Accenture is seeking Application Security Testing professional in Spain.

An Application Security Testing professional analyzes a given situation to determine which security testing approaches are most likely to succeed, implements them and evaluates its effectiveness.As a member of the Security Team, the Application Security Testing professional will work in a collaborative environment where sharing skills and expertise is part of its DNA, cultivating a culture of security awareness to ensure security policies for applications, environments and systems are followed at all times.Selected candidates will take part in Application Security and other Security projects in global & leading companies operating different markets.



Application Security Testing professional duties and responsibilities of the role will be:

+ Definition, implementation and execution of security testing processes into software development life cycle.

+ Validation of applications security architecture elements.

+ Documentation of security requirements for applications (web, mobile, SOA, etc.) alignment with security testing processes.

+ Obtain and validate measurement of KPI and KRI related to security in applications.

+ Build PoC with clients to determine best security testing tools to be applied.

+ Vulnerability lifecycle management on client environment.

+ Collaborate with clients to define best approach to maximize the security posture.

Although not all of them are required, breadth and depth of skills are expected, and will be valued, for this role:

+ Technology Ecosystems: General knowledge in at least one of the most enterprise-used programming languages as Java/C# .NET, C/C++, Javascript, PHP, Ruby/Perl/Python, Java Android/Kotlin, Objective-C/Swift, Powershell…

+ Dynamic Application Analysis Tools (DAST): Experience with at least one of the following dynamic application analysis solutions: Burp Suite, Postman, MobSF, Qualys, Acunetix, Nessus, Webinspect…

+ Static Code Analysis Tools (SAST): Experience with at least one of the following static code analysis solutions: Checkmarx, Veracode, Kiuwan, Fortify, SourceClear, BlackDuck, Nexus, SonarQube…

+ Software Composition Analysis Tools (SCA): Experience with at least one of the following Software Composition Analysis solutions as Dependency-Check, SourceClear and/or WhiteSource…

+ Authentication and authorization: Valuable Knowledge on SOA security and security focused on mobile applications (REST, JSON, OpenID, OAuth, WebToken, SSO).

+ Security standards: Experience with OWASP Testing Guide, OWASP TOP 10 and knowledge of other well-known security standards of the industry: OWASP-M, SEI CERT-J, SEI CERT-C, PCI DSS…

+ Application Security standards: Experience with OWASP TOP 10, OWASP ASVS, OWASP MASVS, CWE, MITRE, CAPEC, SANS 25.

+ Valuable certifications: CSSLP, OSCP, OSWE…



Accenture is a global management consulting, technology services and outsourcing company. Combining unparalleled experience, comprehensive capabilities across all industries and business functions, and extensive research on the world’s most successful companies, Accenture collaborates with its clients to help them become high-performance businesses and governments.

Working with Accenture in the United States,  you can join ranks with more than 211,000 people in 120 countries and work with clients in nearly every major industry worldwide, including 96 of the Fortune Global 100, more than three-quarters of the Fortune Global 500 and government agencies around the world. Accenture’s people build careers in different areas of business, specifically Consulting, Technology and Outsourcing, as well as within our internal corporate functions.

With the breadth of talent our people have, they not only build strong careers, they offer their talents and skills to help clients and communities around the world.

Similar jobs