Job Description: This is a Senior Cyber Engineering role in the API Security team (part of the Application and Infrastructure Security Product Area) within the Enterprise Cybersecurity business unit.
The focus of this team is to enable API Security Solutions and processes that will help to improve the Security Posture of our APIs across our infrastructure.
The Expertise You Have 2+ years of experience in the field of software engineering ideally with a focus on Application or API Security Strong knowledge of API protocols/frameworks (e.g., REST, SOAP, GraphQL, gRPC), API gateways, Authentication and Authorization Protocols (OAuth2/OIDC/JWT etc.)
Strong understanding of OWASP API Security Top 10 and secure coding practices Familiar with common API vulnerabilities Expertise in API security frameworks and experience with API security testing tools (DAST, AST, etc.)
and runtime API protection platforms is a plus Application security experience, including Pen Testing, SCA, SAST, DAST, and Web Application Firewalls (WAF) is a plus The Skills You Bring Proven knowledge of engineering principles, patterns, and practices Experience with modern agile engineering approaches and operational excellence Ability to collaborate effectively with other teams or vendors Excellent interpersonal and communication skills Strong analytical skills to address issues and work through ambiguous situations, making timely decisions based on facts and knowledge A passion for continual learning and mentoring team members The Value You Deliver Develop solutions to tackle real-life problems and meet consumer needs Collaborate with development, operations, and security teams for seamless integration Monitor platform performance, ensuring alignment with KPIs and SLAs Optimize platform configurations to detect and prevent API threats Contribute to API security initiatives within the broader security roadmap Stay ahead of emerging threats and technologies, recommending improvements Integrate API security into CI/CD pipelines for continuous testing and monitoring Develop scripts and tools to streamline processes and analyze data Document processes, configurations, and lessons learned for knowledge transfer #J-18808-Ljbffr