Skip to content

Senior Consultant, Applications Development 

About Our Firm: 

Granite Solutions Groupe provides financial services decision makers with people and solutions that deliver. Our clients count on us to deliver the right talent at the right time to achieve critical business results. We leverage our industry knowledge and passion for client priorities to deliver human capital solutions.

GSG was founded in 1998 as a consulting firm delivering project management and technology solutions for the financial services industry. GSG now has a global presence, with team members deployed across the U.S. at Fortune 1000 companies and high-performing Fintech firms.

High-caliber consultants are the face of GSG at our client organizations and offices. We value the deep relationships we have with our consultants that enable us to place them in roles where their skills will have an immediate impact. The GSG consulting team is comprised of diverse, experienced, driven, and dynamic contributors who excel at getting things done.

About the Opportunity:

GSG is looking for an experienced Sr Application Security Analyst. The Sr. Application Security Analyst at WebEquity Solutions primary responsibility will be to provide the conceptual and critical thinking and execution needed to deliver secure web applications. This hands-on position will focus on providing application security services, including, but not limited to, facilitating automated and manual code reviews, application threat modeling, and oversight of the secure SDLC process.

Additionally this position will be a subject matter expert in application security and provide consultative services to the programming/development team through code-level remediation advice on potential application vulnerabilities that were identified through application security assessment and code review methodologies.

You must possess the ability to work independently and also as part of a collaborative team. Because WebEquity Solutions is a team based environment, it is vital that you work closely with not only our user stakeholders but others involved in development as well as our internal QA team to follow established coding standards and best practices.

Our Information Security Specialists are provided direct access to customer financial data and must treat and maintain such data with complete confidentiality to ensure ongoing regulatory compliance.

Responsibilities:

  • Delivering centralized application security services.
  • Providing dedicated security functions in accordance to the needs, risk level, and plans provided by the WebEquity Solutions corporate security plan.
  • Managing the risk posture, regulatory compliancy assurance, and the coordination of security plans in conjunction with the Senior Director of Risk Management.
  • Monitor, schedule and communicate information security tasks, events and trends.
  • Identification, monitoring and reporting of risk items to the Senior Director of Risk Management.
  • Development and reporting of key metrics.
  • Documentation of the application security program (Secure Coding Policies, Security Guidelines, Best Practices, Checklists, etc.).
  • Mentorship and guidance to business security champions and other security analysts.
  • Performs other related duties as assigned.

Requirements:

  • Bachelor’s degree in Information Assurance, Information Security, Information Systems or related field preferred
  • Information Security certifications and Security Product Certifications are desirable.
  • 6+ years information security experience in a large and complex business environment.
  • 3+ years’ experience identifying and remediating application security risks as part of vulnerability assessments and remediation programs.
  • Strong knowledge of the development of application security assessment and code review methodologies.
  • Strong knowledge of application security vulnerabilities, remediation and mitigation techniques, and secure coding practices.
  • Working knowledge of automated application security scanning tools such as WhiteHat Sentinel or other similar commercial solutions.
  • Working knowledge of manual assessment tools, automation scripts and other commercial and open source tools is preferred.
  • Strong analytical skills to troubleshoot technical problems and determine resolution.
  • Strong knowledge of web technologies (.ASP, .NET, Java)
  • Exposure to Application Security Maturity Models.
  • Collaborates effectively with cross-functional entities across the enterprise.
  • Organizational direction, time management, problem-solving, prioritization, goal setting, leadership and motivation, negotiation, interpersonal relations, verbal/written communications and human resource management.

Employee Benefits:

GSG is excited to offer its consultants excellent compensation and a robust option of benefits which include comprehensive medical, dental, vision and prescription coverage. You will receive company-paid life insurance. In addition, we hope you will take advantage of eligible commuter benefits-like paying for work-related public transit and parking with pre-tax dollars. Save for your retirement with pre-tax contributions that go directly into your 401K. We also care about your pets with several options for pet insurance, discount card and prescriptions.

GSG’s Commitment to Diversity:

As a diverse-owned business, GSG is committed to creating a diverse workforce, and we are proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.