Overview
On Site
Hybrid
USD 75,024.00 per year
Contract - W2
Skills
Penetration Testing
Vulnerability Scanning
Collaboration
DevOps
Development Testing
Encryption
Documentation
Incident Management
Forensics
Security Controls
RESTful
GraphQL
OAuth
Authorization
API Management
POSTMAN
Burp Suite
OWASP
Authentication
Computer Science
Cyber Security
Web Applications
DevSecOps
Continuous Integration
Continuous Delivery
Cloud Computing
Amazon Web Services
Microsoft Azure
Google Cloud
Google Cloud Platform
Management
API
Scripting
Python
JavaScript
Job Details
** The quickest way to be considered for this role is to CALL US directly! Click "Apply On Web" or "Apply Now" to access our Recruiter s contact details and give us a call today! **
===
** We will NOT accept 3rd Party (C2C) Contractors **
===
Position:API Security Engineer
JOB REF#:
Duration:12 Months (Long-term Contract)
Location:HYBRID - Plano, TX 75024
Pay Rate:OPEN/Market Rate (W2 ONLY)
HYBRID: Work 4 days a week ONSITE / 1 day REMOTE
Seeking to hire a highly motivated highly motivated person to fill the role as an API Security Engineer. They will be very knowledgeable and proactive API Security Engineer, responsible for securing APIs across the organization by identifying vulnerabilities, implementing best practices, and collaborating with development teams to ensure secure design and deployment of APIs.
RESPONSIBILITIES INCLUDE:
Design and implement security controls for APIs across internal and external applications.
Conduct API security assessments, including penetration testing, fuzzing, and vulnerability scanning.
Monitor API traffic for anomalies, abuse, and potential threats using API gateways and security tools.
Collaborate with development and DevOps teams to integrate security into the API lifecycle (design, development, testing, deployment).
Define and enforce API security standards, including authentication, authorization, rate limiting, and encryption.
Develop and maintain API security policies and documentation.
Stay current with emerging API threats, vulnerabilities, and security technologies.
Assist in incident response and forensic analysis related to API security breaches.
Evaluate and implement API security tools such as WAFs, API gateways, and runtime protection platforms.
REQUIRED SKILLS/EXPERIENCE:
3+ years of experience designing and implementing Security controls for APIs across internal and external applications
Strong understanding of RESTful and GraphQL APIs, OAuth2, JWT, and API authentication mechanisms.
Experience with API gateways including configuring authentication, authorization, rate limiting, and threat protection policies (e.g., Apigee, AWS API Gateway, Kong, Azure API Management).
Familiarity with OWASP API Security Top 10 and secure coding practices.
Hands-on experience with tools like Postman, Burp Suite, OWASP ZAP, or similar tools.
Knowledge of common API vulnerabilities such as injection, broken authentication, excessive data exposure, etc.
EDUCATION: Bachelor s degree in Computer Science, Cybersecurity, or a related field (or equivalent experience).
DESIRED SKILLS:
Certifications such as:
GIAC Web Application Penetration Tester (GWAPT)
Certified API Security Professional (by APIsec University)
Offensive Security Web Expert (OSWE)
Experience with DevSecOps and CI/CD pipeline integration.
Familiarity with cloud-native API security in AWS, Azure, or Google Cloud Platform.
Familiarity with securing and managing API gateways, including policy enforcement, traffic monitoring, and integration with identity providers. Scripting or programming experience (Python, JavaScript, etc.)
==
==
Calance Consultant Benefits Offerings:
- EPO/PPO Medical Plans
- HMO/PPO Dental programs
- Vision - VSP (Vision Plan Summary)
- 401K Retirement vesting program (VOYA)
- Paid Bi-Weekly/Direct Deposit
- Flex Spending Plan
- Voluntary Life, AD&D, STD or LTD plans
===
** We will NOT accept 3rd Party (C2C) Contractors **
===
Position:API Security Engineer
JOB REF#:
Duration:12 Months (Long-term Contract)
Location:HYBRID - Plano, TX 75024
Pay Rate:OPEN/Market Rate (W2 ONLY)
HYBRID: Work 4 days a week ONSITE / 1 day REMOTE
Seeking to hire a highly motivated highly motivated person to fill the role as an API Security Engineer. They will be very knowledgeable and proactive API Security Engineer, responsible for securing APIs across the organization by identifying vulnerabilities, implementing best practices, and collaborating with development teams to ensure secure design and deployment of APIs.
RESPONSIBILITIES INCLUDE:
Design and implement security controls for APIs across internal and external applications.
Conduct API security assessments, including penetration testing, fuzzing, and vulnerability scanning.
Monitor API traffic for anomalies, abuse, and potential threats using API gateways and security tools.
Collaborate with development and DevOps teams to integrate security into the API lifecycle (design, development, testing, deployment).
Define and enforce API security standards, including authentication, authorization, rate limiting, and encryption.
Develop and maintain API security policies and documentation.
Stay current with emerging API threats, vulnerabilities, and security technologies.
Assist in incident response and forensic analysis related to API security breaches.
Evaluate and implement API security tools such as WAFs, API gateways, and runtime protection platforms.
REQUIRED SKILLS/EXPERIENCE:
3+ years of experience designing and implementing Security controls for APIs across internal and external applications
Strong understanding of RESTful and GraphQL APIs, OAuth2, JWT, and API authentication mechanisms.
Experience with API gateways including configuring authentication, authorization, rate limiting, and threat protection policies (e.g., Apigee, AWS API Gateway, Kong, Azure API Management).
Familiarity with OWASP API Security Top 10 and secure coding practices.
Hands-on experience with tools like Postman, Burp Suite, OWASP ZAP, or similar tools.
Knowledge of common API vulnerabilities such as injection, broken authentication, excessive data exposure, etc.
EDUCATION: Bachelor s degree in Computer Science, Cybersecurity, or a related field (or equivalent experience).
DESIRED SKILLS:
Certifications such as:
GIAC Web Application Penetration Tester (GWAPT)
Certified API Security Professional (by APIsec University)
Offensive Security Web Expert (OSWE)
Experience with DevSecOps and CI/CD pipeline integration.
Familiarity with cloud-native API security in AWS, Azure, or Google Cloud Platform.
Familiarity with securing and managing API gateways, including policy enforcement, traffic monitoring, and integration with identity providers. Scripting or programming experience (Python, JavaScript, etc.)
==
==
Calance Consultant Benefits Offerings:
- EPO/PPO Medical Plans
- HMO/PPO Dental programs
- Vision - VSP (Vision Plan Summary)
- 401K Retirement vesting program (VOYA)
- Paid Bi-Weekly/Direct Deposit
- Flex Spending Plan
- Voluntary Life, AD&D, STD or LTD plans
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.