Application Security Specialist

Trigyn's direct client (health care) in Baltimore, MD has a long-term contract assignment as described below.Description:The department is seeking Computer Systems Security Specialist to provide application security related services. The Computer Security Specialist will be responsible for analyzing, configuring, documenting, implementing API Gateway solutions and secure application design/architecture techniques based on well-known security practices for the health benefit exchange and related systems.Duties / Responsibilities: Install, upgrade, and Manage Application Programming Interface (API) Gateway Configuration. Work with development and other technical teams on API management and API security. Work with the User Acceptance Testing (UAT) team to configure and develop API test solutions. Document and review API usage logs to ensure and maintain a secure configuration. Assist in recognizing the security threats, configuring the network infrastructure, implementing risk assessment techniques, and applying security best practices. Build and manage a centralized repository of API specifications and documentation. Interact with developers to gather application source code details, conduct code reviews, and provide technical assistance in remediating application security issues. Review application code scans and prepare security reports. Review Firewall and AWS Network Access Control List (NACL) configurations. Adhere to all security, change control, and IT Project Management Office (PMO) policies, processes, and methodologies.Minimum Qualifications: A minimum of four (4) years of experience in supporting security functions for AWS Cloud or equivalent. A minimum of two (2) years of experience with API design standard patterns, specifications, and best practices using Swagger, OpenAPI, or equivalent. A minimum of two (2) years of hands-on experience in installing and configuring Kong or other API Gateways. A minimum of two (2) years of experience working on Kong Ingress or other API Gateway with Kubernetes\Dockers. A minimum of two (2) years of experience in maintaining public API specification and documentation using Kong or equivalent. A minimum of two (2) years of experience in API monitoring and debugging. Proficiency in secure coding standards and manual review of code to identify OWASP Top 10 vulnerabilities and SANS Top 25 Programming errors. Knowledge of Authentication and Authorization mechanisms across different web technologies and protocols (SSL/TLS, REST, OAuth, SAML, etc.)For Immediate Response call , or send your resume to TRIGYN TECHNOLOGIES, INC. is an EQUAL OPPORTUNITY EMPLOYER and has been in business for 30 years. TRIGYN is an ISO 9001:2015, ISO 27001:2013 (ISMS) and CMMI Level 5 certified company.