832 Threat Modeling Jobs - Page 25

Keywords: Cloud Security, Kubernetes Security, SaaS Security, DevSecOps, Infrastructure as Code, CI/CD Security, CSPM, Zero Trust, Cloud-Native Security, Identity and Access Management (IAM), Secrets Management, Threat Modeling, Risk Assessment, Secure SDLC, GitOps, API Security, Container Security Role Overview: Were looking for a Cloud-Native Security Lead to drive the security strategy across our modern cloud-native stack. This role calls for a thoughtful and pragmatic engineer, someone who understands the business context, evaluates trade-offs, and proposes secure, scalable solutions. You should be comfortable navigating ambiguity, using vendor guidance as one input, not the only one, an...

Senior Cyber Security Partner | 8+ yrs exp | Lead threat modeling, secure SDLC, cloud security (AWS/Azure/GCP), compliance (OWASP/NIST/ISO), incident response, mentoring, and tool evaluation. Pref: CISSP/CISM/CEH. Hybrid – Bengaluru.

Educational Requirements Bachelor of Engineering Service Line Infosys Quality Engineering Responsibilities As part of the Infosys delivery team, your primary role would be to ensure effective Design, Development, Validation and Support activities, to assure that our clients are satisfied with the high levels of service in the technology domain. You will gather the requirements and specifications to understand the client requirements in a detailed manner and translate the same into system requirements. You will play a key role in the overall estimation of work requirements to provide the right information on project estimations to Technology Leads and Project Managers. You would be a key cont...

As a highly experienced Principal, Application Security Engineer, you will play a crucial role in leading and evolving our global application security strategy. Your primary focus will be to ensure that our products and platforms are developed securely from the ground up and remain resilient in the face of an ever-changing threat landscape. Collaboration with engineering, product, DevOps, and Security teams will be key as you work to integrate security into our software development life cycle (SDLC), promote secure coding practices, and influence stakeholders and leaders throughout the organization. Your responsibilities will include developing application security strategies at a global lev...

As the System Architect for Enterprise Services - Treasury, Real Estate, and Audit Value Stream, your primary responsibility is to define and communicate a shared architectural vision that supports current and future business needs. You will collaborate with Agile teams to evaluate solutions, validate technology assumptions, and converge on the best possible solution. Working closely with Enterprise and Solution Architects, you will ensure that the solutions delivered align with broader architecture guardrails. Your role involves leading and participating in the planning, development, and high-level design of product solutions, as well as defining system interfaces, data structures, integrat...

Experience in automotive cybersecurity, systems engineering, or related roles Strong knowledge of ISO/SAE 21434, ISO 26262, UNECE R155, and related standards Experience in writing and managing cybersecurity requirements for automotive systems and subsystems Proficient in threat modeling, risk assessments, and vulnerability analysis Skills & Competencies: Strong understanding of automotive architecture and in-vehicle communication protocols (CAN, Ethernet, etc) Knowledge of Automotive SPICE Familiarity with security mechanisms such as encryption, authentication, and intrusion detection, firewall Experience with tools for requirements management (e-g, DOORS, Jira), threat modeling, and risk as...

Dear Candidate, We are hiring a Security Engineer to design and implement security measures that protect IT systems, data, and networks against threats and breaches. Key Responsibilities: Design and deploy security solutions such as firewalls, IDS/IPS, and endpoint protection. Conduct vulnerability assessments, penetration tests, and threat modeling. Monitor systems for security incidents and respond promptly. Ensure compliance with security standards (ISO 27001, NIST, etc.). Collaborate with DevOps and IT teams to embed security best practices. Required Skills & Qualifications: Proficiency in security tools (Nessus, Metasploit, Splunk, Wireshark). Strong understanding of network and applica...

As a Security Triage Analyst at Snowflake, you will be part of a global team and have the opportunity to learn from the industry's best-in-class experts. You will serve as the front-line of the Incident Response Team, where your responsibilities include determining the scope and impact of security alerts without breaching SLAs. This involves monitoring multiple alerting systems for both corporate IT and production environments. You will triage security alerts, take remediation actions, or escalate validated threats as necessary. By being part of this role, you will have the chance to hone your technical and analytical skills while gaining invaluable experience. Additionally, you will follow ...

