Jobs
>
Phoenix

    Security Engineer - Phoenix, United States - TEKsystems

    TEKsystems
    TEKsystems Phoenix, United States

    3 weeks ago

    TEKsystems background
    Description

    Job Description

    Job Description

    Top Skills' Details

    • Threat modeling experience in relation to API's
    • How they are build, common attacks, how to defend API's
    • Experience when it comes to testing API's
    • Either doing vulnerability testing or pen testing
    • Familiarity with API Gateways
    • Understanding of authentication/authorization for API's

    Job Description

    Position Summary

    Seeking a Senior API Security Engineer with proven strong technical competence and leadership capability to contribute towards the success of enterprise wide API security initiatives.The Senior API Security Engineer serves as a subject matter expert in API security, performs threat modeling of APIs and plays an integral role in managing, monitoring & reporting on API security risk reduction. The Senior API Security Engineer supports the security champion practice by evangelizing API security principles and controls.

    Primary Responsibilities

    • Conduct and facilitate day-to-day threat modeling of web APIs within the established SLAs.

    • Document risk management plans for API threat models to effectively communicate residual risks to the business.

    • Perform ongoing governance and follow-through with API owners to ensure implementation of threat based requirements.

    • Develop, deliver and keep up-to-date API security standard requirements and design patterns.

    • Manage ongoing security exceptions to API security standards.

    • Perform API security code reviews and attest to API security standard compliance.

    • Validate implementation of API security controls against outputs of vulnerability testing tools to enable auditability and verifiability.

    • Serve as an API security technical advisor to application teams.

    • Evangelize API security design principles.

    • Be recognized as an API security subject matter expert within the organization.

    Education

    • Bachelor's degree in computer science, information systems, cybersecurity, or a related field.

    • Atleast 5 years experience with threat modeling, secure application design and development practices.

    Security and Technical Experience

    • Direct hands on experience developing and securing web APIs and web applications: REST, SOAP, gRPC.

    • Direct hands on experience with security testing of web services and web APIs.

    • Solid hands on experience with leading threat modeling exercises for applications and services.

    • Direct hands on experience with threat modeling frameworks, attack vectors an vulnerability analysis: CAPEC, ATT&CK, STRIDE.

    • Solid understanding of risk management, security architecture and secure SDLC practices.

    • Strong experience and understanding of identity and access management controls: OAuth 2.0, OIDC, JWT

    • Strong experience and understanding of familiarity with cryptography controls: Data at rest, in motion and in-use.

    • Experience with industry standards and frameworks: NIST 800-53, NIST CSF, OWASP, SANS Top 25.

    • Experience with Java, Javascript and mobile application development.

    • Familiarity with database architectures: Oracle, SQL and NoSQL Databases.

    Preferred Security Certifications

    • CISSP, SANS GIAC or similar certifications

    Key Behaviors/Competencies

    • Self-directed, Confident Team Player

    • Strong Technical Thinker

    • Strong Planning, Execution and Collaborative skills

    • Strong Communication skills — Strong verbal and written communication skills. Ability to document risk and control summary artifacts that translates complex threat models into easy to read reports for the business.

    • Openness to Learning: Takes personal responsibility for learning and upskilling. Acquires strategies for gaining new knowledge, behaviors and skills. Builds on and applies existing knowledge. Engages in learning from others, inside and outside the organization.

    • Adaptability: Demonstrates flexibility within a variety of changing situations, while working with individuals and groups. Changes his or her own ideas or perceptions in response to changing circumstances.

    • Business Acumen: Demonstrates an awareness of internal dynamics.

  • LINKIT Enterpise BV

    Security Engineer

    3 weeks ago

    LINKIT Enterpise BV Phoenix, United States

    Op zoek naar een Security engineer met AZ-500 certificaat · Opdrachtomschrijving: · We zijn op zoek naar een deskundige en gedreven SecOps Engineer om ons Azure Cloud Center of Excellence-team te versterken. Dit team is toegewijd aan het versterken en optimaliseren van de beveil ...

  • Ideal Force

    Information Security Engineer

    2 weeks ago

    Ideal Force Phoenix, United States

    Job Description · Job DescriptionIDEALFORCE has a Contract position available immediately for a Information Security Engineer to join our customer in Phoenix AZ. . This is a Remote Position.Please find below additional details about this job. Kindly respond with your most up to d ...

  • Idealforce

    Information Security Engineer

    1 week ago

    Idealforce Phoenix, United States

    IDEALFORCE has a Contract position available immediately for a Information Security Engineer to join our customer in Phoenix AZ. . This is a Remote Position.Please find below additional details about this job. Kindly respond with your most up to date resume if you would like to ...

  • Akkodis

    Cyber Security Engineer

    3 weeks ago

    Akkodis Phoenix, United States

    Security Ops Engineer - Cloud Security · 18 months contract · hybrid: Phoenix, AZ - 3x a week onsite · Start date: 7/1/2024 · KEY MUST HAVES: · • NetSkope and PA Network Prisma · • 6+ years working on the Cloud · • Python and Powershell · Description · Cloud Security Engineer wi ...

  • Insight Global

    Security Operations Engineer

    6 days ago

    Insight Global Phoenix, United States

    Cloud Security Engineer will join the Cloud Security Operations Team as a central point of contact for Schwab Cybersecurity Services and act as a resource for technology related to cloud security controls. They will maintain & support Endpoint Detection & Response of SaaS applica ...

  • ABCS, Inc.

