ZipRecruiter

Log In

1

Application Security Consultant Jobs (NOW HIRING)

DirectDefense

Senior Security Consultant

Englewood, CO · On-site +1

$130K - $170K/yr

The Senior Security Consultant at DirectDefense will be a crucial member of our cybersecurity team ... Application Instructions: To apply, please submit your resume and cover letter through our online ...

VikingCloud

Security Consultant

... web application architecture and security. * Providing clear, organized findings and ... Learning from our close-knit group of consultants as well as contributing your thoughts, tools ...

Sonoma Consulting

Security Engineer

Glenview, IL

Security Engineer, Information Security Engineer, Senior Security Engineer, Security Consultant, Security Manager Skills: Identity and Access Management, web application firewalls(WAF), vulnerability ...

VikingCloud

Security Consultant

Description Security Consultant Location: Chicago or Remote US About VikingCloud VikingCloud is the ... web application architecture and security. * Providing clear, organized findings and ...

E*Pro, Inc.

AWS Security Consultant

Boston, MA

AWS Security Consultant Location : Boston, MA Job Type : Permanent Full Time * Comprehensive ... In-depth knowledge of firewalls, (host based, network and web application firewalls), IDS and IPS ...

Sonsoft Inc

Application Security

Exton, PA

$56.75 - $75.75/hr

At least 5 years of experience in Business Process Consulting, problem definition, Architecture ... Conduct Security Code Review, Vulnerability Assessment and Consult Product Development Team to ...

Accenture

SAP Platform Security Consultant

Chicago, IL · On-site

Strong understanding of information security management principles, SAP application security ... Bonus Points If You Have (Preferred Skills): • Prior experience working in a consultant/advisory ...

Diverse Lynx

Security Consultant

Louisville, KY · Remote

Security Consultant Location: Louisville, KY(Remote) Duration: Fulltime Salary: 120K - 130K/Year ... application manifests. * Author clear documentation, runbooks, and deliver knowledge transfers ...

Sonsoft Inc

Application Security

Sunnyvale, CA

$69 - $92.25/hr

At least 5 years of experience in Business Process Consulting, problem definition, Architecture ... At least 7 years of experience in IT Security Management Skills. Additional Information ** U.S ...

next page

Showing results 1-20

All JobsApplication Security Consultant Jobs

Application Security Consultant information

See salary details

$24

$56

$78

How much do application security consultant jobs pay per hour?

As of Jun 13, 2026, the average hourly pay for application security consultant in the United States is $56.36, according to ZipRecruiter salary data. Most workers in this role earn between $49.76 and $64.42 per hour, depending on experience, location, and employer.

What are some common challenges faced by Application Security Consultants when working with development teams?

Application Security Consultants often encounter challenges such as bridging the gap between security best practices and fast-paced development cycles. They must effectively communicate complex security concepts to developers who may not have specialized security training, ensuring that security is integrated early without hindering productivity. Additionally, consultants need to prioritize vulnerabilities based on risk and help teams implement practical remediation strategies within project timelines. Building strong partnerships and fostering a culture of security awareness are key to overcoming these challenges.

What does an Application Security Consultant do?

An Application Security Consultant is responsible for identifying and mitigating security risks in software applications. They conduct security assessments, perform code reviews, and advise development teams on best practices for securing applications against threats such as data breaches and cyberattacks. Their work helps organizations protect sensitive information and comply with industry regulations. Additionally, they may assist in developing secure coding guidelines and provide training to developers.

What is the difference between Application Security Consultant vs Security Analyst?

AspectApplication Security ConsultantSecurity Analyst
CertificationsCEH, CISSP, OSCPCISSP, Security+
Work EnvironmentConsulting firms, tech companies, project-basedIn-house security teams, IT departments
Primary FocusIdentifying and mitigating application vulnerabilitiesMonitoring, analyzing security threats and incidents
Industry UsageSoftware development, cybersecurity consultingFinancial, healthcare, enterprise sectors

Application Security Consultants focus on securing software applications by identifying vulnerabilities and advising on best practices. Security Analysts monitor and analyze security threats within an organization. While both roles require cybersecurity certifications and involve protecting digital assets, their daily tasks and environments differ significantly.

What are the key skills and qualifications needed to thrive as an Application Security Consultant, and why are they important?

To thrive as an Application Security Consultant, you need a deep understanding of secure software development, vulnerability assessment, and knowledge of security frameworks, often supported by a degree in computer science and certifications like CISSP or CEH. Familiarity with tools such as Burp Suite, OWASP ZAP, static and dynamic analysis tools, and experience with secure coding practices are crucial. Strong analytical thinking, problem-solving abilities, and effective communication help consultants clearly convey risks and remediation strategies to both technical and non-technical stakeholders. These skills ensure robust application security, compliance with industry standards, and effective protection against evolving cyber threats.
More about Application Security Consultant jobs
What cities are hiring for Application Security Consultant jobs? Cities with the most Application Security Consultant job openings:
Who are the top companies hiring for Application Security Consultant jobs? The top employers for Application Security Consultant jobs are:
What states have the most Application Security Consultant jobs? States with the most job openings for Application Security Consultant jobs include:
What job categories do people searching Application Security Consultant jobs look for? The top searched job categories for Application Security Consultant jobs are:
What are popular job titles related to Application Security Consultant jobs? For Application Security Consultant jobs, the most frequently searched job titles are:
Application Security Consultant jobs near you
Infographic showing various Application Security Consultant job openings in the United States as of June 2026, with employment types broken down into 90% Full Time, 2% Part Time, and 8% Contract. Highlights an 87% Physical, 4% Hybrid, and 9% Remote job distribution, with an average salary of $117,232 per year, or $56.4 per hour.
Senior Security Consultant

