Skip to content

Application Security Engineer – API Security

  • Full Time
  • Toronto

Galent

Application Security Engineer – API Security

Direct message the job poster from Galent

Talent Acquisition Specialist – United States | Canada – IT & NON IT Recruitment


Job Summary:

We are seeking a detail-oriented and highly skilled API Security Analyst to join our cybersecurity team. You will be responsible for identifying, analyzing, and remediating API-related security vulnerabilities across our digital platforms. As a subject matter expert on the OWASP API Security Top 10, you will investigate incidents, validate findings, reduce false positives, and support secure software development practices. This role requires a blend of technical expertise, analytical mindset, and communication skills to drive secure API implementation and continuous improvement.



Key Skills:

  • API security
  • Incidents and Vulnerabilities
  • False Positives

Key Responsibilities:

  • Analyze API security incidents, logs, and vulnerability reports to identify root causes and threat patterns.
  • Apply deep knowledge of OWASP API Security Top 10 to detect and mitigate risks such as broken object-level authorization, mass assignment, and injection flaws.
  • Conduct hands-on testing of APIs using tools like Postman, Burp Suite, OWASP ZAP, or similar.
  • Identify, triage, and reduce false positives from automated vulnerability scanners.
  • Collaborate with development, DevOps, and security teams to ensure APIs are secured across the SDLC.
  • Implement secure design and threat modeling techniques for new and existing APIs.
  • Monitor API traffic via WAF, API gateways, and SIEM tools for anomalies or attacks.
  • Stay up-to-date with emerging threats, attack techniques, and vulnerability disclosures.
  • Support incident response by investigating exploitation attempts or potential breaches involving APIs.
  • Contribute to the development of security baselines, API hardening guidelines, and best practices.

Seniority level

  • Mid-Senior level

Employment type

  • Contract

Job function

  • Information Technology

Industries

  • IT Services and IT Consulting

Referrals increase your chances of interviewing at Galent by 2x


Get notified about new Application Security Engineer jobs in Toronto, Ontario, Canada.


#J-18808-Ljbffr

To apply, please visit the following URL:

THISJOB.CA