Application Security with Thread Modelling experience

What You’ll Do

Threat Modeling & Secure Design (Primary – 70%)

• Conduct application and architecture-level Threat Modeling for new applications, major enhancements, and high‑risk changes.
• Apply structured threat modeling methodologies (e.g., STRIDE, OWASP Threat Modeling, attack trees) to identify abuse cases, trust boundaries, and threat scenarios.
• Partner with architects, product owners, and development teams during design and planning phases to embed secure‑by‑design principles.
• Review architecture diagrams, data flow diagrams (DFDs), API contracts, and deployment models (cloud, hybrid, containerized).
• Translate identified threats into clear, actionable security requirements and mitigation recommendations aligned to enterprise standards.
• Ensure Threat Modeling outputs are documented, tracked, and integrated into SDLC gates, design sign‑offs, and risk registers.
• Provide risk‑based guidance to h...