    Information Security Engineer

    1 week ago

    ABCS, Inc. Phoenix, United States

    Job Description · Job Description · Information Security Engineer · This position will focus on security deliverables for the STARS project. If this position is not filled, ADOR InfoSec will be behind in operations, compliance, and will not be able to support all non-STARS rela ...

  • Whatnot

    Cloud Security Engineer

    3 weeks ago

    Whatnot Phoenix, United States

    Whatnot · Whatnot is a livestream shopping platform and marketplace backed by Andreessen Horowitz, Y Combinator, and CapitalG. We're building the future of ecommerce, bringing together community, shopping and entertainment. We are committed to our values, and as a remote-first t ...

  • Mindlance

    Cyber Security Engineer

    3 weeks ago

    Mindlance Phoenix, United States

    Duration:0-18 month(s) · Description/Comment: Your Opportunity · Cloud Security Engineer will join the Cloud Security Operations Team as a central point of contact for Client Cybersecurity Services and act as a resource for technology related to cloud security controls. They wi ...

  • Texcelvision

    Information Security Engineer

    2 weeks ago

    Texcelvision Phoenix, United States

    Job Description · Job DescriptionJob Location: Phoenix, AZ, 85007 · Shift Hours: 08:00 AM to 05:00 PM · Work Mode: Hybrid · Candidate must reside in Arizona. · Candidate Location: Only local to Arizona · Position Description: This position will focus on security deliverables for ...

  • QTS Realty Trust , Inc.

    Security Operations Engineer

    2 weeks ago

    QTS Realty Trust , Inc. Phoenix, United States

    Learn what makes QTS a unique place to grow your career · The Security Operations Engineer is responsible for leading day-to-day operations of the physical security systems and applications. In this role, the Security Operations Engineer will provide organizational expertise in ...

  • AHEAD USA

    Associate Security Engineer

    8 hours ago

    AHEAD USA Phoenix, United States

    AHEAD builds platforms for digital business. By weaving together advances in cloud infrastructure, automation and analytics, and software delivery, we help enterprises deliver on the promise of digital transformation. · At AHEAD, we prioritize creating a culture of belonging, wh ...

  • Arizona Official Website of State of Arizona

    senior information security engineer

    2 weeks ago

    Arizona Official Website of State of Arizona Phoenix, United States

    Job Summary: · This position plays an essential role in protecting the confidentiality, integrity and availability of State of Arizona information and systems. · This position ensures that the appropriate security controls, standards and procedures are in place and are properly ...

  • Insight Global

    Security Engineer

    2 weeks ago

    Insight Global Arizona, United States

    Position: Cloud Security Engineer · Location: PHX, AZ (Hybrid 3 Days Per Week) · Pay Rate: $65-$80 an hour · Duration: 9 month contract to hire · Must Haves: · -5+ yeas of experience within Information Security with exposure with multiple domains (Infrastructure, Vulnerability, ...

  • Envision LLC

    IT Security Engineer

    2 weeks ago

    Envision LLC Phoenix, United States

    IT Security Engineer · Envision is seeking a IT Security Engineer for our long-term enterprise tax software Cloud implementation project in Phoenix, AZ · LOCAL CANDIDATES IN THE PHOENIX, AZ AREA REQUIRED · NO C2C OR THIRD PARTIES ALLOWED · Role / Responsibilities · Position Descr ...

  • Dice

    Security Engineer

    3 weeks ago

    Dice Phoenix, United States

    Dice is the leading career destination for tech experts at every stage of their careers. Our client, TEKsystems c/o Allegis Group, is seeking the following. Apply via Dice today · Job Description: · As part of the team, you will join a team of 30-Tier 3 Customer Support Enginee ...

  • Valenz

    Security Engineer

    2 days ago

    Valenz Phoenix, United States

    Valenz Health simplifies the complexities of self-insurance for employers through a steadfast commitment to data transparency and decision enablement powered by its Healthcare Ecosystem Optimization Platform. Offering a strong foundation with deep roots in clinical and member adv ...

  • Leslie's

    IT Security Engineer

    2 weeks ago

    Leslie's Phoenix, United States

    DIVE IN TO A NEW CAREER WITH LESLIE'S: · Leslie's Pool Supplies is the "World's Largest Retailer of Swimming Pool Supplies." With over 1,000 retail stores in 39 states plus Pro, Service, E-Commerce, Production, and Distribution divisions, there are many career opportunities at L ...

  • Leslie's

    IT Security Engineer

    3 weeks ago

    Leslie's Phoenix, United States

    DIVE IN TO A NEW CAREER WITH LESLIE'S: · Leslie's Pool Supplies is the "World's Largest Retailer of Swimming Pool Supplies." With over 1,000 retail stores in 39 states plus Pro, Service, E-Commerce, Production, and Distribution divisions, there are many career opportunities at L ...

  • Valenz

    Security Engineer

    2 weeks ago

    Valenz Phoenix, United States

    Job Description · Job DescriptionValenz Health simplifies the complexities of self-insurance for employers through a steadfast commitment to data transparency and decision enablement powered by its Healthcare Ecosystem Optimization Platform. Offering a strong foundation with deep ...

  • TEKsystems

    Security Engineer

    3 weeks ago

    TEKsystems Phoenix, United States

    Job Description · Job DescriptionTop Skills' Details · Threat modeling experience in relation to API's · How they are build, common attacks, how to defend API's · Experience when it comes to testing API's · Either doing vulnerability testing or pen testing · Familiarity with API ...