CrawlJobs Logo
Solomon Page Logo Solomon Page · IT - Software Development

Application Security Consultant

United States, Parsippany Employment contract 70.00 - 80.00 USD / Hour · Job Posted June 29, 2026
Apply Position
Job Link Share

Job Description

We are seeking an experienced Application Security Consultant to join our Cybersecurity team. In this role, you will lead and mature application security practices across development, cloud, and production environments. You will partner with engineering, architecture, and business teams to ensure security is embedded throughout the software development lifecycle while supporting secure and reliable application releases.

Job Responsibility

  • Lead application security design and implementation across web, mobile, and AWS cloud-native environments
  • Conduct secure architecture reviews and integrate security controls into CI/CD pipelines
  • Administer and optimize SAST and SCA tools such as Checkmarx and Snyk, including vulnerability triage, remediation guidance, and ruleset tuning
  • Identify and mitigate application security risks aligned with OWASP Top 10 and industry best practices
  • Secure AWS services including Lambda, API Gateway, IAM, and S3 while collaborating with cloud engineering teams
  • Manage and enhance application-layer security technologies through policy tuning, configuration updates, and threat detection improvements
  • Coordinate with change management and release teams to ensure secure, stable, and compliant production deployments
  • Represent the Application Security team in project planning, architecture reviews, and cybersecurity governance discussions
  • Track security findings, remediation efforts, and project milestones while providing regular security reporting to stakeholders
  • Support DevSecOps initiatives and promote secure coding practices through collaboration with development teams

Requirements

  • 3+ years of hands-on Application Security experience in both offensive and defensive security disciplines
  • Strong experience with SAST and SCA tools such as Checkmarx and Snyk, including vulnerability lifecycle management
  • Deep understanding of OWASP Top 10, web application security, API security, and remediation techniques
  • Experience securing AWS cloud environments, including Lambda, API Gateway, IAM, and S3
  • Familiarity with cloud security platforms such as Orca Security, Wiz, or Prisma Cloud
  • Ability to review and assess code written in Node.js, JavaScript, Java, or Python
  • Experience working with change management, release governance, and production deployment processes
  • Strong understanding of Agile, DevSecOps, and CI/CD security integration
  • Excellent communication, stakeholder management, and project coordination skills
  • Experience partnering with development teams to drive security adoption and remediation efforts

What we offer

  • Medical
  • Dental
  • 401(k)
  • Direct deposit
  • Commuter benefits
Solomon Page - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Application Security Consultant

8 matching positions

Application and Data Security Consultant

Tier4 is looking for a Security Consultant who will be responsible for ensuring ...
Location
Location
United States , Quincy
Salary
Salary:
Not provided
tier4group.com Logo
Tier4 Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of IT experience with at least 5+ years as a Security Manager/officer
  • Bachelor's degree in Information Technology or computer science or related field or equivalent experience
  • In-depth knowledge and experience working with common regulatory framework applications related to data security, including HIPAA, HITRUST, – General Data Protection Regulation (GDPR), National Institute of Standards & Technology (NIST) standards, and similar constructs are highly desired
  • Previous knowledge and experience in designing and architecting information technology and security controls across complex and diverse networks, applications, and infrastructures are strongly preferred
  • Technical aptitude, critical thinking skills, and the ability to think outside the box
  • Demonstrated ability to solve complex information security problems, observe security risks and weaknesses, and provide security recommendations to the respective project and delivery teams
  • Ability to translate technical risk issues to business leaders and upper management
  • Excellent verbal, written, and interpersonal communication skills
  • Detail-oriented and value teamwork
  • Ability to resolve problems as they arise and handle situations expediently
Job Responsibility
Job Responsibility
  • Implement Data Security Management and Operation models
  • Establish various security compliance standards including (but not limited to) NIST(National Institute of Standards and Technology), FIPS(Federal Information Processing Standards), FedRAMP(Federal Risk and Authorization Management Program)
  • Engage with agency Privacy and Security office teams to exchange Compliance reports and obtain approvals as necessary
  • Involve with auditors as necessary to provide compliance reports as requested and implement mitigation steps as required
  • Implement process and tools for application vulnerability testing(SAST/DAST)
  • Establish and manage a vulnerability management including coordination of penetration testing and ongoing vulnerability remediation, tracking, and security compliance reporting
  • Setup requirements for penetration testing and engage with vendors and agencies to perform/report pen tests
  • Setup infrastructure audits and reports with the help of system admins and vendors as necessary
  • Maintaining the system integrity and security by following the industry standard IT Controls
  • Implement automation of systems administration and software migration for QA and Production
Read More
Arrow Right

