Jobs · New Jersey

Threat Modeler

State Street · Princeton, NJ · 4 days ago
$90k–$158k/yrFull-time

About the role

The team you will be joining is part of the Security Architecture organization, a function that is critical to safeguarding the firm's applications, cloud environments, data, and technology services. Threat modeling enables the organization to proactively identify security weaknesses, reduce cyber risk, and incorporate security requirements into technology solutions before they are deployed.

Responsibilities

  • Participate in threat modeling assessments for applications, APIs, cloud platforms, and technology initiatives.
  • Analyze application architectures, data flows, trust boundaries, and cloud deployments to identify potential threats and security weaknesses.
  • Support the development of risk mitigation recommendations and secure design guidance.
  • Collaborate with application development, cloud engineering, and cybersecurity teams to improve security outcomes.
  • Contribute to threat modeling standards, reusable patterns, documentation, and security awareness initiatives.

Qualifications

  • Strong analytical, problem-solving, and critical-thinking skills.
  • Knowledge of application security, cloud security, and secure software development principles.
  • Understanding of modern architectures including APIs, microservices, containers, and cloud-native technologies.
  • Strong communication and collaboration skills with technical and non-technical stakeholders.
  • Willingness to learn, adapt, and develop expertise in threat modeling and security architecture.

Education & Preferred Qualifications

  • Degree in Computer Science, Cybersecurity, Information Technology, Engineering, or a related discipline.
  • 10 years or more of experience in application security, cloud security, cybersecurity architecture, threat modeling, or related technology disciplines, with at least 5 years of hands-on cybersecurity experience preferred.
  • Familiarity with threat modeling methodologies such as STRIDE, MITRE ATT&CK, attack trees, or similar security assessment techniques.
  • Understanding of secure software development practices, OWASP Top 10, API security, and cloud security fundamentals.
  • Experience with AWS, Azure, and/or Google Cloud platforms is preferred.
  • Knowledge of DevSecOps, CI/CD pipelines, containers, Kubernetes, or modern application architectures is desirable.
  • Security certifications such as Security+, SSCP, CCSK, AWS Cloud Practitioner, Azure Fundamentals, or equivalent certifications are a plus.

Additional Requirements

  • Strong desire to build expertise in threat modeling, application security, and cloud security.
  • Ability to work effectively in a collaborative, global team environment.
  • Limited travel may be required based on business needs.

Pay

$90,000 - $157,500 Annual

Schedule

Standard business hours with flexibility to support global stakeholders across multiple time zones.

Similar jobs

Threat Modeler

State StreetAustin, TX· 4 days ago
Art & Creative$90k–$158k/yrapply on statestreet.wd1.myworkdayjobs.com

Threat Modeler

Tata Consultancy ServicesIrving, TX· 1 wk ago
Art & Creativeapply on ibegin.tcsapps.com

Senior Threat Modeler

State StreetPrinceton, NJ· 6 days ago
Design$120k–$203k/yrapply on statestreet.wd1.myworkdayjobs.com

Senior Threat Modeler

State StreetAustin, TX· 6 days ago
Art & Creative$120k–$203k/yrapply on statestreet.wd1.myworkdayjobs.com

Senior Threat Modeler

State StreetBerwyn, PA· 6 days ago
Art & Creative$120k–$203k/yrapply on statestreet.wd1.myworkdayjobs.com