Senior Application Security Consultant

ole Overview

We are seeking an experienced Application Security to lead and oversee security aspects of technological projects from initiation to production. This role involves defining security policies, guiding development teams, and ensuring compliance with regulatory and organizational standards.

Key Responsibilities

• Provide end-to-end security guidance for technology projects, from design to production.
• Draft security guidelines for development teams, addressing vulnerabilities and implementing secure coding practices.
• Collaborate on secure architecture design aligned with company policies.
• Identify application-level security gaps and define necessary controls.
• Monitor compliance with cybersecurity risk management directives, organizational procedures, and regulatory requirements.
• Support application security assessments, including scope definition, validation of findings, and remediation tracking.
• Prepare requirement documents for security products and innovative technologies.

Required Qualifications

• Strong expertise in Application Security and secure development methodologies.
• Hands-on experience working with development and infrastructure teams.
• Practical knowledge of API Management & Security (e.g., Apigee, DataPower).
• Deep familiarity with cloud-native applications and technologies such as Containers, Kubernetes, and Serverless.
• Experience with CI/CD processes, Git tools, repositories, and Infrastructure as Code (IaC).
• Hands-on experience implementing security tools (CWPP, SAST, DAST, OSS).
• In-depth knowledge of OWASP Top 10.
• Proven experience in Mobile Security.
• Proficiency in Threat Modeling.

Professional Background

• Demonstrated experience managing security projects.
• Previous work in large organizations.
• Strong knowledge of risk management and security controls.
• Familiarity with security standards, regulations, and compliance frameworks.