Threat Modeling Jobs

Lead Tin Can’s security strategy and hands-on engineering to protect family devices, cloud services, and sensitive user data while shaping secure-by-default practices across the company.

Senior product security engineer to lead offensive security assessments and audits across ServiceNow products, partnering with engineering to reduce risk and harden our cloud platform.

WHOOP is hiring a Security Program Specialist II in Boston to triage security and privacy requests, perform L1 technical analysis, and coordinate remediation across product and engineering teams.

Serve as the technical security lead for AI-enabled products, shaping secure design, governance, and remediation across BetterUp’s cloud-native SaaS platform.

Lead and grow a product security team to drive secure-by-design practices, threat modeling, vulnerability management, and compliance across Smarsh products.

Lead the security roadmap and engineering for TRS embedded and software systems, driving architecture reviews, vulnerability remediation, and secure feature development for operational defense products.

Customer-Centric

Mission Driven

Inclusive & Diverse

Rise from Within

Diversity of Opinions

Work/Life Harmony

Growth & Learning

Transparent & Candid

Medical Insurance

Paid Time-Off

Maternity Leave

Mental Health Resources

Equity

Child Care stipend

Paternity Leave

WFH Reimbursements

Flex-Friendly

Dental Insurance

Vision Insurance

Life insurance

Health Savings Account (HSA)

Flexible Spending Account (FSA)

401K Matching

Military leave

NVIDIA seeks a Senior System Development Security Operations Engineer to build and integrate advanced DevSecOps tooling (SAST/DAST/SCA) and drive security posture for its data center systems and AI/HPC software stacks.

Senior-level application security consultant to lead penetration tests, threat modeling, and source code reviews while advising clients on remediation and compliance.

Lead the strategy and execution of enterprise identity and privileged access security products at Capital One, translating security outcomes into measurable business value.

Experienced application security leader needed to drive Keeper's AppSec strategy, perform advanced testing, run bug bounty operations, and influence secure development across the platform.

Mission Driven

Social Impact Driven

Passion for Exploration

Reward & Recognition

Senior-level network security engineer needed to manage enterprise firewalls and deliver pragmatic, secure network solutions for SpaceX operations at Cape Canaveral.

Lead and scale Crusoe's Security Engineering organization to secure cloud infrastructure, product surfaces, and AI systems while embedding security-by-design across the company.

Senior Cloud Architect needed to lead cloud-first architecture, security, automation and multi-tenant managed-services strategy for Smile Digital Health’s FHIR-based platform across Azure/AWS.

Lead AHEAD's Managed Security delivery team to drive SOC operations, incident response, and managed security services for enterprise clients.

Texas A&M AgriLife Research seeks a Security Engineer I to strengthen research environment security through endpoint protection, vulnerability assessment, and compliance-focused consultation.

Lead the architecture and security strategy for Oakland County’s enterprise infrastructure, guiding cloud modernization, IaC, and resilient system design to support mission-driven public services.

Lead the design and deployment of probabilistic cyber risk models while mentoring a data science team to operationalize AI-enhanced analytics across enterprise platforms.

Dental Insurance

Disability Insurance

Flexible Spending Account (FSA)

Health Savings Account (HSA)

Vision Insurance

Performance Bonus

Family Medical Leave

Paid Holidays

GoodLeap seeks a Senior Security Engineer to design and implement security patterns and controls across enterprise systems and SaaS products to improve resilience, detection, and response.

NBCUniversal is looking for a Security Engineer to help architect and implement security controls across network, application, cloud, and endpoint environments while partnering with business and technical teams.

MongoDB is hiring a Senior Product Security Engineer (Server) to lead security programs, perform deep code and architecture reviews, and drive security improvements across server and cloud products from our NYC or Seattle offices or remotely in the U.S.

MIRI, a nonprofit focused on reducing existential AI risk, is hiring a Technical Governance Team Manager to lead stakeholder engagement, run projects and people processes, and help produce rigorous technical governance research.

Customer-Centric

Rapid Growth

Diversity of Opinions

Reward & Recognition

Friends Outside of Work

Inclusive & Diverse

Empathetic

Feedback Forward

Work/Life Harmony

Casual Dress Code

Startup Mindset

Collaboration over Competition

Fast-Paced

Growth & Learning

Open Door Policy

Rise from Within

Maternity Leave

Paternity Leave

Flex-Friendly

Family Coverage (Insurance)

Medical Insurance

Dental Insurance

Vision Insurance

Mental Health Resources

Life insurance

Disability Insurance

Health Savings Account (HSA)

Flexible Spending Account (FSA)

401K Matching

Paid Holidays

Paid Sick Days

Paid Time-Off

Lead Datadog's new AI Supply Chain Security initiative by building secure-by-default platform controls, performing AI threat modeling, and developing tooling to mitigate prompt injection, data poisoning, and other AI-specific risks.

