API Security Specialist
EPAM Systems
Software Engineering
Posted on Friday, August 11, 2023
Are you keen on working in world class Cyber and Information Security division for one of the best Swiss private banks? Are you passionate about API security? Do you have the right attitude and are eager to join a multinational team of Cyber Security professionals?
If so, you might be the API Security Specialist we are looking for to join our joint project with one of our biggest clients from the banking industry in Zürich. You will be part of the Network and Application Protection team that sits within Cyber and Information Security (CIS) division. Our team works with a wide range of stakeholders (including architects, cyber security operations, networks, and application teams) to deliver and continuously improve security solutions to protect our client’s assets.
If so, you might be the API Security Specialist we are looking for to join our joint project with one of our biggest clients from the banking industry in Zürich. You will be part of the Network and Application Protection team that sits within Cyber and Information Security (CIS) division. Our team works with a wide range of stakeholders (including architects, cyber security operations, networks, and application teams) to deliver and continuously improve security solutions to protect our client’s assets.
What You’ll Do
- Act as a Subject Matter Expert (SME) on API Security for the wider technology community
- Develop comprehensive knowledge of our products with a focus on solutions key to improving our overall API Security
- Support the development and maintenance of API Security guidelines, best practices and life-cycle phases for infrastructure and application teams
- Define criteria and evaluate relevant API security solutions
- Drive the adoption of new ideas and technologies in API security domain including discovery, management, anomaly detection and protection
- Provide recommendations for improving automated security auditing and testing solutions for API’s and lead the implementation
Requirements
- 5+ years of experience securing APIs as a security consultant or security-focused engineer
- Good understanding of current web application & API threat landscapes
- Deep technical expertise with Web and API Security relevant technologies (OAuth, SAML, TLS/SSL, OpenAPI)
- Working knowledge of security infrastructure (Azure AD, WAF, API Gateways (Apigee, Azure APIM) particularly valued)
- Experience with security frameworks (e.g. OWASP, CIS, STIG, NIST Zero Trust) is beneficial
- Experience with deploying an API Security Platform (e.g noname security, Salt Security etc.) and/or enforcing policy (OPA/Rego, XACML) is beneficial
- Cyber security qualifications (such as CEH, CISSP, CompTIA Security+) are beneficial
- Experience of working in an Agile environment
We Offer
- Competitive compensation depending on experience and skills
- Knowledge-sharing across EPAM's global Tech Communities
- Unlimited access to LinkedIn learning solutions
- Relocation support as per EPAM relocation policies
- EPAM Community with regular corporate and social events
- Career growth, performance and compensation reviews
- EPAM Employee Stock Purchase Plan (ESPP) (subject to certain eligibility requirements)
- EPAM Switzerland was named a Top Company 2023 by Kununu for its people centric culture built on life-long learning
About EPAM
- EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential
Additional
- Please note that any offers will be subject to appropriate background checks
- We do not accept CVs from recruiting or staffing agencies
- For this position, we are able to consider applications from the following:
- Swiss nationals
- EU/EFTA nationals
- Third-country nationals based in Switzerland with an appropriate work permit
- Displaced people from Ukraine who are currently in Switzerland and hold, or have already applied for, S permits