The Application Security (AppSec) Consultant will work closely with clients to evaluate, enhance, and ensure the security of their applications throughout the software/application lifecycle. This includes, but is not limited to, tasks like:
* Advise clients on secure software design and security architectures, therefore ensuring philosophies such as security by design.
* Introduce security standards and tools during design and any other application development phases.
* Implement and execute security procedures (e.g. disaster recovery) and technology controls (e.g. application firewalls) to protect applications in production environments.
* Plan and conduct various security assessments of client applications, such as including static and dynamic code analysis, vulnerability scanning, Interactive Application Security Testing and Software Composition Analysis.
* Ensure client applications comply with relevant security standards and regulations (e.g., OWASP, NIST, GDPR, PCI-DSS).
Requirements:
* Bachelor's degree in Computer Science, Information Security, or a related field. Relevant certifications (e.g., CISSP, CEH, OSCP) are a plus.
* Minimum of 3 years of experience in application security, with a focus on performing security assessments and consulting.
* Knowledgeable in implementing and executing SSDLCs.
* Proficiency in security assessment tools.
* Strong understanding of application security principles and common vulnerabilities.
* Experience with secure coding practices and code review processes.
* Knowledge of network security protocols and technologies.
* Familiarity with cloud security (AWS, Azure, GCP) is desirable.
* DevSecOps experience.
* In sum, skill-set and experience in the following areas: Software Security Engineering, Application Security, Secure Coding and DevSecOps.
Apply now with your English CV.
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Industries
Human Resources Services
#J-18808-Ljbffr