RemoteLeaf Logo
Log in Sign up

Senior Application Security Consultant, Strategic Services- Remote (Anywhere in the U.S.)

6 hours, 13 minutes ago
United States
Full-time
Senior
Application Security Engineer
Software Development
C# C++ DevSecOps Encryption Generative AI Java JavaScript PHP Python
Apply Now
GuidePoint Security

GuidePoint Security

GuidePoint Security is a trusted cybersecurity consulting firm that provides expertise, solutions, and services to help organizations make informed decisions and minimize risks. Their elite team of experts offers holistic perspectives on cybersecurity,...

Internet Software & Services
251-1K
Founded 2011
View All Jobs 40

Description

  • Deliver application security services, including application threat modeling, application architecture reviews, and AppSec/DevSecOps program assessments.
  • Author comprehensive assessment deliverables for technical and managerial audiences, covering execution, deficiencies, business impact, and remediation strategies.
  • Communicate directly with clients, manage concurrent engagements, and provide support, information, and guidance.
  • Provide remediation guidance based on identified application security issues and mitigation strategies.
  • Analyze complex application architectures and assess security controls, requirements, and standards.
  • Work with development teams to integrate security into the SDLC and support secure implementation practices.
  • Assist with practice development by improving offerings and mentoring team members.
  • Contribute to marketing initiatives through research, speaking, writing, and tool development.
  • Foster strong client relationships while supporting ongoing engagements.
  • Embrace and apply emerging technologies, including AI tools, to improve workflows and business outcomes.

Requirements

  • Willingness to travel up to 10%.
  • 6+ years of experience in Application Security and/or Software Development, including at least 3 years in Application Security.
  • At least 2 years of experience in consulting services or internal security roles requiring communication with both technical teams and executive leadership.
  • Hands-on experience delivering application threat modeling, architecture reviews, and AppSec/DevSecOps program assessments.
  • Strong understanding of application security tools, methodologies, and frameworks such as OWASP SAMM, OWASP DSOMM, NIST SSDF, SLSA, NIST AI RMF, and MITRE ATLAS.
  • Deep knowledge of application security issues, mitigation strategies, and common security controls.
  • Experience working within development teams and integrating security into the SDLC.
  • Development or application architecture background with secure implementation knowledge for cryptography, input validation, injection prevention, and exception management.
  • Operational DevSecOps experience.
  • Programming experience in JavaScript, shell, Python, Java, C++, PHP, or C#, with the ability to translate security requirements into technical implementations.
  • Excellent writing, communication, and time management skills.
  • Bachelor’s degree in a relevant discipline or equivalent experience.
  • Comprehensive hands-on experience using generative AI in automated workflows.
  • Experience with application security controls, architectures, requirements, and industry standards.
  • Startup mentality with a highly driven, high-performance approach to work.
  • Experience using Greenhouse Software and Zoom Scheduler is implied by the hiring process.

Benefits

  • Remote-first work environment for U.S.-based employees, with some roles requiring travel or on-site work for Federal positions.
  • Group medical insurance options, including a Zero Deductible PPO plan and a High Deductible Health Plan with HSA contributions.
  • Group dental insurance with 100% employer-paid employee premium and 75% coverage for family plans.
  • 12 corporate holidays and a Flexible Time Off (FTO) program.
  • Healthy mobile phone and home internet allowance.
  • Eligibility for the retirement plan after 2 months at open enrollment.
  • Pet benefit option.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

instacart.careers

Senior Product Security Engineer II

instacart.careers 1K-5K Internet Software & Services

Instacart is hiring a Security Engineering professional to conduct offensive security work across its products and internal tools while helping strengthen product security and privacy at scale.

United States Full-time Senior Application Security Engineer
$192k-$242k
Penetration Testing
3 days, 5 hours ago
instacart.careers

Senior Product Security Engineer II

instacart.careers 1K-5K Internet Software & Services

Instacart is hiring a Security Engineer to join its Security Engineering team and conduct offensive security work across product and internal tools to strengthen the company’s security posture.

Canada Full-time Senior Application Security Engineer
$145k-$152k
Penetration Testing
4 days, 6 hours ago
Workleap

DevSecOps Lead

Workleap 251-1K Internet Software & Services

Workleap is hiring a DevSecOps Lead to embed security into its AI-enabled SDLC, CI/CD pipelines, and Azure-based product development workflows across its Workleap and ShareGate platforms.

Canada Full-time Lead Application Security Engineer
$126k-$151k
Azure Bash C# CI/CD DevSecOps GitHub Actions .NET OAuth OpenID Connect Python SAML
1 week ago
Zscaler

Director, Product Management, Customer Security Outcomes

Zscaler 1K-5K Internet Software & Services

Zscaler is hiring a Director of Product Management for Customer Security Outcomes to lead the vision and strategy for its security operations services in a fully remote U.S. role.

United States Full-time Executive Application Security Engineer Product Manager
$200k-$285k
Generative AI Machine Learning
1 week, 2 days ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers