API Security Engineer
Fiserv
Calling all innovators - find your future at Fiserv. We're Fiserv, a global leader in Fintech and payments, and we move money and information in a way that moves the world. We connect financial institutions, corporations, merchants and consumers to one another millions of times a day - quickly, reliably, and securely. Any time you swipe your credit card, pay through a mobile app, or withdraw money from the bank, we're involved. If you want to make an impact on a global scale, come make a difference at Fiserv. Job Title API Security Engineer About your role: You will help build a best-in-class API security program designed for the speed of modern financial services and shape how APIs are secured end-to-end, design through runtime, using cutting-edge protection technologies and analytics, partnering closely with top engineers across product, platform, and security. You will help turn API telemetry into actionable intelligence, reduce risk at scale, and raise the bar for secure engineering across the organization. As an API Security Engineer, you will focus on protecting critical API ecosystems by combining secure-by-design guidance, runtime protections, automation, and data-driven governance. You will be hands-on with modern API security capabilities (discovery, posture, threat detection, abuse prevention, and response) and help integrate them into the DevSecOps lifecycle so teams can move fast without compromising trust. What you will do: Runtime API protection: Implement and tune runtime controls (e.g., behavioral detection, anomaly and abuse prevention, bot defense, schema enforcement, mTLS/OAuth validation, rate limiting, and threat response) across API gateways, service mesh, and edge layers. Secure API design guidance: Partner with engineering teams to define and promote secure API patterns (authentication/authorization, input validation, error handling, pagination, idempotency, versioning, and least-privilege access). Provide practical guidance aligned to OWASP API Security Top 10 and modern design standards (Open API/JSON Schema). Automation and integration: Build automation that embeds API security into CI/CD (policy-as-code, automated checks against Open API specs, secrets scanning, SAST/DAST/API testing, and runtime-to-ticket workflows). Reduce friction through reusable tooling and self-service guardrails. Data analytics and insights: Develop dashboards and analytics using API telemetry and security findings to measure risk, adoption, control effectiveness, and program outcomes. Translate signals into prioritized actions for engineering and leadership. API security governance: Help define governance for API inventories, ownership, classification, security requirements, exception handling, and control validation. Drive consistent standards across teams while enabling delivery velocity. DevSecOps lifecycle partnership: Work with product and platform teams to integrate security requirements into backlog planning, threat modeling, design reviews, testing, release readiness, and incident response. Framework alignment (financial services): Map controls and program outcomes to relevant industry frameworks and expectations (e.g., NIST, ISO 27001, PCI DSS, FAPI, and OWASP guidance). Support audit readiness through clear control documentation and evidence automation. Continuous improvement and innovation: Evaluate emerging technologies and techniques for API discovery, posture management, and runtime detection. Pilot, measure, and scale what works. What you will need to have: 5+ years related IT and cyber protection experience desired. Strong foundation in API security concepts: authN/authZ (OAuth2/OIDC, JWT), session/token handling, scopes/claims, rate limiting, schema validation, and common API abuse patterns. Practical experience with runtime protection in one or more of API gateways, WAF/WAAP, service mesh, ingress controllers, or specialized API security platforms. Experience building automation in CI/CD and cloud-native environments (policy-as-code, scripting, pipelines, Git-based workflows). Ability to use data and telemetry (logs, traces, metrics) to detect issues, tell a clear story, and drive priorities and working knowledge of secure software development and DevSecOps practices, and the ability to influence engineering outcomes through partnerships. Comfort collaborating across security, SRE, platform, and application teams with clear communication, pragmatic decision-making, and strong follow-through. Expert knowledge of and experience with maintaining cyber technologies that can protect operational API systems, such as: Traceable Salt Security NoName Bachelor’s degree in computer science, or a relevant field, or an equivalent combination of education, work, and/or military experience What would be great to have: Experience with Open API tooling, API testing, fuzzing, and contract testing. Familiarity with threat modeling approaches and abuse-case analysis for APIs. Experience aligning security controls to financial industry expectations and. producing evidence that stands up to audit scrutiny. CISSP or other professional cyber certification desirable. How you’ll work This role is on-site Monday through Friday. Fiserv considers in-person collaboration to be an essential part of this role as in-person office experiences help you with your overall onboarding experience and leads to stronger productivity. Travel Approximately 10% travel off-site or to other office locations is expected. Sponsorship You must currently possess valid and unrestricted U.S. work authorization to be considered for this role. Individuals with temporary visas including, but not limited to, F-1 (OPT, CPT, STEM), H-1B, H-2, or TN, or any candidate requiring sponsorship, now or in the future, will not be considered. #LI-RM1 Salary Range $110,000.00 - $186,000.00 These pay ranges apply to employees in New Jersey and New York. Pay ranges for employees in other states may differ. It is unlawful to discriminate against a prospective employee due to the individual's status as a veteran. For incentive eligible associates, the successful candidate is eligible for an annual incentive opportunity which may be