Senior API Security Engineer

Job Summary:
The API Security Architect/Engineer is responsible for embedding secure-by-design practices across Vertivs device gateway and platform APIs. This role defines authentication encryption and security validation patterns aligned with the organizations API governance framework and exposure-based lifecycle enforcement. The role also collaborates with the IT Security and Data Governance teams to ensure that APIs support privacy classification and compliance requirements without compromising developer agility or system interoperability.

Key Responsibilities:

• Authentication & Access Control
  Implement OAuth2/OIDC-based authentication and token models (e.g. JWT) and define access control mechanisms (RBAC/ABAC) aligned with API exposure levels (Internal Protected Public).
• Transport & Credential Security
  Design and enforce TLS/mTLS configurations token validation logic and credential storage policies for both edge and cloud APIs.
• Security Reviews & Threat Modeling
  Participate in API design reviews and conduct threat modeling to identify and mitigate risks for new and updated APIs.
• DevSecOps Integration
  Automate static and dynamic API security checks using CI/CD tools (e.g. Spectral ZAP Snyk secret scanners). Enforce governance gates during key lifecycle phases (e.g. Design Validate Publish).
• Incident Support & Remediation
  Collaborate with IT Security on vulnerability triage and mitigation for APIs. Support incident response workflows where APIs are affected.
• Data Governance Collaboration
  Work with IT and Data Governance teams to align API behavior with classification policies and support secure handling of sensitive data such as telemetry PII or credentials.

Required Qualifications:

• Education:
  Bachelors degree in Cybersecurity Computer Science or a related field.
• Experience:
  • 5+ years in API or application security roles ideally in distributed or IoT-oriented environments.
  • Strong understanding of OAuth2 JWT TLS/mTLS and secure API gateway architectures (e.g. Kong Apigee).
• Skills:
  • Familiarity with the OWASP API Security Top 10 and practical mitigation strategies.
  • Hands-on experience integrating security tooling into CI/CD pipelines.
  • Strong collaboration skills to interface with DevOps architects and IT Security teams.

Preferred Qualifications:

• Certifications (one or more):
  • CISSP CCSP (security architecture)
  • CIPT CDPSE (data protection technologies)
  • CEH or GCP Security Specialty (practical security tooling)
• Domain Knowledge:
  • Familiarity with data classification frameworks PII protection or telemetry privacy practices.
  • Exposure to IoT/edge device authentication and secure provisioning concepts.
  • Awareness of GDPR ISO 27001 or SOC 2 requirements in technical desig

The successful candidate will embrace Vertivs Core Principals & Behaviors to help execute our Strategic Priorities.

OUR CORE PRINCIPALS: Safety. Integrity. Respect. Teamwork. Diversity & Inclusion.

OUR STRATEGIC PRIORITIES

Customer Focus

Operational Excellence

High-Performance Culture

Innovation

Financial Strength

OUR BEHAVIORS

Own It

Act With Urgency

Foster a Customer-First Mindset

Think Big and Execute

Lead by Example

Drive Continuous Improvement

Learn and Seek Out Development

About Vertiv

Vertiv is a $8.0billion global critical infrastructure and data center technology company. We ensure customers vital applications run continuously by bringing together hardware software analytics and ongoing services. Our portfolio includes power cooling and IT infrastructure solutions and services that extends from the cloud to the edge of the network. Headquartered in Columbus Ohio USA Vertiv employs around 20000 people and does business in more than 130 countries. Visit to learn more.

Work Authorization

No calls or agencies please. Vertiv will only employ those who are legally authorized to work in the United States. This is not a position for which sponsorship will be provided. Individuals with temporary visas such as E F-1 H-1 H-2 L B J or TN or who need sponsorship for work authorization now or in the future are not eligible for hire.

Equal Opportunity Employer

Vertiv is an Equal Opportunity/Affirmative Action employer. We promote equal opportunities for all with respect to hiring terms of employment mobility training compensation and occupational health without discrimination as to age race color religion creed sex pregnancy status (including childbirth breastfeeding or related medical conditions) marital status sexual orientation gender identity / expression (including transgender status or sexual stereotypes) genetic information citizenship status national origin protected veteran status political affiliation or disability. If you have a disability and are having difficulty accessing or using this website to apply for a position you can request help by sending an email to @.