Senior Security Consultant

DirectDefense

Englewood, CO • On-site, Remote

$130K - $170K/yr

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Posted 5 days ago

Job description

Job Description
The Senior Security Consultant at DirectDefense will be a crucial member of our cybersecurity team. They are responsible for identifying security vulnerabilities within our clients' environments and providing technical remediation guidance. This role involves conducting comprehensive penetration tests, performing detailed vulnerability assessments, and leading Red Team engagements to simulate sophisticated attacks. The ideal candidate will possess extensive technical expertise, a deep understanding of both offensive and defensive IT concepts, and the ability to communicate complex security issues effectively. With a focus on staying current with the latest vulnerabilities and technology trends, the Senior Security Consultant will develop and execute proof-of-concept exploits, create detailed reports, and recommend improvements to enhance clients' security postures. This position also involves mentoring junior testers and contributing to the development of innovative testing tools and methodologies.
Responsibilities:
  • Conduct comprehensive penetration tests to identify security vulnerabilities, assess their impact, and develop actionable remediation strategies.
  • Perform detailed vulnerability assessments and analyses of client networks, systems, servers, and other infrastructure components.
  • Lead Red Team exercises to simulate advanced persistent threats and measure an organization's readiness to detect, respond, and mitigate attacks.
  • Stay up to date with the latest vulnerabilities, technology trends, threat landscapes, and offensive toolkits used in penetration testing. Apply this knowledge to enhance testing methodologies.
  • Develop and execute proof-of-concept exploits to demonstrate the impact and severity of identified vulnerabilities.
  • Create comprehensive, accurate, and detailed reports and presentations for both technical and executive audiences, clearly communicating findings, risks, and remediation recommendations.
  • Design and develop scripts, tools, and methodologies to improve testing processes and efficiencies.
  • Mentor and guide less experienced penetration testers, fostering a culture of continuous learning and professional development.
  • Assist in scoping prospective engagements, managing client expectations, and lead engagements from kickoff through remediation.
  • Evaluate and recommend improvements to clients' security architectures, ensuring robust and resilient defenses.

Qualifications:
  • 5-10 years of hands-on experience in network/infrastructure security and penetration testing.
  • Extensive knowledge of offensive toolkits and techniques used in network/infrastructure penetration testing.
  • Strong grasp of both offensive and defensive IT concepts, including common attack vectors and defense mechanisms.
  • Proven ability to stay current with the latest vulnerabilities, technology trends, and threat landscapes.
  • Exceptional ability to develop proof-of-concept exploits that accurately demonstrate identified vulnerabilities.
  • Excellent written and verbal communication skills, capable of conveying complex security topics in a clear, concise, and understandable manner to diverse audiences.
  • Professional certifications such as OSCP and OSEP are highly preferred.
  • Ability to travel up to 25%

Salary range: $130,000 - $170,000
Bonus: Up to15% Annual Bonus
Benefits include:
  • 401(k)
  • AD&D Insurance
  • Dental Insurance
  • Disability insurance
  • Health insurance
  • Life insurance
  • Vision insurance
  • Flex PTO program
  • Paid certification and continuing education

Career Development:
  • Opportunities for professional growth and development within the company.
  • Access to training programs and certifications.
  • Participation in industry conferences and workshops.

Application Instructions: To apply, please submit your resume and cover letter through our online application portal. Applications will be reviewed on a rolling basis until the position is filled.
A little about DirectDefense
Since coming together in 2011 to form DirectDefense, our team has been committed to offering unmatched Cybersecurity defense strategies in the industry. Whether we are performing assessments of networks, platforms, and applications or applying managed services to improve your organization's security posture, we are focused on providing world-class services that don't just work-they work for you.
OUR MISSION
We establish partnerships with our clients based on trust and results. We leverage our deep industry knowledge and expertise to identify and remediate blind spots in your security program, provide meaningful visibility of your entire enterprise, and align your organization with security best practices and compliance standards.
OUR VISION
We aim to secure organizations across all industries against advanced threats and attacks in today's world. Acting in partnership with organizations, we will provide unmatched information security services designed to improve your overall security posture, close gaps, and track vulnerabilities on an ongoing basis through continued education and support.
EEO COMMITMENT
We're an equal employment opportunity/affirmative action employer that empowers our people to drive change fearlessly - no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.
In accordance with applicable state laws, we are providing a good-faith estimate of the compensation range for this role. The anticipated salary range for this position is $130,000 to $170,000 per year. Actual compensation will be based on a variety of factors, including but not limited to the candidate's qualifications, experience, skills, and location. This position may also be eligible for bonus incentives and a comprehensive benefits package.

Apply