1

Threat Modeling Jobs (NOW HIRING)

... threat modeling and hypothesis-driven investigations to uncover hidden threats. • Collaborate with SOC analysts and incident responders to investigate and contain security incidents. • Develop ...

... threat modeling and hypothesis-driven investigations to uncover hidden threats. • Collaborate with SOC analysts and incident responders to investigate and contain security incidents. • Develop ...

Develop and maintain threat models and risk matrices for mission planning and operational support. * Produce detailed intelligence reports and briefings for senior leadership and mission stakeholders.

Threat Analyst - Senior

Springfield, VA · On-site

$156K - $191K/yr

Develop and maintain threat models and risk matrices for mission planning and operational support. * Produce detailed intelligence reports and briefings for senior leadership and mission stakeholders.

next page

Showing results 1-20

Threat Modeling information

See salary details

$47

$60

$72

How much do threat modeling jobs pay per hour?

As of Jul 6, 2026, the average hourly pay for threat modeling in the United States is $60.46, according to ZipRecruiter salary data. Most workers in this role earn between $55.77 and $65.87 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Threat Modeler, and why are they important?

To thrive as a Threat Modeler, you need a solid understanding of cybersecurity principles, risk assessment, and software architecture, often supported by a degree in computer science or information security. Familiarity with threat modeling frameworks (like STRIDE or PASTA), diagramming tools (such as Microsoft Threat Modeling Tool), and relevant certifications (like CISSP or CEH) is typically required. Strong analytical thinking, attention to detail, and effective communication are crucial soft skills for collaborating with cross-functional teams and clearly documenting risks. These skills enable the identification and mitigation of potential security threats, ensuring robust protection of organizational assets.

What is threat modeling?

Threat modeling is a structured process used to identify, evaluate, and address potential security threats and vulnerabilities in systems, applications, or processes. The goal is to proactively understand security risks and design effective defenses before problems occur. It typically involves identifying critical assets, potential attackers, attack vectors, and existing controls, which helps organizations prioritize their security efforts. Threat modeling is an essential part of secure software development and risk management.

What are some common challenges faced by professionals in threat modeling roles, and how can they be addressed?

Professionals in threat modeling often encounter challenges such as keeping up with evolving threats, effectively communicating risk to stakeholders, and integrating threat modeling into fast-paced development cycles. Addressing these challenges involves continuous learning, fostering strong collaboration with development and security teams, and leveraging automated tools to streamline the process. Proactively engaging with cross-functional teams and maintaining clear documentation can also help ensure that threat modeling remains an integral part of the software development lifecycle.

What is the difference between Threat Modeling vs Security Analyst?

AspectThreat ModelingSecurity Analyst
Primary FocusIdentifying potential security threats during system design and developmentMonitoring, analyzing, and responding to security incidents and vulnerabilities
Skills & CertificationsKnowledge of security frameworks, risk assessment, threat identificationSecurity certifications (e.g., CISSP, CompTIA Security+), incident response skills
Work EnvironmentTypically involved in early-stage design, often within development teamsOperational, monitoring security tools, and incident management teams

Threat Modeling and Security Analysts both play vital roles in cybersecurity. Threat Modeling focuses on proactively identifying potential threats during system design, while Security Analysts respond to ongoing security incidents. Understanding their distinct responsibilities helps organizations strengthen their security posture effectively.

More about Threat Modeling jobs
What cities are hiring for Threat Modeling jobs? Cities with the most Threat Modeling job openings:
What states have the most Threat Modeling jobs? States with the most job openings for Threat Modeling jobs include:
What job categories do people searching Threat Modeling jobs look for? The top searched job categories for Threat Modeling jobs are:
Infographic showing various Threat Modeling job openings in the United States as of June 2026, with employment types broken down into 75% Full Time, and 25% Contract. Highlights an 100% In-person job distribution, with an average salary of $125,752 per year, or $60.5 per hour.

