826 Threat Modeling Jobs - Page 13

Cloud Security Posture Management: Implement and maintain security configurations across cloud platforms (AWS, Azure, GCP) using tools like Wiz, Valence, and native cloud services. Threat Detection & Response: Develop and manage detection mechanisms for toxic cloud risks, public exposure, and runtime threats. Collaborate with SOC and incident response teams to triage and remediate issues. Secure SDLC Integration: Embed security into CI/CD pipelines using SAST, DAST, dependency scans, and secrets detection. Support early threat modeling and vulnerability assessments during design and release phases. Compliance & Auditing: Conduct regular audits to ensure alignment with CIS benchmarks, NIST, O...

Architecting and implementation of cloud security monitoring platforms MS Sentinel Provide consulting to customers during the testing, evaluation, pilot, production, and training phases to ensure a successful deployment. Perform as the subject matter expert on Cloud Security solutions for the customer, use the capabilities of the solution in the daily operational work for the end customer. Securing overall cloud environments by applying cybersecurity tools and best practices Advise customers on best practices and use cases on how to use this solution to achieve customer end state requirements. Content development which includes developing process for automated security event monitoring and a...

Role Overview We are seeking a highly skilled Security Engineer with expertise in threat simulation, the MITRE ATT&CK framework, and scripting. The ideal candidate will have a strong background in penetration testing, red teaming, or threat emulation, along with hands-on experience in BAS (Breach and Attack Simulation) tools. The role involves evaluating security posture, simulating real-world attack scenarios, and collaborating with SOC, threat intelligence, and automation teams to strengthen defenses. Key Responsibilities Design, execute, and manage threat simulations aligned with the MITRE ATT&CK framework. Conduct penetration testing, red team exercises, and threat emulation to identify ...

Information security configuration, Secure configuration review on windows, linux and others. Create Comprehensive assesment report

We are seeking an experienced Application Security Manager to lead our security initiatives and ensure the integrity, confidentiality, and availability of our systems and data. This role is crucial in safeguarding our digital assets and maintaining compliance with industry for - 1. To Integrate security tools,standards,and processes into the product lifecycle (PLC). 2. Ensure that developers and QA personnel are trained with the appropriate level of security knowledge to perform their daily activities. 3. Improve and support application security tool deployments includingstaticanal ysis and run time testing tools and secure development standards. 4. Conduct and manage periodic penetration te...

Dear Candidates, Greetings! Enclosed below the Job description- Key Responsibilities: 1. Security Operations & Incident Management Monitor and manage daily security operations, including threat detection, incident response, and log analysis through SOC tools. Coordinate incident handling activities and conduct root cause analysis and reporting. Maintain and update the incident response playbook and ensure relevant stakeholders are informed. 2. Regulatory Compliance & Risk Management Support internal and external audits related to RBI, NPCI, CERT-In, PCI DSS, and ISO 27001. Maintain compliance documentation and evidence for inspections and partner audits. Conduct risk assessments, BCP/DR dril...

Dear Candidates, Greetings! Enclosed below the Job description- Key Responsibilities: 1. Security Operations & Incident Management Monitor and manage daily security operations, including threat detection, incident response, and log analysis through SOC tools. Coordinate incident handling activities and conduct root cause analysis and reporting. Maintain and update the incident response playbook and ensure relevant stakeholders are informed. 2. Regulatory Compliance & Risk Management Support internal and external audits related to RBI, NPCI, CERT-In, PCI DSS, and ISO 27001. Maintain compliance documentation and evidence for inspections and partner audits. Conduct risk assessments, BCP/DR dril...

Will be working on Application security testing Skills. Strategize and plan static and dynamic application security testing (SAST/DAST / SCA) tools. Will be responsible for Secure Coding Practices Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise BE / B Tech in any stream, M.Sc. (Computer Science/IT) / M.C.A, with Minimum 5 plus years of experience Application Security Testing: Experience with static and dynamic application security testing (SAST/DAST/ SCA) tools. Secure Coding Practices: Knowledge of secure coding standards (e.g., OWASP Top Ten) and experience in reviewing code for security vulnerabilities. Threat Modeling...

