Senior Application Security Consultant, Strategic Services (Remote - U.S.)

GuidePoint Security delivers trusted cybersecurity expertise, solutions, and services, empowering organizations to make informed decisions and minimize risk. Our holistic, three-tiered approach helps Fortune 500 companies and U.S. government agencies identify threats, optimize resources, and integrate best-fit solutions to mitigate risk effectively.

Summary: Senior Application Security Consultant

GuidePoint Security's Strategic Services team offers comprehensive Application Security services, including Application Threat Modeling, Application Architecture Reviews, and AppSec/DevSecOps Program Assessments. As a Senior Application Security Consultant, you will deliver these critical offerings to diverse clients.

You will join an elite team, performing engagements, communicating with clients, delivering detailed reports, and providing essential remediation guidance. This role also involves contributing to the evolution of our service offerings in response to emerging threats and client needs.

We are particularly interested in candidates who have transitioned from software development into application security, bringing practical coding experience and a deep understanding of secure software development practices.

Role Requirements

• Willingness to travel up to 10%.
• Deliver Application Security services, including Application Threat Modeling, Application Architecture Reviews, and AppSec/DevSecOps Program Assessments.
• Author comprehensive assessment deliverables for both technical and managerial audiences, detailing technical execution, deficiencies, business impact, and remediation strategies.
• Possess a strong understanding of the application security landscape, tools, methodologies, and frameworks such as OWASP SAMM, OWASP DSOMM, NIST SSDF, SLSA, NIST AI RMF, and MITRE ATLAS.
• Demonstrate deep understanding of application security issues, mitigation strategies, and common security controls.
• Ability to analyze and comprehend complex application architectures.
• Experience working directly within development teams and integrating security into the SDLC.
• Assist with practice development, improving offerings, and mentoring team members.
• Contribute to marketing initiatives through research, speaking, writing, and tool development.
• Foster client relationships through support, information, and guidance while managing concurrent client engagements.
• Exhibit a startup mentality with a highly driven, high-performance approach to work.

Education, Credentials, and Experience

• Comprehensive hands-on experience using generative AI in automated workflows.
• Direct hands-on experience in application security service offerings, including application threat modeling, architecture reviews, and AppSec/DevSecOps program assessments.
• Experience with application security controls, architectures, requirements, and industry standards.
• Development and/or application architecture design background with an understanding of secure implementation practices for cryptography, input validation techniques to prevent injection attacks, and exception management.
• Operational DevSecOps experience.
• Development experience in JavaScript, shell, Python, Java, C++, PHP, or C#, with the ability to translate security requirements into technical implementations.
• Excellent writing, communication, and time management skills.
• Minimum of 6 years of experience in Application Security and/or Software Development, with at least 3 years specifically in Application Security.
• Minimum of 2 years of experience in consulting services or internal security roles requiring effective communication with both technical teams and executive leadership.
• Bachelor's degree in a relevant discipline or equivalent experience.

Please check your SPAM folder for communications from Greenhouse Software and Zoom Scheduler regarding your application.

Why GuidePoint?

GuidePoint Security is a rapidly growing, profitable, privately-held value-added reseller focused exclusively on Information Security. Since 2011, we have grown to over 1,200 employees, established strategic partnerships with leading security vendors, and serve as a trusted advisor to more than 6,200 customers.

Our firmly-defined core values drive all business aspects, contributing to our success and an enjoyable workplace. At GuidePoint, you'll collaborate with knowledgeable, skilled, and experienced colleagues who provide mentorship and guidance. This is a unique opportunity to advance your career with one of the nation's fastest-growing companies.

Some Added Perks

• Primarily remote workforce (U.S. based only; some travel or on-site work may be required for specific positions).
• Group Medical Insurance options:
  • Zero Deductible PPO Plan (GuidePoint pays 90% of employee premium, 70% for family plans).
  • High Deductible Health Plan with HSA (GuidePoint pays 100% of employee premium, 75% for family plans; GPS contributes $850 per employee annually / $1750 per family annually to HSA).
• Group Dental Insurance: GuidePoint pays 100% of employee premium, 75% of family plans.
• 12 corporate holidays and a Flexible Time Off (FTO) program.
• Healthy mobile phone and home internet allowance.
• Eligibility for retirement plan after 2 months at open enrollment.
• Pet Benefit Option.