**Introduction** We are looking for a passionate and detail-oriented Junior API Security Consultant to join our cybersecurity team. This role is ideal for someone with foundational experience in API development or security and a strong interest in securing modern applications. You will support senior consultants in assessing and improving API security, including hands-on testing and secure design practices. **Your role and responsibilities** • Implement and enforce security measures and policies as defined by the Senior API Security Consultant. • Assist in conducting thorough system and user acceptance tests as per the test plans. • Monitor API traffic and usage patterns for potential security threats or anomalies. • Perform regular security audits and vulnerability assessments on APIs. • Participate in the creation of custom investigation reports, dashboards, and policies. • Collaborate with the team for the integration of the API Security platform with SIEM (Security Information and Event Management) systems like QRadar. • Support the onsite managed services post-implementation, including issue resolution and monitoring of APIs in production environments. • Contribute to the handover training of designated client resources, ensuring they can effectively manage the API Security platform environment. **Required technical and professional expertise** Experience: - 3+ years of cybersecurity or SOC experience with exposure to API technologies. - Familiarity with API request structures (e.g., REST, JSON, HTTP headers, JWT). - Experience with Cequence API Security is preferred. Familiarity with other API security platforms (e.g., Salt Security, or equivalent solutions) will also be considered a strong advantage. - Ability to read and analyze API logs and platform findings. - Basic knowledge of F5 LTM, QRadar, and incident response processes. Soft Skills: - Strong analytical and problem-solving abilities with keen attention to detail. **Preferred technical and professional experience** Preferred Certifications - API Security Fundamentals (Cloud Academy, Salt Security, etc.) - CompTIA Security+, CySA+, or equivalent - Familiarity with MITRE ATT&CK for APIs or OWASP API Security IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.