Principal Consultant, Application Security Specialist

Principal Consultant, Application Security Specialist

You will be leading projects & helping to define our overall approach for supporting clients to enhance their application & product security maturity

27th January, 2026

Candidates experienced with Application Security including Threat Modelling, Secure Code Review, and an understanding of frameworks such as the OWASP SAMM and NIST SSDF are strongly encouraged to apply.

Please make sure this experience above is included in your CV when applying.

Key Roles & Responsibilities

• Deliver the top Application Security services as well as STA services where required to a high standard, specifically those with large or complex testing requirements.
• Build out and promote strong, long-lasting relationships with a diverse range of customers, and identify and explore opportunities within existing and new customers.
• Act as a subject matter expert and technical leader both within STA and externally across practice for Application Security services, writing technical or industry marketing collateral and representing CyberCX at industry events.
• Contribute to the build out of Application Security services by developing new service offerings and assisting with developing go‑to‑market strategy.
• Upskilling practices internally at CyberCX to assist in growing delivery specialists.
• Prepare high quality reports detailing security issues, making recommendations, and identifying solutions, and lead presentations and discussions with customers around Application Security work performed, key results, strategies, processes recommendations and next steps / roadmap to success.
• Engage with Customer Sales and Customer Solutions team in a presales‑capacity to assist with technical methodology aspects, costing scoping, standardised proposal methodologies, RFQs and tenders.
• Ensure that KPIs around client expectation management, deliver deadlines, quality of work and deliverables etc are met, including maintaining visibility of project budget vs actual delivery time and following up deviations.
• Coach and mentor team members as well as other members of external practices to enable learning, development, and capability uplift.
• Assist the Executive Director – STA Capability to develop standardised methodologies, identify and build tools, and improve processes.
• Assist with R&D, innovation, and practice improvement activities both within STA and external practices, ensuring R&D and innovation are at the centre of what we do.
• Actively build cross‑Practice and cross‑Function collaboration with key leaders across CyberCX, and continuously look for ways to add value. Facilitate communication, partnerships and cross‑pollination across the business to allow teams to better engage and service customers.

Preferred Qualifications, Experience & Skills

About CyberCX

CyberCX is the leading independent cyber security services organisation in Australia and New Zealand. CyberCX is Australia’s greatest force of cyber security professionals. CyberCX has united the country’s most trusted cyber security companies to deliver the most comprehensive end-to-end cyber security services offering to Australian enterprises and governments.

We are cyber security experts first and foremost. We’re a unified team of highly qualified, certified and skilled professionals working together on the same mission : to protect and defend Australian organisations from cyber threats.

We specialise in : Strategy & Consulting | Governance, Risk & Compliance | Security Testing & Assurance | Identity & Access Management | Security Integration & Engineering | Managed Security Services | Digital Forensics & Incident Response | Cyber Capability, Education & Training

Apply For Job

#J-18808-Ljbffr