Principal Cybersecurity Engineer / Jr. Cybersecurity Architect

Overview

On Site
$85 - $90
Contract - W2

Skills

STRIDE
PASTA
TRIKE
DREAD
KILL CHAIN
ATTACK TREE
CAPEC
threat modeling frameworks
Cybersecurity
Application Security

Job Details

Job Title: Principal Cybersecurity Engineer / Jr. Cybersecurity Architect

Job ID: 19071
Locations: Frisco, TX | Overland Park, KS | Ravinia, GA | Bellevue, WA |
Type: Contract

Position Summary

We are seeking a highly skilled Principal Cybersecurity Engineer / Jr. Cybersecurity Architect with a strong background in Application Security to join our team. The ideal candidate will bring deep expertise in cybersecurity domains, threat modeling, application and infrastructure protection, and modern cloud and development technologies. You will act as a principal security advisor across cross-functional teams, ensuring best-in-class security posture across enterprise mobile, IoT, cloud, and application landscapes.

Key Responsibilities

  • Serve as subject matter expert and principal security advisor to internal stakeholders and project teams.

  • Lead security reviews and remediation planning for new technologies, products, and services.

  • Collaborate with engineering and operations teams to resolve vulnerabilities via scans, PSIRTs, or breach analyses.

  • Design and implement robust threat modeling practices using methodologies such as STRIDE, PASTA, TRIKE, DREAD, etc.

  • Create data flow diagrams, cyber threat trees, and application-specific threat models, including for mobile apps.

  • Evaluate and implement best practices in firewall policy, SSL certificate management, and vulnerability remediation.

  • Drive security architecture and solutions aligned with industry standards and enterprise objectives.

  • Provide technical specifications, write clear documentation, and present to leadership and technical teams.

  • Perform vulnerability scanning (e.g., Qualys), application security testing (e.g., Veracode), and threat intelligence.

  • Work with diverse security technologies across infrastructure, cloud, applications, and endpoints.

Required Skills & Experience

< data-start="2115" data-end="2147">Cybersecurity Expertise</>

  • 10+ years in Cybersecurity roles.

  • 8+ years in Application Security.

  • Experience with threat modeling frameworks such as STRIDE, PASTA, TRIKE, DREAD, KILL CHAIN, ATTACK TREE, CAPEC (5+ years).

  • Firewall policy design, SSL, vulnerability mitigation, and incident response experience (5+ years).

< data-start="2472" data-end="2502">Technical Proficiency</>

  • Java, Python, Node.js, and common frameworks (5+ years).

  • Understanding of web applications, RESTful APIs, and mobile application security.

  • Proficiency with:

    • Load balancers: F5, A10

    • Firewalls: CheckPoint

    • MDM: Mobile Iron

    • Cloud platforms: AWS, Azure

    • Security tools: Venafi, FireEye, Damballa, CyberArk, ArcSight, Splunk, Symantec IDS/IPS

    • Containers/Platforms: PCF, Docker

    • Scanning/AppSec tools: Qualys, Veracode

  • Scripting and automation: Python, Perl, Shell, HTML, PHP

< data-start="3055" data-end="3084">Regulatory Knowledge</>

  • Familiarity with SOX, PCI, CPNI compliance and federal security regulations.

Soft Skills

  • Strong communication skills; ability to clearly articulate security concepts to both technical and non-technical audiences.

  • Ability to work independently, manage multiple projects, and quickly adapt to evolving technologies.

  • Excellent analytical and problem-solving skills.

Education & Certifications

  • Bachelor s degree in Computer Science, Information Security, or a related field preferred.

  • Relevant security certifications (CISSP, CEH, OSCP, etc.) are a plus.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.