Dutech’s Job

Threat Modeler Security Engineer

Austin,TX

DatePosted : 4/1/2024 7:35:05 AM

JobNumber : DTS1017186101
JobType : Contract
Skills: Proficiency in threat modeling methodologies (e.g., STRIDE, DREAD, PASTA) and tools (e.g., Microsoft Threat Modeling Tool, OWASP Threat Dragon).
Job Description

We are seeking a skilled Threat Modeler Security Engineer to join our dynamic team. The ideal candidate will have a strong background in cybersecurity, with a focus on threat modeling and risk assessment methodologies. As a Threat Modeler Security Engineer, you will play a critical role in identifying potential security threats, assessing their impact, and devising strategies to mitigate risks effectively.

Responsibilities:

  • Conduct threat modeling exercises to identify and prioritize potential security threats across various systems, applications, and infrastructure components.
  • Collaborate with cross-functional teams to analyze system architectures, design documents, and business processes to identify security vulnerabilities and potential attack vectors.
  • Develop threat models, diagrams, and documentation to communicate security risks effectively to stakeholders.
  • Perform risk assessments and security impact analyses to evaluate the severity and potential impact of identified threats.
  • Work closely with development teams to integrate security best practices and threat mitigation strategies into the software development lifecycle (SDLC).
  • Research emerging threats, vulnerabilities, and attack techniques to stay abreast of the evolving cybersecurity landscape.
  • Provide guidance and recommendations to stakeholders on security best practices, controls, and countermeasures.
  • Participate in incident response activities and collaborate with incident response teams to investigate and mitigate security incidents.
  • Contribute to the continuous improvement of security processes, tools, and methodologies.

Requirements:

  • Bachelor’s degree in Computer Science, Information Security, or related field. Master’s degree preferred.
  • 3+ years of experience in cybersecurity with a focus on threat modeling, risk assessment, and security architecture.
  • Strong understanding of security principles, protocols, and technologies.
  • Proficiency in threat modeling methodologies (e.g., STRIDE, DREAD, PASTA) and tools (e.g., Microsoft Threat Modeling Tool, OWASP Threat Dragon).
  • Hands-on experience with security assessment tools and techniques (e.g., penetration testing, vulnerability scanning).
  • Knowledge of secure coding practices and common software vulnerabilities (e.g., OWASP Top 10).
  • Excellent analytical and problem-solving skills with attention to detail.
  • Strong communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams.
  • Relevant certifications such as CISSP, CEH, or GIAC are a plus.

SHARE THIS JOB

;