API Security Technical Project Manager

Overview:
We are looking for an experienced API Security Technical Project Manager to lead and manage enterprise-wide API security initiatives. This role requires a blend of strong technical acumen and project management expertise to ensure the successful implementation of API security measures across the organization.

Primary Responsibilities:
Lead the governance and oversight of API security implementation across various teams.
Develop, deliver, and update API security requirements and design patterns.
Ensure that API security controls are implemented effectively and are verifiable through testing.
Provide technical guidance and serve as an advisor on API security matters.
Promote and advocate for API security design principles across the organization.
Collaborate as the subject matter expert in API security to ensure comprehensive coverage and risk reduction.
Security and Technical Experience:
Extensive hands-on experience in developing and securing web APIs (REST, SOAP, gRPC).
Proficient in conducting security testing for web services and APIs.
Strong experience in threat modeling and managing security risks in applications.
Deep understanding of API identity and access management (OAuth 2.0, OIDC, JWT).
Expertise in cryptography controls and secure data practices.
Familiarity with industry standards like NIST 800-53, NIST CSF, OWASP, and SANS Top 25.
Experience with programming languages (Java, JavaScript) and mobile application development.
Knowledge of database architectures (Oracle, SQL, NoSQL).
Professional certifications such as SANS GIAC, CISSP, or CISM.
Desired Skills:
Experience mentoring teams on application security and secure development practices.
Knowledge of DevOps processes in a Cloud/SaaS environment.
Proven experience in securing and managing public cloud environments (AWS, Google Cloud, Azure, Oracle Cloud).
Familiarity with emerging programming languages (Go, Rust).
This role is integral to ensuring the security and integrity of API integrations at our client, contributing to the overall cybersecurity posture of the organization. If you have a passion for API security and meet the qualifications listed above, we encourage you to apply.