Principal Application Security Consultant

The Principal Application Security Consultant will serve as a trusted, strategic partner to clients, collaborating closely with AppSec managers, and Cyber & Engineering stakeholders. They will provide the expertise needed to shape the policies, frameworks and strategic direction for secure coding programs, assisting clients in assessing their current security posture, identifying critical vulnerabilities, and defining program metrics to guide success. The Principal Application Security Consultant’s role is to empower clients to build and sustain their own secure coding initiatives effectively.

What are the essential duties of this role?

• Framework & Strategy Advisory for Secure Coding Programs: Guide clients in developing scalable frameworks and strategic plans that they can use to build their own secure coding initiatives.
• AppSec Maturity & Vulnerability Assessment: Conduct high-level AppSec assessments, providing recommendations around developer training curriculum and policies.
• Stakeholder Alignment & Trusted Advisory: Act as a trusted advisor to AppSec and other client stakeholders, supporting them in aligning with executives and securing buy-in for their secure coding program goals.
• Executive Metrics Advisory: Help executives define meaningful program metrics and equip their teams with frameworks to measure and communicate the ROI of their secure coding programs.
• Collaboration with Internal Teams: Partner with Senior Consultants and Cyber Awareness Experts to provide clients with well-rounded strategic and technical guidance.
• Continuous Learning & Industry Knowledge Development: Stay informed on AppSec trends, adapting recommendations to reflect the latest industry insights and client feedback.