Senior Application Security Consultant
CurrentMy responsibilities: - Integrate threat modeling methodologies and Shift Left security strategies to address risks early in the Secure SDLC.- Build tailored threat scenarios and actionable remediation plans to prioritize and mitigate risks effectively.- Conduct security assessments throughout the development lifecycle, including secure code reviews, SAST (Static Application Security Testing), and DAST (Dynamic Application Security Testing).- Automate security checks in CI/CD pipelines, leveraging tools for container scanning and infrastructure-as-code validation.- Perform and validate application security controls in alignment with European security frameworks such as NIS2, NIST CSF, ISO 27001, OWASP ASVS, and OWASP SAMM, promoting compliance and best practices.- Promote a culture of security through secure development practices, and talks at schools and conferences.