Home

Security API Software Consultant - REMOTE__ No H1B__12+ year at Remote, Remote, USA
Email: [email protected]
From:

Meenu Singh,

Samson Software Solutions

[email protected]

Reply to:   [email protected]

Hi, 

Hope you are doing great!

Position: Security Software Engineer - API Consultant

Location: REMOTE(Cincinnati, OH)

Job Description

Security Engineer focused on API Security and Runtime Defense

TECHNICAL SKILLS- Must Have:

API Development

API Discovery

API Gateway

AWS API Gateway

CI/CD

DevOps

Runtime Defense

Security Engineering

FUNCTION:

Securing APIs is essential to "shifting left" the technology development at the Bank. The Individual will participate in technical conversations to determine API security risks, help establish an API runtime defense and discovery strategy leveraging relevant tooling. They will write and define API patterns while also creating the business and security requirements. They will write requirements with threat modeling in mind to assist engineers with building securely.

They will meet with stakeholders and determine criticality of controls and work with application owners to create patterns. They will collaborate with technical and business stakeholders to address Information Security risks while achieving business objectives, meeting regulatory requirements, and addressing emerging threats.

Responsible for providing expertise and support on decisions and priorities regarding the enterprise's overall Information Security strategy and posture. Responsible and accountable for risk by openly exchanging ideas and opinions, elevating concerns, and personally following policies and procedures as defined.

Accountable for always doing the right thing for customers and colleagues, and ensures that actions and behaviors drive a positive customer experience. While operating within the Bank's risk appetite, achieves results by consistently identifying, assessing, managing, monitoring, and reporting risks of all types.

MINIMUM KNOWLEDGE, SKILLS AND ABILITIES REQUIRED:

Bachelors degree in a relevant technology field or equivalent combination of education and work experience.

8+ years of engineering or other IT/Security work experience relevant to the position.

Five or more years of interdisciplinary experience in 4 or more of the following:

Access Control Systems, Application Security, Application SDLC, Operating Systems, Cryptographic Controls, API Security, API Scanning, Experience with secure development tooling, and Networking.

Excellent communications skills as well as the ability to build effective relationships with business leaders and stakeholders. Ability to manage multiple, diverse tasks simultaneously and effectively prioritize work; strong organizational skills in a results-oriented environment.

Willingness to work in a highly-collaborative environment.

Ability to effectively communicate with technical and non-technical stakeholders.

Solid understanding of IT security best practices.

Skilled in designing, implementing, and supporting complex technical solutions. Ability to troubleshoot complex operational issues.

Extensive experience designing, developing, and implementing serverless solutions within AWS.

Extensive development experience with different API capabilities.

Experience with development/engineering of API runtime defense and scanning tools

Experience in building and deploying CI/CD pipelines.

Familiarity with OWASP

Previous experience automating security controls within CI/CD pipelines a plus.

Previous microservice development a plus.

Previous experience in application vulnerability remediation a plus.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

Provides expert technical insight and industry perspective in the creation, delivery, and integration of complex and comprehensive security solutions for securing APIs.

Acts as an internal consultant, advocate, mentor, and change agent.

Viewed as an Information Security expert and critical technical resources across multiple technical areas and business segments.

Partners with other groups to ensure solid, cross-functional decisions are made as a team.

Maintains and demonstrates a strong understanding of enterprise systems, policies, standards, regulatory requirements, and business drivers.

Represents Information Security at enterprise review meetings (ITAC, NPI Reviews, Production Readiness, etc.).

Adheres to and promotes compliance to Information Security policies, standards and best practices.

Leads process improvement and risk mitigation initiatives.

This position will perform the following functions:

API Security

API runtime engineering  (Akamai, Neosec, Noname)

Testing

API Architecture

API Design and Lifecycle management

Work with other dev teams to integrate new security-focused API initatives and provide support to IT Teams through API integrations.

Provide clear and concise documentation on delivered code as well as customer onboarding and support documentation

Work collaboratively in an agile environment

Nice to Have:

API Management

Thanks & Regards

Meenu Singh

Sr.Technical recruiter

[email protected]

Cell:
609 928 8962

Keywords: continuous integration continuous deployment information technology Ohio
Security API Software Consultant - REMOTE__ No H1B__12+ year
[email protected]
[email protected]
View all
Fri Jul 12 23:06:00 UTC 2024

To remove this job post send "job_kill 1558041" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.


Your reply to [email protected] -
To       

Subject   
Message -

Your email id:

Captcha Image:
Captcha Code:


Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]
Time Taken: 1

Location: ,