Security Consultant

As a Security Consultant, you will lead and support security initiatives for cli...
Location
Location
Belgium , Machelen
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5 years of IT professional experience in Security and Project management
  • Strong knowledge of network and firewall Management (rule approvals, access requests…)
  • Knowledge in Incident response and investigation
  • Knowledge in Vulnerability Management
  • Understanding of security stakeholders' roles such as infrastructure, network management, application development, and IT architecture
  • ITIL, ISO27001, or SIEM certifications (preferred)
  • Excellent communication and team collaboration skills in multi-cultural environments
  • Bachelor's or Master's degree in computer science
  • Fluency in English, Dutch, and/or French
Job Responsibility
Job Responsibility
  • Lead or contribute to cyber security projects for medium to large organisations, working closely with security architects, engineers, and client stakeholders
  • Manage, configure, review, and optimise firewall environments and network security architectures to ensure strong protection and policy compliance
  • Assess customer security needs and recommend appropriate technical and organisational security measures aligned with best practices
  • Develop technical proposals, security documentation, and customer-facing presentations that communicate secure and scalable solutions
What we offer
What we offer
  • Extensive career development opportunities, both local and international
  • Part of a dynamic network of 56,000 professionals at all stages of their careers
  • Wide array of offices to explore
  • Fulltime
Read More
Arrow Right

Physical Security Application Engineer

The Physical Security Application Engineer operates within the Design & Engineer...
Location
Location
United Kingdom , Camberley
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience designing, architecting, and commissioning physical security systems in enterprise or public sector environments
  • Hands-on delivery across enterprise VMS and access control platforms (e.g. Genetec, Milestone, Gallagher), with relevant certifications preferred
  • Strong knowledge of CCTV, access control, IP networking, and infrastructure
  • Experience producing HLDs, LLDs, and full system architecture documentation
  • Familiar with FAT, SAT, and SIT testing processes
  • Solid understanding of Windows Server, enterprise IT environments, and domain infrastructure
  • Working knowledge of integration technologies and security system protocols
  • Networking knowledge to CCNA level or equivalent
Job Responsibility
Job Responsibility
  • Work closely with clients and stakeholders to capture operational, functional, and technical requirements across the project lifecycle
  • Provide trusted advisory services, helping clients shape their security technology strategy and understand the implications of design and platform decisions
  • Support bids, tenders, and professional services engagements with credible technical input
  • Operate consultatively across all phases of an engagement, not just at the point of delivery
  • Develop High-Level Designs (HLDs) and system architectures during bid and solution stages
  • Produce Stage 4 detailed designs and Low-Level Designs (LLDs) suitable for installation and delivery
  • Design complex, multi-system integrated solutions (CCTV, Access Control, analytics, networks, and supporting infrastructure)
  • Ensure designs incorporate resilience, scalability, cybersecurity, and compliance requirements
  • Act as Design Authority across assigned projects, ensuring all deliverables align to approved designs
  • Provide technical oversight throughout installation, testing, and commissioning phases
  • Fulltime
Read More
Arrow Right

