Rockwell Automation

Lead Engineer, API Security

Rockwell Automation

full-time

Posted on:

Location Type: Hybrid

Location: Pune • 🇮🇳 India

Visit company website
AI Apply
Apply

Job Level

Senior

Tech Stack

AnsibleAWSAzureCloudCyber SecurityGoogle Cloud PlatformKubernetesPythonSaltStackTerraformVault

About the role

  • You will focus on securing API interactions within an organisation, with a specific emphasis on using HashiCorp Vault for secrets management and access control.
  • Architecting, deploying, and managing HashiCorp Vault for secure secrets management, identity-based access, and data encryption across different environments (cloud, on-premises).
  • Leading the design and implementation of secure API authentication, authorization, and data protection mechanisms, using Vault's capabilities for dynamic secrets, token management, and encryption as a service.
  • Secure API integrations across platforms, ensuring understanding of enterprise security standards and compliance requirements.
  • Manage secrets and credentials for applications, including policy enforcement and automated rotation.
  • Automate security configurations and enforcement across environments using infrastructure-as-code and configuration management tools.
  • Collaborate with DevOps, IAM, and application teams to embed security into the API lifecycle and CI/CD pipelines.
  • Conduct API security assessments, penetration testing, and remediation planning.
  • Monitor API traffic and logs for anomalies, and respond to incidents involving API.
  • Integrate HashiCorp Vault / CyberArk Vault with applications to secure API keys, tokens, and other credentials.
  • Develop and implement secure API authentication and authorization mechanisms using Vault.
  • Ensure data handling for API interactions.

Requirements

  • Bachelor's / Masters Degree in computer science, software engineering, management information systems, or related field or equivalent relevant years of experience.
  • Requires minimum 8-10 years of experience in Cyber Security, API Security & Vault Management.
  • Hands-on experience with API security tools and platforms (e.g., MuleSoft, Apigee, or AWS API Gateway).
  • Experience with secrets management solutions (e.g., HashiCorp Vault, CyberArk Conjur).
  • Familiarity with configuration management and automation tools (e.g., SALT, Ansible, or Terraform).
  • Good exposure in OAuth2, OpenID Connect, JWT, and API gateway security patterns.
  • Experience with cloud-native environments (AWS, Azure, or GCP).
  • Proficiency in scripting and automation (e.g., Python, Bash, or YAML).
  • Security certifications (e.g., CISSP, CCSP, GIAC, or API-specific credentials).
  • Experience with container security and Kubernetes.
Benefits
  • Comprehensive mindfulness programme with a premium membership to Calm.
  • Volunteer Paid Time off available after 6 months of employment for eligible employees.
  • Company volunteer and donation matching programme – Your volunteer hours or personal cash donations to an eligible charity can be matched with a charitable donation.
  • Employee Assistance Program.
  • Personalised wellbeing programmes through our OnTrack programme.
  • On-demand digital course library for professional development.
  • ... and other local benefits!

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
API securitysecrets managementHashiCorp Vaultidentity-based accessdata encryptiondynamic secretstoken managementinfrastructure-as-codescriptingcontainer security
Soft skills
collaborationleadershipcommunicationproblem-solvingincident response
Certifications
CISSPCCSPGIACAPI-specific credentials