Senior API Security Platform Engineer
Job Description
This role is within the API Security team, part of the Application and Infrastructure Security Product Area in the Enterprise Cybersecurity business unit. The team focuses on enabling API Security Solutions to enhance the security posture of our APIs across infrastructure.
Required Expertise
* 5+ years of experience in software engineering, preferably with a focus on Application or API Security.
* Strong knowledge of API protocols/frameworks (e.g., REST, SOAP, GraphQL, gRPC), API gateways, Authentication and Authorization Protocols.
* Understanding of OWASP API Security Top 10 and secure coding practices.
* Familiarity with common API vulnerabilities.
* Knowledge of runtime security, eBPF, and traffic monitoring for API discovery (plus).
* Experience with API Security frameworks and testing tools (DAST, AST, etc.), runtime API protection platforms (plus).
* Application security experience, including Pen Testing, SCA, SAST, DAST, and WAFs (plus).
Skills
* Proven engineering principles, patterns, and practices.
* Experience with modern agile engineering approaches.
* Ability to collaborate effectively with teams and vendors.
* Excellent interpersonal and communication skills.
* Strong analytical skills for problem-solving and decision-making.
* Passion for continual learning and team mentorship.
#J-18808-Ljbffr