Cloud Security Architect at Cayuse overseeing secure architecture design, implementation, and governance for cloud - native, microservices, and AI - enabled systems. Collaborating with stakeholders to ensure compliance and security practices.
About the role
- API Risk Management Consultant responsible for managing the API key lifecycle securely and compliantly. Collaborating across teams to ensure seamless integration and access control of API credentials.
Responsibilities
- Define and implement the strategy for API key rotation, expiration, and revocation.
- Collaborate with product, security, and engineering teams to align API key policies with business and compliance requirements.
- Conduct risk assessments and define access scopes for different API consumers.
- Proactively monitor applications for non-compliant APIs.
- Regularly review API key compliance and rotate keys as needed.
- Ensure compliance with data protection regulations (e.g., PCI DSS).
- Alert and notify users about upcoming key rotations and compliance requirements.
- Create and maintain comprehensive documentation for API key usage, lifecycle policies, and integration guides.
- Provide support to internal teams and external partners on API key-related issues.
Requirements
- Bachelor's degree in computer science, Information Security, or related field.
- 3+ years of experience in API management, identity and access management (IAM)
- Strong understanding of API lifecycle stages and key management tools (e.g., AWS Secrets Manager, HashiCorp Vault).
- Experience with API gateways (e.g., Apigee, AWS API Gateway).
- Excellent problem-solving, communication, and documentation skills.
Benefits
- Hybrid or remote work options
- Cross-functional collaboration with engineering, product, and security teams
- Occasional travel for conferences or team meetings
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Information Security Manager responsible for ensuring security of data, systems, and networks at Cayuse. Leading development and monitoring of security policies, practices, and controls.
Cyber Security Engineer II safeguarding systems at MSK, involved with complex technologies in cancer care security. Lead threat investigations and apply technical knowledge for security improvements.
Principal Security Engineer working on network security lifecycle and threat management for Verizon’s 4G/5G Cloud Networks. Collaborating with multiple teams to enhance cybersecurity posture.
Cybersecurity Engineer at Verizon responsible for security lifecycle and effectiveness across networks. Leading incident response and vulnerability management in a hybrid work role.
Director of Security and Compliance safeguarding digital assets and data with a focus on cybersecurity and compliance. Leading risk management, stakeholder engagement, and team leadership initiatives.
Information Security Risk & Compliance Analyst at AAB managing compliance with ISO 27001, supporting enterprise risk assessments and enhancing information security systems.
Information Security Risk & Compliance Analyst at AAB focusing on ISO 27001 compliance and information security management. Collaborating across teams to ensure robust risk and compliance frameworks.
Information Security Risk & Compliance Analyst supporting the maintenance of ISO 27001 standards. Contributing to risk assessments and compliance across AAB’s Business Protection Team.
Security Principal at Optiv designing AI security solutions for clients, leveraging advanced security services and technologies. Driving pipeline generation and maintaining strong client relationships as a trusted advisor.