Apply on Employer Site

GuidePoint Security · 2 months ago

Senior Application Security Consultant, Strategic Services- Remote (Anywhere in the U.S.)

United States

Full-time

Remote

Senior Level

6+ years exp

GuidePoint Security provides trusted cybersecurity expertise and solutions, helping organizations minimize risk. As a Senior Application Security Consultant, you will deliver strategic Application Security services and engage with clients across various industries, contributing to the evolution of service offerings in response to emerging threats.

Cyber SecurityInformation TechnologySecurity

Comp. & Benefits

No H1B

Responsibilities

Delivering Application Security services, including Application Threat Modeling, Application Architecture Reviews, and AppSec/DevSecOps Program Assessments

Author comprehensive assessment deliverables tailored to both technical and managerial audiences detailing technical execution, deficiencies, business impact, and remediation strategies

Understanding of application security landscape, tools, methodologies, and frameworks such as OWASP SAMM, OWASP DSOMM, NIST SSDF, SLSA, NIST AI RMF, and MITRE ATLAS

Deep understanding of application security issues, mitigation strategies, and common security controls

Ability to analyze and understand complex application architectures

Experience working directly within development teams and integrating security into the SDLC

Assist with Practice development, improving offerings, and mentoring team members

Contribute to marketing initiatives via research, speaking, writing, and tool development

Foster client relationships through support, information, and guidance while managing concurrent client engagements

Demonstrates a startup mentality with a highly driven, high-performance approach to work

Qualification

Application SecurityThreat ModelingDevSecOpsApplication Architecture ReviewsGenerative AISecure Software DevelopmentApplication Security ControlsComplex Application ArchitecturesOperational DevSecOpsProgramming LanguagesCommunicationTime Management

Required

Willingness to travel up to 10%

Delivering Application Security services, including Application Threat Modeling, Application Architecture Reviews, and AppSec/DevSecOps Program Assessments

Author comprehensive assessment deliverables tailored to both technical and managerial audiences detailing technical execution, deficiencies, business impact, and remediation strategies

Understanding of application security landscape, tools, methodologies, and frameworks such as OWASP SAMM, OWASP DSOMM, NIST SSDF, SLSA, NIST AI RMF, and MITRE ATLAS

Deep understanding of application security issues, mitigation strategies, and common security controls

Ability to analyze and understand complex application architectures

Experience working directly within development teams and integrating security into the SDLC

Assist with Practice development, improving offerings, and mentoring team members

Contribute to marketing initiatives via research, speaking, writing, and tool development

Foster client relationships through support, information, and guidance while managing concurrent client engagements

Demonstrates a startup mentality with a highly driven, high-performance approach to work

Comprehensive hands-on experience using generative AI in automated workflows

Direct hands-on experience in application security service offerings, including application threat modeling, architecture reviews, and AppSec/DevSecOps program assessments

Experience with application security controls, architectures, requirements, and industry standards

Development and/or application architecture design background with understanding of secure implementation practices for cryptography, input validation techniques to prevent injection attacks, and exception management

Operational DevSecOps experience

Development experience in JavaScript, shell, Python, Java, C++, PHP, or C#, with ability to translate security requirements into technical implementations

Excellent writing, communication, and time management skills

Minimum of 6 years of experience in Application Security and/or Software Development, with at least 3 years in Application Security

Minimum of 2 years of experience in consulting services or internal security roles requiring effective communication with both technical teams and executive leadership

Bachelor's degree in a relevant discipline or equivalent experience

Benefits

Group Medical Insurance options: Zero Deductible PPO Plan (GuidePoint pays 90% of the premium for employees and 70% for family plans (spouse/children/family) or High Deductible Health Plan with HSA (GuidePoint pays 100% of the employees premiums and 75% for family plans (spouse/children/family) and GPS will contribute in one lump sum: ($500 per EE annually / $1000 per family annually (includes spouse/children/family options)

Group Dental Insurance: GuidePoint pays 100% of the premium for employees and 75% of family plans

12 corporate holidays and a Flexible Time Off (FTO) program

Healthy mobile phone and home internet allowance

Eligibility for retirement plan after 2 months at open enrollment

Pet Benefit Option

Company

GuidePoint Security

GuidePoint Security provides customized, innovative & valuable Information Security solutions that enable commercial federal organizations.

Founded in 2011

Herndon, Virginia, USA

1001-5000 employees

https://www.guidepointsecurity.com/

Funding

Current Stage

Late Stage

Total Funding

unknown

Key Investors

Audax Private Equity

2023-10-10Private Equity

Leadership Team

Michael Volk

Chairman & CEO

J

Joe Leonard

CTO & VP Security Strategy

Recent News

CRN

Wiz Unveils Revamped Channel Program, Major Partner Services Push

2025-12-01

CRN

'Flexing' Its Muscle: CrowdStrike CEO Kurtz Says It's The First 'Hyperscaler Of Security'

2025-11-20

PR Newswire

Netenrich and GuidePoint Security Partner to Accelerate Autonomous Security Operations with Google Cloud

2025-11-19

Company data provided by crunchbase