Division: CISO
About the responsibilities:
The responsibilities for this position include, but are not limited to:
- Facilitation and creation of threat models
- Co-Development of threat modelling processes and strategies that enable security by design and empower shifting security left
- Co-Analysis of threat models in collaboration with blue teams to with focus on detection and response enhancements
- Development of Enterprise level cyber threat scenarios to enable risk management and preparedness
- Identification of areas for potential attacks and systemic security issues as they relate to threats and vulnerabilities, including recommendations for enhancements or remediation
- Preparation and delivery of written and verbal briefings to communicate threat modelling findings across all levels of the enterprise and monitoring the cyber threat environment to incorporate trends in potential attack activity.
About the requirements:
This role requires a wide variety of strengths and capabilities, including:
- Bachelor’s degree or equivalent experience
- Strong written and communication skills
- Good technical understanding in software design and development
- Sound experience/exposure in security related capacity or domain
- Ability to identify network attacks and systemic security issues as they relate to threats and vulnerabilities, with a focus on recommendations for enhancements or remediation
- Foundational knowledge of legal, government and jurisprudence as they relate to cybersecurity
- Good understanding of cybersecurity activities associated with risk management, data management, cloud computing, identity management, incident management and vulnerability management
- Good understanding of networking fundamentals (all OSI layers, protocols), Windows/Linux/Unix/Mac operating systems, OS and software vulnerability and exploitation techniques
- Good understanding of the MITRE ATT&CK framework, ISO 27001, threat modelling concepts like dataflow diagrams and tools like STRIDE, PASTA, LINDUNN etc.
- Nice to have threat intelligence gathering and sharing experience
$ads={2}
$ads={1}