99 Threat Modelling Jobs - Page 4

At Medtronic, you can embark on a life-long career focused on exploration and innovation, all while advocating for healthcare access and equity for everyone. You will play a vital role in fostering a more connected and compassionate world through purpose-driven leadership. As a key member and technical leader in the field of medical device cybersecurity, you will be at the forefront of creating, deploying, and monitoring cybersecurity and information security solutions for Medtronic's medical devices and supporting IT infrastructure. Your responsibilities will include collaborating with external and internal cybersecurity researchers to identify and address vulnerabilities in Medtronic produ...

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. As an Associate Director in the EY-Cyber Risk Compliance and Resilience team, you will contribute technically to Cyber Security client engagements and internal projects. Your role will involve actively establishing, maintaining, and strengthening internal and external relationships. Your key responsibilities include reporting to the competen...

At EY, you will be part of a globally connected powerhouse of diverse teams that are dedicated to shaping your future with confidence. As a Senior Manager in the Cyber Risk Compliance and Resilience team, you will play a crucial role in contributing technically to Cyber Security client engagements and internal projects. Building and maintaining strong internal and external relationships will be a key aspect of your responsibilities. You will have the opportunity to utilize your deep technical understanding of risk and compliance solutioning for enterprises, including knowledge of products, capabilities, competitor landscape, pricing methodologies, and brand management. Ensuring that all work...

As an experienced Application Security Manager, you will play a crucial role in leading our security initiatives to ensure the integrity, confidentiality, and availability of our systems and data. Your responsibilities will involve integrating security tools, standards, and processes into the product life cycle (PLC), training developers and QA personnel on security knowledge, supporting application security tool deployments, and managing periodic penetration testing exercises. You will be tasked with creating, integrating, and managing threat modeling processes/practices, following SSDLC and application framework, as well as managing secure configuration/hardening guidelines and compliance....

The role of an Application (software) Security Engineer is an entry-level, hands-on, engineering-focused position with the responsibility of fostering a Secure SDLC and secure by design approach and practice across all software engineering teams. You must possess a good combination of problem-solving and communication skills to effectively support the Application Security, InfoSec, and Software engineering teams. Your main responsibilities will include configuring and fine-tuning Application Security tests and vulnerability scans, integrating security testing into CI/CD pipelines, and collaborating with Senior Application Security engineers on Penetration tests set up and validation. Additio...

You are an Analyst, Information Risk Management at Omnicom Global Solutions in Hyderabad. Omnicom Global Solutions, a vital part of Omnicom Group, is a top global marketing and corporate communications company with a worldwide presence. In India, OGS plays a crucial role in providing a wide range of services across various domains to global agencies and group companies. With a large and talented team in India, Omnicom Global Solutions is expanding rapidly and seeking professionals like you to contribute to its growth. As an Analyst, Information Risk Management, your role involves spearheading effective cybersecurity and privacy programs within Omnicom. You will collaborate with regional and ...

The Senior Cyber Security Engineer / Cyber Security Engineer position in Bangalore requires 3 to 6 years of experience in the security domain. As a part of your role, you will be responsible for performing Application, API, and Microservices Pentest, Network Pentest (Internal and External), Mobile App Pentest, Mobile Assessments, Threat Modeling, Legal Reviews, Reporting, Proof of Concepts (PoCs) of vulnerabilities, Documentation, coordinating with various stakeholders, conducting R&Ds, and other security analysis. The mandatory requirements for this role include at least 3 years of relevant experience in the security domain, proven expertise in Web Application Penetration testing (Web, Mobi...

We have an opportunity to impact your career and provide an adventure where you can push the limits of whats possible. As a Lead Software Engineer at JPMorgan Chase within the Commercial and Investment Bank s Credit Technology team, you are an integral part of an agile team that works to enhance, build, and deliver trusted market-leading technology products in a secure, stable, and scalable way. As a core technical contributor, you are responsible for conducting critical technology solutions across multiple technical areas within various business functions in support of the firm s business objectives. Job responsibilities Provide guidance to immediate team of software engineers on daily task...

In security risk management we're looking to harness the power of industry best practice combined with driving new innovation on how we do security risk assessments and modelling. Our security risk management team is the primary owner of the strategy and practices of how we identify, track and reduce our security risk across everything we do. To support this we need to use industry best practices paired with emerging threat information to to promote risk identification, quantification, impact analysis, and modelling to ultimately drive decision making. In this role, you will help establish and execute a broad strategic vision for the security risk program at Canonical. You will not only work...

CMS-TDR Senior As part of our EY-cyber security team, who shall work as SME for Microsoft Sentinel solutions in TDR team The opportunity We're looking for Senior Consultant with expertise in Cloud Security solutions. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your key responsibilities Architecting and implementation of cloud security monitoring platforms MS Sentinel Provide consulting to customers during the testing, evaluation, pilot, production, and training phases to ensure a successful deployment. Perform as the subject matter expert on Cloud Security solutions for the customer, use the capabilities of t...

As a Senior Information Security Engineer at Mastercard, you will play a crucial role in contributing to and maintaining reusable security requirements for software engineering teams. Your passion for cybersecurity, coupled with a broad knowledge and experience in various security domains, will be essential in ensuring the security and integrity of Mastercard's systems. In this role, you will have the opportunity to collaborate with cross-functional teams, create and maintain documentation, and provide security architecture advice to help design applications and services following industry best practices. Your responsibilities will include developing, delivering, and maintaining reusable sec...

