Application Security Consultant London (Hybrid) £85,000 Duties and Responsibilities: Be comfortable providing secure coding practises training to the development teams engagingly and collaboratively. Threat Modelling expertise is required to train developers to threat model themselves and provide further expertise when it is escalated. Comfortable with configuring and deploying security tooling in an automated manner in CI/CD environments. Be able to identify and prioritise risks in development activities and provide mitigating controls. Collaborate with development teams to create plans for vulnerability mitigations detected within SAST, DAST, SCA, vulnerability scanning and API security tools. Continuously updating security knowledge in the development space to be able to mitigate based on evolving threats. Additional responsibilities as deemed necessary. Knowledge, Skills and Abilities Minimum of 4 years experience in a similar role Expert knowledge of OWASP Top 10 and CWE Top 25 Extensive knowledge of IDE security tooling Expertise in API security best practises and OWASP API Top 10 Scripting skills for pipeline automation and security stage gate development Good understanding and technical knowledge of key cloud providers, current network and client operating system Demonstrated experience in developing business processes and/or overseeing business office operations. Demonstrated ability to apply IT in solving business problems. Ability to present ideas in business-friendly and user-friendly language. Highly self-motivated, self-directed, and attentive to detail.