API Consultant

2 days ago


Glendale, California, United States RIT Solutions, Inc. Full time
Must Have:
  • PI Development
  • PI Discovery
  • PI Scanning
  • PI Security Tooling
  • WS API Gateway
  • WS Lambda
  • CICD Pipeline
  • Cloud Engineering
  • IaC/Terraform
  • Python
  • SAST/SCA Experience
  • Secure Code Tooling
  • Security Engineering
  • serverless engineering
Nice To Have:
  • WS ECS Fargate
  • Groovy (Programming Language)
FUNCTION:
  • Securing APIs is essential to "shifting left " the technology development at the Bank. The Individual will lead technical conversations to determine API security items, help establish an API management strategy. They will write best practices and define API patterns while also creating the business and security requirements. They will write requirements with threat modeling in mind to assist engineers with building securely.
  • They will meet with stakeholders and determine criticality of controls and work with application owners to create patterns. They will collaborate with technical and business stakeholders to address Information Security risks while achieving business objectives, meeting regulatory requirements, and addressing emerging threats.
  • Responsible for providing expertise and support on decisions and priorities regarding the enterprise's overall Information Security strategy and posture. Responsible and accountable for risk by openly exchanging ideas and opinions, elevating concerns, and personally following policies and procedures as defined.
  • Accountable for always doing the right thing for customers and colleagues and ensures that actions and behaviors drive a positive customer experience. While operating within the Bank's risk appetite, achieves results by consistently identifying, assessing, managing, monitoring, and reporting risks of all types.
MINIMUM KNOWLEDGE, SKILLS AND ABILITIES REQUIRED:
  • Bachelor's degree in a relevant technology field or equivalent combination of education and work experience.
  • 8+ years of engineering or other IT/Security work experience relevant to the position.
  • Five or more years of interdisciplinary experience in 4 or more of the following: Access Control Systems, Application Security, Application SDLC, Operating Systems, Cryptographic Controls, API Security, and Networking.
  • Excellent communications skills as well as the ability to build effective relationships with business leaders and stakeholders. Ability to manage multiple, diverse tasks simultaneously and effectively prioritize work; strong organizational skills in a results-oriented environment.
  • Willingness to work in a highly collaborative environment.
  • Ability to effectively communicate with technical and non-technical stakeholders.
  • Solid understanding of IT security best practices. Skilled in designing, implementing, and supporting complex technical solutions.
  • Ability to troubleshoot complex operational issues.
  • Extensive experience designing, developing, and implementing serverless solutions within AWS.
  • Extensive development experience with different API capabilities.
  • Experience in building and deploying Jenkins pipelines.
  • Previous experience automating security controls within CI/CD pipelines a plus.
  • Previous microservice development a plus.
  • Previous experience in application vulnerability remediation a plus.
    • ESSENTIAL DUTIES AND RESPONSIBILITIES:
      Provides expert technical insight and industry perspective in the creation, delivery, and integration of complex and comprehensive security solutions for securing APIs.
    • Acts as an internal consultant, advocate, mentor, and change agent.
    • Viewed as an Information Security expert and critical technical resources across multiple technical areas and business segments.
    • Partners with other groups to ensure solid, cross-functional decisions are made as a team.
    • Maintains and demonstrates a strong understanding of enterprise systems, policies, standards, regulatory requirements, and business drivers.
    • Represents Information Security at enterprise review meetings (ITAC, NPI Reviews, Production Readiness, etc.).
    • Adheres to and promotes compliance to Information Security policies, standards and best practices.
    • Leads process improvement and risk mitigation initiatives.
    • Coaches and mentors more junior staff.
    This position will perform the following functions:
    • API Security
    • API Scanning
    • Process Automation
    • Testing
    • API Architecture
    • API Design and Lifecycle management
    • Work with other dev teams to integrate new security-focused API initiatives and provide support to IT Teams through API integrations.
    • Provide clear and concise documentation on delivered code as well as customer onboarding and support documentation
    • Work collaboratively in an agile environment
    • The contractor must be available for on-call support.
    • The contractor must work EST hours and be available for off-hours support if issues arise.

  • API Consultant

    3 weeks ago


    Glendale, California, United States RIT Solutions, Inc. Full time

    Job DescriptionWe are seeking a skilled API Security Specialist to join our team at RIT Solutions Inc. This individual will be responsible for leading technical conversations to determine API security items, helping establish an API management strategy, and creating business and security requirements.About the RoleThis is a unique opportunity to work in a...


  • Glendale, California, United States beBee Careers Full time

    Job Description:">The API Security Specialist will provide expert technical insight and industry perspective in the creation, delivery, and integration of complex and comprehensive security solutions for securing APIs.">Key Responsibilities:">Provides expert technical insight and industry perspective in the creation, delivery, and integration of complex and...

  • API Consultant

    7 days ago


    Glendale, California, United States RIT Solutions, Inc. Full time

    Must Have: PI Development PI Discovery PI Scanning PI Security Tooling WS API Gateway WS Lambda CICD Pipeline Cloud Engineering IaC/Terraform Python SAST/SCA Experience Secure Code Tooling Security Engineering serverless engineering Nice To Have: WS ECS Fargate Groovy (Programming Language) FUNCTION: Securing...


  • Glendale, California, United States beBee Careers Full time

    API Security ArchitectWe are seeking an experienced API Security Architect to join our team. As a key member of our security team, you will be responsible for designing and implementing secure API architectures that meet the needs of our business while minimizing risk.Your primary focus will be on developing and maintaining a deep understanding of API...


  • Glendale, California, United States beBee Careers Full time

    API Security ExpertAs a seasoned security professional, you will play a critical role in protecting our APIs from various threats. Your primary responsibility will be to develop and implement robust security measures to prevent unauthorized access and ensure the confidentiality, integrity, and availability of sensitive data.To achieve this, you will lead...


  • Glendale, California, United States beBee Careers Full time

    Job Summary:">We are seeking an experienced API Security Specialist to join our team. As a key member of our Information Security team, you will be responsible for securing APIs to shift left the technology development process.">Responsibilities:">Act as an internal consultant, advocate, mentor, and change agent.Viewed as an Information Security expert and...


  • Glendale, California, United States iSpace Full time

    Company Description iSpace is a global services company focused on outsourcing, consulting and staffing. Over the last decade, we have helped numerous corporations and institutions reach their business objectives and IT goals. iSpace services are centered in three areas - IT Outsourcing, IT Staff Augmentation, and Business Process Outsourcing. Our team of...


  • Glendale, California, United States iSpace Full time

    Company Description iSpace is a global services company focused on outsourcing, consulting and staffing. Over the last decade, we have helped numerous corporations and institutions reach their business objectives and IT goals. iSpace services are centered in three areas - IT Outsourcing, IT Staff Augmentation, and Business Process Outsourcing. Our team of...


  • Glendale, California, United States iSpace Full time

    Company Description iSpace is a global services company focused on outsourcing, consulting and staffing. Over the last decade, we have helped numerous corporations and institutions reach their business objectives and IT goals. iSpace services are centered in three areas - IT Outsourcing, IT Staff Augmentation, and Business Process Outsourcing. Our team of...


  • Glendale, California, United States iSpace Full time

    Company DescriptioniSpace is a global services company focused on outsourcing, consulting and staffing. Over the last decade, we have helped numerous corporations and institutions reach their business objectives and IT goals.iSpace services are centered in three areas - IT Outsourcing, IT Staff Augmentation, and Business Process Outsourcing. Our team of...