Are you keen on working in world class Cyber and Information Security division for one of the best Swiss private banks? Are you passionate about API security? Do you have the right attitude and are eager to join a multinational team of Cyber Security professionals?

If so, you might be the API Security Specialist we are looking for to join our joint project with one of our biggest clients from the banking industry in Zürich. You will be part of the Network and Application Protection team that sits within Cyber and Information Security (CIS) division. Our team works with a wide range of stakeholders (including architects, cyber security operations, networks, and application teams) to deliver and continuously improve security solutions to protect our client’s assets.

What You’ll Do

Act as a Subject Matter Expert (SME) on API Security for the wider technology community
Develop comprehensive knowledge of our products with a focus on solutions key to improving our overall API Security
Support the development and maintenance of API Security guidelines, best practices and life-cycle phases for infrastructure and application teams
Define criteria and evaluate relevant API security solutions
Drive the adoption of new ideas and technologies in API security domain including discovery, management, anomaly detection and protection
Provide recommendations for improving automated security auditing and testing solutions for API’s and lead the implementation

Requirements

5+ years of experience securing APIs as a security consultant or security-focused engineer
Good understanding of current web application & API threat landscapes
Deep technical expertise with Web and API Security relevant technologies (OAuth, SAML, TLS/SSL, OpenAPI)
Working knowledge of security infrastructure (Azure AD, WAF, API Gateways (Apigee, Azure APIM) particularly valued)
Experience with security frameworks (e.g. OWASP, CIS, STIG, NIST Zero Trust) is beneficial
Experience with deploying an API Security Platform (e.g noname security, Salt Security etc.) and/or enforcing policy (OPA/Rego, XACML) is beneficial
Cyber security qualifications (such as CEH, CISSP, CompTIA Security+) are beneficial
Experience of working in an Agile environment

We Offer

Competitive compensation depending on experience and skills
Knowledge-sharing across EPAM's global Tech Communities
Unlimited access to LinkedIn learning solutions
Relocation support as per EPAM relocation policies
EPAM Community with regular corporate and social events
Career growth, performance and compensation reviews
EPAM Employee Stock Purchase Plan (ESPP) (subject to certain eligibility requirements)
EPAM Switzerland was named a Top Company 2023 by Kununu for its people centric culture built on life-long learning

About EPAM

EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential

Additional

Please note that any offers will be subject to appropriate background checks
We do not accept CVs from recruiting or staffing agencies
For this position, we are able to consider applications from the following:
- Swiss nationals
- EU/EFTA nationals
- Third-country nationals based in Switzerland with an appropriate work permit
- Displaced people from Ukraine who are currently in Switzerland and hold, or have already applied for, S permits