Consultant, Application Security
Indexed description
Working closely with our Application Security team, you'll help organisations build and maintain secure applications, strengthen Secure SDLC practices, and embed security throughout the software development lifecycle.
This role is ideal for someone with experience in Application Security, Product Security, DevSecOps or software development who is passionate about helping customers improve their security posture and reduce risk.
Key Responsibilities
- Deliver Application Security consulting services including threat modelling, Secure SDLC reviews, secure development assessments and developer security training.
- Support customers in building and maturing secure software development practices.
- Build strong relationships with customers and identify opportunities to expand CyberCX's Application Security capabilities within existing and new engagements.
- Act as a trusted technical advisor and subject matter expert for Application Security services.
- Produce high-quality reports and deliver presentations outlining findings, risks, recommendations and remediation strategies.
- Manage client expectations and ensure delivery quality, timelines and project objectives are achieved.
- Contribute to the development of methodologies, tooling, frameworks and service offerings across the practice.
- Participate in research, innovation and continuous improvement initiatives that strengthen CyberCX's Application Security capabilities.
- Application Security
- Product Security
- Penetration Testing
- DevSecOps
- Software Development
- Conducting threat modelling exercises and security design reviews.
- Building, implementing or supporting automated security testing capabilities.
- Implementing DevSecOps processes and managing CI/CD pipelines.
- Conducting secure code reviews across multiple languages and frameworks.
- Assessing Secure SDLC and Secure DevOps practices against frameworks such as OWASP SAMM and NIST SSDF.
- Working with containerised environments and Infrastructure as Code (IaC).
- 1 year experience within Application Security, Product Security, DevSecOps and/or software development.
- Tertiary qualifications in Cyber Security, Information Technology, Software Development or a related field, or equivalent industry experience.
- Strong stakeholder engagement and communication skills.
- Ability to build trusted relationships with technical teams, customers and senior leaders.
- Strong analytical and problem-solving capabilities.
- A proactive and resilient approach with the ability to respond effectively to changing priorities.
- Commitment to delivering high-quality outcomes and exceptional customer experiences.
- Professional, ethical and trusted by those around you.
- Customer-focused and driven to deliver exceptional outcomes.
- Curious, innovative and committed to continuous improvement.
- Collaborative and inclusive, with an enterprise-wide mindset.
- Emotionally intelligent, with strong communication and interpersonal skills.
With a team of highly skilled cyber security professionals across Australia and New Zealand, CyberCX helps organisations confidently manage cyber risk and respond to an increasingly complex threat landscape.
Our expertise spans:
Strategy & Consulting | Governance, Risk & Compliance | Security Testing & Assurance | Identity & Access Management | Network & Infrastructure Solutions | Managed Security Services | Cloud Security & Solutions | Digital Forensics & Incident Response | Cyber Capability, Education & Training
At CyberCX, you'll work alongside some of the industry's most experienced cyber security professionals, helping organisations solve complex security challenges and build cyber resilience.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search