Physical Security Application Engineer

The Physical Security Application Engineer operates within the Design & Engineer...
Location
Location
United Kingdom , Newcastle upon Tyne
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience designing, architecting, and commissioning physical security systems in enterprise or public sector environments
  • Hands-on delivery across enterprise VMS and access control platforms (e.g. Genetec, Milestone, Gallagher), with relevant certifications preferred
  • Strong knowledge of CCTV, access control, IP networking, and infrastructure
  • Experience producing HLDs, LLDs, and full system architecture documentation
  • Familiar with FAT, SAT, and SIT testing processes
  • Solid understanding of Windows Server, enterprise IT environments, and domain infrastructure
  • Working knowledge of integration technologies and security system protocols
  • Networking knowledge to CCNA level or equivalent
Job Responsibility
Job Responsibility
  • Work closely with clients and stakeholders to capture operational, functional, and technical requirements across the project lifecycle
  • Provide trusted advisory services, helping clients shape their security technology strategy and understand the implications of design and platform decisions
  • Support bids, tenders, and professional services engagements with credible technical input
  • Operate consultatively across all phases of an engagement, not just at the point of delivery
  • Develop High-Level Designs (HLDs) and system architectures during bid and solution stages
  • Produce Stage 4 detailed designs and Low-Level Designs (LLDs) suitable for installation and delivery
  • Design complex, multi-system integrated solutions (CCTV, Access Control, analytics, networks, and supporting infrastructure)
  • Ensure designs incorporate resilience, scalability, cybersecurity, and compliance requirements
  • Act as Design Authority across assigned projects, ensuring all deliverables align to approved designs
  • Provide technical oversight throughout installation, testing, and commissioning phases
  • Fulltime
Read More
Arrow Right

Lead Application Security Architect

The Application Security Architect is a senior, influential role responsible for...
Location
Location
United Kingdom; Sweden; Poland , London; Stockholm; Łódź
Salary
Salary:
Not provided
arrive.com Logo
Arrive
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience in technology, with at least 7 years in a dedicated application security or product security role
  • Demonstrated experience designing and implementing a Secure SDLC in a cloud-native environment (GCP, AWS)
  • Hands-on experience with the architecture and strategy of AppSec tools (e.g., Snyk, Checkmarx, Veracode,)
  • Experience with securing microservices architectures, APIs, and modern web/mobile applications
  • Experience with securing AI/ML systems
  • A Bachelor’s degree in a relevant field or equivalent professional experience
Job Responsibility
Job Responsibility
  • Champion and orchestrate the definition of Arrive’s global Secure Software Development Lifecycle (SSDLC), from threat modeling to secure release, in close partnership with key stakeholders across Engineering and IT
  • Develop and maintain a comprehensive set of global security standards, baselines, and guidelines for secure coding, vulnerability management, and secure architecture
  • Create and champion the strategy for our application security tooling, including SAST, DAST, IAST, and Software Composition Analysis (SCA)
  • Define and manage the application security standards for Mergers & Acquisitions, establishing clear requirements and guiding the architectural integration of acquired technologies
  • Act as a lead security consultant and strategic partner for product and engineering teams, providing expert guidance on secure design patterns and vulnerability remediation
  • Forge a dynamic partnership with the Platform Security team: co-design the security tooling roadmap, consume their platforms where they meet global standards, and introduce new architectural patterns where needed
  • Lead security architecture reviews and threat modeling sessions for new applications and high-risk features
  • Act as a senior mentor and advocate for security engineers and champions across the organization, helping to grow our security talent
  • Stay at the forefront of emerging application security threats, with a particular focus on the risks associated with AI/ML systems
  • Collaborate with Data & AI teams to develop security principles and architectural patterns for securely integrating AI into our products
  • Fulltime
Read More
Arrow Right

Senior Security Consultant

Outpost24 is looking for a Senior Security Consultant! You will join our Offensi...
Location
Location
Sweden; Netherlands; Spain; Belgium; Germany , Karlskrona; Stockholm; Amsterdam; Barcelona; Leuven
Salary
Salary:
Not provided
outpost24.com Logo
Outpost24 Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of hands-on experience in offensive security (red teaming and/or penetration testing)
  • strong understanding of modern attack techniques and methodologies
  • experienced working with cloud environments and modern applications
  • can identify and chain vulnerabilities into meaningful attack scenarios
  • scripting or programming experience
  • curious mindset and passion for security
  • team player who is also comfortable working independently when needed
  • fluent English
Job Responsibility
Job Responsibility
  • Delivering offensive security engagements, including penetration testing and advanced red team engagements, leveraging frameworks such as MITRE ATT&CK and TIBER-EU/DORA
  • Identifying and exploiting vulnerabilities across a wide range of environments and technologies
  • Supporting complex security assessments that require creative and non-standard approaches
  • Collaborating with team members on challenging scenarios and actively contributing to knowledge sharing
  • Contributing to the continuous improvement of our tools, methodologies, and overall offensive security capabilities
What we offer
What we offer
  • Working on a variety of offensive security engagements across different domains
  • Being part of a skilled and collaborative team within Ghost Labs
  • Opportunities to grow through hands-on experience, training, and certifications
  • A flat organizational structure with high autonomy
  • A healthy work-life balance, with flexible working hours and a hybrid working environment
  • Local perks and benefits of working in your chosen country
  • Fulltime
Read More
Arrow Right

