Overview
On Site
USD 90.00 per hour
Full Time
Skills
Computer Science
Cyber Security
RESTful
GraphQL
OAuth
API Management
POSTMAN
Burp Suite
OWASP
Web Applications
DevSecOps
Continuous Integration
Continuous Delivery
Cloud Computing
Amazon Web Services
Microsoft Azure
Google Cloud
Google Cloud Platform
Management
Scripting
Python
JavaScript
Security Controls
Penetration Testing
Vulnerability Scanning
Collaboration
DevOps
Development Testing
Authentication
Authorization
Encryption
Documentation
Incident Management
Forensics
API
Job Details
Date Posted: 07/28/2025
Hiring Organization: Rose International
Position Number: 486170
Industry: Financial Services
Job Title: API Security Engineer
Job Location: Plano, TX, USA, 75024
Work Model: Onsite
Shift: 08:00 AM - 05:00 PM
Employment Type: Temporary
FT/PT: Full-Time
Estimated Duration (In months): 13
Min Hourly Rate($): 90.00
Max Hourly Rate($): 95.50
Must Have Skills/Attributes: API, AWS, Azure, Cybersecurity, JavaScript, Python, RESTful
Experience Desired: 3+ years of experience in application or API security. (5 yrs)
Required Minimum Education: Bachelor's Degree
Preferred Certifications/Licenses: Certified API Security Professional/ (GWAPT)
**C2C is not available**
Job Description
Education
Bachelor's degree in Computer Science, Cybersecurity, or a related field (or equivalent experience).
Required Qualifications:
3+ years of experience in application or API security.
Strong understanding of RESTful and GraphQL APIs, OAuth2, JWT, and API authentication mechanisms.
Experience with API gateways including configuring authentication, authorization, rate limiting, and threat protection policies (e.g., Apigee, AWS API Gateway, Kong, Azure API Management).
Familiarity with OWASP API Security Top 10 and secure coding practices.
Hands-on experience with tools like Postman, Burp Suite, OWASP ZAP, or similar.
Knowledge of common API vulnerabilities such as injection, broken authentication, excessive data exposure, etc.
Preferred Qualifications:
GIAC Web Application Penetration Tester (GWAPT)
Certified API Security Professional (by APIsec University)
Offensive Security Web Expert (OSWE)
Experience with DevSecOps and CI/CD pipeline integration.
Familiarity with cloud-native API security in AWS, Azure, or Google Cloud Platform.
Familiarity with securing and managing API gateways, including policy enforcement, traffic monitoring, and integration with identity providers. Scripting or programming experience (Python, JavaScript, etc.)
Job Responsibilities:
Responsible for securing APIs across the organization by identifying vulnerabilities, implementing best practices, and collaborating with development teams to ensure secure design and deployment of APIs.
Design and implement security controls for APIs across internal and external applications.
Conduct API security assessments, including penetration testing, fuzzing, and vulnerability scanning.
Monitor API traffic for anomalies, abuse, and potential threats using API gateways and security tools.
Collaborate with development and DevOps teams to integrate security into the API lifecycle (design, development, testing, deployment).
Define and enforce API security standards, including authentication, authorization, rate limiting, and encryption.
Develop and maintain API security policies and documentation.
Stay current with emerging API threats, vulnerabilities, and security technologies.
Assist in incident response and forensic analysis related to API security breaches.
Evaluate and implement API security tools such as WAFs, API gateways, and runtime protection platforms.
Benefits:
For information and details on employment benefits offered with this position, please visit here. Should you have any questions/concerns, please contact our HR Department via our secure website.
California Pay Equity:
For information and details on pay equity laws in California, please visit the State of California Department of Industrial Relations' website here.
Rose International is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender (expression or identity), national origin, arrest and conviction records, disability, veteran status or any other characteristic protected by law. Positions located in San Francisco and Los Angeles, California will be administered in accordance with their respective Fair Chance Ordinances.
If you need assistance in completing this application, or during any phase of the application, interview, hiring, or employment process, whether due to a disability or otherwise, please contact our HR Department.
