Cloud and Web API Security Engineer

Leading the future in luxury electric and mobility At Lucid, we set out to introduce the most captivating, luxury electric vehicles that elevate the human experience and transcend the perceived limitations of space, performance, and intelligence. Vehicles that are intuitive, liberating, and designed for the future of mobility. We plan to lead in this new era of luxury electric by returning to the fundamentals of great design – where every decision we make is in service of the individual and environment. Because when you are no longer bound by convention, you are free to define your own experience. Come work alongside some of the most accomplished minds in the industry. Beyond providing competitive salaries, we’re providing a community for innovators who want to make an immediate and significant impact. If you are driven to create a better, more sustainable future, then this is the right place for you. We are seeking a skilled and motivated Security Engineer to join our team. The ideal candidate will have experience in API security assessments and possess a basic understanding of various technologies such as Kubernetes, Docker, Istio, gPRC, REST, MTLS, Web Application Security, Source Code Review, SAST / DAST. This is an excellent opportunity for a junior to mid-level professional looking to develop their expertise in API security and contribute to the security posture of our organization. Responsibilities: Conduct security assessments of APIs to identify potential vulnerabilities, weaknesses, and risks. Collaborate with development teams to provide guidance on implementing secure API architectures. Perform code reviews and provide recommendations for secure coding practices. Assist in the development and maintenance of security testing methodologies, tools, and frameworks for API security assessments. Stay updated with the latest security threats, vulnerabilities, and industry best practices related to API security. Create and maintain documentation of security assessment findings, recommendations, and mitigation strategies. Collaborate with cross-functional teams to remediate identified vulnerabilities and ensure the security of APIs. Participate in the design and implementation of secure API authentication and authorization mechanisms. Contribute to training and workshops for development teams on API security best practices. Requirements: Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience). Experience or strong interest in API security assessments and vulnerability management. Basic understanding of API security best practices and standards (e.g., OWASP API Security Top 10). Knowledge of authentication and authorization protocols (e.g., OAuth, JWT) is a plus. Familiarity with security assessment tools such as Burp Suite, OWASP ZAP, or similar is a plus. Basic understanding of secure coding practices and common vulnerabilities in web applications and APIs. Strong problem-solving and analytical skills. Excellent written and verbal communication skills. Ability to work independently and collaboratively in a fast-paced environment. Relevant certifications such as OffSec Web Assessor (OSWA) or OSCP are a plus. Join our team and contribute to ensuring the security and integrity of our APIs as we strive to deliver secure and reliable services to our customers. Apply now and be part of our mission to protect sensitive data and maintain the highest standards of API security.

#J-18808-Ljbffr