2 x Program / Technical Project Manager - Engineer
12 Month rolliing contract
Hybrid - Phoenix, Az
Job Summary: We are seeking an experienced API Security Technical Project / Program Manager with strong technical acumen and leadership skills to drive enterprise-wide API security initiatives. The successful candidate will be a subject matter expert in API security, playing a crucial role in managing, monitoring, and reporting on API security risk reduction efforts.
Key Responsibilities:
- Govern and collaborate with API owners to ensure the implementation of threat-based security requirements.
- Develop, deliver, and maintain up-to-date API security standards and design patterns.
- Validate the implementation of API security controls by cross-referencing vulnerability testing outputs, ensuring auditability and verifiability.
- Act as a technical advisor on API security for application teams.
- Advocate for and promote API security design principles within the organization.
- Serve as the organization’s go-to expert on API security matters, collaborating across teams.
Security and Technical Expertise:
- Hands-on experience in developing and securing web APIs and web applications, including REST, SOAP, and gRPC.
- Proven experience in security testing of web services and APIs.
- Strong background in conducting threat modeling exercises for applications and services.
- In-depth understanding of risk management, security architecture, and secure SDLC practices.
- Expertise in API identity and access management controls, including OAuth 2.0, OIDC, and JWT.
- Proficiency in cryptography controls for data at rest, in motion, and in use.
- Familiarity with industry standards and frameworks such as NIST 800-53, NIST CSF, OWASP, and SANS Top 25.
- Experience in Java, JavaScript, and mobile application development.
- Understanding of database architectures, including Oracle, SQL, and NoSQL databases.
- Relevant information security certifications, such as SANS GIAC, CISSP, or CISM.
- Experience with service-oriented architectures and web services security.
Desired Skills:
- Experience mentoring teams on application security and secure development practices.
- Familiarity with DevOps processes in a Cloud/SaaS environment.
- Experience in architecting, securing, and operating public cloud environments such as AWS, Google Cloud, Azure, or Oracle Cloud.
- Proficiency in emerging programming languages such as Go or Rust.
Why Join Us? Join our team and be a part of a dynamic environment where your technical expertise will shape the future of API security. You’ll have the opportunity to work on cutting-edge projects and collaborate with top talent across the organization. If you are passionate about security and innovation, we encourage you to apply.