Managing Security Consultant, Application Security Strategy- Remote (Anywhere in the U.S.)

As a Managing Security Consultant for Application Security Strategy, you will split your time equally across three core responsibilities one-third hands-on delivery work, one-third managing a team of application security professionals, and one-third pre-sales activities. This role combines direct client service delivery with strategic leadership and business development responsibilities, focusing on developing innovative security approaches that incorporate emerging technologies like AI and automation. You will be responsible for executing client engagements, managing the strategic direction of application security initiatives, overseeing service delivery teams, and leading pre-sales activities to grow the business.

In your delivery capacity, you will be actively engaged in executing strategic assessments, implementing security programs, and delivering strategic consulting services directly to clients. This hands-on work includes conducting threat modeling sessions, performing security architecture reviews, implementing secure development lifecycle processes, and developing AI-enhanced methodologies. Your direct delivery experience will ensure you maintain deep technical expertise and credibility with both clients and your team members.

As a manager and strategic leader, you will oversee a team of security professionals, guide the development of innovative service offerings, and drive the integration of cutting-edge technologies into our application security practice. You will be responsible for mentoring team members, ensuring quality delivery across all engagements, and fostering a culture of continuous learning and innovation, particularly around AI technologies, LLMs, and agent-based security architectures.

Your pre-sales and business development responsibilities will leverage your hands-on delivery experience to build credibility with prospective clients, scope complex engagements, and develop custom proposals. You will lead client presentations, identify market opportunities, develop new service offerings when needed, and foster long-term business partnerships that drive sustainable growth for the strategic division of the application security practice.

• Oversee, manage, and deliver application security strategy offerings
• Lead pre-sales activities including scoping, proposal development, and client presentations
• Manage a team of security professionals delivering application security services
• Design, develop, and implement comprehensive application security programs for clients
• Execute hands-on implementation of secure development lifecycle processes and security controls
• Lead strategic application security initiatives including Threat Modeling, Security Architecture Reviews, and Secure SDLC engagements
• Develop and implement AI-enhanced security testing methodologies and tools
• Demonstrate fluency with AI technologies, including LLMs, prompt engineering, and AI-assisted security testing
• Possess hands-on coding experience in modern programming languages to develop security tooling
• Understand agent-based security architectures and Multi-Cloud Platform (MCP) server environments
• Author comprehensive assessment deliverables tailored to both technical and managerial audiences
• Drive business growth through client relationship management and pre-sales activities
• Identify market opportunities and develop new service offerings
• Conduct application security research with a focus on emerging technologies
• Foster client relationships and develop long-term business partnerships

• 7+ years of experience in application security or related roles
• 10+ years of experience in information security
• 3+ years of experience in consulting services
• 2+ years of experience managing security teams
• Bachelor's degree in a relevant discipline or equivalent experience
• Demonstrated experience with AI/ML technologies, including LLMs, prompt engineering, and AI agent architectures
• Strong coding skills in modern programming languages for security tooling development
• Experience with cloud-native and containerized application security
• Proficiency with application security testing tools and methodologies
• Experience reviewing source code for security vulnerabilities
• Understanding of application security frameworks (SAMM, BSIMM)
• Strong written and verbal communication skills for client-facing deliverables
• Business development and pre-sales experience
• Industry certifications preferred
• Travel up to 10-35% (optionally more)