Application Security Consultants - Security by Design
Accenture, recognized as a Great Place To Work®, is a leading global professional services company that helps major businesses, public administrations, and other organizations around the world develop their digital core, optimize their operations, accelerate revenue growth, and improve services for citizens, creating tangible value at speed and scale.
Would you like to be part of a team of over 19,000 cybersecurity specialists worldwide? Accenture has an opportunity for you to join our Cybersecurity team.
The role of an Application Security Consultant is focused on protection, providing clients with the ongoing security features to protect applications, systems and data, being free from the risk of cyber-attacks and related problems. Therefore, a comprehensive understanding of the latest threats, procedures, and facilities is essential.
Application Security Consultants usually try to find the most efficient way to protect the system, networks, software applications, data and information systems against any potential attacks, giving professional supervision and guidance to security teams to implement vulnerability testing, threat analysis, and security checks.
As a member of the Security Team, the Application Security Consultant will work in a collaborative environment where sharing skills and expertise is part of its DNA, cultivating a culture of security awareness, as well as participating in ongoing team education to ensure security policies for applications, environments and systems are followed at all times.
Continuous learning is encouraged (and needed!) through our extensive training program, classroom/online courses from well-known providers and certifications.
Applicants must have Computer Science, Telecommunications or Engineering Degree or a related field and full professional proficiency in English and Spanish.
Selected candidates will take part in Application Security and other Security projects in global & leading companies operating different markets.
Responsibilities and recurring main tasks
- Manage group of people and projects.
- Definition of the secure software development life cycle.
- Definition of applications security architecture elements.
- Definition and documentation of security requirements for components (web, database, web services, mobile, etc.).
- Definition of KPI and KRI related to security in applications.
- Build PoC with clients to determine best tools to be implemented.
- Manage Threats, Risks and Vulnerabilities lifecycle on client environment.
- Collaborate with clients to define best approach to maximize the security posture.
- Represent the security organization as a prime contact with internal customers.
Core Skills (“Must have”)
These are the main skills that an Application Security Consultant should demonstrate and exercise on a daily basis in order to fulfill its responsibilities and recurring tasks:
- Experience in management and definition of security (Secure Development, DevSecOps, Secure Software Design) in the software development lifecycle (SDLC).
- Experience defining and capturing security requirements in applications, as well as Application Security design.
- Security knowledge in Web applications and common enumerations.
- Experience in threat detection and risk management and analysis.
- Experience defining security countermeasures and technical implementations.
- Strong presentation skills required, while interacting with both technical and non-technical people, adapting the complexity of the vocabulary as required by the audience.
Valuable Skills (“Nice to have”)
Although not all of them are required, breadth and depth of the following skills are positive valued for an Application Security Consultant role:
- Models and methodologies: Software development Waterfall, Agile methodologies such as Scrum or Kanban, and with a DevOps mindset.
- Application Security standards: Experience with OWASP TOP 10, OWASP ASVS, CWE, MITRE, CAPEC, SANS 25.
- Security threat models: Knowledge in STRIDE, DREAD, PASTA.
Valuable certifications
- CSSLP, CISSP, CASE
Madrid
Egalité des chances face à l'emploi
Chez Accenture, l’inclusion et la diversité sont essentielles à notre culture et font partie intégrante de nos valeurs fondamentales. Nous sommes engagés à créer un environnement de travail dans lesquels tous nos collaborateurs sont respectés et ont le moyen de donner le meilleur d'eux-mêmes. Nous offrons un environnement inclusif, sans égard aux caractéristiques personnelles comme l’origine ethnique, la religion, le genre, l’orientation sexuelle, l’identité ou l’expression du genre, l’âge ou le handicap.
Les candidats à un poste sont tenus de ne pas divulguer les dossiers de condamnation ou d'arrestation sous scellés ou effacés dans le cadre de leur processus d'embauche.
We work with one shared purpose: to deliver on the promise of technology and human ingenuity. Every day, more than 775,000 of us help our stakeholders continuously reinvent. Together, we drive positive change and deliver value to our clients, partners, shareholders, communities, and each other.
We believe that delivering value requires innovation, and innovation thrives in an inclusive and diverse environment. We actively foster a workplace free from bias, where everyone feels a sense of belonging and is respected and empowered to do their best work.
At Accenture, we see well-being holistically, supporting our people’s physical, mental, and financial health. We also provide opportunities to keep skills relevant through certifications, learning, and diverse work experiences. We’re proud to be consistently recognized as one of the World’s Best Workplaces™.
Join Accenture to work at the heart of change. Visit us at www.accenture.com.