2 x Program / Technical Project Manager - Engineer
12 Month rolliing contract
Hybrid - Phoenix, Az
Job Summary: We are seeking an experienced API Security Technical Project / Program Manager with strong technical acumen and leadership skills to drive enterprise-wide API security initiatives. The successful candidate will be a subject matter expert in API security, playing a crucial role in managing, monitoring, and reporting on API security risk reduction efforts.
Key Responsibilities:
Govern and collaborate with API owners to ensure the implementation of threat-based security requirements.
Develop, deliver, and maintain up-to-date API security standards and design patterns.
Validate the implementation of API security controls by cross-referencing vulnerability testing outputs, ensuring auditability and verifiability.
Act as a technical advisor on API security for application teams.
Advocate for and promote API security design principles within the organization.
Serve as the organization's go-to expert on API security matters, collaborating across teams.
Security and Technical Expertise:
Hands-on experience in developing and securing web APIs and web applications, including REST, SOAP, and gRPC.
Proven experience in security testing of web services and APIs.
Strong background in conducting threat modeling exercises for applications and services.
In-depth understanding of risk management, security architecture, and secure SDLC practices.
Expertise in API identity and access management controls, including OAuth 2.0, OIDC, and JWT.
Proficiency in cryptography controls for data at rest, in motion, and in use.
Familiarity with industry standards and frameworks such as NIST 800-53, NIST CSF, OWASP, and SANS Top 25.
Experience in Java, JavaScript, and mobile application development.
Understanding of database architectures, including Oracle, SQL, and NoSQL databases.
Relevant information security certifications, such as SANS GIAC, CISSP, or CISM.
Experience with service-oriented architectures and web services security.
Desired Skills:
Experience mentoring teams on application security and secure development practices.
Familiarity with DevOps processes in a Cloud/SaaS environment.
Experience in architecting, securing, and operating public cloud environments such as AWS, Google Cloud, Azure, or Oracle Cloud.
Proficiency in emerging programming languages such as Go or Rust.
Why Join Us? Join our team and be a part of a dynamic environment where your technical expertise will shape the future of API security. You'll have the opportunity to work on cutting-edge projects and collaborate with top talent across the organization. If you are passionate about security and innovation, we encourage you to apply.