Job Title: Security Engineer (Threat Modeling)
Job Type: Hybrid model - 5 month Contract + Extension
Location: Manila Philippines
Primary Skills
Skill/Tool
- Threat Modeling & Secure Design
- Threat modeling methodologies (e.g., STRIDE, OWASP Threat Modeling, attack trees)
- Application security experience (5+ years)
- Secure coding background (dev or AppSec roles)
- DevSecOps experience or strong exposure
- Understanding of SDLC security
- CI/CD pipeline security awareness
- Hands‑on AppSec tooling (SAST, DAST, SCA)
- Knowledge of secure coding standards (OWASP Top 10, NIST)
- Strong collaboration with developers & engineers
- SNYK Open Source (SCA)
- Clear technical communication skills
Secondary Skills
Skill/Tool
- Cloud‑native application security concepts
- API security fundamentals
- Container & Kubernetes security awareness
- Infrastructure as Code (IaC) security familiarity
- Hybrid cloud security exposure
- Penetration testing or vulnerability scanning exposure
- Automation frameworks for security workflows
Good to have:
- Certification - CSSLP/CISSP
- Deep specialization in a specific cloud provider
