Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join us as an API & Application Security Specialist, focusing on securing web applications.
- Company: Work with a dynamic client in Central London, known for innovation and security excellence.
- Benefits: Enjoy remote work flexibility with occasional trips to the vibrant London site.
- Why this job: Make a real impact by enhancing application security while collaborating with key stakeholders.
- Qualifications: Deep knowledge of OWASP API Top 10 and experience with security frameworks required.
- Other info: This is a 6-month contract role operating inside IR35.
The predicted salary is between 36000 - 60000 £ per year.
Our client is looking to hire mid-level API & Application Security Specialist to join them on a 6-month initial contract, to work remotely with some occasional trips to the London site. This role will be operating INSIDE IR35.
Key Skills Required:
- Deep knowledge of OWASP API Top 10
- Able to review Swagger/Open API specs for vulnerabilities
- Advise on secure API design patterns
- Familiar with fallback controls such as WAFs, API gateways
- Experience using SIEM/logging tools to track API threats
- Familiarity with NIST, OWASP SAMM, or internal security frameworks
- Experience producing risk dashboards/reports for APIs
- Able to translate technical risks into business language, collaborating with key stakeholders
If interested in this role, please apply today.
API / Web Application Security Specialist | Remote Contract (Central London / West End) employer: Korn Ferry
Contact Detail:
Korn Ferry Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land API / Web Application Security Specialist | Remote Contract (Central London / West End)
✨Tip Number 1
Familiarise yourself with the OWASP API Top 10 vulnerabilities. Being able to discuss these in detail during your conversations will show your expertise and understanding of the role.
✨Tip Number 2
Prepare examples of how you've reviewed Swagger/Open API specs in the past. Highlight specific vulnerabilities you identified and how you advised on secure design patterns.
✨Tip Number 3
Brush up on your knowledge of fallback controls like WAFs and API gateways. Be ready to discuss how you've implemented or worked with these tools to enhance security.
✨Tip Number 4
Think about how you can translate technical risks into business language. Prepare to share examples of how you've communicated security issues to non-technical stakeholders in previous roles.
We think you need these skills to ace API / Web Application Security Specialist | Remote Contract (Central London / West End)
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience with API and application security. Include specific examples of your work with OWASP API Top 10, Swagger/Open API specs, and any relevant frameworks like NIST or OWASP SAMM.
Craft a Strong Cover Letter: In your cover letter, express your enthusiasm for the role and explain how your skills align with the job requirements. Mention your experience with secure API design patterns and your ability to communicate technical risks to stakeholders.
Showcase Relevant Projects: If you have worked on projects involving API security, include them in your application. Describe your role, the challenges faced, and how you contributed to the project's success, especially in terms of risk management and reporting.
Proofread Your Application: Before submitting, carefully proofread your application for any spelling or grammatical errors. A polished application reflects your attention to detail, which is crucial in a security role.
How to prepare for a job interview at Korn Ferry
✨Know Your OWASP API Top 10
Make sure you have a solid understanding of the OWASP API Top 10 vulnerabilities. Be prepared to discuss each one and how they can impact application security. This will show your depth of knowledge and expertise in the field.
✨Review Swagger/Open API Specs
Familiarise yourself with reviewing Swagger or Open API specifications for vulnerabilities. During the interview, you might be asked to demonstrate how you would identify potential security issues in these specs, so practice this beforehand.
✨Discuss Secure API Design Patterns
Be ready to advise on secure API design patterns. Think about examples from your past experience where you implemented these patterns successfully, as this will highlight your practical knowledge and problem-solving skills.
✨Translate Technical Risks into Business Language
Prepare to explain how you would communicate technical risks to non-technical stakeholders. This skill is crucial for collaboration, so think of examples where you've successfully bridged the gap between technical and business teams.