Role Overview: As a Senior Manager of Security Engineering at JPMorgan Chase within the Cybersecurity & Tech Controls team, you will step up as a tech leader and innovator, leveraging your knowledge and mentorship to lead teams to excellence in this high-impact role. Your responsibilities will include providing technical coaching and advisory for multiple technical teams, anticipating the needs and potential dependencies of other functions within the firm, and influencing budget and technical considerations to advance operational efficiencies and functionalities. Key Responsibilities: - Provide overall direction, oversight, and coaching for a team of entry-level to mid-level security enginee...

About this role: Wells Fargo is seeking a Senior Information Security Engineer. Wells Fargos Cyber Threat Management: Strategic Intelligence & Outreach (SIO) team develops and maintains key relationships through engagements with private and public sector organizations by enhancing the cyber defense posture of Wells Fargo to remain at the forefront of strategic intelligence. Our mission is to conduct Cyber Intelligence outreach with entities external to Wells Fargo for the purposes of information sharing, fostering cyber community relations, and Peer-to-Peer incident management during cyber events. Strategic Intelligence & Outreach (SIO) Develop and maintain key relationships, through engagem...

As SIEM Analyst, you will be responsible for handling the daily monitoring of Information security events on the SIEM tools. Come join our team of IBM experts, who are leaders with vision, distinguished engineers and IT architects who have worked with thousands of clients to transform enterprise IT, migrate to cloud, apply automation and ensure business continuity. We help client run their IT better, accelerate innovation and deliver unmatched performance with the power automation. If you thrive in a dynamic, reciprocal workplace, IBM provides an environment to explore new opportunities every single day. And if you relish the freedom to bring creative, thoughtful solutions to the table, ther...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Architecture Design Good to have skills : NA Minimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As Security Architect ability to provide Enterprise Security Strategy, Enterprise security design, performing threat modeling for building a Secure Application and Infrastructure for enterprise (Cloud, On-p...

About this role: Wells Fargo is seeking a Senior Information Security Engineer. Wells Fargos Cyber Threat Management: Strategic Intelligence & Outreach (SIO) team develops and maintains key relationships through engagements with private and public sector organizations by enhancing the cyber defense posture of Wells Fargo to remain at the forefront of strategic intelligence. Our mission is to conduct Cyber Intelligence outreach with entities external to Wells Fargo for the purposes of information sharing, fostering cyber community relations, and Peer-to-Peer incident management during cyber events. Strategic Intelligence & Outreach (SIO) and Threat Management Analytics Develop and maintain ke...

Your Impact: OpenText, Bengaluru seeks a Senior Software Engineer for its File Server Group who has the experience, talent, skill set and confidence to work with a world-class development team at IDC. The team member will be responsible to work along with product development team to contribute primarily on the product development. Will take complete ownership of assigned modules in terms of quality, schedule, and customer responsiveness. We are looking for people with the right blend of skills, education, experience, and attitude to fill these exciting and challenging positions. Above all we want people who are smart and get things done. OpenText Cloud Integrated Solution provides the abilit...

As part of our world-class engineering team at Tekion, we are expanding our Product Security Engineering function . Our dev teams work across a variety of cutting-edge tech stacks in a fast-moving environment, which makes security both a challenge and an opportunity to innovate. We prioritize guardrails over roadblocks in our security culture, empowering developers to move fast while ensuring that security is built-in, scalable, and resilient.The Product Security team is responsible for integrating security into all phases of the SDLC from design through deployment including infrastructure and application security, secure development practices, threat modeling, and DevSecOps automation. Our ...

Network/Infrastructure & Security domain. Hands on experience with various OS (Windows/Linux), Networking, Security appliances, Databases (MS SQL, MySQL, Oracle)..

Role Responsibilities: Lead security architecture reviews and define secure design principles. Guide cloud security strategies across AWS, Azure, and GCP. Integrate security controls in SDLC and CI/CD pipelines. Collaborate with cross-functional teams on risk mitigation and compliance. Key Deliverables: Enterprise-wide secure architecture standards and frameworks. Defined roadmap for product and cloud security improvements. Risk assessments and post-incident security reviews. Adoption of DevSecOps tools and secure-by-design culture.

