Application Security Consultant

A client in the information technology space is looking for an Application Security Consultant to join their team. The security specialist will be responsable for identifying and mitigating application security vulnerabilities.

POSITION INFO : Qualifications :

• Matric
• Tertiary qualification in Information Technology or similar
• Any of these one (or more) certifications (or similar) : GPEN, GWAPT, GWEB, OSCP, CISSP, eCPPT

Requirements :

• Experience in multiple areas of information security
• Development experience (experience with one or more programming languages)
• Experience in working in large enterprises
• Working with CI / CD pipelines and Agile Methodologies
• AWS and cloud platforms
• Tools such as Veracode, Checkmarx, Fortify, Burp, IBM AppScan, BlackDuck
• Extensive experience in application security
• Extensive experience in web application security testing
• Familiar with OWASP Top 10
• Must be well-versed in multiple security domains with an emphasis on static code analysis

KPAs :

• Static code analysis
• Software composition analysis
• Interactive application security analysis (IAST)
• Build and improve operational processes
• Communicate vulnerabilities, provide remediation guidance and demonstrate issues