API Security Engineer

Make a difference here.
UltraViolet Cyber is a leading platform-enabled unified security operations company providing a comprehensive suite of security operations solutions. Founded and operated by security practitioners with decades of experience, the UltraViolet Cyber security-as-code platform combines technology innovation and human expertise to make advanced real-time cybersecurity accessible for all organizations by eliminating risks of separate red and blue teams.
By creating continuously optimized identification, detection, and resilience from today’s dynamic threat landscape, UltraViolet Cyber provides both managed and custom-tailored unified security operations solutions to the Fortune 500, Federal Government, and Commercial clients. UltraViolet Cyber is headquartered in McLean, Virginia, with global offices across the U.S. and in India. 

What You'll Do:

• Design, implement, and maintain security measures for APIs to protect against threats and vulnerabilities.
• Conduct security assessments and penetration testing on APIs to identify and mitigate risks.
• Collaborate with development teams to integrate security best practices into the API development lifecycle.
• Monitor and analyze API traffic for suspicious activity and potential security breaches.
• Develop and enforce security policies, standards, and guidelines for API usage.
• Stay current with the latest security trends, threats, and technology advancements.
• Provide training and support to development and operations teams on API security practices.
• Respond to security incidents and perform root cause analysis to prevent future occurrences.

What You've Done:

• Bachelor's degree in Computer Science, Information Security, or a related field.
• Minimum of 3 years of experience in API security configurations or a related role.
• Knowledge of certificate-based communication.
• Strong understanding of API protocols (REST, SOAP) and security mechanisms (OAuth, JWT, etc.).
• Experience with security tools and technologies such as WAFs, IDS/IPS, and SIEM.
• Proficiency in scripting and automation using languages like Python, JavaScript, or PowerShell.
• Excellent problem-solving skills and attention to detail.
• Strong communication and collaboration skills.
• Relevant certifications (e.g., Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH)) are a plus.

What We Offer:

• 401(k), including an employer match of 100% of the first 3% contributed and 50% of the next 2% contributed  
• Medical, Dental, and Vision Insurance (available on the 1st day of the month following your first day of employment)  
• Group Term Life, Short-Term Disability, Long-Term Disability  
• Voluntary Life, Hospital Indemnity, Accident, and/or Critical Illness  
• Participation in the Discretionary Time Off (DTO) Program  
• 11 Paid Holidays Annually 

UltraViolet Cyber maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, market conditions and locations, as well as reflect our company's differing products, services, industries and lines of business. Candidates are typically placed into the range based on the preceding factors.
We sincerely thank all applicants in advance for submitting their interest in this position. We know your time is valuable.
UltraViolet Cyber welcomes and encourages diversity in the workplace regardless of race, gender, religion, age, sexual orientation, gender identity, disability, or veteran status. 
If you want to make an impact, UltraViolet Cyber is the place for you!