Security Specialist

About the role

We are seeking a proactive Security Specialist to design, implement, and manage secure architectures across modern application environments. The role focuses on API security, microservices, and DevSecOps practices to protect systems, data, and digital assets.

Key responsibilities

• Design and implement secure API and microservices architectures following industry best practices.
• Develop and enforce API security frameworks, including authentication, authorization, and threat protection.
• Integrate security controls into DevSecOps pipelines, ensuring secure code deployment and continuous monitoring.
• Manage consent management services to meet data‑privacy regulations.
• Conduct security assessments, vulnerability testing, and risk analysis for applications and infrastructure.
• Collaborate with development, DevOps, and product teams to embed security throughout the SDLC.
• Monitor, respond to, and report on security incidents.
• Stay current with emerging threats, tools, and compliance standards.

Required profile

• Proven experience in application security, API security, or related cybersecurity roles.
• Strong understanding of microservices architecture and secure API development.
• Hands‑on experience with DevSecOps tools and practices (CI/CD security, SAST, DAST).
• Knowledge of API security standards such as OAuth2.0, OpenID Connect, JWT, and API gateways.
• Familiarity with consent and identity management solutions.
• Experience with cloud platforms (AWS, Azure, or GCP) is a plus.

Required skills

• API security
• Microservices architecture
• DevSecOps
• CI/CD security
• SAST & DAST
• OAuth2.0, OpenID Connect, JWT
• API gateways
• Consent and identity management
• AWS, Azure, GCP
• Apigee, Kong, MuleSoft

What we offer

• Opportunity to work on modern, scalable, and secure architectures.
• Exposure to cutting‑edge cloud and API security technologies.
• Collaborative, growth‑driven environment.