Rose International has an official agreement (ID #132522), effective June 30, 2008, with the U.S. Department of Homeland Security, U.S. Citizenship and Immigration Services, Employment Verification Program (E-Verify). (Posting required by OCGA 13/10-91.).
Hiring Organization: Rose International
Position Number: 486170
Industry: Financial Services
Job Title: API Security Engineer
Job Location: Plano, TX, USA, 75024
Work Model: Onsite
Shift: 08:00 AM - 05:00 PM
Employment Type: Temporary
FT/PT: Full-Time
Estimated Duration (In months): 13
Min Hourly Rate($): 90.00
Max Hourly Rate($): 95.50
Must Have Skills/Attributes: API, AWS, Azure, Cybersecurity, JavaScript, Python, RESTful
Experience Desired: 3+ years of experience in application or API security. (5 yrs)
Required Minimum Education: Bachelor's Degree
Preferred Certifications/Licenses: Certified API Security Professional/ (GWAPT)
**C2C is not available**
Job Description
Education
Bachelor's degree in Computer Science, Cybersecurity, or a related field (or equivalent experience).
Required Qualifications:
3+ years of experience in application or API security.
Strong understanding of RESTful and GraphQL APIs, OAuth2, JWT, and API authentication mechanisms.
Experience with API gateways including configuring authentication, authorization, rate limiting, and threat protection policies (e.g., Apigee, AWS API Gateway, Kong, Azure API Management).
Familiarity with OWASP API Security Top 10 and secure coding practices.
Hands-on experience with tools like Postman, Burp Suite, OWASP ZAP, or similar.
Knowledge of common API vulnerabilities such as injection, broken authentication, excessive data exposure, etc.
Preferred Qualifications:
GIAC Web Application Penetration Tester (GWAPT)
Certified API Security Professional (by APIsec University)
Offensive Security Web Expert (OSWE)
Experience with DevSecOps and CI/CD pipeline integration.
Familiarity with cloud-native API security in AWS, Azure, or Google Cloud Platform.
Familiarity with securing and managing API gateways, including policy enforcement, traffic monitoring, and integration with identity providers. Scripting or programming experience (Python, JavaScript, etc.)
Job Responsibilities:
Responsible for securing APIs across the organization by identifying vulnerabilities, implementing best practices, and collaborating with development teams to ensure secure design and deployment of APIs.
Design and implement security controls for APIs across internal and external applications.
Conduct API security assessments, including penetration testing, fuzzing, and vulnerability scanning.
Monitor API traffic for anomalies, abuse, and potential threats using API gateways and security tools.
Collaborate with development and DevOps teams to integrate security into the API lifecycle (design, development, testing, deployment).
Define and enforce API security standards, including authentication, authorization, rate limiting, and encryption.
Develop and maintain API security policies and documentation.
Stay current with emerging API threats, vulnerabilities, and security technologies.
Assist in incident response and forensic analysis related to API security breaches.
Evaluate and implement API security tools such as WAFs, API gateways, and runtime protection platforms.
- **Only those lawfully authorized to work in the designated country associated with the position will be considered.**
- **Please note that all Position start dates and duration are estimates and may be reduced or lengthened based upon a client's business needs and requirements.**
Benefits:
For information and details on employment benefits offered with this position, please visit here. Should you have any questions/concerns, please contact our HR Department via our secure website.
California Pay Equity:
For information and details on pay equity laws in California, please visit the State of California Department of Industrial Relations' website here.
Rose International is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender (expression or identity), national origin, arrest and conviction records, disability, veteran status or any other characteristic protected by law. Positions located in San Francisco and Los Angeles, California will be administered in accordance with their respective Fair Chance Ordinances.
If you need assistance in completing this application, or during any phase of the application, interview, hiring, or employment process, whether due to a disability or otherwise, please contact our HR Department.
Rose International has an official agreement (ID #132522), effective June 30, 2008, with the U.S. Department of Homeland Security, U.S. Citizenship and Immigration Services, Employment Verification Program (E-Verify). (Posting required by OCGA 13/10-91.).
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.