You will be joining Olympus Corporation, a globally renowned leader in endoscopy enabled healthcare with a rich history spanning nearly a century. Olympus is committed to integrity, innovation, and quality, excelling in various fields including endoscopy, microscopy, life sciences, and digital imaging. As the Sr Manager, India, you will be leading the digital engineering R&D and acting as the business process owner for Olympuss Standard Operating Procedures related to digital product development. Your responsibilities will include overseeing digital systems design, cloud architecture, data engineering, AI/ML development, software integration, and more. You should be a strategic thinker with ...

As an API and Application Security Specialist at Cywarden, you will play a crucial role in ensuring the robustness and resilience of APIs and applications. Working closely with developers, architects, and security teams, you will be responsible for implementing advanced security measures to protect critical digital assets. Your expertise will be instrumental in identifying and addressing potential security threats and vulnerabilities within API ecosystems and software applications. Your key responsibilities will include developing and implementing comprehensive security strategies aligned with organizational goals, conducting security assessments through penetration testing and code reviews,...

Role & RESPONSIBILTY Conduct threat modeling and risk assessments to evaluate potential security risks associated with the organization. Provide guidance on risk remediation strategies and the implementation of countermeasures to address identified security risks. Ensure GDPR & PCI-DSS compliance across all areas of the organization. Work with the development team to ensure compliance with SDLC lifecycle and secure coding practices. Lead encryption efforts and disable deprecated protocols to maintain data security while in transit or at rest. Incorporate NIST framework into the organization's security practices and stay up-to-date with the latest controls. Review penetration testing reports,...

The Opportunity As a part of FICOs highly modern and innovative analytics and decision platform, the Cyber-Security Engineer will help shape the next generation security for FICOs Platform. You will address cutting edge security challenges in a highly automated, complex, cloud & microservices driven environments inclusive of design challenges and continuous delivery of security functionality and features to the FICO platform as well as the AI/ML capabilities used on top of the FICO platform." VP of Engineering. What Youll Contribute Secure the design of next next-generation FICO Platform, its capabilities, and services. Support full-stack security architecture design from cloud infrastructur...

As a Principal Application Security Engineer at Prudent Technologies and Consulting, you will be responsible for leading the web application penetration testing services. Your role will involve mentoring junior security consultants, delivering high-value security assessments to global clients, and advancing the offensive security capabilities of the organization. You will serve as a technical leader within the offensive security practice, focusing on web application penetration testing methodologies. Your responsibilities will include leading complex security engagements, providing expertise to clients and internal teams, mentoring junior consultants, and contributing to service offerings de...

As a member of the Software Security Engineering team at Splunk, a Cisco company, you will play a crucial role in tackling sophisticated security challenges at scale. Working closely with product development teams, you will be responsible for implementing secure software practices across Splunk's entire product portfolio. By analyzing evolving vulnerability patterns and real-world attack tactics, you will contribute to crafting innovative security solutions that safeguard Splunk's industry-leading products. Collaborating with Product Security, Risk, and Compliance teams, you will ensure that Splunk not only meets but exceeds new policy and regulatory requirements. The Global Security Team at...

We are seeking a skilled and motivated Cyber Security Engineer to lead efforts in securing our Software as a Medical Device (SaaMD) offerings. This pivotal role ensures global compliance and best-in-class security practices throughout the software development lifecycle, anchored in standards like ISO/IEC 27001, ISO/IEC 27002, and ISO 13485. Key Responsibilities : Security Control Implementation : - Design, implement, and monitor robust security controls across the SaaMD SDLC. - Align with ISO/IEC 27001, 27002, and ISO 13485 frameworks. - Guide secure coding, DevSecOps practices, and vulnerability management. - Apply a risk-based approach to identify and mitigate threats proactively. Complian...

About this Role: Wells Fargo is seeking a Senior Information Security Analyst. Responsibilities : This position is a Senior Information Security Analyst performing the role of an Application Security Champion who will be responsible for reviewing security requirements and security design submissions by application teams. Reviewing security requirements and security design submissions by application teams. Submissions will either be approved or rejected based on evaluation and comparison to systems of record. Provide information security consultation to improve awareness and compliance with Enterprise Application Security Program (EASP) policy, processes, and standards. Perform remediation of...

