5,310 Api Security jobs in India

Job Title: Java developer - API Security

At a Glance:

In your role, you will work in a cross-functional project team dedicated to enhancing the security of our API services within the bank's IT infrastructure. You will join a dynamic environment where you as a developer will be involved with designing and creating patterns, integrations and tools that benefit our API Security capabilities.

Working Environment:

The team is a newly created team where the departments of IT Infrastructure and IT Security jointly work to deliver a secure API capability. The team will work in an Agile fashion, promoting collaboration and iterative development.

Your Profile:

As a candidate,

• You have extensive experience with Java (8+ years) and have knowledge of Python (should have).
• You have strong awareness for IT Security and have experience with the developing secure API back-ends (OWASP top 10).
• You have hands-on experience with Azure cloud services, including deployment and Security.
• You have experience with coaching and mentoring developers.
• You are proactive, learn by doing, and take ownership of your work.
• You have strong English communication skills, both verbal and written, and are not afraid to speak up.
• You have a team-player mindset and can collaborate effectively across teams.

Join us to safeguard our API infrastructure and contribute to building a secure digital ecosystem. Apply now to become a key player in our API security team

About The Role  

Role based in BSv organisation. Leveraging deepening knowledge of one or more R2A processes (record, report, analyze etc), Record to Analyze Process Experts participate of in or lead the achievement of service levels, key measurement targets of the team and delivers a high quality and cost-effective service that drive compelling business outcomes. They support the delivery of a customer focused and compliant services through the adoption of frictionless finance, practice processes, technologies, methodologies which drive innovation and process improvements. Their domain expertise means they are responsible for processing non complext to complex transactions, resolving the standard process related issues, preparation and finalization of the period and close activities and reporting (including the interactions with Clients Financial Controllers) and performing the reconciliations.

About The Role - Grade Specific 

Operating at entry level managerOperating as a Finance specialist supporting small and medium sized finance exercises.Will contribute to the transformation agenda and recognizes the importance of building a strategic mindset as well as being able to deliverAble to act on their own initiative with respect to the main perimeter of their roleKnows when to seek guidance/escalateAble to organize development for self and junior team member

Skills (competencies)

Role Overview

We're hiring a hands-on QA Engineer with strong QA Automation and API Security expertise. You'll own the end-to-end testing process for a modern web-based SaaS product—designing test strategies, automating critical flows, and ensuring that APIs are both reliable and secure.

• Key Responsibilities

QA / Testing & Automation

-Create and execute detailed test plans and cases for frontend (React) and backend APIs)

Perform functional, regression, and smoke testing on dev/staging environments

Design, implement, and maintain automated test suites using Cypress or Playwright

Use Postman for API validation, test scripting, and collection automation

Verify database operations and data integrity (MongoDB)

Log and track defects clearly in ClickUp/Jira with screenshots and detailed steps

- API Security

Conduct API security testing (authentication, authorization, rate-limiting, and vulnerability checks)

Validate secure data transmission and encryption standards

Collaborate with developers to remediate security gaps and retest fixes

Stay updated on OWASP API Security Top 10 and integrate best practices into test plans

• Must-Have Skills
  
  2+ years in a QA or QA Automation role for web-based SaaS applications
  
  Hands-on experience testing REST APIs (Postman, Insomnia, or similar)
  
  Strong background in API security testing and vulnerability assessment
  
  Proficiency with Git/GitHub and CI/CD pipeline basics
  
  Solid debugging and troubleshooting abilities
  
  Comfortable working in fast-paced release cycles

• Good to Have
  
  Experience with or React development environments
  
  Knowledge of security tools such as OWASP ZAP, Burp Suite, or similar
  
  Familiarity with performance testing tools (e.g., JMeter, k6)
  
  Understanding of cloud platforms (Azure/AWS) for QA environments

Job Type: Part-time

Pay: ₹18, ₹20,000.00 per month

Expected hours: 20 – 24 per week

Benefits:

• Work from home

Application Question(s):

• How many years of Experience do you have as a QA Automation Tester?
• How many years of Experience do you have in API Security?
• This is a Part time opportunity Need to be available for 4 hours daily. Are you comfortable?
• Have you used any automation testing tool like cypress and playwright?

Role Overview

We're hiring a hands-on QA Engineer with strong QA Automation and API Security expertise. You'll own the end-to-end testing process for a modern web-based SaaS product—designing test strategies, automating critical flows, and ensuring that APIs are both reliable and secure.