Application Security Engineer

We are looking for an Application Security Engineer to strengthen secure softwar...
Location
Location
United States , Reading
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or another related technical discipline
  • At least 5 years of experience in information security, including 3 or more years dedicated to application security, secure software engineering, or DevSecOps
  • Proven success helping build, strengthen, or scale an application security program in a lead or highly influential capacity
  • Strong understanding of common application security risks, secure SDLC practices, and widely recognized vulnerability frameworks and standards
  • Hands-on experience with application security testing platforms such as Burp Suite, Fortify, Checkmarx, Veracode, or similar tools
  • Working knowledge of threat modeling, penetration testing, secure architecture review, and modern software security assessment techniques
  • Practical experience securing cloud environments such as AWS or Azure, along with familiarity with Kubernetes, container hardening, and runtime protection
  • Active passport required, with willingness and ability to travel internationally
Job Responsibility
Job Responsibility
  • Partner with software engineering and cybersecurity teams to build security into application design, coding practices, release processes, and production support
  • Perform in-depth security evaluations through code analysis, threat modeling, penetration testing, and vulnerability assessments to uncover and prioritize risk
  • Establish and uphold secure development standards, reusable patterns, and technical guidance that improve consistency across teams
  • Administer and enhance security controls within CI/CD workflows, including code scanning, infrastructure-as-code checks, and container security tooling
  • Contribute to architecture assessments for cloud-based systems, microservices, and containerized applications to ensure resilient and secure designs
  • Evaluate application risks and support formal security reviews to guide mitigation planning and informed technical decisions
  • Verify that application security activities align with applicable compliance obligations and recognized industry frameworks
  • Create and deliver training sessions that help developers strengthen secure coding habits and increase security awareness
  • Track emerging attack techniques and threat intelligence, then apply those insights to improve preventive and detective controls
  • Support the monitoring, investigation, and remediation of application security issues, while coordinating effectively with external vendors and consultants as needed
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • Eligibility to enroll in company 401(k) plan
Read More
Arrow Right

Senior Security Consultant, Emergent Threat & Exploit Researcher

Do you enjoy attacking networks? Do you enjoy sifting through large amounts of a...
Location
Location
United Kingdom
Salary
Salary:
Not provided
rapid7.com Logo
Rapid7
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in an active technical security role & 4+ years Penetration Testing Consulting experience
  • Expert knowledge of Modern penetration testing tools and methods
  • Expert knowledge of Network and web-based application security concepts
  • Expert knowledge of Windows/Linux/UNIX internals
  • Expert knowledge of Exploit research and development
  • Experience using multiple interpreted languages (Ruby, Python, PHP, etc.) and compiled languages (Java, C, C++, Assembly, etc.)
  • Technical competencies, including previous technical consulting experience
  • High quality report writing and peer reviewing
  • Strong knowledge of common regulatory structures and obligations and common I.T. governance
  • The ability to effectively lead teams of penetration testers while on engagements
Job Responsibility
Job Responsibility
  • Deliver Rapid7’s Vector Command Continuous Red Teaming service
  • Investigate emerging threats, uncover novel vulnerabilities across large external attack surfaces, and attempt to breach customer perimeter defenses to gain initial access
  • When new N-day or zero-day vulnerabilities emerge, rapidly analyze them, recreate proof-of-concepts, and assess customer environments for exposure
  • Actively hunt for novel vulnerabilities and unique attack paths across customer attack surfaces to support initial access operations
  • Evaluate large external attack surfaces to identify vulnerabilities that enable initial access
  • Collaborate closely with a team of Red Team operators, participating in daily meetings to establish attack objectives and operational direction
  • Analyze, develop, and exploit N-day and newly released zero-day vulnerabilities relevant to customer environments
  • Identify novel attacks through black-box evaluation of customer web applications, leading to initial access or exposure of sensitive data
  • Develop and maintain positive relationships with clients and understand their business and needs
  • Participate in industry conferences and professional organizations
Read More
Arrow Right