The Application Security consultant has strong experience with secure application development and application security assessments. The ideal candidate will understand a wide range of technologies, programming languages and application frameworks to identify risks and vulnerabilities in client applications and supporting environments.
Our consultants are skilled technical and consultative resources expected to be strong in both technical and soft skills. A consultant must be a proven self-starter with the ability to problem-solve, communicate, participate in diverse project teams from a technical perspective, and interface effectively with customers, vendor partners, and colleagues.
How you'll make an impact
Perform application security assessments, penetration tests, secure code reviews, and advanced advisory activities through client services engagements
Write status updates and final deliverables during client engagements
Provide tactical and strategic guidance and detailed remediation advice help clients achieve stronger security postures
Build and maintain professional relationships with client stakeholders and provide them with information about application security and secure development lifecycle topics
Track and monitor current and trending practices in software engineering and application security, including DevOps/DevSecOps and Agile development practices
Obtain and evolve technical expertise, certifications, and industry credentials through formal and informal training and other learning initiatives
Contribute content to the Optiv blog and present on security topics via webinars and security conferences
Establish and maintain productive relationships with the wider delivery team, practice management, and client management team
Identify and recommend improvements in Optiv’s methodologies and internal processes and provide input and support for updating consulting tools, techniques and knowledge base
Review the work provided by other team members to confirm their deliverables are of the highest quality
What we're re looking for
Practical experience (3-5 years) in an application security role that included manual testing
Previous job experience in an information security consulting services or enterprise security team role
Ability to travel 20% of the time to client sites
Deep understanding of software security architecture and design
Ability to work with diverse and dynamic teams
Successful implementation of application testing methodologies for web applications and APIs
Ability to assess mobile applications on IOS and Android platforms
Able to assist in setting the strategic direction of the practice based on experience and industry background
BA/BS degree preferred in computer science, software engineering, cybersecurity, or mathematics
One or more security certifications highly preferred: CISSP, CSSLP, OSCP, OSWE, OSCE, GPEN, GWAPT, eWPTX
#LI-GN1
What you can expect from Optiv
EEO Statement
Optiv is an equal opportunity employer (EEO). All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, status as an individual with a disability, veteran status, or any other basis protected by federal, state, or local law.
Optiv respects your privacy. By providing your information through this page or applying for a job at Optiv, you acknowledge that Optiv will collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Optiv’s selection and recruitment activities. For additional details on how Optiv uses and protects your personal information in the application process, click here to view our Applicant Privacy Notice. If you sign up to receive notifications of job postings, you may unsubscribe at any time.
Oracle
TripActions
KeyBank
EPAM Systems
TripActions
