Senior Information Security Consultant

Intepros is in need of a talented Information Security Consultant for one of their valued clients!

Location: Fully Remote

Overview

We are seeking a mid-to-senior level Information Security Consultant to play a key role in strengthening the security of enterprise applications, systems, and services. This individual will act as a trusted security advisor across business and technology teams, helping to prevent design, coding, and configuration vulnerabilities from reaching production environments.

In this role, you will influence architecture and development decisions, assess risk, enforce security standards, and ensure solutions align with organizational policies and industry best practices. You will have the authority to approve or reject project artifacts from a security perspective and serve as a lead security liaison on assigned initiatives.

Key Responsibilities

• Define security requirements by evaluating business needs, technical designs, and applicable security standards
• Provide security consulting and guidance to internal business and technology teams
• Serve as the primary security liaison for assigned projects
• Review application architecture, design, and SDLC artifacts to ensure alignment with security policies and best practices
• Advise development teams on secure architecture, design patterns, coding practices, and SDLC controls
• Validate security controls including encryption, access control, and web application security (e.g., OWASP Top 10)

Interested in remote work opportunities in Cyber Security? Discover Cyber Security Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.

• Facilitate static code analysis, dynamic testing, and manual security testing using standard tools and services
• Support vendor and third-party risk assessments, including cloud service providers (SaaS, PaaS, IaaS)
• Assist in the development and enforcement of secure coding standards
• Review security gaps, recommend corrective actions, and support remediation efforts
• Develop, test, and implement security plans, controls, and protective technologies
• Maintain awareness of emerging security threats, trends, and technologies and share insights with stakeholders
• Document assessments, findings, processes, and procedures to support governance and SDLC requirements
• Provide regular status reporting on work in progress, planned activities, and issues
• Represent security and IT risk perspectives in cross-functional risk discussions and committees
• Mentor junior team members and collaborate across IT and security teams

Qualifications

• Bachelor’s degree in Computer Science, Information Systems, or a related field (or equivalent experience)
• 8-10 years of combined IT and information security experience, including hands-on experience with application development, systems, or infrastructure
• 5+ years of experience designing and implementing security solutions for enterprise systems and business applications
• Strong understanding of secure software development practices and SDLC security controls
• Experience evaluating and implementing security controls for cloud-based services (SaaS, PaaS, IaaS)
• Working knowledge of network technologies and enterprise systems
• Demonstrated experience with at least three security or compliance frameworks (e.g., ISO 27001/27002, NIST, HITRUST, PCI, GDPR)
• Excellent analytical, problem-solving, and organizational skills
• Strong written and verbal communication skills with the ability to influence both technical and non-technical stakeholders
• Ability to lead, advise, and provide direction within a matrixed organization

Preferred Certifications

• CISSP, CISM, CISA
• Cloud Security certifications such as CCSP, CCSK, or AZ-500