140 Threat Modelling Jobs

Responsible to participate in recommending improvements to SOC security process, procedures, policies, security incident management and vulnerability management processes * You will be involved in evaluating, recommending, implementing, and solving problems related to security solutions and evaluating IT security of the new IT Infrastructure systems * Keep yourself up-to-date with emerging security threats including applicable regulatory security requirements * Work in a 24x7 Security Operation Centre (SOC) environment Required Professional and Technical Expertise * Minimum 3+ years experience in SIEM. * Proven expertise in handling the daily monitoring of Information Security events on the ...

DevSecOps Engineer | Hybrid / Remote | Experience: 4-6 Years About Organization: Suviksan Technologies is a leading technology services and consulting company, specializing in delivering innovative solutions for complex digital transformation challenges. With over 3 + years of experience managing global enterprises, we proudly serve clients across 4 countries , including India, Germany, Sweden, and the Philippines. Our team of high-calibre technology professionals is dedicated to helping organizations overcome core challenges and unlock new market opportunities. Quick Role Overview We are looking for a motivated DevSecOps Engineer to join our cybersecurity team. The ideal candidate will brin...

Introduction & Summary: We are seeking a Lead or Principal Business Information Security Specialist with a minimum of 8-10 years of experience. The ideal candidate will be responsible for spearheading security risk management processes across designated business domains, ensuring compliance with corporate standards such as ISO 27001 and supporting the organization's overall Information Security Management System (ISMS). Main Responsibilities: Key responsibilities include leading security risk management initiatives and ensuring alignment with legal compliance and business continuity: Identify and document security risk scenarios. Evaluate asset criticality for confidentiality, integrity, and...

Your Role: Strong expertise in Application Security Testing (SAST, DAST, IAST, RASP, Penetration Testing) Hands-on experience with security testing tools: Burp Suite, OWASP ZAP, Checkmarx, Fortify, Veracode, WebInspect, AppScan In-depth knowledge of OWASP Top 10, SANS 25, Secure Code Review Experience in manual penetration testing for web, mobile, and API security Ability to perform Threat Modeling & Risk Assessments Secure SDLC integration: CI/CD security testing, DevSecOps implementation Strong knowledge of authentication, authorization, session management, and cryptography Experience with Cloud Application Security Testing (AWS, Azure, GCP) Your Profile: Certifications: OSCP, CEH, GWAPT, ...

As a Cloud Security Subject Matter Expert (SME) with 4 to 6 years of relevant experience, your role will involve designing, implementing, and maintaining robust cloud security architecture and controls for the cloud environments (public/multi-cloud) in line with best practices. You will configure, manage, and optimize CNAPP for cloud security posture management (CSPM), vulnerability management, misconfiguration detection, secrets management, identity & access management, and runtime risk detection. Your collaboration with DevOps, Cloud Engineering, and Product teams is essential to embed security practices into CI/CD pipelines, infrastructure as code, deployments, and operations. Your respon...

As a technical expert at Valtech Mobility, a strategic business unit of Valtech Group, dedicated to improving mobility by developing cutting-edge connected vehicle technologies, you will be part of the global Connected Vehicle team. With more than 30 million vehicles in 65 countries enjoying over 50 different connected car services, you will play a crucial role in the connected vehicle revolution alongside international industry experts with decades of experience. Key Responsibilities: - Taking responsibility for your work from design to implementation and operations - Building Java applications using Java 8 (and above), Spring Boot, and Hibernate - Designing scalable microservice architectu...

As a Product Quality Lead at Rockwell Automation, you will play a crucial role in owning the quality assurance of the assigned product line. Your responsibilities will include establishing an end-to-end quality strategy, gaining support, setting priorities, and leading the implementation process. Collaborating with multi-discipline teams using Agile Methodologies, you will work towards establishing and achieving quality goals throughout the development lifecycle. Your ability to participate in a dynamic environment and apply lessons learned will be essential. Building strong working relationships across product management, program management, and engineering partners will also be a key aspec...

Solution Architect ASRB Security Engineer Location: Hyderabad Experience: 5=10 years Immediate joiners Preferred. Kindly share profile to [HIDDEN TEXT] with Sub of ASRB Security Engineer along with notice period. An ASRB is a governing organization that examines and confirms compliance for hardware and software projects, both new and updated. The aim of the ASRB is to convey business requirements to interested parties and encourage uniform technology stacks and designs among cloud initiatives. Responsibilities: Experience in managing the Security Architecture engagement review request. Work directly with application teams and solution architects to review proposed architectures to ensure ali...

