Application Security Consultant

Job Title: Application Security Consultant

Location: Parsippany, NJ (Hybrid) OR Remote

Duration: Contract (3 months)

Work Hours: ~35 hours/week

Role Overview

We are seeking an experienced Application Security Consultant to strengthen an enterprise application security program. This role focuses on securing web, mobile, and cloud-native applications by integrating security throughout the software development lifecycle (SDLC).

The consultant will collaborate with engineering, cloud, and business teams to ensure secure design, development, and deployment while balancing risk, performance, and delivery timelines.

Key Responsibilities

1. Application Security Architecture & Engineering (30%)

2. Vulnerability Management & Code Security (20%)

3. Application Protection & Monitoring (15%)

4. Release & Production Security (15%)

5. Security Advisory & Stakeholder Engagement (10%)

6. Reporting & Program Support (10%)

Required Qualifications

• 3+ years of hands-on Application Security experience (offensive & defensive)
• Strong experience with SAST/SCA tools (Checkmarx, Snyk)
• Deep knowledge of OWASP Top Ten vulnerabilities
• Experience securing AWS environments (Lambda, API Gateway, IAM, S3)
• Familiarity with cloud security platforms (Wiz, Orca, Prisma Cloud)
• Ability to read and analyze code (JavaScript, Node.js, Java, Python)
• Experience with CI/CD and DevSecOps integration
• Understanding of change management and release processes
• Strong communication and cross-functional collaboration skills
• Experience working in Agile environments

Preferred Qualifications

• Experience with WAF, RASP, or application protection tools
• Exposure to threat intelligence in AppSec
• Experience conducting security workshops or developer enablement sessions

Work Environment

• Two openings:
• Hybrid (Parsippany, NJ)
• Fully Remote
• Collaborative, cross-functional environment
• High-impact role influencing enterprise-wide security posture