Lead Attentive’s product security program by designing secure architectures, building automation and tooling, and partnering with engineering teams to reduce risk across a high-scale, AWS-based microservices platform.

GuidePoint Security is hiring a mid-level Application Security Engineer to implement and operate SAST and CI/CD-integrated security tooling and support secure development practices across cloud-native applications in the Mid-Atlantic.

Inclusive & Diverse

Transparent & Candid

Mission Driven

Collaboration over Competition

Empathetic

Social Impact Driven

Rise from Within

Work/Life Harmony

Maternity Leave

Paternity Leave

Family Coverage (Insurance)

Medical Insurance

Dental Insurance

Vision Insurance

Mental Health Resources

Life insurance

Disability Insurance

Health Savings Account (HSA)

Flexible Spending Account (FSA)

Paid Time-Off

Notion is hiring an Application Security Engineer to partner with product teams, create detection rules and tooling, and make the secure path the easy path for developers.

Doppel is hiring a Senior Product Security Engineer to lead GCP product and cloud security, drive threat modeling and penetration testing, and build least-privilege guardrails across engineering workflows.

Anysource is hiring an MCP Security Engineer to design and implement enterprise-grade security, observability, and runtime controls for LLM/agent workflows.

Inclusive & Diverse

Rise from Within

Mission Driven

Diversity of Opinions

Work/Life Harmony

Customer-Centric

Social Impact Driven

Rapid Growth

Maternity Leave

Paternity Leave

Medical Insurance

Dental Insurance

Vision Insurance

Mental Health Resources

Life insurance

Disability Insurance

Health Savings Account (HSA)

Flexible Spending Account (FSA)

Paid Holidays

Paid Time-Off

Lead and grow Samsara's Application Security program as a Senior Manager, driving secure development practices, vulnerability management, and security tooling across cloud and firmware environments.

Lambda is hiring a Security Engineer - Architecture in San Francisco to design and operationalize security patterns, threat models, and requirements that secure large-scale AI infrastructure.

Dental Insurance

Flexible Spending Account (FSA)

Vision Insurance

Paid Holidays

Lead and scale 1Password’s Product Security organization to reduce product risk, enable secure innovation (including AI), and drive world-class application, data, and device security programs.

Nexus, a San Francisco-based Layer 1 innovator combining AI and zero-knowledge cryptography, is hiring a Head of Security to lead protocol, infrastructure, and ecosystem security ahead of Mainnet.

WHOOP seeks a Senior Information Security Engineer to lead hands-on implementation of advanced security controls, incident response, and cloud/application security for its user-facing health platform.

Lead security architecture for IMO's AI-driven cloud platforms, safeguarding the ML lifecycle, cloud-native infrastructure, and healthcare data through hands-on threat modeling and secure design.

Experienced cyber architect needed to lead security design, A&A/RMF, and SecDevOps integration for DoD-focused systems at INflow Federal in San Diego.

A.C.Coy Company seeks a seasoned IT Security Architect to lead secure architecture design and risk mitigation efforts across enterprise and cloud environments.

Avertium is hiring a remote Governance, Risk & Compliance Consultant to perform security control assessments, risk analysis, and compliance mapping across frameworks like NIST, HIPAA, PCI and ISO for enterprise clients.

A.C.Coy is hiring a remote IT Security Architect to lead secure architecture design and risk-driven security guidance across cloud and enterprise projects.

As a Senior Application Security Engineer at Path, you'll drive application security practices, manage vulnerabilities, and influence secure development across a healthcare-focused product stack in a fully remote US role.

Path seeks a Senior Application Security Engineer to lead application security across its healthcare platform, driving secure SDLC practices in a 100% remote US role.

Lumin Digital is hiring an Application Security Engineer to embed security into the SDLC, manage automated scanning and assessments, and support incident response for cloud-native applications in a remote US role.

Path seeks a Senior Infrastructure Security Engineer to define and operate robust cloud security controls and automation for a 100% US-remote team.

PrizePicks seeks an experienced Senior Security Engineer (DevSecOps) to lead cloud and infrastructure security initiatives, integrate controls into CI/CD, and drive automation and runtime protection across the platform.

Lead security engineering efforts at Serve Robotics to secure cloud infrastructure, container platforms, and robotic endpoints while driving automation and incident response.