832 Threat Modeling Jobs - Page 23

As a Cloud Security Expert, you will be responsible for designing and implementing secure cloud security solutions using tools such as Microsoft Sentinel. You will lead the development of security strategies, policies, and procedures to safeguard client data in the cloud. Your role will involve collaborating with DevOps teams to integrate security into the continuous delivery pipeline using automation tools like Terraform and AKS. Additionally, you will conduct risk assessments, threat modeling, and security testing to identify and address security vulnerabilities. Your expertise will be crucial in providing guidance on cloud security best practices and technologies to clients and team membe...

As a Software Architect at our Noida location, you will be responsible for architecting, designing, and implementing scalable HSM components to meet performance and security objectives. This includes developing APIs for secure integration of IDEMIA HSM functionality into enterprise and cloud applications using various protocols. You will also be tasked with implementing and optimizing cryptographic algorithms, leading root-cause analysis for complex HSM-related issues, and ensuring security compliance with global standards and regulations. Your role will involve performing architectural risk assessments, security reviews, and supporting internal and external security audits. Collaboration wi...

As a Hardware/Firmware Product Security Engineer at Sandisk, you will play a crucial role in the Product Security Assurance team focusing on security considerations for Client and Enterprise storage products, specifically Solid State Drives (SSDs) incorporating hardware and firmware components. Your responsibilities will include providing clear technical guidance and risk mitigation advice to engineering and business leaders across various levels. You will contribute to evolving secure development practices at Sandisk to align with dynamic market trends, standards, and regulatory requirements. Throughout the product development lifecycle, you will offer expert advice on secure development pr...

As a Lead Product Security Analyst expert, you will join the Product Security team at the forefront of the digital transformation within the global organization. Your role will involve leading security architecture reviews, threat modeling, and risk assessments for complex systems and products. You will define and drive the adoption of secure development practices across engineering teams, collaborate with various stakeholders to embed security into product roadmaps and design decisions, and develop scalable security frameworks, standards, and automation tools. In addition, you will be responsible for conducting advanced security testing, overseeing remediation efforts, evaluating and integr...

You should have a Bachelor's degree in Computer Science, a related technical field, or equivalent practical experience. Additionally, a minimum of 5 years of experience with security assessments, security design reviews, or threat modeling is required. Previous experience in Malware, Reverse Engineering, and Software Development is also essential. Preferred qualifications include expertise in Android reverse engineering (DEX, ARM), malware analysis, threat modeling, incident/emergency response, OS hardening, vulnerability management, pen testing, or cryptographic concepts. Experience in Android application development using C++, Java, or Kotlin is highly valued. A solid technical foundation ...

We are looking for a highly motivated candidate to take ownership and assess the technology risks associated with SaaS/PaaS applications across the Banking business. Your responsibilities will include adhering to IS risk, ensuring controls and compliance guidance across Banking Tech in-house/vendor SaaS/PaaS platforms, and ensuring compliance with Citi IS standards, policies, and procedures. You must have a strong technical acumen and domain knowledge for secure application deployment in Cloud (SaaS, IaaS, PaaS) and associated controls. Joining an elite team of technology and business experts, you will be responsible for designing and securing the deployment and adoption of public Cloud to e...

As a Principal Engineer in Security & Cloud Engineering at our company, you will be responsible for leading the efforts to enhance security measures and cloud engineering practices for our enterprise Java product. Your role will involve overseeing both On-Prem and SaaS deployments, implementing secure SDLC practices, driving DevSecOps automation, ensuring container security, and strengthening platform integrity. You will collaborate closely with engineering, DevOps, QA, and compliance teams to safeguard our product and infrastructure against vulnerabilities and maintain compliance standards. Your responsibilities will include leading secure coding practices, integrating various security test...

As a Senior Technical Lead Mobile at Allegion, you will be part of a dynamic team that focuses on creating safety and security solutions for people globally. Allegion is a leading company with a strong presence in the security industry, specializing in products that secure doorways and more. Allegion India, located in Bangalore, is at the forefront of developing innovative solutions with a talented team of over 600 professionals. You will be involved in product development processes that require collaboration among various engineering groups, from defining product requirements to system testing and validation before products are launched in the market. Your role as a Senior Software Technica...

You will be responsible for conducting comprehensive penetration testing, vulnerability assessments, and security reviews of applications, infrastructure, and networks. You are expected to identify, exploit, and document security vulnerabilities across systems and provide recommendations for remediation. Additionally, you will simulate advanced attacks to evaluate the effectiveness of security controls and pinpoint potential areas of compromise. Collaboration with development, infrastructure, and DevOps teams is essential to integrate security into the development lifecycle and ensure Infrastructure-as-Code (IaC) security. You will play a key role in developing detailed security test plans, ...

