Member Login
  • Glossary
  • Acceptable Use Policy
  • Accessibility
  • Privacy Policy
  • Cookie Policy
  • Complaints Handling Policy
  • Outreach and Diversity Policy
  • Terms and Conditions

Subscribe to our Newsletter

Our e-newsletter keeps you up to date with the activities of and content from the UK Cyber Security Council.

Learn more

© 2025 UK Cyber Security Council | Registered charity no. 1195030
Menu
  • About the Council
  • Standards and Registration
  • Careers and Learning
  • Ethics
  • Events
  • Corporate Membership
  • Get Involved
  • Contact
About the Council
  • Vision and Mission
  • What we do
  • Meet the Team
  • Board of Trustees
  • Our Working Groups
  • Impact Report 2023-24
  • Work for the Council
Standards and Registration
  • About Professional Standards
  • Standard for Professional Competence and Commitment
  • Chartered
  • Principal
  • Practitioner
  • Associate
  • Benefits of Professional Registration
  • The Registration Process
  • Specialism Roadmap
  • Become Professionally Registered
  • Professional Register
  • Continuing Professional Development (CPD)
  • FAQs
Careers and Learning
  • Why work in cyber security?
  • Getting Started
  • Cyber Access Hub
  • Cyber Access Network
  • How do I get into cyber? FAQs
  • Entry Routes - Training
  • Entry Routes - Qualifications
  • Cyber Careers Framework
  • Career Mapping Quiz
  • Certification Framework Tool
  • Developing your career
  • Managing cyber talent
  • Glossary of cyber terms
  • Outreach and Diversity
  • Role Models
Ethics
  • Ethical Declaration
  • Ethical Principles for individuals
  • Ethics scenarios
Corporate Membership
  • Member directory
  • Member Login
Get Involved
  • News
  • Events
  • Blogs
  • Thought Leadership
  • On Demand Webinars
  • Volunteering
Contact
  • Newsletter Signup