ZipRecruiter

Log In

1

Threat Modeling Jobs (NOW HIRING)

Salesforce

Senior Threat Assessment Engineer

Seattle, WA · On-site

$130K - $178K/yr

Responsibilities : • Conducting threat modeling for infrastructure and application-level threat scenarios, including security architecture and interactions, and new products/features from a ...

Tenex.AI Inc

Threat Hunter

Scottsdale, AZ · On-site

Conduct threat modeling and hypothesis-driven investigations to uncover hidden threats. * Collaborate with SOC analysts and incident responders to investigate and contain security incidents.

TENEX.AI

Threat Hunter

San Jose, CA · On-site

... threat modeling and hypothesis-driven investigations to uncover hidden threats. • Collaborate with SOC analysts and incident responders to investigate and contain security incidents. • Develop ...

TENEX.AI

Threat Hunter

Scottsdale, AZ · On-site

... threat modeling and hypothesis-driven investigations to uncover hidden threats. • Collaborate with SOC analysts and incident responders to investigate and contain security incidents. • Develop ...

TENEX.AI

Threat Hunter

Kansas City, MO · On-site

... threat modeling and hypothesis-driven investigations to uncover hidden threats. • Collaborate with SOC analysts and incident responders to investigate and contain security incidents. • Develop ...

KBR

Threat Analyst - Senior

Springfield, VA · On-site

$91K - $121K/yr

Develop and maintain threat models and risk matrices for mission planning and operational support. * Produce detailed intelligence reports and briefings for senior leadership and mission stakeholders.

KBR, Inc.

Threat Analyst - Senior

Springfield, VA · On-site

$91K - $121K/yr

Develop and maintain threat models and risk matrices for mission planning and operational support. * Produce detailed intelligence reports and briefings for senior leadership and mission stakeholders.

next page

Showing results 1-20

All JobsThreat Modeling Jobs

Threat Modeling information

See salary details

$47

$60

$72

How much do threat modeling jobs pay per hour?

As of Jun 9, 2026, the average hourly pay for threat modeling in the United States is $60.46, according to ZipRecruiter salary data. Most workers in this role earn between $55.77 and $65.87 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Threat Modeler, and why are they important?

To thrive as a Threat Modeler, you need a solid understanding of cybersecurity principles, risk assessment, and software architecture, often supported by a degree in computer science or information security. Familiarity with threat modeling frameworks (like STRIDE or PASTA), diagramming tools (such as Microsoft Threat Modeling Tool), and relevant certifications (like CISSP or CEH) is typically required. Strong analytical thinking, attention to detail, and effective communication are crucial soft skills for collaborating with cross-functional teams and clearly documenting risks. These skills enable the identification and mitigation of potential security threats, ensuring robust protection of organizational assets.

What is threat modeling?

Threat modeling is a structured process used to identify, evaluate, and address potential security threats and vulnerabilities in systems, applications, or processes. The goal is to proactively understand security risks and design effective defenses before problems occur. It typically involves identifying critical assets, potential attackers, attack vectors, and existing controls, which helps organizations prioritize their security efforts. Threat modeling is an essential part of secure software development and risk management.

What are some common challenges faced by professionals in threat modeling roles, and how can they be addressed?

Professionals in threat modeling often encounter challenges such as keeping up with evolving threats, effectively communicating risk to stakeholders, and integrating threat modeling into fast-paced development cycles. Addressing these challenges involves continuous learning, fostering strong collaboration with development and security teams, and leveraging automated tools to streamline the process. Proactively engaging with cross-functional teams and maintaining clear documentation can also help ensure that threat modeling remains an integral part of the software development lifecycle.

What is the difference between Threat Modeling vs Security Analyst?

AspectThreat ModelingSecurity Analyst
Primary FocusIdentifying potential security threats during system design and developmentMonitoring, analyzing, and responding to security incidents and vulnerabilities
Skills & CertificationsKnowledge of security frameworks, risk assessment, threat identificationSecurity certifications (e.g., CISSP, CompTIA Security+), incident response skills
Work EnvironmentTypically involved in early-stage design, often within development teamsOperational, monitoring security tools, and incident management teams

Threat Modeling and Security Analysts both play vital roles in cybersecurity. Threat Modeling focuses on proactively identifying potential threats during system design, while Security Analysts respond to ongoing security incidents. Understanding their distinct responsibilities helps organizations strengthen their security posture effectively.

More about Threat Modeling jobs
What cities are hiring for Threat Modeling jobs? Cities with the most Threat Modeling job openings:
What states have the most Threat Modeling jobs? States with the most job openings for Threat Modeling jobs include:
What job categories do people searching Threat Modeling jobs look for? The top searched job categories for Threat Modeling jobs are:
Threat Modeling jobs near you
Senior Threat Assessment Engineer

Senior Threat Assessment Engineer

Salesforce

Seattle, WA • On-site

$130K - $178K/yr

Full-time

Posted 8 days ago

Salesforce rating

7.8

Company rating: 7.8 out of 10

Based on 48 frontline employees who took The Breakroom Quiz

99th of 186 rated software companies

Job description

Job Summary:
Salesforce is the #1 AI CRM, where innovation drives customer success. As a Senior Threat Assessment Engineer, you will lead independent assessments to identify and mitigate exploitable vectors, collaborating with various teams to enhance Salesforce's security posture.
Responsibilities:
• Conducting threat modeling for infrastructure and application-level threat scenarios, including security architecture and interactions, and new products/features from a realized threat and “outside-in” perspective.
• Create onboarding strategy of all new M&As into Cyber Security Operations across assessments, log prioritization and onboarding, and detection and security tool validation.
• Utilizing threat intelligence, incident response data, detection and logging metrics, and visibility from proprietary security tooling to conduct and correlate research.
• Assessing cloud security controls and cloud architecture implementations across current businesses and future business units, primarily across AWS, GCP, and Azure substrates.
• Analyzing logs from endpoint, network, and other security tooling to identify potential gaps in coverage or hunting for bypassing of existing controls.
• Engaging executive stakeholders across the company to translate assessments into actionable recommendations that shape the business and our products.
• Providing strategic and tactical applied threat insights to Security and leadership stakeholders by contextualizing intelligence in the Salesforce context with our Threat Intelligence team.
Qualifications:
Required:
• 6+ years of experience in threat modeling and security architecture.
• Strong research and analytical skills with the ability to correlate data from various sources.
• Proficiency in analyzing logs and events from various security tools like EDR, CSPM, SIEM, etc.
• In-depth understanding of cloud security and application security fundamentals and best practices (such as OWASP Top 10).
• Strong understanding of common exploitation and abuse threats observed across for SaaS and PaaS providers.
• Experience using threat modeling and analysis frameworks such as Cyber Kill Chain, Diamond Model, MITRE ATT&CK, and STRIDE.
• Excellent communication skills, both written and oral.
• A related technical degree required.
Preferred:
• Experience in Product or Enterprise Security design reviews and security assurance.
• Experience automating processes and/or using AI tooling to automate workflows and data analysis.
Company:
Salesforce is a cloud-based software company that provides customer relationship management software and applications. Founded in 1999, the company is headquartered in San Francisco, USA, with a team of 10001+ employees. The company is currently Late Stage.

What Salesforce employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom

Apply