Senior Threat Modeler - Hybrid

Genesis10 is currently seeking a Senior Threat Modeler / Systems Architect for a hybrid position with a Global Financial Institution located in Charlotte, NC, Irving, TX, Raleigh, NC or Columbus, OH. This is a 12+ month contract opportunity.

In this role, the Senior Threat Modeler will be responsible for performing deep, architecture-informed threat modeling for enterprise applications, services, and platforms. This position emphasizes system decomposition, architectural reasoning, and adversarial analysis, supported by standardized threat modeling tooling and methodologies. The ideal candidate will be a practitioner who has built and operated enterprise systems and can reason about how complex systems behave, fail, and are misused at scale.

Responsibilities:

• Engage directly with application, service, and platform teams to derive a deep, accurate understanding of real-world system architectures
• Decompose complex enterprise systems into components, data flows, and trust boundaries suitable for formal threat modeling
• Model application and platform architectures using the enterprise-standard threat modeling tool, ensuring completeness, accuracy, and reuse of patterns
• Apply the enterprise threat modeling methodology to identify, assess, and prioritize threats
• Evaluate the plausibility and impact of threats, distinguishing theoretical exposure from realistic attack paths
• Review architectural designs, configurations, and source code evidence to validate claimed mitigations and control implementations
• Recommend pragmatic, risk informed mitigations, favoring architectural and design-level controls where possible
• Document, publish, and present threat modeling results in a clear, defensible manner
• Collaborate with Cybersecurity Architecture and platform teams to define or evolve mitigating control patterns
• Manage multiple threat models concurrently, maintaining throughput and quality while working within defined delivery timelines

Requirements:

• 4+ years of Systems Architecture experience, or equivalent demonstrated through one or a combination of the following: work or consulting experience, training, military experience, education
• 6+ years of experience building, designing, or operating enterprise systems, including application development, platform engineering, or systems architecture
• Demonstrated experience decomposing complex systems and reasoning about their behavior under normal and failure conditions
• Experience working directly with engineering teams on system design and delivery
• 2+ years of experience applying security principles to system design, risk analysis, or application security
• Practical understanding of common application security failure modes
• Familiarity with at least one structured threat modeling methodology (e.g., STRIDE, PASTA, or VAST)
• Experience using threat modeling tools (e.g., ThreatModeler, Microsoft Threat Modeling Tool, OWASP Threat Dragon)
• Hands-on experience with at least one major cloud platform (Azure, AWS, or GCP)
• Ability to read and reason about source code, infrastructure-as-code, or configuration artifacts
• Scripting or automation experience (e.g., Python)
• Strong communication and facilitation skills, with the ability to lead architecture and threat modeling discussions
• Ability to exercise judgment, push back constructively, and make defensible risk decisions

Desired skills:

• Prior experience building or leading architecture risk reviews or threat modeling efforts
• Experience threat modeling cloud-native, distributed, or event-driven architectures
• Experience threat modeling emerging technologies (e.g., GenAI-enabled systems)
• Familiarity with Threat Modeling as Code (TaaC) or automation-assisted modeling approaches
• Security or cloud certifications (e.g., CISSP, CCSP, Azure/AWS/GCP)

Pay range: $51.72 - $59.72 per hour

Only candidates available and ready to work directly as Genesis10 employees will be considered for this position.

If you have the described qualifications and are interested in this exciting opportunity, please apply!

Ranked a Top Staffing Firm in the U.S. by Staffing Industry Analysts for six consecutive years, Genesis10 puts thousands of consultants and employees to work across the United States every year in contract, contract-for-hire, and permanent placement roles. With more than 300 active clients, Genesis10 provides access to many of the Fortune 100 firms and a variety of mid-market organizations across the full spectrum of industry verticals.

For contract roles, Genesis10 offers the benefits listed below. If this is a perm-placement opportunity, our recruiter can talk you through the unique benefits offered for that particular client. Benefits of Working with Genesis10:

• Access to hundreds of clients, most who have been working with Genesis10 for 5-20+ years.
• The opportunity to have a career-home in Genesis10; many of our consultants have been working exclusively with Genesis10 for years.
• Access to an experienced, caring recruiting team (more than 7 years of experience, on average.)
• Behavioral Health Platform
• Medical, Dental, Vision
• Health Savings Account
• Voluntary Hospital Indemnity (Critical Illness & Accident)
• Voluntary Term Life Insurance
• 401K
• Sick Pay (for applicable states/municipalities)
• Commuter Benefits (Dallas, NYC, SF, and Illinois)

For multiple years running, Genesis10 has been recognized as a Top Staffing Firm in the U.S., as a Best Company for Work-Life Balance, as a Best Company for Career Growth, for Diversity, and for Leadership, amongst others. To learn more and to view all our available career opportunities, please visit us at our website.

Genesis10 is an Equal Opportunity Employer. Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.