Must have Skills - 7+ years software development experience with emphasis on architecture 2+ years as Product Manager or Product Owner SaaS company experience Customer engagement experience (internal & external) SDLC familiarity Encryption and data protection experience Web product security expertise Ability to manage security-related features Strong stakeholder communication skills Experience with security frameworks (OWASP, NIST) Cross-functional team leadership API security knowledge . Good to Have Skills Knowledge of compliance standards (SOC2, ISO 27001, GDPR) Experience with threat modeling Background in cybersecurity or InfoSec Cloud security experience (AWS, Azure, GCP) Agile/Scrum m...

Job Area: Engineering Group, Engineering Group > Software Engineering General Summary: As a Product Security Engineer focused on vulnerability research and exploit mitigation, you will play a critical role in securing software systems by identifying and mitigating vulnerabilities at both the source code and binary levels. This role is ideal for someone who is passionate about software security, has a deep understanding of C/C++ internals, and enjoys building and applying tools to uncover subtle flaws before attackers do. Your primary focus will be on analyzing C/C++ source code using static analysis techniques, both manual and automated, to detect memory safety issues, logic errors, and inse...

As an experienced and visionary Java Architect, you will lead the design and development of cutting-edge platforms. Your role requires a deep understanding of enterprise architecture and modern software engineering practices. Your primary responsibility will be to define and own the overall architecture, focusing on scalability, performance, and security while promoting technical excellence across cross-functional teams. Your key responsibilities will include leading technical design discussions, collaborating with product, engineering, and infrastructure teams to make informed decisions, and ensuring the scalability, performance, security, and maintainability of the systems. You will also d...

As an Information Security Engineer with over 6 years of experience, your primary responsibility will be to conduct vulnerability assessments and policy compliance scanning using tools like Qualys across various environments including on-premises, cloud, containers, databases, web services, and infrastructure. You will play a crucial role in validating scan results, eliminating false positives, and producing accurate, high-quality vulnerability reports. In this role, you will act as a technical subject matter expert, analyzing findings, tracing root causes, and recommending sustainable remediations to support teams. It will be essential for you to maintain and share a knowledge base for vuln...

Apenetration testing (PenTest) and disaster recovery (DR) test job description typically requires candidates to have expertise in both cybersecurity and business continuity. The role involves conducting authorized simulated attacks to identify vulnerabilities in systems and infrastructure, developing and testing DR plans, and providing recommendations for improvement. Penetration Testing (PenTest) Responsibilities : Vulnerability Assessment: Identify weaknesses in computer systems, networks, and applications. Simulated Attacks: Perform ethical hacking exercises to mimic real-world attacks. Reporting and Recommendations: Document findings and provide actionable recommendations for remediation...

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Network Security Operations Good to have skills : NAMinimum 12 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to ass...

Overview The Information Security Assessment Lead is responsible for safeguarding PepsiCo's digital assets by assessing the cyber risk and compliance of new and changing systems against information security requirements and managing risks associated with IT and Information Security systems throughout the project lifecycle. The ISA Lead will collaborate with various security teams and businesses to facilitate compliance with Information Security standards, provide technical guidance for key strategic initiatives, and drive the secure delivery of technology solutions within PepsiCo. The role heavily focuses on security risk-based assessments, and data-driven decision-making and automation. Res...

Overview The Information Security Assessment Lead is responsible for safeguarding PepsiCo's digital assets by assessing the cyber risk and compliance of new and changing systems against information security requirements and managing risks associated with IT and Information Security systems throughout the project lifecycle. The ISA Lead will collaborate with various security teams and businesses to facilitate compliance with Information Security standards, provide technical guidance for key strategic initiatives, and drive the secure delivery of technology solutions within PepsiCo. The role heavily focuses on security risk-based assessments, and data-driven decision-making and automation. Res...

Proficiency in Cyber Security solutions, IT consulting, and infrastructure security Experience in lead generation, sales pipeline management, and client relationship management Strong negotiation, presentation, and closing skills Provident fund