Description
Exp :6+years
ROLES & RESPONSIBILITIES:
experience in information technology out of which 3+ years of experience in Cyber security and 1+ years of experience in threat modeling.
Familiarity with one or more threat modeling methodologies (e.g.MITRE, STRIDE, PASTA, LINDDUN,CVSS, Attack Trees, Security Cards, hTMM, Qunatitative Threat Modeling Method, VASTModeling, OCTAVE);
Knowledge and practice of network attack simulation by means of tools such as:AttackIQ, Cymulate, Pentera, SafeBreach, Verodin (Mandiant Security Validation)
Knowledge of cybersecurity processes with reference to NIST CSF
Knowledge and practice about writing professional documents.
Critical thinking and problem-solving skills
Certified on Microsoft Azure Security Technologies, AWS security speciality and ATT&CK for Cyber Threat Intelligence are preferred
CISSP and CCSP certifications will be an added advantage
Partner with stakeholders to learn and understand a wide variety of threat model subjects
Responsible for building cyber threat models following the defined standards
Responsible for writing and maintaining the documentation relating threat models and technical architecture of analyzed systems
Responsible to execute cyber-attack simulations applying the defined methodologies and practices
Advise and enable informed decisions using clear language, purpose, and fact
Deliver learning opportunities relevant to stakeholders
Define the scope of depth of analysis for threat modelling
Gain a visual understanding of what you are threat modelling
Creating a component diagram with a control flow graph (which shows all possible execution paths in a program)
Model the attack possibilities
Identifying assets, security controls, trust zones, and threat agents
Identify threats and create a traceability matrix of missing or weak security controls
Education
Any Graduate
- Posted On: 4 days Ago
- Experience: 3+ years of experience
- Openings: 1
- Category: Cyber Security
- Tenure: Flexible Position