Cyber Security Engineer -API security testing.

Overview

Remote
Full Time
Part Time
Accepts corp to corp applications
Contract - Independent
Contract - W2
Contract - term contract

Skills

JavaScript
Burp Suite
API security testing
Strong programming skills in Java
and Python. Familiarity with tools like Postman
OWASP ZAP. Good understanding of OWASP Top 10
ASVS
and secure coding principles.

Job Details

Hello Everyone,

Hope you are doing good!!!!

My name is Pavan and I work with SPAR Information System., I have a great opportunity for you, please find the job details below, if you are interested in applying please send me your updated resume and best time for you to discuss about this opportunity in details.

Job Title: Cyber Security Engineer

Location: Remote

Duration: Long term contract

Summary:

We are looking for a skilled and detail-oriented Application Security Engineer with a strong development background to join our Cybersecurity team.

This role focuses on securing applications and API's through manual testing secure code reviews and close collaboration with development teams.

The ideal candidate will have solid programming experience and a deep understanding of modern application security practices, including decsecops.

Key Responsibilities

Perform manual security testing of RESTful and GraphQL APIs to identify vulnerabilities.

Review source code and application implementations to ensure secure coding practices.

Validate APis and applications against OWASP Top 10, ASVS, and internal security standards.

Evaluate and improve authentication, authorization, encryption, and input validation controls.

Collaborate with developers to support secure SDLC and remediation efforts.

Provide clear, actionable guidance based on security test findings.

Stay current on emerging threats, tools, and best practices in application security.

Required Qualifications

Experience with manual application and API security testing.

Strong programming skills in Java, JavaScript, and Python.

Familiarity with tools like Postman, Burp Suite, OWASP ZAP.

Good understanding of OWASP Top 10, ASVS, and secure coding principles.

Ability to read and analyze code to Identity security flaws.

Strong communication, documentation, and problem-solving skills.

Ability to manage testing timelines aligned with product releases.

Preferred Qualifications

Security certifications such as OSCP, CSSLP, GWAPT, or similar.

Experience with cloud platforms (AWS, Azure, Google Cloud Platform).

Familiarity with Devsecops practices and security in Ci/CD pipelines.

Knowledge of container security (e.g., Docker, Kubernetes),

Thanks & Regards,

Pavan Raikhelkar

LEAD TALENT ACQUISITION SPECIALIST

Direct Number:-

Fax :

Email:

Website:

(An E-verify Company)

NOTE: We respect your online privacy. This is not an unsolicited mail. Under bill 1618 title III passed by the 105th us congress this mail cannot be considered Spam as long as we include contact information and a method to be removed from our mailing list. If you are not interested in receiving our e-mails, please reply with a "REMOVE" in the subject line. We apologize for any inconvenience caused by this mail.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.