delivered as a mix of cash bonus and equity awards in the Company’s sole discretion. Thank you for considering employment with Fiserv. Please: Apply using your legal name Complete the step-by-step profile and attach your resume (either is acceptable, both are preferable). Our commitment to Equal Opportunity: Fiserv is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, gender, gender identity, sexual orientation, age, disability, protected veteran status, or any other category protected by law. If you have a disability and require a reasonable accommodation in completing a job application or otherwise participating in the overall hiring process, please contact View email address on click.appcast.io. Please note our AskHR representatives do not have visibility to your application status. Current associates who require a workplace accommodation should refer to Fiserv’s Disability Accommodation Policy for additional information. Note to agencies: Fiserv does not accept resume submissions from agencies outside of existing agreements. Please do not send resumes to Fiserv associates. Fiserv is not responsible for any fees associated with unsolicited resume submissions. Warning about fake job posts: Please be aware of fraudulent job postings that are not affiliated with Fiserv. Fraudulent job postings may be used by cyber criminals to target your personally identifiable information and/or to steal money or financial information. Any communications from a Fiserv representative will come from a legitimate Fiserv email address. There's a reason why Fiserv is the global leader in information management and electronic commerce systems for the financial services industry. It's our people. If you are a talented professional who gets excited by the challenge of helping Fiserv lead the transformation of financial services technology for our clients' benefit, we encourage you to explore career opportunities with Fiserv, where turning possibilities into realities is the norm.
- ...candidates ) Description : We are looking for a security engineer to help build our client's next generation Policy Based Access... ...years of development experience delivering full-stack, RESTful APIs and interactive user interfaces using Java, Python, Spring...SuggestedLocal area
$120.5k - $231k
...What you’ll be doing... The Verizon Network Security team is looking for a highly motivated and experienced Principal Engineer to join the Net-Sec Defense Organization... ...fundamentals. Expertise in using Python, API, Ansible, or Terraform-type tools to automate...SuggestedFull timeTemporary workPart timeWork experience placementWork at officeWork from homeShift work3 days per week- ...Responsibilities: Conduct penetration testing on web applications, APIs, mobile applications, and Active Directory. Identify and... .... Collaborate with the development and IT teams to remediate security issues. Utilize tools such as Burp Suite, OWASP ZAP,...SuggestedContract workImmediate start
$81k - $155k
...show up, everywhere & always. Want in? Join the #VTeamLife. What you’ll be doing... The GN&T Network Security team is looking for a highly motivated and experienced Engineer to join the Network Security Defense team. The Defense teams are responsible for owning the...SuggestedFull timeTemporary workPart timeWork experience placementWork at officeWork from homeFlexible hoursShift work3 days per week- ...Mainframe Security Engineer - TSS Location: Alpharetta, GA OR Remote Duration: 12 months (Potential to convert) Pay range: $75 - $80/hr on W2 Responsibilities Engineering support of MS Enterprise Z Mainframe Security products (CA/Broadcom-TSS, CA/Broadcom-Compliance Manager...SuggestedFull timeWork experience placementRemote work
- ...services firm providing a wide range of investment banking, securities, investment management and wealth management services. We advise... .... The Enterprise Z Security team in ETS is responsible for engineering and managing various mainframe authentication and authorization...Work experience placement
- ...Senior Application Security Engineer This role has been designed as 'Hybrid' with an expectation that you will work on average 2 days per... ...organization and strengthen the security of our applications, APIs, and CI/CD pipelines. In this role, you will partner with...Work experience placementWork at office2 days per week
$105k - $160k
...The Senior Professional, Platform Engineering job designs, develops and maintains digital... ...Qualifications Proven experience with API management platforms such as Kong, Broadcom... ...traffic management, rate limiting, and security policies. Expertise in API...Work experience placement$163.9k - $235.55k
...Principal AI Security Architect At UKG, the work you do matters. The code you ship, the... ...architects, application teams, product engineering, platform teams, and governance stakeholders... ...and platforms such as Python, Java, APIs, cloud services, CI/CD tooling, and AI development...Work experience placement- ...Job Title - Application Security Architect Remote We are seeking an experienced... ...organization's enterprise applications, APIs, and digital transformation needs. • Design... ...-functional teams including Software engineering and software architecture teams operational...Remote work
- ...systems and platforms. Leads data loss prevention and cloud access security programs while driving enterprise-wide data security and... ...information technology or a related field 5+ years of data security engineering or related experience Prior experience leading cross-...Local area
$65 - $70 per hour
..., Fri) Long term contract No Mid Layer / No Implementation partners are Involved Job Description The Engineering Tech Lead will operate at the intersection of security, cloud infrastructure, and data engineering, translating complex security and business challenges into...Long term contractFull timeLocal areaRemote workWeekend work- ...Role:- Application Security Product Manager Hybrid out of Alpharetta, GA 2 round interviews- zoom and in-person Bachelor... ...and execution of a defined product roadmap by partnering with engineering, risk, and business stakeholders across a matrixed...
