Threat Modeler

2T Consulting

Irving, TX

Posted On: Mar 24, 2026

Posted On: Mar 24, 2026

Job Overview

Job Type

Full-time

Experience

6 - 12 Years

Salary

$110,000 - $130,000 Per Year

Work Arrangement

On-Site

Travel Requirement

0%

Required Skills

  • Threat Modeler
  • Cybersecurity
  • Information Security
  • IaC
  • cloud
Job Description
Role Overview

We are seeking an experienced Threat Modeler to identify, assess, and mitigate security risks across applications, systems, and cloud environments. The role involves designing threat models, reviewing architectures, supporting DevOps teams, and implementing security best practices throughout the software development lifecycle.

Key Responsibilities

  • Conduct threat modeling using STRIDE, PASTA, attack trees, and MITRE ATT&CK frameworks.

  • Identify vulnerabilities using CWE, OWASP, and other industry standards.

  • Review and assess technical architectures, providing actionable security recommendations.

  • Define and track mitigating controls throughout the threat lifecycle.

  • Develop automation tools to support threat modeling and security processes.

  • Collaborate with DevOps and agile teams to ensure secure CI/CD pipelines, cloud deployments, and infrastructure-as-code practices.

  • Support or perform penetration testing and security validations.

  • Present threat findings and recommendations to technical teams and senior stakeholders.

  • Maintain high standards of work with minimal supervision.

  • Continuously improve threat modeling processes and practices.

Mandatory Technical & Functional Skills

  • Minimum 6 years IT experience, with at least 4 years in Cybersecurity/Information Security.

  • Threat modeling frameworks: STRIDE, PASTA, Attack Trees, MITRE ATT&CK.

  • Vulnerability identification: CWE, OWASP.

  • Security knowledge in authentication, authorization, logging/monitoring, encryption, network segmentation, and infrastructure security.

  • Familiarity with operating systems hardening and development concepts (SDLC, CI/CD, pipelines).

  • Scripting and Infrastructure as Code (Terraform, CloudFormation), CDK, GitOps.

  • Experience with cloud platforms (AWS, Azure, GCP, Oracle Cloud).

  • DevOps/Agile team experience and ticketing systems (Jira or equivalent).

  • Understanding of Docker, Kubernetes, serverless, and Helm.

  • Exposure to Snowflake, MongoDB, Databricks, Terraform Cloud, GitHub.

Educational & Certification Requirements

  • Bachelor’s degree in Computer Science, Information Technology, or equivalent work experience.

Cloud Certifications (Associate level preferred):

  • AWS Certified Developer / Solutions Architect / SysOps Administrator

  • CompTIA Cloud+

  • Google Associate Cloud Engineer

  • Oracle Cloud Infrastructure Certified Architect/Operations Associate

  • Microsoft Azure Developer Associate

Cybersecurity Certifications (Associate or Professional):

  • CISA, GSEC, SSCP, CompTIA CySA+

  • Microsoft Security Operations Analyst Associate / Information Protection Administrator Associate

Job ID: 2C320811

Posted By

Shayne

Sr. Recruiter