As a Security Analyst at Dedalus, a prominent healthcare technology company, you will have the opportunity to contribute to the team in Chennai, India, and play a crucial role in enhancing healthcare services for a healthier planet. Your primary responsibility will involve Security Vulnerability Analysis and Penetration Testing, where you will assess, exploit, and report security vulnerabilities in software applications and infrastructure, providing recommendations for appropriate solutions. Your duties will include: - Conducting Security Vulnerability Analysis, Threat Modelling, and Risk Assessment - Performing static code reviews using automated SAST tools and analyzing false positives - E...

As an Application Security Specialist, you will play a crucial role in ensuring the security of applications by conducting SSDLC security assessments, integrating security throughout the software development lifecycle, and ensuring applications meet the highest security standards before deployment. Key Responsibilities: - Conduct internal and third-party SSDLC risk assessments on critical assets and processes - Coordinate with project teams to enforce security frameworks in all phases of the SSDLC - Prepare security effectiveness reports for management - Perform SSDLC assessments aligning with security practices - Ensure new applications undergo SSDLC assessments before induction into data c...

Role: Product Security Engineer Location: Greater Hyderabad area will be remote but once converted they will need to go onsite once or a couple times a week but that is also flexible Duration: 6 month contract to likely hire or ongoing contract extensions Hous: Must work until 10:30pm IST Required Skills & Experience: 5 years experience in Software Security MUST HAVE EXPERIENCE WITH PRE MARKET SECURITY TESTING ON HARDWARE OR SOFTWARE Expertise in threat modelling, security risk management, secure coding, secure system development, and DevSecOps Strong experience with Polaris, BlackDuck, Synk, or similar Experience with security techniques, standards, and methods for authentication and author...

Must have •Hands-on product security experience from developing requirements, reviewing architecture, applying design principles, to application security, pipeline security, infrastructure, and secure monitoring. •Experience in leading security initiatives, dev(sec)ops practices with product and engineering teams. •Experience in threat modelling, risk assessment and designing security/privacy controls to mitigate risks. •Experience in application security, supply chain security, and using tools such as SAST, DAST, SCA, and IAC. •Experience in reviewing code to spot weaknesses and suggesting mitigations. •Experience applying industry standards like OWASP ASVS (Application Security Verificatio...

As an experienced candidate with 4 to 11 years of experience, you have the opportunity to work in Bengaluru or Thiruvananthapuram. Your role will involve the following key responsibilities: - Technical Security concept and Software Security concept - Vulnerability analysis (System and Software) - Threat analysis and risk assessment, Threat modelling - Security Testing like Fuzz and Penetration testing - Expertise in MACSec concepts - Good understanding of HSM, Secure boot, Secure updates, cryptographic libraries, True Random number generator, Signing (ECDSA, RSA) - Good understanding on OPTEE OS, ARM Trusted Firmware, E-fusing - Aware of Crypto terminologies like encryption (AES, ECC), signi...

Job Description Job title: Information Security Lead u00A0 Your role: Information Security Lead need to be strong in the below mentioned areas: Threat modelling Security Testing (includes Dynamic, Static Security Testing), Penetration Testing Application Architecture review Cloud Security Architecture Review Define Security Use Cases Cloud Platform Security API Security Open AI/GenAI Security Data Lake Security Modern Authentication SDLAN Security Network Segmentation MITRE Attack Framework Cyber Security Framework based on Industry Standard / Best Practices CIS Baseline Validation Microsoft Defender Implementation and Monitoring (Malware, EDR, ATP) Microsoft 365 Security Designing of Condit...

Some careers shine brighter than others. If you're looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions. We are currently seeking an experienced professional to join our team i...

Role- Lead SSDLC Experience in evaluating the control environment through Architecture, Software Design reviews and or not limited to Threat Modelling. Security reviews of design flaws Hands on experience in Static Application Security Testing and Dynamic Application Security Testing. Experience in standardizing application security tools and methodology Should be familiar with the best practices of OWASP, SANS Institute, ISACA, GAO, FISCAM, NSA, NIST, Internet Engineering Task Force (IETF) Develop a detailed security framework to be followed by developers in every step of software development lifecycle. Experience in software/application analysis tools like SAST, DAST, SCA, IAST, RASP, thre...

Role Architect Application Security / SSDLC Experience - 5-10 Yrs Strong background in Application Security and the Secure Software Development Lifecycle (SSDLC). Hands-on experience in Threat Modelling, Application Security Architecture Review, and security testing techniques including SCA, SAST, DAST, and IAST. Exposure to Microservices Security and API Security. Solid understanding of application security standards such as OWASP, SANS, and NIST. Strong knowledge of Security by Design and Privacy by Design principles. Good understanding of compliance requirements for both payment and non-payment applications. Desired: Experience with security tool integration in DevOps architectures. Relev...

