We are looking for a passionate and detail-oriented Junior API Security Consultant to join our cybersecurity team. This role is ideal for someone with foundational experience in API development or security and a strong interest in securing modern applications. You will support senior consultants in assessing and improving API security including hands-on testing and secure design practices.
• Implement and enforce security measures and policies as defined by the Senior API Security Consultant.
• Assist in conducting thorough system and user acceptance tests as per the test plans.
• Monitor API traffic and usage patterns for potential security threats or anomalies.
• Perform regular security audits and vulnerability assessments on APIs.
• Participate in the creation of custom investigation reports dashboards and policies.
• Collaborate with the team for the integration of the API Security platform with SIEM (Security Information and Event Management) systems like QRadar.
• Support the onsite managed services post-implementation including issue resolution and monitoring of APIs in production environments.
• Contribute to the handover training of designated client resources ensuring they can effectively manage the API Security platform environment.
Experience:
- 3+ years of cybersecurity or SOC experience with exposure to API technologies.
- Familiarity with API request structures (e.g. REST JSON HTTP headers JWT).
- Experience with Cequence API Security is preferred. Familiarity with other API security platforms (e.g. Salt Security or equivalent solutions) will also be considered a strong advantage.
- Ability to read and analyze API logs and platform findings.
- Basic knowledge of F5 LTM QRadar and incident response processes.
Soft Skills:
- Strong analytical and problem-solving abilities with keen attention to detail.
Preferred Certifications
- API Security Fundamentals (Cloud Academy Salt Security etc.)
- CompTIA Security+ CySA+ or equivalent
- Familiarity with MITRE ATT&CK for APIs or OWASP API Security