Senior Application Security Consultant

Senior Application Security Consultant

Are you an experienced IT Security professional with strong expertise in application security? Do you thrive in complex environments where you can operate globally and tackle diverse security topics? Then this role could be your next challenge!

About the Role
You will join an expert internal IT Security team of 12 senior application security consultants, Embedded within a larger security organization. You'll focus on safeguarding applications across the entire landscape: from in-house development to vendor-delivered SaaS and commercial off-the-shelf (COTS) solutions.

This is a hands-off consulting role, you won't be coding but will act as a trusted advisor and sparring partner for managers and internal teams. You will dive deep into identifying and mitigating risks, challenge conventional approaches and drive continuous improvement in security practices.

Key Responsibilities

• Create and maintain threat models for assigned applications and store them in the organization's central repository.
• Perform in-depth security assessments, identify gaps and ensure they are properly documented in the GRC tool.
• Carry out DORA contract deviation assessments to guarantee compliance and address risks proactively.

What You'll Do Day-to-Day

• Deliver clear, practical reports and presentations on the security status of applications to senior stakeholders.
• Coach and mentor colleagues within the security department, supporting knowledge sharing and collaboration.
• Act as a trusted advisor, helping teams identify weak points and strengthen their applications.
• Navigate and implement complex regulatory requirements (including DORA) to maintain secure operations.

About You

• 10+ years of experience in IT Security, with at least 5 years in application security.
• Strong consultancy mindset with a deep technical understanding.
• At least one relevant certification (CISSP, CISM, CISA, CEH, CCSP, CCSK)
• Solid knowledge of secure SDLC and security by design principles.
• Fluent in English with excellent communication skills, both verbal and written.
• Comfortable working in large, multicultural and collaborative environments.

What's Offered

• Join a highly skilled team of senior application security experts who share knowledge and support each other.
• Be part of a forward-thinking security organization with significant impact and visibility.
• Hybrid work model: typically 1-2 days onsite, the rest remote.