Free cookie consent management tool by TermsFeed Cyber Security Analyst – Threat Modeling | Antal Tech Jobs
Image
Post a Job
Back to Jobs
1 Week ago

Cyber Security Analyst – Threat Modeling

Apply Now
decor
Pune, Maharashtra, India
Information Technology
Full-Time
Ford Motor Company

Overview

Job Description

Cyber Security Analyst – Threat Modeling is responsible for performing security assessments for applications, infrastructure and emerging technologies and guiding product / service teams in secure design of IT systems.

Responsibilities

Position responsibilities include:

  • Perform threat modeling for Enterprise and SaaS IT assets.
  • Gain understanding of the business process, application architecture, IT infrastructure and interaction with external entities.
  • Work with business, application, and supplier teams to perform in-depth threat assessments by leveraging methods such as STRIDE, VAST, Attack Tree etc.
  • Provide subject matter expertise in assessing potential security threats in the application architecture and evaluate security controls to mitigate threats.
  • Assess the risk of identified threats by evaluating likelihood and impact, determine countermeasures and remediation.
  • Apply Information Security Policy and industry security standards (E.g.: OWASP, NIST, CIS etc.,) and guide application teams to help build secure products.
  • Follow security governance process for issue tracking and closure. Ensure that security improvement actions are evaluated, validated, and implemented as required.
  • Provide feedback for improving Threat Modeling tools and processes.
  • Leverage industry best practices to continually improve process maturity.
  • Promote awareness of security issues among application teams and business teams through training and awareness programs.
  • Stay updated through continuous learning of emerging technologies like LLM, ZTNA, LCNC etc.


Qualifications

Skillset required:

  • Experience in handling web application security risks - OWASP Top-10 E.g.: Injection attacks, buffer overflow, cross-site scripting etc.
  • Skill to provide security controls guidance related to data usage, processing, storage, and transmission.
  • Knowledge of different Threat Modeling methodologies (E.g.: STRIDE, VAST, Attack Tree etc.).
  • Knowledge of security assessment, risk management processes, cyber security threats, vulnerabilities, attack methods and techniques.
  • Knowledge of organization's information security policies, standards, and procedures.
  • Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
  • Knowledge of network access, cryptography, cryptographic key management concepts, identity and access management (e.g.: OAuth, OpenID, SAML).
  • Knowledge of cloud security and API security.
  • Knowledge of security assessment for Microservices architecture, Databases (SQL/NoSQL), Google Cloud Platform resources like cloud storage, Redis Pub/Sub and Cloud Run.
  • Knowledge of computer networking and network security architecture concepts including topology, protocols, components, and principles.
  • Knowledge of laws, regulations, policies, and ethics related to cybersecurity and privacy.
  • Ability to evaluate information for reliability, validity, and relevance.
  • Excellent analytical, communication, documentation, and presentation skills.
  • Knowledge of emerging technologies like AI/ML, Zero Trust, LCNC etc. and willingness to learn new technologies and concepts.
  • Knowledge of Agile practices and SDLC
  • Self-Starter who can work in ambiguous situations and drive to a solution.
  • Strong interpersonal skills, including ability to educate and influence.


Qualifications required:

  • Bachelor’s degree in computer science, Cyber Security, or related field of study
  • 2+ years of experience in Cyber Security or related fields of IT.
  • Knowledge on Security Framework such as NIST CSF, ISO27001, OWASP Top-10 etc.
  • Cyber security certifications like CISSP, OSCP, CEH, Pentest+ are highly desirable.
Share job
Similar Jobs
View All
18 Hours ago
Principal Engineer - UI/UX
Information Technology
  • 6 - 11 Yrs
  • Mumbai (All Areas)
looking for a technically savvy and experienced Principal Engineer to take up front-end development efforts. You will design and develop elegant interfaces that exceed client expectations in terms of value and benefit. You will collaborate on scalabi...
More info
decor
18 Hours ago
Principal Engineer - Beckend
Information Technology
  • 7 - 11 Yrs
  • Mumbai (All Areas)
Principal Engineer - Backend Mumbai, Maharashtra, India | Product Engineering | Full-time We are looking for a technically savvy and experienced senior developer to lead development efforts. You will help the team grow in size and skills, optim...
More info
decor
18 Hours ago
Principal Engineer - DevOps/DBA
Information Technology
  • 7 - 11 Yrs
  • Mumbai (All Areas)
we are looking for a technically savvy and passionate Principal DevOps Engineer or Senior Database Administrator to cater to the development and operations efforts in product. You will choose and deploy tools and technologies to build and support a r...
More info
decor
20 Hours ago
C++ Developer | 5 - 8 Years
Information Technology
  • 30 - 45 INR - Yearly
  • 5 - 12 Yrs
  • Pune
About the Client: The company has been a global leader in delivering cutting-edge in-flight entertainment and connectivity (IFEC) solutions for over 40 years. About the Role: Title: SDE 3 C++ - 5 to 8 Years SDE 4 C++ - 8 to 13 Years ...
More info
decor
1 Day ago
Software Engineer II - Java, Python, AWS, Pyspark, DPL
Finance & Banking
  • Bangalore, Karnataka, India
hackajob is collaborating with J.P. Morgan to connect them with exceptional tech professionals for this role.Organization DescriptionOur Consumer & Community Banking division serves our Chase customers through a range of financial services, includin...
More info
decor
1 Day ago
Lead Software Engineer- Devportal Node fullstack
Finance & Banking
  • Bangalore, Karnataka, India
Reference 25000GPGResponsibilities In-depth knowledge of UI development with React JS, Java script, Type script including its core principles and workflows. Expertise on backend development with Node Js and framework nest JS Familiarity with version...
More info
decor
1 Day ago
QA Engineer (Manual & Automation) in Delhi, Faridabad, Gurgaon, Noida (Hybrid)
Finance & Banking
  • Bangalore, Karnataka, India
We are looking for a talented 'QA engineer (automation + manual)' to join our team at AppQuarterz Technologies! As a 'QA engineer', you will play a crucial role in ensuring the quality and performance of our software products.Key Responsibilities D...
More info
decor
1 Day ago
Software Engineer III - Infrastructure
Finance & Banking
  • Bangalore, Karnataka, India
hackajob is collaborating with J.P. Morgan to connect them with exceptional tech professionals for this role.Job DescriptionEmpowering projects with innovative technical solutions, our team excels in optimizing data and systems at scale while ensuri...
More info
decor

Talk to us

Feel free to call, email, or hit us up on our social media accounts.
CONTACT US
Email info@antaltechjobs.in
Social media