Jersey City, New Jersey, United States

About ThreatModeler

The ThreatModeler platform is the industry’s #1 automated threat modeling solution that enables a repeatable and scalable threat modeling process enterprise-wide. Through ThreatModeler’s easy-to-understand dashboards and reports, threat data is presented in a format that is clear, concise, and actionable with role-based accessibility on a self-serve basis. Security team expertise is there by scaled across all stakeholder functions, allowing enterprise-wide collaboration on the prioritization and management of risk across the entire IT ecosystem. ThreatModeler’s unique architecturally-based framework also allows organizations to analyze and manage their comprehensive attack surface, including upstream threats and downstream impacts. As a member of the ThreatModeler cloud team you will be at the forefront of managing ThreatModeler’s AWS infrastructure. You will be surrounded by people who are smart, passionate about cloud computing, and believe that world class support is critical to customer success.

Duties and responsibilities

  • Conduct research to build and maintain the Threat Library of ThreatModeler
  • Conduct research and identify potential security threats in commonly used Frameworks and Programming Languages
  • Design Security Controls and/or Security Requirements for the commonly used Frameworks and Programming Languages
  • Identify current and future cybersecurity threats for on-premises hosted enterprises
  • Build threat model Templates for Secure Application Architectures
  • Generate a list of security requirements and security controls
  • Design a security framework for the Threat Library of ThreatModeler
  • Build a rules engine framework for ThreatModeler
  • Find the best way to secure the IoT infrastructure of an organization
  • Assist clients in building threat models and custom content

Requirements for Position

  • Master’s in Electrical and Computer Engineering/Computer Science
  • 2+ years of Experience in the Cybersecurity related fields
  • Strong understanding of MITRE’s ATT&CK and D3FEND Frameworks
  • Familiar with MITRE’s CAPEC library, OWASP and industry wide used Regulatory Standards
  • Familiarity with SQL
  • Microsoft Office (Word, Excel, PowerPoint, etc)
  • Strong Communication and Research Skills
  • Ability to work with a team and as an individual
  • Self-starter and eagerness to learn

Apply Now →