Cyber Security

yberSecurity Threat Modelling Lead

5 years of experience in information security, with a focus on threat modeling and security architecture.
Proficiency in using STRIDE methodology for threat modeling.
Strong understanding of common security vulnerabilities and mitigation techniques.
Experience with security tools and technologies, such as firewalls, intrusion detection/prevention systems, and vulnerability scanners.
Excellent communication and collaboration skills, with the ability to effectively communicate technical concepts to non-technical stakeholders.
Relevant certifications (e.g., CISSP, CISM, CEH) preferred.

Roles & Responsibilities
-Develop threat models for existing and new systems, applications, and infrastructure using the STRIDE methodology.
-Conduct risk assessments to identify potential security threats and vulnerabilities.
-Proficiency in threat modeling methodologies (e.g., STRIDE, DREAD, PASTA) and tools (e.g., Microsoft Threat Modeling Tool, OWASP Threat Dragon).
-Collaborate with cross-functional teams to prioritize security initiatives and develop mitigation strategies.
-Design and implement security controls to protect against identified threats and vulnerabilities.
-Perform security architecture reviews and provide recommendations for improving the overall security posture.
-Stay up-to-date on the latest security threats, trends, and best practices.
-Participate in incident response activities as needed, including investigating security incidents and implementing corrective actions.
-Provide security guidance and support to development teams throughout the software development lifecycle.