Network Architect

We are seeking a highly skilled and experienced Threat Modeling Architect to join our cybersecurity team. This role is critical in proactively identifying, assessing, and mitigating security threats across applications, systems, and infrastructure. You will lead structured threat modeling exercises, collaborate with cross-functional teams, and drive the integration of security into design and development processes. As a security expert, you will also contribute to the organization’s overall security architecture and strategy.

Key Responsibilities

• Threat Modeling Leadership: Lead and facilitate threat modeling sessions across diverse technology stacks and business domains using methodologies such as STRIDE, DREAD, PASTA, or OCTAVE.
• Architecture Analysis: Interpret architecture diagrams, identify security design flaws, and recommend secure design patterns.
• Risk Assessment: Analyze threat impact and likelihood to prioritize mitigation strategies using a risk-based approach.
• Secure Design Integration: Collaborate with engineering, architecture, and product teams to embed security into system design and development lifecycles.
• Security Architecture Development: Contribute to the development and maintenance of enterprise security architectures aligned with organizational security strategies.
• Gap Analysis: Evaluate existing security controls, identify weaknesses, and propose improvements.
• Documentation: Develop and maintain threat model documentation, including architecture diagrams, findings, and actionable recommendations.
• Continuous Improvement: Monitor evolving threat landscapes and update threat models accordingly.
• Advocacy & Training: Promote a security-conscious culture through awareness programs and training initiatives.

Qualifications

• Experience: 5 years in cybersecurity with a focus on threat modeling, risk assessment, or security architecture.
• Technical Skills:Strong understanding of application, infrastructure, and networking security principles.
• Hands-on development experience in one or more major programming languages (Python, Java, JavaScript, Go, C/C ).
• Ability to interpret architecture diagrams and identify security flaws.
• Methodologies: Familiarity with threat modeling frameworks (STRIDE, DREAD, PASTA, OCTAVE).
• Risk Management: Ability to prioritize security and privacy remediations using a risk-based approach.
• Soft Skills: Excellent communication and collaboration skills across technical and non-technical stakeholders.

Preferred Skills

• Deep understanding of modern AI technologies and architectures (LLMs, Agents, MCP, RAG).
• Experience designing and building enterprise-scale applications.
• Security certifications (CISSP, AWS Certified Security – Specialty, MS Cyber Architect, GCP Security).
• Privacy expertise and certifications (CIPP, CIPT, or equivalent).