Job Title: API Security Engineer
Primary Location: Chicago, IL (Hybrid)
Position Type: Direct Hire

visas: USC or GC only

Overview

Information Security Engineer! This is a direct-hire, hybrid role based in Rosemont, IL.

This hands-on engineering position supports secure development and operational practices for banking products and services. The role plays a critical part in enabling secure API integrations and advancing the secure software development lifecycle (SDLC) across the organization.

What You Bring to the Role (Ideal Experience)

Bachelor's degree or equivalent experience
2-3 years of API development experience
Strong understanding of programming languages such as Python or Java
Security certifications such as GWEB or CSSLP are strongly preferred
Experience working in multi-disciplinary technology teams
Familiarity with security architecture and secure software development best practices

What You'll Do (Skills Used in this Position)
Manage day-to-day operational tasks within the API Security program
Maintain and improve API Security tools and platforms
Conduct security reviews for API-based integrations to ensure alignment with enterprise security standards
Support documentation and reporting of API security data for internal and external audits
Partner with API development and DevOps teams to identify and mitigate threats to API communications
Collaborate with Security Architecture to review and evaluate security tools and technologies
Monitor and report metrics to track and manage API security risks

Compensation Information
The expected salary range for this position is $100,000 - $120,000 per year, depending on experience and qualifications. This role also qualifies for comprehensive benefits such as health insurance, 401(k), and paid time off.

This role requires authorization to work in the U.S. without current or future visa sponsorship.

All offers are contingent upon the completion of a background check, which may include but is not limited to reference checks, education verification, employment verification, drug testing, criminal records checks, and any required certifications or compliance requirements based on the end client's background check policies and applicable laws.