New York Technology Partners · 20 hours ago
Senior AWS Threat Modeling Engineer
New York, NY
Full-time
Hybrid
Senior Level, Lead/Staff
8+ years expNew York Technology Partners is seeking a Senior AWS Threat Modeling Engineer to lead security architecture assessments and threat modeling activities across cloud-native applications and infrastructure. This role involves partnering with engineering, cloud platform, and security teams to identify security risks and recommend mitigation strategies to enhance the organization's cloud security posture.
ConsultingInformation TechnologySoftwareStaffing Agency
Responsibilities
Perform structured threat modeling exercises for applications and cloud infrastructure using established methodologies
Conduct architecture and design security reviews for AWS-based systems and services
Identify vulnerabilities, attack paths, and exploitable weaknesses; recommend and track remediation strategies
Evaluate AWS services and configurations for security risk and governance compliance
Maintain and manage the lifecycle of identified threats, risks, and associated controls
Partner with engineering, DevOps, and product teams to implement secure design patterns
Provide guidance on authentication, authorization, encryption, logging, monitoring, and network segmentation
Deliver clear documentation, risk assessments, and mitigation recommendations
Present findings and security posture updates to technical stakeholders and leadership
Help mature and improve the organization’s threat modeling practices and processes
Qualification
Required
8+ years of technology experience with at least 5+ years in cybersecurity or cloud security
Strong hands-on experience securing AWS environments
Knowledge of security architecture principles and secure system design
Experience with threat modeling methodologies such as STRIDE, MITRE ATT&CK, or PASTA
Experience identifying vulnerabilities using OWASP Top 10 and/or CWE
Understanding of secure development lifecycle (SDLC), CI/CD pipelines, and DevOps practices
Familiarity with REST APIs and application security concepts
Experience with Infrastructure as Code (Terraform, CloudFormation) and scripting
Experience performing technical architecture design and review
Familiarity with ticketing/work tracking systems (e.g., Jira)
Understanding of operating systems hardening and infrastructure security
Strong analytical, documentation, and communication skills
Preferred
Container and cloud-native technologies: Docker, Kubernetes, serverless architectures, Helm
GitOps and AWS Cloud Development Kit (CDK)
Security monitoring and logging practices
Penetration testing or adversarial testing knowledge
Exposure to data and platform technologies (e.g., Snowflake, MongoDB, Databricks, GitHub, Terraform Cloud)
Development or scripting experience (Python, Node.js or similar)
Experience in Agile/Scrum or DevSecOps environments
AWS Certifications (Solutions Architect, Security Specialty, or similar)
CISSP, CCSP, CISM, CISA, or equivalent security certifications
Knowledge of industry frameworks and standards such as NIST, ISO 27001, and Cloud Security Alliance (CSA)
Company
New York Technology Partners
New York Technology Partners is an information technology company that provides IT and engineering services.
201-500 employees
H1B Sponsorship
New York Technology Partners has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (52)
2024 (74)
2023 (59)
2022 (104)
2021 (74)
2020 (115)
Funding
Current Stage
Growth StageLeadership Team
Amy Reynolds
Senior Talent Acquisition Partner
Hetal Shah
Technical Recruiter at New York Technology Partners
Company data provided by crunchbase