Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 1K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

WINNERS AWAITED!
- ABECA 2025
  
  WINNERS AWAITED!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Engaged Employer

Quess

Compare

3.9

based on 6.9k Reviews

58 Quess Jobs

Information Security Associate - Threat Modeling (3-6 yrs)

QUESS

3.9

based on 6.9k Reviews

3-6 years

Quess

posted 11hr ago

Job Role Insights

Flexible timing

Key skills for the job

Cyber Security Information Security Network Security Cissp Credit Risk Modelling OWASP

Job Description

Role : Information Security Associate (Application/Infrastructure Security)

Role :

- Threat Modeling, cryptography, security architecture review

- Global service delivery of Information Security Architecture services for Commercial Vehicle locations.

- Perform application threat modelling based on STRIDE/DREAD model, use C4 data model architecture to identify the trust boundaries and security gaps to create application risk profile and remediation recommendations.

- Advise Product Owners to manage their security risks efficiently.

- Enthusiastic and committed to the work, willing to help grow the business.

Technical Skills :

- Sound knowledge on information security principles, cloud security threat modelling, security architecture, system and network security, authentication and security protocols, cryptography.

- Strong hands on cloud architecture, experience of working on large scale cloud based services (including SaaS, PaaS, IaaS) and understanding of security challenges involved in deploying Cloud Applications

- Knowledge on Information Security fundamentals, OWASP tools and methodologies

- CISSP (Certified Information Systems Security Professional) or CCSP (Certified Cloud Security Professional)

- Knowledge of common security attacks, post exploitation skills, security bug classification frameworks

- Effective understanding and implementation Risk Management process

- Knowledge on Web/mobile/infrastructure security assessments (pen tests, code reviews, security checks and SDLC consulting)

Other Skills/requirements :

- Bachelors/Masters in either Computer Engineering, Computer Science, or Information Systems Management

- Proficient English language written and oral communication skills.

- Ability to complete tasks and deliver professionally written reports for clients.

- Ability to present findings to technical staff and executives.

- Experience in handling app teams queries, providing recommendations & mitigation strategies in order to remediate vulnerabilities.

Functional Areas: Software/Testing/Networking

Read full job description