Senior Application Security Consultant
DirectDefense
- Colorado
- $120,000-140,000 per year
- Permanent
- Full-time
- Perform network application penetration testing, source code reviews, threat analysis, cloud, and network assessments.
- Develop comprehensive and accurate reports and presentations for both technical and executive audiences.
- Recognize and safely utilize attacker tools, tactics, and procedures.
- Develop scripts, tools, or methodologies to enhance team processes.
- Assist with scoping prospective engagements, leading engagements from kickoff through remediation, and mentoring less experienced staff.
- Perform Vulnerability Scanning and Malware Analysis.
- Assess, monitor, and recommend improvements to our client’s security architecture.
- Define tasks, processes, and procedures necessary to implement, maintain support, and monitor proposed solutions.
- Collaborates with the Application Security and Compliance team to develop holistic security solutions for our clients.
- Reviews audits, and evaluates security solutions and designs.
- Proactively identify technical and architectural risks, commenting and/or providing alternatives for improvement.
- Reviews to ensure the use of best practices and compliance with security frameworks like (ISO2700x, PCI, and HIPAA).
- 5-10 years of experience with Application Security and/or Penetration Testing.
- Familiarity with offensive toolkits used for Network and Application Penetration Testing.
- Familiarity with offensive and defensive IT concepts.
- Knowledge of Linux and/or Windows administration.
- 401(k)
- AD&D Insurance
- Dental Insurance
- Disability insurance
- Health insurance
- Life insurance
- Vision insurance
- Flex PTO program
- Paid certification and continuing education