You are a Principal Engineer responsible for leading Security and Cloud Engineering efforts for an enterprise Java product with On-Prem and SaaS deployments. Your role involves implementing secure SDLC practices, DevSecOps automation, container security, and platform hardening. Collaboration with various teams is essential to protect the product and infrastructure from vulnerabilities while ensuring compliance with industry standards. As the Principal Engineer, your key responsibilities include: - Leading secure coding practices and integrating security testing tools into the development lifecycle. - Performing threat modeling, assessing security risks, and guiding teams on secure implementa...

The Cyberwatcher role involves maintaining expert knowledge of Advanced Persistent Threat (APT) Tools, Techniques, and Procedures (TTPs), as well as forensics and incident response best practices. You will be expected to use threat intelligence and threat models to create threat scenarios, conduct threat-hunting campaigns, and analyze various data sets from diverse sources. Proactive research on systems and networks to identify advanced threats is a crucial aspect of this role. Reporting risk analysis and threat findings to stakeholders, providing automated alerts for emerging threats, and collaborating with different teams to enhance security checks and detection performance are also part o...

As a Security QA Engineer, you will play a crucial role in ensuring the security and compliance of our software applications. With 3+ years of experience in software QA, including at least 12 years dedicated to security testing, you will be responsible for designing, implementing, and executing tests to identify security vulnerabilities. Your collaboration with developers, DevOps, and InfoSec teams will be essential in proactively securing applications. Your responsibilities will include designing, developing, and maintaining both automated and manual test cases with a primary focus on security. You will conduct static and dynamic application security testing, identify and track security-rel...

As a Cybersecurity Application Security Consultant with a focus on DevSecOps in Bhopal, Madhya Pradesh, you will play a crucial role in ensuring the secure design, development, and deployment of applications by integrating security measures across the SDLC. Your responsibilities will include integrating security into CI/CD pipelines, performing various security testing such as SAST, DAST, IAST, and SCA, conducting threat modeling and security architecture reviews, guiding teams on secure coding practices, and automating security testing using tools like Burp Suite, ZAP, Checkmarx, SonarQube, among others. Additionally, you will be involved in supporting incident response activities and maint...

Sonatype is the software supply chain security company. We provide the world's best end-to-end software supply chain security solution, combining proactive protection against malicious open source, enterprise-grade SBOM management, and the leading open source dependency management platform. This empowers enterprises to create and maintain secure, quality, and innovative software at scale. As founders of Nexus Repository and stewards of Maven Central, the world's largest repository of Java open-source software, we are software pioneers with unmatched open source expertise. We empower innovation with a commitment to building faster, safer software and leveraging AI and data intelligence to mit...

Dexcom Corporation is a pioneer and global leader in continuous glucose monitoring (CGM), having begun with a dream to revolutionize diabetes management and improve health outcomes. With a mission to empower individuals to take control of their health, Dexcom is dedicated to providing personalized, actionable insights to address significant health challenges. The company is continuously evolving and expanding its vision beyond diabetes to develop solutions for various health conditions, striving to enhance human health globally. As part of the Research and Development Cybersecurity team at Dexcom, you will play a crucial role in designing and implementing new applications and features for th...

As a Security Lead, you will be responsible for overseeing the development and implementation of security measures to protect your organization's digital assets, infrastructure, data, and systems from cyber threats. Your role will involve leading security strategy, managing risk, responding to incidents, and ensuring regulatory compliance across IT operations. Certifications such as CISSP, CISM, CEH, CompTIA Security+, or AWS/Azure Security are highly desirable. With a minimum of 5 years of relevant experience in cybersecurity, including at least 2-3 years in a leadership role, you should have proven experience in managing enterprise security for networks, applications, and cloud infrastruct...

As an Information Security Analyst at R Systems, you will play a crucial role in our Security Operations team, contributing to the overall Global Information Security function. With a focus on Security Operation, Incident Response/Management, DLP, Forensic/Reverse engineering, Cloud Security & IAM, you will bring your expertise to oversee multiple security solutions like XDR, IAM, Firewall, Email Gateway, SIEM, CASB, etc. Your responsibilities will include working as an InfoSec Analyst in our ASOC, performing incident response and threat hunting tasks in collaboration with our Managed Security Services Provider (MSSP). With 9 to 12 years of experience in SOC, Incident Response, IAM, DLP, SIE...

