onsite

Threat Modeling - Capgemini

Security Engineer

Senior Security Engineer to perform STRIDE-based threat modeling, integrate security into CI/CD pipelines, and align threat analysis with application architecture.

About the role

Key Responsibilities

Collaborate with application development, DevSecOps, and security teams to align threat modeling with architecture and workflows
Identify assets, data flows, and entry points to establish a foundation for threat analysis
Perform STRIDE-based threat enumeration using manual checklists and/or Threat Modeling Tools
Map mitigation strategies to identified threats and validate coverage through peer reviews
Integrate threat modeling outputs into SDLC for early remediation and continuous improvement
Generate and maintain documentation including DFDs, threat registers, and summary reports for stakeholder review

Requirements

Experience integrating threat modeling outputs into CI/CD pipelines
Proficiency in STRIDE methodology and threat enumeration techniques
Ability to raise and track defects in system against Threat Modeling exercises
Strong documentation and communication skills for stakeholder reviews
Familiarity with security architecture and DevSecOps practices

Skills

threat modelingstrideci cdsecurity architecturesdlcdevsecops

DepartmentEngineering

LocationPune Division, Maharashtra, India

Experience5+ years

Tenurefull-time

LevelSenior

Posted June 3, 2026