You are a proactive Security & Compliance Lead responsible for overseeing and executing security audits and compliance efforts for applications, infrastructure, and organizational processes. Your role is crucial in ensuring that systems, applications, and business operations are secure, compliant, and in alignment with internal policies and regulatory requirements such as RBI, ISO 27001, and SOC 2 Type II. Your key responsibilities include conducting technical assessments for new BFSI clients, completing cloud infrastructure security and compliance questionnaires, mapping customer security and regulatory requirements to internal controls, maintaining documentation for BFSI assessment artifac...

As a Cyber Security Specialist with 5+ years of experience, your role will involve testing and operating security controls for various applications to ensure compliance with cybersecurity standards. You will collaborate with software architects to create secure software designs by conducting threat modeling. Your responsibilities will include contributing to all levels of the architecture, performing application design reviews focusing on cybersecurity compliance, and ensuring project compliance with secure design and coding standards. You will need to have a strong attention to detail, analytical mind, outstanding problem-solving skills, and great awareness of cybersecurity trends and explo...

We are seeking an experienced Application Security Specialist to join our team. As an Application Security Specialist, you will be responsible for conducting SSDLC security assessments, integrating security throughout the software development lifecycle, and ensuring that applications meet the highest security standards before deployment. Your key responsibilities will include conducting internal and third-party SSDLC risk assessments on critical assets and processes, coordinating with project teams to enforce security frameworks in all phases of the SSDLC, and preparing security effectiveness reports for management. You will also be tasked with performing SSDLC assessments aligning with secu...

Inviting applications for the role of Principal Consultant - Solution Architect ASRB Security Engineer An ASRB is a governing organization that examines and confirms compliance for hardware and software projects, both new and updated. The aim of the ASRB is to convey business requirements to interested parties and encourage uniform technology stacks and designs among cloud initiatives. Responsibilities : . Experience in managing the Security Architecture engagement review request. . Work directly with application teams and solution architects to review proposed architectures to ensure alignment with approved design patterns and security control requirements. . Recommend and/or approve design...

As a Cybersecurity Risk Analyst at EQ, you will play a vital role in identifying, assessing, and analyzing potential cybersecurity threats and vulnerabilities across the organization's infrastructure, data, applications, mobile devices, and networks. You will work closely with various teams to conduct comprehensive risk assessments, review cloud architectures, and utilize security tools to evaluate the likelihood and impact of security risks. Your collaboration with DevOps and Cloud Engineering teams will be essential in advising on security controls and risk mitigation strategies in AWS and Azure. In addition to risk identification and analysis, you will be responsible for researching and i...

You will be responsible for conducting application security reviews for Web, Mobile (Android and iOS), and API technologies. Your role will involve assessing and identifying potential vulnerabilities in the technology being developed before implementation. You should have expertise in application security testing methodologies such as SAST, DAST, and MAST, with experience in web application, API security, and mobile application security testing according to industry standards like OWASP top 10, SANS top 25, etc. It would be beneficial to have knowledge of programming and scripting languages such as Java, JavaScript, Angular, Spring Boot, Kotlin, and Swift. Familiarity with tools like Burp Su...

Key Deliverables: Lead product-specific security strategy, including roadmap definition and implementation Perform architectural security reviews, threat modelling, and vulnerability assessments Drive application security, supply-chain risk mitigation, and secure engineering practices Champion security standards, cookbooks, and continuous improvement initiatives Role Responsibilities: Collaborate with engineering leaders to align security goals with product roadmaps Mentor team members and enable security champions across product teams Reduce friction by embedding security into developer workflows Guide risk-based decision-making aligned with GDPR, OWASP, and CIS benchmarks

Key Deliverables: Lead security integration across product lifecycle from requirements to deployment Conduct architectural and third-party security reviews for risk mitigation Define and drive the security roadmap in collaboration with engineering teams Mentor teams and security champions to strengthen overall cybersecurity posture Role Responsibilities: Represent cybersecurity in product/architecture forums and critical decisions Reduce security fatigue and improve developer feedback loops Oversee assurance activities including testing, auditing, and purple teaming Collaborate across security groups to enhance Tesco's security standards and tools

Your day at NTT DATA The Security Managed Services Engineer (L2) is a developing engineering role, responsible for providing a managed service to clients to ensure that their Security Infrastructures and systems remain operational. Through the proactive monitoring, identifying, investigating, and resolving of technical incidents and problems, this role is able to restore service to clients. The primary objective of this role is to proactively review client requests or tickets and apply technical/process knowledge to resolve them without breaching service level agreement (SLA) and focuses on second-line support for incidents and requests with a medium level of complexity. The Security Managed...

Minimum 2+ years experience in SIEM Proven expertise in handling the daily monitoring of Information Security events on the QRadar / ArcSight / Splunk console platform Proficient in monitoring security events from various SOC channels (SIEM, Tickets, Email, and Phone), based on the security event severity to handle the service support teams and tier 2 information security specialists Expertise in threat modelling and use case development Ability to review policies of security monitoring tools based on security concepts and logical approach Preferred technical and professional experience Preferred OEM Certified SOAR specialist + CEH Ambitious individual who can work under their own direction ...

A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe. You'll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our deliv...

Introduction A career in IBM Consulting is rooted by long-term relationships and close collaboration with clients across the globe. Youll work with visionaries across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. Your ability to accelerate impact and make meaningful change for your clients is enabled by our strategic partner ecosystem and our robust technology platforms across the IBM portfolio In this role, youll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world...

Introduction In this role, youll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology. In this role, youll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innova...