Key Responsibilities

QA / Testing & Automation

• Create and execute detailed test plans and cases for frontend (React) and backend APIs)
• Perform functional, regression, and smoke testing on dev/staging environments
• Design, implement, and maintain automated test suites using Cypress or Playwright
• Use Postman for API validation, test scripting, and collection automation
• Verify database operations and data integrity (MongoDB)
• Log and track defects clearly in ClickUp/Jira with screenshots and detailed steps

API Security

• Conduct API security testing (authentication, authorization, rate-limiting, and vulnerability checks)
• Validate secure data transmission and encryption standards
• Collaborate with developers to remediate security gaps and retest fixes
• Stay updated on OWASP API Security Top 10 and integrate best practices into test plans

Must-Have Skills

• 3+ years in a QA or QA Automation role for web-based SaaS applications
• Hands-on experience testing REST APIs (Postman, Insomnia, or similar)
• Strong background in API security testing and vulnerability assessment
• Proficiency with Git/GitHub and CI/CD pipeline basics
• Solid debugging and troubleshooting abilities
• Comfortable working in fast-paced release cycles

Good to Have

• Experience with or React development environments
• Knowledge of security tools such as OWASP ZAP, Burp Suite, or similar
• Familiarity with performance testing tools (e.g., JMeter, k6)
• Understanding of cloud platforms (Azure/AWS) for QA environments

Job Type: Part-time

Pay: ₹18, ₹20,000.00 per month

Benefits:

• Work from home

Application Question(s):

• How many years of Experience do you have as a QA Engineer?
• How Many years you have worked with the API testing?
• How Many years you have worked with the Security testing?
• This is Part time opportunity need to be available for 4 hours daily. Are you comfortable?

Dear Candidate,

We are hiring an engineer focused on API security to protect data and ensure secure service interaction.

Key Responsibilities:

• Perform API threat modeling.
• Implement rate limiting, token validation, and encryption.
• Conduct audits and penetration tests.

Required Skills & Qualifications:

• Familiarity with OAuth2, OpenID, mTLS.
• Hands-on with API gateways and security tools.
• Strong knowledge of secure coding principles.

Soft Skills:

• Strong troubleshooting and problem-solving skills.
• Ability to work independently and in a team.
• Excellent communication and documentation skills.

Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you.

Kandi Srinivasa Reddy

Delivery Manager

Integra Technologies

Job Summary:

We are looking for a DevSecOps Engineer to embed security into our software development lifecycle and cloud infrastructure. The ideal candidate will have a strong background in DevOps practices, cloud-native security, and automation, with a focus on integrating security controls into CI/CD pipelines and infrastructure as code.

Key Responsibilities:

• Integrate security tools and practices into CI/CD pipelines to ensure secure code delivery.
• Automate security testing (SAST, DAST, SCA) and vulnerability scanning across development workflows.
• Implement and manage secrets management, identity and access controls, and secure configurations.
• Collaborate with development, operations, and security teams to enforce secure coding and deployment standards.
• Monitor and respond to security events in cloud and container environments.
• Develop and maintain Infrastructure as Code (IaC) security policies using tools like Terraform, CloudFormation, or Pulumi.
• Conduct threat modeling and risk assessments for cloud-native applications and services.

Required Skills & Experience:

• Hands-on experience with CI/CD tools (Jenkins, GitLab CI, GitHub Actions, Azure DevOps).
• Proficiency in security tools: SonarQube, Checkmarx, Snyk, Aqua, Prisma Cloud, HashiCorp Vault.
• Strong understanding of cloud platforms (AWS, Azure, GCP) and their security services.
• Experience with container security and orchestration (Docker, Kubernetes).
• Familiarity with IaC tools and security scanning (Terraform, CloudFormation, tfsec, Checkov).
• Scripting and automation skills (Python, Bash, Go).
• Knowledge of compliance standards (OWASP, NIST, CIS Benchmarks, ISO

Preferred Certifications:

• Certified DevSecOps Professional (CDP)
• AWS/Azure/GCP Security Specialty
• Certified Kubernetes Security Specialist (CKS)
• GIAC Cloud Security Automation (GCSA)
• CISSP or CCSP (for senior roles)

Soft Skills:

• Strong problem-solving and analytical mindset.
• Excellent communication and collaboration skills.
• Ability to work in agile, cross-functional teams.

· Serve as a trusted advisor to our enterprise customers, leading the analysis and remediation efforts of complex vulnerabilities using the full Checkmarx platform.

· Lead security reviews and consultation efforts across various SDLC stages, focusing on holistic application security.

· Guide customers in adopting secure coding practices, threat modeling, and AppSec risk management strategies.

· Research and develop proof-of-concept (PoC) exploits to demonstrate real-world risks.

Key Responsibilities

· Perform advanced static and dynamic application security testing (SAST, DAST) across a wide range of programming languages and frameworks.

· Lead in-depth software composition analysis (SCA) to identify vulnerable open-source components and license risks.

· Support and guide customers in implementing Infrastructure as Code (IaC) and API security testing strategies.

· Provide strategic mitigation advice to development and AppSec teams based on detailed vulnerability assessments.

· Deliver technical workshops and training sessions to raise customer maturity in AppSec and secure development.

· Create and present tailored PoCs to showcase the exploitability of identified findings.

· Serve as a technical mentor to junior team members and assist with complex analysis escalations.

Stay updated for more insights and innovations by following us on LinkedIn:
eSec Forte Technologies

Good experience in Web application testing, mobile application testing including IOS & Android and API .

Required Candidate profile

Looking for immediate joiners for 2 locations Mumbai and Delhi. Should have CEH certification