Role Responsibilities: Lead security architecture reviews and define secure design principles. Guide cloud security strategies across AWS, Azure, and GCP. Integrate security controls in SDLC and CI/CD pipelines. Collaborate with cross-functional teams on risk mitigation and compliance. Key Deliverables: Enterprise-wide secure architecture standards and frameworks. Defined roadmap for product and cloud security improvements. Risk assessments and post-incident security reviews. Adoption of DevSecOps tools and secure-by-design culture.

Level - L1+L2+L3 L-1 Analyze results from Fortify WebInspect scans Perform manual verification for reported vulnerabilities Maintain scan health monitoring, schedule adherence, and successful completion Document and share validated results and reports within SLA Drive remediation status tracking and escalate when needed Participate in continuous improvement of scanning logic and tool performance. L-2 Configure and manage DAST scans using Fortify WebInspect across CI/CD and ad hoc needs Maintain scan authentication settings, schedules, and scan success Manual exploit validation of findings reported Security assessments of the threat scenarios and abuse cases Assess business workflows and crit...

Level - L1+L2+L3 L-1 Analyze results from Fortify WebInspect scans Perform manual verification for reported vulnerabilities Maintain scan health monitoring, schedule adherence, and successful completion Document and share validated results and reports within SLA Drive remediation status tracking and escalate when needed Participate in continuous improvement of scanning logic and tool performance. L-2 Configure and manage DAST scans using Fortify WebInspect across CI/CD and ad hoc needs Maintain scan authentication settings, schedules, and scan success Manual exploit validation of findings reported Security assessments of the threat scenarios and abuse cases Assess business workflows and crit...

Level - L1+L2+L3 L-1 Analyze results from Fortify WebInspect scans Perform manual verification for reported vulnerabilities Maintain scan health monitoring, schedule adherence, and successful completion Document and share validated results and reports within SLA Drive remediation status tracking and escalate when needed Participate in continuous improvement of scanning logic and tool performance. L-2 Configure and manage DAST scans using Fortify WebInspect across CI/CD and ad hoc needs Maintain scan authentication settings, schedules, and scan success Manual exploit validation of findings reported Security assessments of the threat scenarios and abuse cases Assess business workflows and crit...

Level - L1+L2+L3 L-1 Analyze results from Fortify WebInspect scans Perform manual verification for reported vulnerabilities Maintain scan health monitoring, schedule adherence, and successful completion Document and share validated results and reports within SLA Drive remediation status tracking and escalate when needed Participate in continuous improvement of scanning logic and tool performance. L-2 Configure and manage DAST scans using Fortify WebInspect across CI/CD and ad hoc needs Maintain scan authentication settings, schedules, and scan success Manual exploit validation of findings reported Security assessments of the threat scenarios and abuse cases Assess business workflows and crit...

Level : - L2+L3 Job Role : - Perform end-to-end security review of AI/ML pipelines Identify threats such as adversarial inputs, model poisoning, data leakage Analyze AI codebases, training data flows, and deployed inference logic Utilize tools for robustness testing and privacy leakage detection Collaborate with data science teams to implement secure AI practices Provide reporting and remediation support within SLA Suggest automation opportunities in AI risk tracking pipelines

Level : - L2+L3 Job Role : - Perform end-to-end security review of AI/ML pipelines Identify threats such as adversarial inputs, model poisoning, data leakage Analyze AI codebases, training data flows, and deployed inference logic Utilize tools for robustness testing and privacy leakage detection Collaborate with data science teams to implement secure AI practices Provide reporting and remediation support within SLA Suggest automation opportunities in AI risk tracking pipelines

Level : - L2+L3 Job Role : - Perform end-to-end security review of AI/ML pipelines Identify threats such as adversarial inputs, model poisoning, data leakage Analyze AI codebases, training data flows, and deployed inference logic Utilize tools for robustness testing and privacy leakage detection Collaborate with data science teams to implement secure AI practices Provide reporting and remediation support within SLA Suggest automation opportunities in AI risk tracking pipelines