As a Strategic Cloud Engineer in the API Management domain at Google Cloud, you will play a crucial role in guiding customers through their journey with Apigee, Google's full API lifecycle management offering. Your primary responsibility will be to serve as the technical point of contact for prospects and customers, assisting them in product implementation and leveraging your expertise to achieve project goals effectively. **Role Overview:** You will be a key member of the Google Cloud Consulting Professional Services team, focusing on helping customers transform and evolve their businesses through the utilization of cutting-edge technologies and global infrastructure. Your role will involve...

Life on the team Placed within our Security Operations function, our Cyber Threat Operations Team play an essential role in protecting Computacenter from the latest threats and threat actors. The Cyber Threat Operations Team work to ensure we have a forward-looking mentality to identify emerging threats and trends. Our team brings together a diverse set of specialist skills, including Threat Intelligence, Threat Hunting, Malware Analysis, Digital Forensics, Incident Response, and Threat Modelling. At our core, we are driven by a mission to investigate, collate and locate: to unearth new threats, collate all available information about them, and then seek them out and respond appropriately. T...

Automated Security Scanning Business Analyst Hyderabad-India We are currently seeking an experienced professional to join our team in the role of Consultant Specialist In this role, you will: Perform scheduled and/ or on demand infrastructure vulnerability scanning, assessments, and reporting. Agent based scanning and deploying agents in a large environment. Triage and addressing of issues which arise from scanning and assessments. Communication of analysis and validation of scan/ assessment results to stakeholders. Configure, maintain, operate vulnerability management industry standard tools as well as identifying/ implementing new innovative solutions. Partnering with global HSBC teams and...

Dover is a diversified global manufacturer with annual revenue of over $8 billion. We deliver innovative equipment and components, specialty systems, consumable supplies, software and digital solutions, and support services through five operating segments: Engineered Products, Clean Energy & Fueling, Imaging & Identification, Pumps & Process Solutions and Climate & Sustainable Technologies. Dover combines global scale with operational agility to lead the markets we serve. Recognized for our entrepreneurial approach for over 60 years, our team of approximately 24,000 employees takes an ownership mindset, collaborating with customers to redefine what's possible. Headquartered in Downers Grove,...

As a Senior Penetration Tester at LSEG, your role will involve conducting in-depth penetration tests on applications, infrastructure, and cloud environments. You will take full ownership of assigned penetration testing engagements, compile technical scoping documents, and document assessment metadata. It will be your responsibility to engage with testing team members, track tools and methodologies used, and ensure clear documentation of findings along with actionable remediation guidance. Key Responsibilities: - Conduct thorough penetration tests on various systems and applications. - Take ownership of testing engagements from start to finish with limited oversight. - Compile technical scopi...

Role Overview: You will be a technical expert as part of Valtech Mobility's global Connected Vehicle team, contributing to the development of cutting-edge connected vehicle technologies for global mobility providers and vehicle OEMs. You will have the opportunity to work on challenging projects in a culture that values freedom and accountability. As a part of the connected vehicle revolution, you will collaborate with international industry experts who have extensive experience with renowned brands such as Porsche, Lamborghini, Bentley, and Audi. Key Responsibilities: - Take responsibility for your work from design to implementation and operations - Build Java applications using Java 8 (and ...

Role Overview: You will be joining ChargePoint as a Staff, Product Security Architect to help develop the product security strategy, implement tools, architect the product security roadmap, perform threat assessment and security reviews, and work with different team leaders to implement a security by design culture as part of the product lifecycle. Your role will involve providing guidance, advice, oversight, and implementation of controls on product security matters. You will design security controls, validate services, applications, stations, and emerging technologies to ensure they are designed and implemented to the highest security standards. This position offers opportunities for caree...

Company Description Nallas Corporation is a software services company that enhances business outcomes through advanced technology solutions, tailored engagement models, and flexible methodologies. By blending technical expertise with in-depth domain knowledge, Nallas delivers impactful results for clients. Through its global delivery platform, valueScope, Nallas supports clients in achieving faster time-to-market, better alignment between business needs and IT, and measurable outcomes in a collaborative and transparent environment. Role Description This is a full-time, on-site role based in Hyderabad for a Generative AI (GEN AI) Engineer. The GEN AI Engineer will be responsible for designing...