The consultant will provide support for conducting application vulnerability assessments utilizing tools such as WebInspect and AppScan. The consultant will provide support for application security reviews, application security control audits, and application penetration testing. Application security code review experience is preferred. The consultant will provide support for periodic security testing by external auditors and the associated remediation activities.