FIS is a fintech firm that provides advanced integrated banking, wealth management, risk and compliance, and other solutions. They are seeking an API Security Engineer to develop policies and standards for API security and ensure application security through various testing tools.
Experience and knowledge in Application Programming Interface (API), static application security testing (SAST) and related tools like Veracode / Checkmarx / Fortify
Experience and knowledge in Burp Suite tool for dynamic testing (DAST)
Primarily responsible for API application security but with a good working knowledge of other security domains (Cryptography, Identity and Access Management, Threat and Vulnerability Management)
Qualification
Required
Bachelor of Computer Science
At least 2 years of working experience in application security that includes API, SAST and DAST along with Checkmarx, Veracode
Experience and knowledge in Application Programming Interface (API), static application security testing (SAST) and related tools like Veracode / Checkmarx / Fortify
Experience and knowledge in Burp Suite tool for dynamic testing (DAST)
Primarily responsible for application security but with a good working knowledge of other security domains (Cryptography, Identity and Access Management, Threat and Vulnerability Management)
Knowledge of security technologies (encryption, data protection, design, privilege access, etc.)
Proficiency in time management, communications, decision making, presentation and organizational skills
Proficiency in planning, reporting, establishing goals and objectives, standards, priorities and schedules
Excellent decision-making, analytical and problem-solving skills
Excellent verbal and written communication skills to technical and non-technical audiences of various levels in the organization
Experience establishing and maintaining effective working relationships with employees and/or clients
Strong knowledge of development and application security
Hands-on experience performing application API security assessment, static and dynamic security assessments with tools such as Burpsuite, OWASP ZAP, AppScan, WebInspect, Fortify, Veracode, Checkmarx, etc
Knowledge of OWASP Top 10/ SANS Top 25, identify vulnerabilities via manual and automated testing methods and how to effectively remediate vulnerabilities associated with each
Expert knowledge of information security principles, web applications, and intermediate familiarity with malicious code and common hacking techniques used by malicious actors
Experience conducting risk assessments and performing threat modeling of applications
Ability to collaborate with teams remotely
Preferred
Benefits
Always-on learning and development
Collaborative work environment
Opportunities to give back
Competitive salary and benefits
FIS is a fintech firm that provides advance integrated banking, wealth management, risk and compliance, and other solutions.
Glassdoor
3.7
Founded in 1968
Jacksonville, Florida, USA
10001+ employees
http://www.fisglobal.com
FIS is a fintech firm that provides advance integrated banking, wealth management, risk and compliance, and other solutions.
