Application Security Consultants - Application Security DevSecOps
Join Accenture España as an Application Security DevSecOps Consultant to define and implement cutting‑edge automated lifecycle elements, including application lifecycle management tooling, version control, continuous integration and delivery pipelines, code inspection, testing automation, environment management, infrastructure as code, and monitoring solutions. Work with a security‑aware culture that bridges development and operations in a collaborative way, ensuring security policies are followed at all times.
Responsibilities
* Work with architects, developers, operational leads, and functional owners to extend the application security program.
* Design and build an application integration secure framework.
* Propose proactive measures and new technologies to drive efficiency in securing client information assets.
* Champion the adoption of new technologies for security and drive implementation into the environment.
* Create and update Agile user stories and epics to embed security principles, mentoring Scrum team members.
* Define security KPIs and measure program, team, and client success.
* Assist with integration, implementation, and administration of security systems.
* Actively participate in improving policies, security standards, and procedures.
* Provide security training and technical guidance to less experienced team members and internal customers.
Core Skills (Must Have)
* Experience with Agile methodologies such as Scrum or Kanban and a DevOps mindset.
* Technical security hands‑on experience in integration and secure development/coding.
* Experience in Application Security Assessments, Strategy, and Planning across solution definition to implementation.
* Experience with cloud infrastructure and platforms;
familiarity with web application frameworks, API technologies, and micro‑services.
* Experience incorporating security processes and tools into life‑cycle automation: CI, CD, infrastructure-as-code, and monitoring.
* Experience in designing, installing, developing, and configuring cyber‑security solutions.
* Strong presentation skills for interacting with both technical and non‑technical audiences.
Valuable Skills (Nice to Have)
* Modeling and methodologies: Waterfall, Agile, and DevOps.
* Strong proficiency in one or more common programming languages and enterprise/web frameworks (Java, C#, .NET, JavaScript, Node.Js, etc.).
* Experience with application building tools (Maven, Gradle, Ant, NPM) and automation tools (Chef, Puppet).
* Experience in CI/CD automation (Jenkins, Ansible, Bamboo).
* Extensive use of change management technologies (SVN, Git).
* Knowledge of containerized deployment architectures (OpenStack, OpenShift, Docker, Kubernetes).
* Experience with cloud infrastructures (Azure, AWS, GCP, Hyper‑V).
* Familiarity with security standards (OWASP Top‑10, ASVS, CWE, PCI, ISO 27001, etc.).
* Experience with application security standards (OWASP ASVS, MITRE, CAPEC, SANS 25).
Certifications
* CSSLP, OSCP, OSWE
#J-18808-Ljbffr