1

Threat Modeling Jobs (NOW HIRING)

Threat Modeler

Irving, TX · On-site

$50.75 - $66/hr

The role involves threat modeling, identifying vulnerabilities, and developing automation tools while maintaining high standards in specifying mitigating controls. Responsibilities : • Threat ...

Must Have Technical/Functional Skills IT experience minimum of 6 years with minimum of 4 years Cyber-Security/Information Security must Threat Modeling (STRIDE, PASTA, Attack trees, tooling, Att&ck ...

Threat Modeler

Irving, TX · On-site

$110K - $125K/yr

Must Have Technical/Functional Skills • IT experience minimum of 6 years with minimum of 4 years Cyber-Security/Information Security must • Threat Modeling (STRIDE, PASTA, Attack trees, tooling ...

Threat Modeler

Irving, TX · On-site

$110K - $125K/yr

Must Have Technical/Functional Skills • IT experience minimum of 6 years with minimum of 4 years Cyber-Security/Information Security must • Threat Modeling (STRIDE, PASTA, Attack trees, tooling ...

Must Have Technical/Functional Skills • IT experience minimum of 6 years with minimum of 4 years Cyber- Security/Information Security - must • Threat Modeling (STRIDE, PASTA, Attack trees ...

Threat Modeler

Irving, TX · On-site

$100K - $125K/yr

Must Have Technical/Functional Skills • IT experience minimum of 6 years with minimum of 4 years Cyber-Security/Information Security must • Threat Modeling (STRIDE, PASTA, Attack trees, tooling ...

next page

Showing results 1-20

Threat Modeling information

See salary details

$47

$60

$72

How much do threat modeling jobs pay per hour?

As of Jul 6, 2026, the average hourly pay for threat modeling in the United States is $60.46, according to ZipRecruiter salary data. Most workers in this role earn between $55.77 and $65.87 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Threat Modeler, and why are they important?

To thrive as a Threat Modeler, you need a solid understanding of cybersecurity principles, risk assessment, and software architecture, often supported by a degree in computer science or information security. Familiarity with threat modeling frameworks (like STRIDE or PASTA), diagramming tools (such as Microsoft Threat Modeling Tool), and relevant certifications (like CISSP or CEH) is typically required. Strong analytical thinking, attention to detail, and effective communication are crucial soft skills for collaborating with cross-functional teams and clearly documenting risks. These skills enable the identification and mitigation of potential security threats, ensuring robust protection of organizational assets.

What is threat modeling?

Threat modeling is a structured process used to identify, evaluate, and address potential security threats and vulnerabilities in systems, applications, or processes. The goal is to proactively understand security risks and design effective defenses before problems occur. It typically involves identifying critical assets, potential attackers, attack vectors, and existing controls, which helps organizations prioritize their security efforts. Threat modeling is an essential part of secure software development and risk management.

What are some common challenges faced by professionals in threat modeling roles, and how can they be addressed?

Professionals in threat modeling often encounter challenges such as keeping up with evolving threats, effectively communicating risk to stakeholders, and integrating threat modeling into fast-paced development cycles. Addressing these challenges involves continuous learning, fostering strong collaboration with development and security teams, and leveraging automated tools to streamline the process. Proactively engaging with cross-functional teams and maintaining clear documentation can also help ensure that threat modeling remains an integral part of the software development lifecycle.

What is the difference between Threat Modeling vs Security Analyst?

AspectThreat ModelingSecurity Analyst
Primary FocusIdentifying potential security threats during system design and developmentMonitoring, analyzing, and responding to security incidents and vulnerabilities
Skills & CertificationsKnowledge of security frameworks, risk assessment, threat identificationSecurity certifications (e.g., CISSP, CompTIA Security+), incident response skills
Work EnvironmentTypically involved in early-stage design, often within development teamsOperational, monitoring security tools, and incident management teams

Threat Modeling and Security Analysts both play vital roles in cybersecurity. Threat Modeling focuses on proactively identifying potential threats during system design, while Security Analysts respond to ongoing security incidents. Understanding their distinct responsibilities helps organizations strengthen their security posture effectively.

More about Threat Modeling jobs
What cities are hiring for Threat Modeling jobs? Cities with the most Threat Modeling job openings:
What states have the most Threat Modeling jobs? States with the most job openings for Threat Modeling jobs include:
What job categories do people searching Threat Modeling jobs look for? The top searched job categories for Threat Modeling jobs are:
Infographic showing various Threat Modeling job openings in the United States as of June 2026, with employment types broken down into 75% Full Time, and 25% Contract. Highlights an 100% In-person job distribution, with an average salary of $125,752 per year, or $60.5 per hour.
Cyber Subject Matter Expert (SME, Threat Modeling)

Cyber Subject Matter Expert (SME, Threat Modeling)

Spatial Front, Inc

Arlington, VA • On-site

Full-time

Posted 19 days ago


Job description

Job Summary:
Spatial Front, Inc. is a recognized workplace seeking a Cyber Subject Matter Expert (SME) in Threat Modeling to join their team. The ideal candidate will lead threat modeling activities and provide expert guidance on identifying and mitigating security risks in Federal Government IT systems and applications.
Responsibilities:
• Lead and facilitate threat modeling sessions for new and existing systems, applications, and architectures.
• Serve as the Cyber Lead for the App Security Team as needed
• Apply threat modeling methodologies (e.g., STRIDE, PASTA, LINDDUN) to identify and prioritize security threats.
• Develop threat models, data flow diagrams, and attack trees for complex federal IT systems.
• Collaborate with architects, developers, and security engineers to integrate threat modeling into the SDLC.
• Produce threat model reports with identified threats, risk ratings, and recommended mitigations.
• Develop and deliver threat modeling training and workshops for technical teams.
• Maintain a threat intelligence library and incorporate emerging threats into threat modeling activities.
• Other duties as assigned.
Qualifications:
Required:
• Bachelor's in Computer Science, Cybersecurity, or related field.
• 7 years of cybersecurity, 5 years threat modeling.
• Experience with tools such as Splunk and New Relic.
• Demonstrated expertise in: Threat modeling, risk assessment, security architecture, attack vectors, mitigation strategies.
• Must be a U.S. Citizen.
• Must possess an active Secret security clearance or be able to obtain one.
Preferred:
• CISSP, CSSLP, or equivalent security architecture certification.
• Experience with threat modeling tools (e.g., Microsoft Threat Modeling Tool, IriusRisk, ThreatModeler).
• Experience with the Oracle tech stack, including PeopleSoft, is a plus.
• Familiarity with the MITRE ATT&CK framework and its application to threat modeling.
• Experience conducting threat modeling within DoD or federal agency programs.
Company:
SFI effectively delivers the right Information Technology solutions and Business Support services using thoughtful analysis, strategic planning and precise execution. Founded in 2008, the company is headquartered in Mc Lean, USA, with a team of 501-1000 employees. The company is currently Late Stage.