Build and lead a global team of security engineers to conduct deep, hybrid security assessments integrating threat modeling, attack modeling, and white-box reviews
Job Summary
Build and lead a global team of security engineers to conduct deep, hybrid security assessments integrating threat modeling, attack modeling, and white-box reviews.
Champion a hybrid assessment methodology that integrates OWASP Application Security Verification Standard (ASVS) and OWASP Software Assurance Maturity Model (SAMM) practices for design- and code-level assurance.
Partner with Product, Architecture, and Engineering leadership to align assessment outcomes with enterprise risk management and product release decisions.
Matching Summary
Build and lead a global team of security engineers to conduct deep, hybrid security assessments integrating threat modeling, attack modeling, and white-box reviews.
Skills & Requirements
Must-have
secure code review
threat modeling
exploit development
OWASP ASVS and SAMM
secure SDLC best practices
distributed systems security
Nice-to-have
CISA Secure-by-Design
MITRE ATT&CK/DEFEND
financial services experience
cloud security expertise
API security knowledge
Key Requirements
10+ years software development experience
Proven expertise in secure code review
Proven expertise in threat modeling
Proven expertise in exploit development
Demonstrated leadership of diverse technical teams