Related skills
threat modeling owasp sast sca cnappπ Description
- Lead threat modeling engagements on features with risk.
- Evolve practice from on-request to repeatable with criteria.
- Triage CNAPP findings end-to-end; route to owners and close loop.
- Contribute to SDLC tooling, SAST, SCA workflows, and bug bounty triage.
- Partner with product engineering as trusted reviewer; explain decisions.
- Bring AI to accelerate triage, summarize findings, draft threat models.
π― Requirements
- 2-4 years in a security-focused role (AppSec/ProdSec or cloud security).
- Read/critique PRs in a modern stack; write small tools when helpful.
- Experience leading threat modeling (STRIDE/attack trees).
- Cloud security posture knowledge; CNAPP exposure is a plus.
- OWASP Top 10, authentication/authorization, secrets management.
- Hands-on with AI tooling in security or engineering work.
π Benefits
- RSUs (restricted stock units).
- Health, vision, and dental insurance.
- Mental health benefits.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!