Overview
Hybrid3 days/week
$60 - $62
Contract - W2
Contract - 12 Month(s)
Skills
Systems
Systems Architecture
Cybersecurity
Azure
GCP
AWS
Python
Job Details
Role: Application Security Architect Location: 100% Remote Duration: 12+ Months W2 Only
Job Description
Must Haves:
- 4+ years of Systems Architecture experience
- 3+ years of Cybersecurity experience
- 1+ years of engineering experience with Azure, Google Cloud Platform, or AWS
- 1+ years of experience in Python programming
- Experience leading Architecture Risk Reviews and building threat models
- Must be proficient in at least one Threat Modeling methodology such as STRIDE, PASTA, OCTAVE, LINDDUN, or VAST
- Experience using Threat Modeler, Microsoft Threat Modeling tool, or OWASP Threat Dragon to develop threat models
- Strong understanding of OWASP Top 10, CAPEC, MITRE ATT&CK and Secure Design principles
- Must have the ability to juggle multiple threat models actively in the work-in-progress state, working with a sense of urgency, delivering with short cycle times and a high throughput without sacrificing quality
- Strong collaboration and communication skills, and the ability to work effectively with cross-functional teams
- Experience working in an enterprise environment
Day to Day:
- Engage and collaborate with application, service, and platform teams to derive a deep, detailed, and accurate description of their application architectures and the services and platforms they consume
- Model the architectures in the threat modeling tool
- Apply threat modeling methodology to identify and prioritize threats to those applications and to apply mitigating controls
- Review evidence (designs, configurations, and/or source code) of mitigations to threats
- Propose solutions to mitigate threats
- Publish and present threat modeling results
- Collaborate with Cybersecurity Architecture in the creation of new mitigating controls where a sufficient mitigation does not previously exist for a threat
Desired Qualifications:
- Security and cloud certifications, such as CISSP, CCSP and Azure, Google Cloud Platform, or AWS cloud certifications
- Experience Threat Modeling GenAI
- Experience leveraging Threat modeling-as-a-Code (TaaC)
Regards
Jitendra Kumar Shakya
Sr. Technical Recruiter
(Service-Disabled Veteran-Owned Company)
Office :, Ext: 124
Email:
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.