Senior Risk Consultant – Digital Risk, Application Security

This is a fully remote position, open to applicants in India.

📋 Description

• Perform application security assessments to identify and alleviate potential security risks within our applications and systems.

• Evaluate software systems to uncover potential threats and vulnerabilities.

• Develop and maintain threat models that detail possible attack vectors and prioritize security initiatives.

• Collaborate with development teams to address identified vulnerabilities through code reviews and dynamic testing.

• Validate threat models against industry standards and best practices, ensuring compliance with organizational security policies.

• Document outcomes from threat modeling assessments, including identified risks, suggested mitigations, and action plans.

• Prepare and present reports to stakeholders, summarizing assessments and offering actionable insights.

• Review code produced by developers to detect security weaknesses and ensure compliance with coding standards and best practices.

• Offer technical guidance for application onboarding processes and assist developers in navigating the security review procedures.

• Work closely with development teams, product managers, and other stakeholders to collect information and understand application architecture.

• Keep current with the latest security threats, vulnerabilities, and trends in threat modeling methodologies.

⛳️ Requirements

• Bachelor’s degree in information technology, Cybersecurity, Business Management, or a related discipline.

• Over 4 years of experience with various threat modeling tools and methodologies.

• More than 4 years of experience in engineering, product/technical program management, data analysis, or product development.

• At least 4 years of experience working on cross-functional and/or cross-team projects.

• A minimum of 4 years of combined experience in technology administration/management, technical risk management, and software development/engineering.

• Significant experience in client-facing roles.

• Certifications such as Certified Information Systems Security Professional (CISSP) or Certified Ethical Hacker (CEH) are advantageous.

🏝️ Benefits

• Competitive Salary