Summary
- Seeking an Application Security Consultant to support and enhance its enterprise application security program across web, mobile, and AWS cloud environments. This role focuses on secure design, code analysis, vulnerability management, and production security.
Key Responsibilities
- Lead application security design across web, mobile, and AWS (Lambda, API Gateway, S3)
- Manage and optimize SAST tools (Checkmarx) and vulnerability remediation
- Ensure alignment with OWASP Top 10 and security best practices
- Support secure CI/CD pipeline integration and release coordination
- Monitor and enhance application-layer security controls
- Partner with development teams on secure coding and remediation
- Participate in architecture reviews and provide risk-based recommendations
Required Skills & Experience
- 3+ years in application security (offense & defense)
- Strong experience with Checkmarx, Snyk (SAST/SCA tools)
- Knowledge of OWASP Top 10 vulnerabilities
- Hands-on AWS security experience (Lambda, IAM, S3, API Gateway)
- Experience with cloud security tools (Wiz, Prisma Cloud, Orca)
- Ability to review code (JAVA, Python, JAVAScript, Node.js)
- Experience with DevSecOps, CI/CD pipelines, Agile environments
- Strong communication and stakeholder management skills
