Sr. Consultant - Application Security | Remote, USA

This position will be fully remote and can be hired anywhere in the continental U.S.

The Application Security consultant has strong experience with secure application development and application security assessments. The ideal candidate will understand a wide range of technologies, programming languages and application frameworks to identify risks and vulnerabilities in client applications and supporting environments.

Our consultants are skilled technical and consultative resources expected to be strong in both technical and soft skills. A consultant must be a proven self-starter with the ability to problem-solve, communicate, participate in diverse project teams from a technical perspective, and interface effectively with customers, vendor partners, and colleagues.

• Perform application security assessments, penetration tests, secure code reviews, and advanced advisory activities through client services engagements
• Write status updates and final deliverables during client engagements
• Provide tactical and strategic guidance and detailed remediation advice help clients achieve stronger security postures
• Build and maintain professional relationships with client stakeholders and provide them with information about application security and secure development lifecycle topics
• Track and monitor current and trending practices in software engineering and application security, including DevOps/DevSecOps and Agile development practices
• Obtain and evolve technical expertise, certifications, and industry credentials through formal and informal training and other learning initiatives
• Contribute content to the Optiv blog and present on security topics via webinars and security conferences
• Establish and maintain productive relationships with the wider delivery team, practice management, and client management team
• Identify and recommend improvements in Optiv's methodologies and internal processes and provide input and support for updating consulting tools, techniques and knowledge base
• Review the work provided by other team members to confirm their deliverables are of the highest quality

• Practical experience (3-5 years) in an application security role that included manual testing
• Previous job experience in an information security consulting services or enterprise security team role
• Ability to travel 20% of the time to client sites
• Deep understanding of software security architecture and design
• Ability to work with diverse and dynamic teams
• Successful implementation of application testing methodologies for web applications and APIs
• Ability to assess mobile applications on IOS and Android platforms
• Able to assist in setting the strategic direction of the practice based on experience and industry background
• BA/BS degree preferred in computer science, software engineering, cybersecurity, or mathematics
• Hold one or more security certifications: CISSP, CSSLP, OSCP, OSWE, OSCE, GPEN, GWAPT, eWPTX
• #LI-NA1

• A company committed to championing Diversity, Equality, and Inclusion through our Employee Resource Groups.
• Work/life balance
• Professional training resources
• Creative problem-solving and the ability to tackle unique, complex projects
• Volunteer Opportunities. "Optiv Chips In" encourages employees to volunteer and engage with their teams and communities.
• The ability and technology necessary to productively work remotely/from home (where applicable)