
Posted 8 days ago
Director, Application Security Architecture & Threat Modeling
VaricentDirector, Application Security Architecture & Threat Modeling
Perks & benefits
Medical InsuranceHealth InsurancePaid Leave
Requirements
10+ years Information Security experience, 3+ years Application Security Architecture and Threat Modeling experience, 3-5 years Software Development or Engineering experience, Expertise in STRIDE, CAPEC, and MITRE ATT&CK, Knowledge of AWS, Azure, or IBM Cloud security architectures, Experience with DevSecOps and secure SDLC
Skills
Application SecurityThreat ModelingAWSAzureDevSecOpsAI Security
About the role
Responsibilities
- Define and execute the Security Architecture and Security-by-Design strategy and roadmap.
- Establish secure reference architectures, design standards, and security patterns for cloud-native and AI-enabled solutions.
- Lead threat modeling activities across critical applications, platforms, and AI-enabled systems to identify architectural risks and attack paths.
- Partner with Engineering and Product teams to embed security into development workflows, DevSecOps, and AI SDLC best practices.
- Conduct architecture reviews across AWS, Azure, and IBM Cloud environments, including containerized and serverless architectures.
- Collaborate with stakeholders in Legal, Compliance, and Product to communicate architectural risk and security recommendations.
Requirements
- 10+ years of Information Security experience.
- 3+ years of Application Security Architecture and Threat Modeling experience.
- 3–5 years of Software Development or Software Engineering experience.
- Expertise in threat modeling methodologies such as STRIDE, CAPEC, and MITRE ATT&CK.
- Knowledge of AWS, Azure, or IBM Cloud security architectures.
- Experience with DevSecOps, secure SDLC practices, and securing web, API, mobile, and AI-enabled applications.
- Strong communication skills with the ability to influence stakeholders at all levels.
Preferred Qualifications
- Certifications such as CISSP, CSSLP, ISSAP, CISM, CRISC, or OSCP.
- Cloud security certifications.
Benefits
- Comprehensive medical, dental, and vision coverage.
- Paid time off and public holidays.
- Dedicated volunteer days and "Ignite Days" for continuous learning.
- Retirement plans and tuition assistance for professional development.
- Flexible work arrangements with remote and hybrid options.
About the Company
Varicent is a market leader in Sales Performance Management (SPM), providing cutting-edge SaaS solutions that empower revenue leaders to design smarter go-to-market strategies and maximize performance. Our solutions are trusted by global industry leaders to drive revenue success and innovation.
ScoutJobs Agent
Get matches like this delivered daily
Sign up free — we'll pull jobs that fit your CV from across the web and rank them for you.
Get started — it's freeDirector, Application Security Architecture & Threat Modeling
Varicent · Toronto