$87.7k - $164k
...is central to doing business, and everyone in EY Information Security has a critical role to play. Join a global team of almost 950... ...or Master’s Degree in Computer Science, Information Systems, Engineering or a related field 5+ years experience in incident response, computer...- ...recovery, high availability, data replication technologies Unix/Linux/Bash/SSH IBM z/OS (Mainframe) and z/VM (zLinux) Mainframe IO GEN & FICON ServiceNow incident, change management, CMDB, & Jira Ability to script using Linux BASH, Python, RESTful APIs #J-18808-Ljbffr...
$182.4k
...one another millions of times a day - quickly, reliably, and securely. Any time you swipe your credit card, pay through a mobile app,... ...scale, come make a difference at Fiserv. Job Title Data Security Engineer About your role: As a Data Security Engineer, you design,...Full timeTemporary workH1bWork at officeMonday to Friday- ...designed for individuals beginning their career in offensive security and penetration testing. This position is intended for candidates... ...as software development, systems administration, or network engineering, as well as students or recent graduates pursuing studies in Computer...Work experience placement
- ...Qualifications • Palo Alto Networks Certified Network Security Engineer (PCNSE) Certification is strongly preferred. • Fortinet Certified Professional (FCP) Certification is strongly preferred. • 8+ years of experience in Architecture or Sr. Network Security engineering...
- ...impact & exposure, and performing internal and external outreach to understand the impact. Key Focus Areas: Vendor cyber security related events and vulnerabilities related analysis, triaging, outreach, escalation and reporting. Explore automation to enhance...
- ...required, hard to find TargetProcess (TP) – development experience preferred if available Day-to-Day Responsibilities Design and build API integrations between Craft.io and ADO. Support a three‑system integration model where data currently does not flow well. After...Full timeFor contractors
$95k - $135k
...global financial services firm providing investment banking, securities, investment management, and wealth management services. As market... ...lifecycle-from development and testing to release engineering, monitoring, and operational support. The Enterprise Z Security...Full timeTemporary work- ...utilize information technology and in supporting technological systems. Principal Responsibilities: Research technology security issues, cybersecurity best practices, and create risk assessments questionnaires that can be used to assess applications and infrastructure...Flexible hours
- ..., refine, design & develop standards as may be needed for the platform/enterprise Enable and support project teams on adoption of API Platform and standards Provide technical support to project teams as needed Skills and Experience Required: Required:...
- ...the future of our communities. This is a Lead Cybersecurity Engineer position at Vice President level, which is part of the job family... ...'s systems and networks against actual and potential security threats and vulnerabilities. Since 1935, Morgan Stanley is known...Local area
- ...customers. We are looking for an experienced Software Developers and Engineers who has a passion for building software solutions, asking... ...the skills. We Are Looking For Candidates With, Cyber Security Engineer IV Responsible for the security architecture across...Full timeWork at officeLocal areaImmediate start
- ...Job title:QA Engineer Location : Alpharetta, GA-Hybrid Type: Contract Job Summary Seeking a Specialist... ...5 to 7 years of experience in Automotive Testing skilled in API Microservices Rest Assured Testing Cloud testing and Selenium Java...Contract work
- ...What you'll be doing: The Vulnerability Management Engineering team is seeking an Infrastructure & Security Engineer II to support the deployment, automation,... ...Code tools such as Terraform. Experience with REST APIs and automation integrations. Experience...Full timeTemporary workPart timeWork experience placementWork at officeWork from homeShift work3 days per week
- ...of the project team and stakeholders. Development and testing of infrastructure configuration and automation sourcecode. Previous experience migrating from AWS to Azure. Desired Experience with Splunk, Dynatrace, Terraform, Kong, API AGI, Redis Cache #J-18808-Ljbffr...
- ...Firm, enabling our clients and colleagues to redefine markets and shape the future of our communities. This is a Cyber Security Engineering position at VP which is part of the job family responsible for providing specialist cyber expertise and creating solutions that...Full time
- ..., Vision Insurance, 401k, Medical Insurance Full-Time | On-site Job Summary We are seeking a skilled Network Engineer to design, implement, and maintain secure and reliable network infrastructure. The ideal candidate will ensure optimal network performance and troubleshoot...Full time
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to API Security Engineer. Be the first to apply!
- information technology security engineer Alpharetta, GA
- security engineer Alpharetta, GA
- sr information security engineer Alpharetta, GA
- senior application security engineer Alpharetta, GA
- aws cloud security engineer Alpharetta, GA
- IT security engineer Alpharetta, GA
- network security engineer Alpharetta, GA
- security engineer intern
- application security engineer
- sr. network security engineer




