Job Description
Application Security Consultant – Remote
CSSLP, CISSP, OSWE, GWAPT, CREST CRT/CCT App
A leading Technology consultancy is looking for an Application Security Consultant to play a key role in embedding security into the heart of modern software development practices.
The role:
You’ll work closely with engineering teams to champion secure coding, guide remediation of vulnerabilities, and integrate AppSec controls across the DevOps pipeline. This role is especially focused on cloud-native development in AWS environments.
Key responsibilities include:
* Embedding secure coding practices and supporting design/code reviews
* Implementing SAST, DAST, SCA, and other security checks into DevOps workflows
* Supporting secure API design and cloud-native architecture
* Acting as a key escalation point for vulnerability triage and remediation
* Delivering developer enablement through workshops and hands-on threat modelling
What you’ll bring:
* 3+ years in application or product security roles
* Strong grasp of application-level threats, secure design, and remediation strategies
* Experience with IaC security (Terraform, CloudFormation), container security, and AWS
* Clear communication skills and a collaborative approach