Story Behind the Need:
Business group: Application Security – deploying application security vulnerability testing tools used by the Bank for vulnerability testing; currently doing a lot of modernization projects updating portfolio for static dynamic and mobile testing.
Project: Resource will be playing a key role in deploying components of the strategic solution for Application Security implementing API security tools across the bank.
Candidate Value Proposition:
The successful candidate will have the opportunity to work with cutting-edge security vulnerability testing tools and implement and define best practices in delivering enterprise scale solutions, exposure to Akamai services and API security tools; there is also an opportunity to work with senior/international stakeholders, for a top 5 Canadian Bank.
Typical Day in Role:
Solution Design & Integration: Design and implement integrations between APIs, API Gateway, edge services to implement protections for OWASP Top 10 API Security vulnerability while taking into account data security.
Cloud Management: Be able to assess and implement best practices when configuring cloud SaaS solutions and integrations with APIs.
Collaboration: Work closely with development, operations, and security teams to identify and resolve issues, complete threat risk assessments, and improve existing processes.
Security: Implement security best practices and ensure compliance with industry standards to protect the integrity and confidentiality of our systems and data.
Performance Optimization: Analyze system performance and implement improvements to enhance efficiency, reduce latency, and optimize resource usage.
Disaster Recovery: Design and implement disaster recovery plans to ensure business continuity and data integrity in case of system failures or other unforeseen events.
Candidate Requirements/Must Have Skills:
• 10+ years of enterprise IT experience
• 5+ years’ experience as a Software or Security Engineer
• 5+ years’ experience in designing and implementing APIs, API Gateways, or other API Security tools
• 5+ years Agile and SDLC experience
Nice-To-Have Skills:
• Cloud solution deployment experience (GCP, Azure, AWS)
• Solution architecture experience
• Development experience with either: Java, Python, Bash
Soft Skills Required:
• Strong analytical and problem-solving skills with the ability to devise innovative solutions to complex technical challenges.
• Strong communication skills– written & oral
• Strong collaborator, team player
Education:
Bachelors in technical field (e.g. computer science)
Best VS. Average Candidate:
Top candidate would have experience with enterprise API deployments and development (full stack API, load balancing, capacity planning); understanding security best practices for how APIs connect with the various infrastructure and how to protect them.
The more complex projects they have worked on as related to API development, the better.
Candidate Review & Selection:
• 2-3 Rounds – MS Teams Video Interviews – all panels
• 1st – 45 minutes-1 hour – panel of project team members (technical resources, possibly HM) – probing on technical expertise and project experience.
• 2nd – 45 minutes – follow-up interview (could include project managers/management) culture fit component with HM.
• Potential – 3rd if needed to decide between candidates.
Job Details
12743
Contract
6 months
Scarborough
#J-18808-Ljbffr