Application Security Coordinator Threat Modeling

Charlotte, VT - USA

Monthly Salary: Not Disclosed

Posted on: 8 hours ago

Vacancies: 1 Vacancy

Job Summary

Responsibilities:

Threat Modeling & Secure Design Coordination

Provide programmatic support and coordination for application and infrastructure security assessments.
Own and manage the threat modeling engagement from intake through final reporting and closure.
Coordinate workshop scheduling across multiple concurrent engagements balancing priorities dependencies and resource availability.
Partner with application teams infrastructure owners and product stakeholders to gather pre workshop information technical documentation architecture diagrams and required artifacts.
Ensure threat modeling workshop scope assumptions and prerequisites are clearly defined and validated prior to execution.

Engagement & Partnership

Serve as the primary coordination point between cybersecurity engineering architecture and product stakeholders for threat modeling and secure design activities.
Build strong relationships with development and infrastructure teams to promote early engagement with security and shiftleft practices.
Clearly communicate expectations timelines and outcomes to both technical and nontechnical audiences.
Escalate risks delays or blockers to appropriate leaders in a timely structured manner.

Documentation Tracking & Reporting

Ensure threat modeling sessions and outcomes are accurately documented including identified threats assumptions mitigations and residual risks.
Maintain highquality records in designated tools and repositories ensuring traceability from threats to corresponding controls or backlog items.
Support auditready documentation and evidence requirements related to application and infrastructure security design.
Produce regular reporting on volume throughput cycle times and themes emerging from threat modeling activities.

Risk & Vulnerability Alignment

Coordinate with vulnerability management and risk teams to align threat modeling outcomes with broader risk registers remediation workflows and standards.
Ensure that critical threats and design weaknesses are properly logged tracked and dispositioned through established risk processes.
Support remediation followup by partnering with technology owners to monitor progress on agreed mitigations.

Agile Ways of Working & Coordination

Apply program and project management best practices to manage complex multi workstream assessment activities.
Maintain assessment roadmaps intake queues and execution plans aligned to business and technology priorities.
Leverage Agile and Scrum style practices where appropriate including backlog management sprint planning stand ups retrospectives and dependency tracking.
Act as a servantleader / facilitator for securityfocused work removing impediments and enabling smooth execution across teams.
Contribute to the refinement of threat modeling playbooks templates and checklists to drive consistency and ease of use.

Education & Experience:

Bachelors degree in Information Security Information Technology Risk Management ora relatedfield (or equivalent experience).

Experience (typically 5 years) in application security cybersecurity IT risk management software engineering or technology program coordination.

Demonstrated experience coordinating or facilitating security activities such as threat modeling security architecture reviews or application/infrastructure security assessmentsin large regulated or complex environments.

Strong understanding of cybersecurity risk concepts (e.g. vulnerability risk threat attack surface mitigation)

Understanding of software development lifecycles (Agile DevOps CI/CD)

Preferred Qualifications:

Familiarity with structured threat modeling approaches and tools (e.g. STRIDEstyle analysis attack trees or similar methodologies).

Familiarity with security and risk frameworks such as NIST CSF NIST 80053 ISO 27001 or CIS Controls.

Program or project management certifications (PMP PgMP PRINCE2) or Agile/Scrum certifications (CSM SAFe PMI ACP).

Familiarity with vulnerability management remediation tracking and risk acceptance processes.

Experience supporting metrics dashboards and SLA driven operational reporting.

Key Skills & Competencies

Project Management:Planning prioritization dependency management and delivery execution.

Agile / Scrum Facilitation:Backlog managementimpedimentremoval team coordination.

Stakeholder Management:Ability to influence without authority across security IT and business teams.

Operational Rigor:Attention to detail documentation quality and audit readiness.

Communication:Clear concise communication of technical risk information to varied audiences.

Process Improvement:Continuous improvement mindset with the ability to standardize and scale operations.

Special Factors

Sponsorship

Vanguard is not offering visa sponsorship for this position.

About Vanguard

At Vanguard we dont just have a missionwere on a mission.

To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne our mission drives us forward and inspires us to be our best.

How We Work

Vanguard has implemented a hybrid working model for the majority of our crew members designed to capture the benefits of enhanced flexibility while enabling in-person learning collaboration and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.

Required Experience:

Responsibilities:Threat Modeling & Secure Design CoordinationProvide programmatic support and coordination for application and infrastructure security assessments.Own and manage the threat modeling engagement from intake through final reporting and closure.Coordinate workshop scheduling across multi...