As a Senior Engineer – Threat Modeling, you will play a key individual contributor role focused on security architecture and threat modeling across public cloud environments.
You'll partner closely with engineering, information security, and program teams to conduct architecture reviews, identify security risks, and recommend effective mitigation strategies.
Responsibilities
Lead threat modeling activities using established frameworks (e.g., STRIDE, MITRE ATT&CK, PASTA)
Identify exploitable threats and define appropriate security controls
Manage the lifecycle of threats and mitigation plans
Deliver high-quality threat models within defined timelines
Provide recommendations to improve threat modeling processes
Communicate findings and progress to technical teams and senior stakeholders
Qualifications
8+ years of overall technical experience; 5+ years in cybersecurity
Strong AWS expertise (required) and cloud security frameworks
Solid foundation in security architecture and best practices
Experience with REST APIs, IaC (Terraform, CloudFormation), and scripting
Familiarity with Jira or similar ticketing systems
Ability to identify vulnerabilities using OWASP or CWE
Knowledge of CI/CD, SDLC, DevOps, and agile environments
Understanding of containers, Kubernetes, serverless, and Helm
Strong analytical, documentation, and communication skills
Adversarial mindset with a continuous learning attitude
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Engineering
Industries
Financial Services and IT Services and IT Consulting
