I'm looking to speak with application security analysts to join a financial services client of mine based in Galway. This role would be a 12 month initial day rate contracting role. It will also be a hybrid position with a requirement to be onsite 1 week per month (3 weeks fully remote).
Requirements:
* Minimum of 5 years' experience in software engineering, with a strong emphasis on application and API security.
* Deep understanding of API technologies including REST, SOAP, GraphQL, and gRPC, as well as API gateways and authentication/authorization protocols such as OAuth2, OIDC, and JWT.
* Solid grasp of secure coding principles and the OWASP API Security Top 10.
* Awareness of common API vulnerabilities and mitigation strategies.
* Exposure to runtime security concepts, including eBPF and traffic analysis for API discovery, is advantageous.
* Hands-on experience with API security frameworks and testing tools (e.g., DAST, SAST), and familiarity with runtime API protection platforms is a plus.
* Broader application security experience—such as penetration testing, SCA, SAST, DAST, and WAF—is highly desirable.
Skills and Attributes
* Strong foundation in software engineering principles, design patterns, and best practices.
* Comfortable working within agile development environments with a focus on operational reliability.
* Proven ability to collaborate effectively across teams and with external partners to drive successful outcomes.
* Excellent communication and interpersonal skills.
* Analytical mindset with the ability to navigate complex or ambiguous challenges and make informed decisions.
* Commitment to continuous learning and a willingness to mentor and support team members.
What You'll Contribute
* Drive the implementation and deployment of comprehensive API security solutions.
* Partner with engineering, operations, and security teams to ensure seamless integration across platforms.
* Monitor system performance and ensure alignment with defined KPIs and SLAs.
* Fine-tune configurations to proactively identify and block API-related threats.
* Play a key role in shaping and executing API security initiatives within a broader security strategy.
* Stay informed on emerging threats and technologies, and recommend enhancements to existing frameworks.
* Embed API security into CI/CD pipelines for automated testing and monitoring.
* Build tools and scripts to improve workflows and support data analysis.
* Maintain thorough documentation to support knowledge sharing and operational continuity.
*You must be based in Ireland, and hold a stamp 4/EU Citizenship to be considered*