Demo
Salary Resume Critique Job Openings

Security Consultant

The Juno Group, Inc.
San Francisco, CA Full Time
POSTED ON 1/13/2025
AVAILABLE BEFORE 4/7/2025

Job Description

We are looking for a highly-skilled Security professional with a good aptitude for Threat Modeling, ability to read through (software) architectural documents and requirements from the different business groups and give accurate and actionable recommendations for the engineers to implement.

The Consultant must have a good understanding of software architecture and development for threat modeling purposes—i dentify designs and implementations which go against best practices and security vulnerabilities, analyze the system and break it down into key components based off logic, and speak to security risks, which may be found in each of those components, and apply sound logic and risk determination in relation to risk acceptance and business operation impact.

Job Title :           Security Consultant

Location :           Hybrid | San Francisco or Sunnyvale, CA; Seattle, WA; New York, NY

Contract :           Long-Term

Only candidates close to or willing to relocate themselves  to the specified locations will be considered.

Requirements :

Security Design Review

  • In-depth knowledge of secure software development practices and SDLC
  • Experience with threat modeling techniques and tools
  • Strong understanding of common security frameworks (e.g., OWASP, NIST)
  • Proficiency in identifying and mitigating security vulnerabilities in application designs
  • Familiarity with regulatory compliance standards (e.g., GDPR, HIPAA, PCI-DSS)
  • Ability to analyze complex data flows and identify sensitive data protection needs
  • Experience with security architecture, microservice architecture, and design patterns
  • Strong communication skills to effectively convey security concepts to technical and non-technical stakeholders
  • Hands-on experience with security tools (e.g. static analysis, DAST, SAST)
  • Proven ability to collaborate with cross-functional teams, including Developers and DevOps
  • Experience with integrating security into CI / CD pipelines
  • Knowledge of encryption, authentication, and access control mechanisms
  • Familiarity with Cloud security architecture ( AWS, Azure, GCP, OCI)
  • Experience in conducting risk assessments and developing mitigation strategies
  • Familiarity with automated security testing and continuous monitoring practices
  • Ability to document and report security findings clearly and effectively
  • Experience with incident response planning and forensic readiness in application design
  • Strong problem-solving skills and attention to detail

Threat Modeling

  • Deep understanding of threat modeling methodologies, particularly STRIDE , and the associated design patterns to correct and / or mitigate security attacks and threat
  • Proficiency in identifying and categorizing threats, vulnerabilities, and risks
  • Experience with threat modeling tools (e.g., Microsoft Threat Modeling Tool, OWASP Threat Dragon)
  • Strong knowledge of security frameworks and standards (e.g., OWASP, NIST)
  • Ability to map threat models to security requirements and controls
  • Experience in applying STRIDE to various architectural patterns and data flows
  • Familiarity with risk assessment and management practices
  • Ability to work with cross-functional teams to integrate threat modeling into the SDLC
  • Strong analytical skills for identifying potential attack vectors and weaknesses
  • Experience with security architecture and defensive design techniques
  • Effective communication skills to explain threat modeling findings to stakeholders
  • Knowledge of common security vulnerabilities and their mitigation (e.g., SQL injection, XSS)
  • Ability to create and maintain comprehensive threat models for complex systems
  • Experience in developing mitigation strategies based on threat model findings
  • Familiarity with regulatory compliance requirements and their impact on threat modeling
  • Strong documentation skills to create detailed threat model reports
  • Continuous learning mindset to stay updated on emerging threats and modeling techniques

    • Highly Desired

  • Experience with one of : Go, Java, Python, NodeJS
  • Experience with RDBMS and non-RDBMS (NoSQL) data store technologies such as PostgreSQL, MySQL, Hadoop, GCP BigQuery, AWS RDS & DynamoDB, GraphQL, etc.
  • Experience with Identity-aware proxy and HTTP routing technologies

    • Highly Desired

  • Familiarity with privacy and security compliance standards such as GDPR, HIPAA, PCI-DSS and how they guide or affect secure systems design

    • Requirements

    Web Application Security Security Design Review Threat Modeling OWASP Top 10 Penetration Testing Code Review

    If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
    Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

    What is the career path for a Security Consultant?

    Sign up to receive alerts about other jobs on the Security Consultant career path by checking the boxes next to the positions that interest you.
    Income Estimation: 
    $112,673 - $137,290
    Income Estimation: 
    $139,945 - $168,577
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $77,991 - $108,747
    Income Estimation: 
    $111,725 - $147,313
    Income Estimation: 
    $112,673 - $137,290
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $70,462 - $84,818
    Income Estimation: 
    $77,991 - $108,747
    Income Estimation: 
    $87,093 - $107,335
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $111,725 - $147,313
    Income Estimation: 
    $139,945 - $168,577
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $112,673 - $137,290
    Income Estimation: 
    $139,945 - $168,577
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Employees: Get a Salary Increase
    View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

    Not the job you're looking for? Here are some other Security Consultant jobs in the San Francisco, CA area that may be a better fit.

    Security Consultant

    Guidepost Solutions LLC, San Francisco, CA

    Cyber Security Consultant

    North Star Staffing Solutions, San Francisco, CA

    View More Jobs

    AI Assistant is available now!

    Feel free to start your new journey!