Overview
Remote
Depends on Experience
Contract - W2
Contract - 12 month(s)
Skills
application security
threat modeling
code review
security policies
vulnerability scanning
SDLC
OWASP
DevOps
cloud security
AWS
Azure
GCP
Job Details
- At least 8 years of hands-on experience in application security, secure software development, or security consulting
- Experience conducting security reviews (code, design threat modeling, architecture) for modern applications (web, mobile, cloud-native)
- Strong knowledge of secure development practices, OWASP Top 10, and relevant standards
- Ability to communicate technical risks and recommendations clearly to technical and non-technical audiences
- Familiarity with tools used in code analysis, vulnerability scanning, and security testing
- Experience working cross-functionally with developers, engineers, and product teams
DESIRABLE SKILLS/EXPERIENCE:
- Experience working within or alongside DevOps/CI-CD environments
- Familiarity with container security, API security, and cloud-native application architectures (AWS, Azure, Google Cloud Platform)
- Experience supporting security governance or policy development
- Experience with risk exception processes or helping define security risk tolerances
- Experience in large, complex organizations or government/public sector environments
- Experience with third-party risk assessments, vendor management, or SaaS reviews
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.