What are the responsibilities and job description for the Security Software Engineer - API Consultant position at TEKsystems c/o Allegis Group?
Job Details
Description
Securing APIs is essential to "shifting left" the technology development at the Bank. The Individual will lead technical conversations to determine API security items, help establish an API management strategy. They will write best practices and define API patterns while also creating the business and security requirements. They will write requirements with threat modeling in mind to assist engineers with building securely. They will meet with stakeholders and determine criticality of controls and work with application owners to create patterns.
They will collaborate with technical and business stakeholders to address Information Security risks while achieving business objectives, meeting regulatory requirements, and addressing emerging threats. Responsible for providing expertise and support on decisions and priorities regarding the enterprise's overall Information Security strategy and posture.
Responsible and accountable for risk by openly exchanging ideas and opinions, elevating concerns, and personally following policies and procedures as defined. Accountable for always doing the right thing for customers and colleagues, and ensures that actions and behaviors drive a positive customer experience. While operating within the Bank's risk appetite, achieves results by consistently identifying, assessing, managing, monitoring, and reporting risks of all types.
MINIMUM KNOWLEDGE, SKILLS AND ABILITIES REQUIRED:
Bachelor's degree in a relevant technology field or equivalent combination of education and work experience.
8 years of engineering or other IT/Security work experience relevant to the position.
Five or more years of interdisciplinary experience in 4 or more of the following: Access Control Systems, Application Security, Application SDLC, Operating Systems, Cryptographic Controls, API Security, and Networking.
Excellent communications skills as well as the ability to build effective relationships with business leaders and stakeholders.
Ability to manage multiple, diverse tasks simultaneously and effectively prioritize work; strong organizational skills in a results-oriented environment.
Willingness to work in a highly-collaborative environment.
Ability to effectively communicate with technical and non-technical stakeholders.
Solid understanding of IT security best practices.
Skilled in designing, implementing, and supporting complex technical solutions.
Ability to troubleshoot complex operational issues.
Extensive experience designing, developing, and implementing server-less solutions within AWS.
Extensive development experience with different API capabilities.
Experience in building and deploying Jenkins pipelines.
Previous experience automating security controls within CI/CD pipelines a plus.
Previous microservice development a plus.
Previous experience in application vulnerability remediation a plus.
ESSENTIAL DUTIES AND RESPONSIBILITIES:
Provides expert technical insight and industry perspective in the creation, delivery, and integration of complex and comprehensive security solutions for securing APIs.
Acts as an internal consultant, advocate, mentor, and change agent. Viewed as an Information Security expert and critical technical resources across multiple technical areas and business segments.
Partners with other groups to ensure solid, cross-functional decisions are made as a team.
Maintains and demonstrates a strong understanding of enterprise systems, policies, standards, regulatory requirements, and business drivers.
Represents Information Security at enterprise review meetings (ITAC, NPI Reviews, Production Readiness, etc.).
Adheres to and promotes compliance to Information Security policies, standards and best practices.
Leads process improvement and risk mitigation initiatives.
Coaches and mentors more junior staff.
This position will perform the following functions:
API Security Testing
API Architecture
API Design and Lifecycle management
Work with other dev teams to integrate new security-focused API initiatives and provide support to IT Teams through API integrations.
Provide clear and concise documentation on delivered code as well as customer onboarding and support documentation
Work collaboratively in an agile environment
Pay and Benefits
The pay range for this position is $60.00 - $80.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:
Medical, dental & vision
Critical Illness, Accident, and Hospital
401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available
Life Insurance (Voluntary Life & AD&D for the employee and dependents)
Short and long-term disability
Health Spending Account (HSA)
Transportation benefits
Employee Assistance Program
Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a fully remote position.
Application Deadline
This position is anticipated to close on Feb 28, 2025.
About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
Securing APIs is essential to "shifting left" the technology development at the Bank. The Individual will lead technical conversations to determine API security items, help establish an API management strategy. They will write best practices and define API patterns while also creating the business and security requirements. They will write requirements with threat modeling in mind to assist engineers with building securely. They will meet with stakeholders and determine criticality of controls and work with application owners to create patterns.
They will collaborate with technical and business stakeholders to address Information Security risks while achieving business objectives, meeting regulatory requirements, and addressing emerging threats. Responsible for providing expertise and support on decisions and priorities regarding the enterprise's overall Information Security strategy and posture.
Responsible and accountable for risk by openly exchanging ideas and opinions, elevating concerns, and personally following policies and procedures as defined. Accountable for always doing the right thing for customers and colleagues, and ensures that actions and behaviors drive a positive customer experience. While operating within the Bank's risk appetite, achieves results by consistently identifying, assessing, managing, monitoring, and reporting risks of all types.
MINIMUM KNOWLEDGE, SKILLS AND ABILITIES REQUIRED:
Bachelor's degree in a relevant technology field or equivalent combination of education and work experience.
8 years of engineering or other IT/Security work experience relevant to the position.
Five or more years of interdisciplinary experience in 4 or more of the following: Access Control Systems, Application Security, Application SDLC, Operating Systems, Cryptographic Controls, API Security, and Networking.
Excellent communications skills as well as the ability to build effective relationships with business leaders and stakeholders.
Ability to manage multiple, diverse tasks simultaneously and effectively prioritize work; strong organizational skills in a results-oriented environment.
Willingness to work in a highly-collaborative environment.
Ability to effectively communicate with technical and non-technical stakeholders.
Solid understanding of IT security best practices.
Skilled in designing, implementing, and supporting complex technical solutions.
Ability to troubleshoot complex operational issues.
Extensive experience designing, developing, and implementing server-less solutions within AWS.
Extensive development experience with different API capabilities.
Experience in building and deploying Jenkins pipelines.
Previous experience automating security controls within CI/CD pipelines a plus.
Previous microservice development a plus.
Previous experience in application vulnerability remediation a plus.
ESSENTIAL DUTIES AND RESPONSIBILITIES:
Provides expert technical insight and industry perspective in the creation, delivery, and integration of complex and comprehensive security solutions for securing APIs.
Acts as an internal consultant, advocate, mentor, and change agent. Viewed as an Information Security expert and critical technical resources across multiple technical areas and business segments.
Partners with other groups to ensure solid, cross-functional decisions are made as a team.
Maintains and demonstrates a strong understanding of enterprise systems, policies, standards, regulatory requirements, and business drivers.
Represents Information Security at enterprise review meetings (ITAC, NPI Reviews, Production Readiness, etc.).
Adheres to and promotes compliance to Information Security policies, standards and best practices.
Leads process improvement and risk mitigation initiatives.
Coaches and mentors more junior staff.
This position will perform the following functions:
API Security Testing
API Architecture
API Design and Lifecycle management
Work with other dev teams to integrate new security-focused API initiatives and provide support to IT Teams through API integrations.
Provide clear and concise documentation on delivered code as well as customer onboarding and support documentation
Work collaboratively in an agile environment
Pay and Benefits
The pay range for this position is $60.00 - $80.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:
Medical, dental & vision
Critical Illness, Accident, and Hospital
401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available
Life Insurance (Voluntary Life & AD&D for the employee and dependents)
Short and long-term disability
Health Spending Account (HSA)
Transportation benefits
Employee Assistance Program
Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a fully remote position.
Application Deadline
This position is anticipated to close on Feb 28, 2025.
About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
Salary : $60 - $80