Threat Hunter

TENEX.AI

Scottsdale, AZ • On-site

Full-time

Posted 25 days ago


Job description

Job Summary:
TENEX.AI is an AI-native, automation-first Managed Detection and Response provider focused on enhancing cybersecurity. They are seeking a highly skilled Threat Hunter to join their Security Operations team, responsible for proactive threat hunting, incident response, and leveraging AI technologies to improve security processes.
Responsibilities:
• Proactively search for indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs) used by threat actors.
• Analyze and correlate security telemetry from various sources, including SIEM, EDR, network logs, and threat intelligence feeds.
• Conduct threat modeling and hypothesis-driven investigations to uncover hidden threats.
• Collaborate with SOC analysts and incident responders to investigate and contain security incidents.
• Develop and refine detection rules, signatures, and threat hunting methodologies.
• Stay ahead of emerging threats by researching new attack vectors, adversary techniques, and malware trends.
• Provide detailed reports on findings, including mitigation strategies and recommendations.
• Contribute to the continuous improvement of threat detection capabilities through automation and AI-driven analysis.
• Monitor security alerts and events across the enterprise network, using both traditional cybersecurity tools and AI/ML-powered threat detection systems.
• Leverage Google Chronicle's capabilities for threat intelligence and log analysis, enhancing visibility and providing insights into potential security incidents.
• Apply AI to identify patterns, anomalies, and behaviors indicative of potential security incidents, reducing false positives and improving detection accuracy.
• Investigate and analyze security incidents and breaches, leveraging AI to automate initial analysis and enhance threat hunting efforts.
• Utilize Google SecOps and Chronicle’s advanced tools to centralize security data, correlate events, and accelerate incident response workflows.
• Apply machine learning algorithms to identify emerging threats and trends, providing actionable insights for incident response.
• Work with Google SecOps platform tools to streamline security operations, improve threat visibility, and automate workflows.
• Collaborate with IT, Security, and Data Science teams to integrate Google Chronicle’s capabilities into the SOC, enhancing threat detection and incident resolution.
• Optimize Google Chronicle for log management, threat hunting, and advanced analytics.
• Develop and maintain automated workflows for common security incidents, leveraging AI for intelligent decision-making and faster response times.
• Automate routine SOC tasks such as log analysis, incident classification, and threat intelligence enrichment using Google SecOps and Chronicle integrations.
• Create detailed incident reports, risk assessments, and threat intelligence summaries, integrating AI-driven findings and insights.
• Prepare regular performance and security posture reports for internal stakeholders, highlighting key AI-driven improvements and threat mitigation outcomes.
• Work closely with cross-functional teams (e.g., IT, Customer Success, DevOps, Engineering, Data Science) to promote and improve AI-driven security initiatives and improve the customers' overall security posture.
• Share knowledge of AI-powered security techniques and Google SecOps tools with SOC team members to enhance their capabilities in threat detection and incident response.
Qualifications:
Required:
• Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent work experience.
• 3+ years of experience in a Threat Hunting, Security Operations Center (SOC) or a similar security-focused role.
• Strong understanding of attacker methodologies, malware analysis, and digital forensics.
• Hands-on experience with security tools such as SIEM, EDR, SOAR, and forensic analysis platforms.
• Proficiency in scripting languages (Python, PowerShell, etc.) for automating threat detection and analysis.
• Interest in applying automation and/or artificial intelligence and machine learning techniques to cybersecurity tasks, such as threat detection, anomaly detection, and security automation.
• Hands-on experience with security analytics, log management, threat hunting, and incident response.
• Hands-on experience with Google SecOps platform (Google Chronicle) is a strong plus.
• Hands-on experience with the Microsoft security platform (Sentinel, Defender) is a plus.
• Strong understanding of cybersecurity concepts and frameworks (e.g., NIST, Mitre, ISO, Kill Chain).
• Experience with AI/ML tools for cybersecurity, such as intrusion detection systems (IDS), SIEM tools, and security automation platforms.
• Proficiency in scripting languages (e.g., Python, PowerShell) for automation and integration.
• Knowledge of security technologies such as firewalls, endpoint protection, IDS/IPS, and threat intelligence platforms.
• Practical experience working with Google SecOps tools and Chronicle for centralized threat intelligence and event correlation a plus.
• Strong analytical and problem-solving skills.
• Team player, ability work with internal teams and external customers.
• Ability to work under pressure in a fast-paced, dynamic environment.
Preferred:
• Experience with security orchestration, automation, and response (SOAR) platforms.
• Exposure to cloud security platforms (e.g., AWS, Azure, Google Cloud) and the associated risks.
Company:
TENEX.AI is a cybersecurity company that combines human expertise with artificial intelligence to protect digital assets. Founded in 2024, the company is headquartered in Sarasota, USA, with a team of 51-200 employees. The company is currently Growth Stage.