Senior API Security Engineer

Senior API Security Engineer

Location: Galway (Hybrid working model)

About the Team

Join a dedicated API Security team focused on enhancing the security posture of APIs across a large-scale infrastructure. This team drives the deployment and management of API security solutions, ensuring robust protection and continuous improvement of API ecosystems.

What You’ll Do

• Lead the design, deployment, and ongoing management of API security solutions across the platform.
• Collaborate closely with development, security, and operations teams to ensure seamless integration and alignment with broader security objectives.
• Monitor API security performance against KPIs and SLAs, optimizing configurations to detect and mitigate threats.
• Implement security practices in CI/CD pipelines to enable continuous API security testing and monitoring.
• Develop automation scripts and tools to improve operational efficiency and security visibility.
• Stay current with emerging API threats, security frameworks, and technologies to recommend improvements.
• Document processes, configurations, and lessons learned to facilitate knowledge sharing across teams.

What You’ll Bring

• 5+ years of software engineering experience with a focus on API or application security.
• Strong understanding of API protocols and frameworks (REST, SOAP, GraphQL, gRPC), and authentication/authorization standards (OAuth2, OIDC, JWT).
• Solid knowledge of OWASP API Security Top 10 and secure coding practices.
• Experience with API gateways and security testing tools (DAST, SAST, AST) is highly desirable.
• Familiarity with runtime security technologies such as eBPF or traffic monitoring is a plus.
• Strong analytical skills and ability to operate confidently in ambiguous situations.
• Excellent communication and collaboration skills to work effectively with multiple teams and vendors.
• Passionate about learning and mentoring within the team environment.

Why This Role?

Be part of a mission-critical security function, delivering impactful solutions that protect vital API infrastructure. Benefit from a hybrid working model in Galway and opportunities to grow your expertise in cutting-edge API security technologies.