We are seeking a highly motivated candidate to take ownership, to assess the technology risks associated with SaaS/PaaS applications across Banking business. You will be responsible for adhering IS risk and ensuring controls and compliance guidance across Banking Tech inhouse/vendor SaaS/PaaS platforms by ensuring compliance with Citi IS standards, policies, and procedures. The individual will have strong technical acumen and domain knowledge for secure application deployment in Cloud (SaaS, IaaS, PaaS), and associated controls. You will join an elite team of some of the smartest minds in the technology and business that have been tasked with design and secure deployment and adoption of publ...

The Senior Architect - Cloud Cybersecurity role at United Airlines Business Services Pvt. Ltd involves supporting the maturing of cloud security capabilities for United Airlines. As part of a cross-disciplinary Cyber team, you will be responsible for full stack security architecture, including the creation and maintenance of security documentation. Collaborating with various teams, you will ensure the adoption of security best practices throughout the application lifecycle. Additionally, you will conduct threat modeling, develop cloud security policies, and act as a subject matter expert in various technology domains. Key Responsibilities: - Develop security documentation and partner with te...

About Narayana Health: Narayana Health is headquartered in Bengaluru, India, and operates a network of hospitals in India and Overseas. The mission of Narayana Health is to deliver high-quality, affordable healthcare services to the broader population. The Narayana Health Group is India's leading healthcare provider and one of the largest hospital groups in the country with a network of 21 hospitals, 5 heart centers, and 19 primary care facilities. Annually, the NH group treats over 2.6 Million patients from over 78 countries covering 30+ medical specialties. The Centers of Excellence at Narayana Health help in treating Adult & Pediatric patients, with one of the largest transplant centers i...

As a Security Testing professional with 3-10 years of experience in SAST, DAST, API, Network, Mobile Security, DevSecOps, Cloud Security, Threat Modelling, Vulnerability Management, Logging & Audit, GRC, Security Operations, and IAM, you will be an integral part of the Infosys delivery team. Your main responsibility will be to ensure effective Design, Development, Validation, and Support activities, aiming to meet and exceed client expectations in the technology domain. Your role will involve gathering requirements and specifications to deeply understand client needs, subsequently translating them into system requirements. You will also play a crucial part in estimating work requirements acc...

Cowbell is signaling a new era in cyber insurance by harnessing technology and data to provide small and medium-sized enterprises (SMEs) with advanced warning of cyber risk exposures bundled with cyber insurance coverage adaptable to the threats of today and tomorrow. Championing adaptive insurance, Cowbell follows policyholders" cyber risk exposures as they evolve through continuous risk assessment and continuous underwriting. In its unique AI-based approach to risk selection and pricing, Cowbell's underwriting platform, powered by Cowbell Factors, compresses the insurance process from submission to issue to less than 5 minutes. Founded in 2019 and based in the San Francisco Bay Area, Cowbe...

The opportunity available as a Senior Software Security Engineer within FICO's advanced analytics and decision platform is a highly rewarding role where you will play a key part in shaping the cutting-edge security features for the future of the FICO platform. Your responsibilities will involve addressing intricate security challenges in automated, complex, cloud, and microservices-driven environments. This will include designing security solutions, integrating security features, and ensuring the continuous delivery of security functionalities for both the FICO platform and the AI/ML capabilities utilized on the platform. Your contributions to the team will include securing the design of the...

You will be responsible for defining and communicating a shared architectural vision for a complex product built on the Salesforce platform, focusing on Service Cloud, Manufacturing Cloud, and Field Services Lightning. Your role involves collaborating with Agile teams to evaluate solutions, validate technology assumptions, and drive platform direction aligned with business needs. Additionally, you will work closely with Enterprise and Solution Architects to deliver solutions that adhere to broader architecture guardrails. Your key responsibilities include setting the strategic direction and roadmap for Service Capabilities, leading the planning and high-level design of complex product soluti...

As a Security Testing professional with 3-10 years of experience in SAST/DAST/API, Network, Mobile Security, DevSecOps, Cloud Security, Threat Modelling, Vulnerability Management, Logging & Audit, GRC, Security Operations, and IAM, your role as a part of the Infosys delivery team will encompass various responsibilities. Your main responsibility will be to ensure effective Design, Development, Validation, and Support activities to meet and exceed client expectations in the technology domain. This will involve gathering requirements and specifications to deeply understand client needs and translating them into system requirements. Additionally, you will be pivotal in estimating work requiremen...