Remote API security engineer reviewing API gateway dashboards, threat detection alerts, OAuth authentication flows, and DevSecOps security checks.

API Security Engineer Careers at Fiserv: Remote Cybersecurity Skills, Salary, Resume Tips & How to Get Hired

API Security Engineer roles are built for cybersecurity professionals who protect the systems that connect financial platforms, mobile apps, merchants, banks, and digital services. These roles are especially important in fintech because APIs often carry sensitive transactions, identity data, customer information, and real-time business activity.

The original Fiserv API Security Engineer job previously featured on WorkinVirtual may no longer be open. This rebuilt guide will help you prepare for similar remote, hybrid, and high-paying API security roles at Fiserv and other employers hiring application security, DevSecOps, cloud security, and cyber protection talent.

Opportunity Snapshot

Career Path: API Security Engineer, Application Security Engineer, DevSecOps Engineer, Cloud Security Engineer

Work Style: Remote, hybrid, or office-based depending on security operations and employer policy

Experience Level: Mid-level to senior cybersecurity professional

Salary Context: Current API security and cyber engineering roles can range from about $110,000 to $186,000+, depending on experience, location, and technical depth.

Core Skills: API security, OAuth, OIDC, JWT, WAF, WAAP, threat detection, OWASP API Top 10, automation, CI/CD, incident response, and security monitoring

About Fiserv Careers

Fiserv is a global fintech and payments company supporting financial institutions, merchants, corporations, and consumers through digital payment, banking, commerce, and financial technology solutions. Cybersecurity roles at companies like Fiserv often focus on protecting high-volume systems, reducing risk, improving secure engineering practices, and supporting reliable digital transactions.

For current openings, always check the official Fiserv careers website before applying through any older job article.

Official Fiserv Careers Page: Fiserv Careers

Fiserv Technology Jobs: View Fiserv Technology Roles

What an API Security Engineer Does

An API Security Engineer protects application programming interfaces from abuse, misconfiguration, broken authorization, data exposure, injection attacks, bot activity, weak authentication, excessive access, and other risks that can affect modern digital platforms.

In fintech, this work may include secure API design reviews, runtime protection, API discovery, telemetry analysis, threat detection, incident response, security automation, and collaboration with product, platform, application security, cloud, and engineering teams.

Common Responsibilities

  • Implement and tune API runtime protection controls.
  • Analyze API security events, telemetry, and threat signals.
  • Reduce false positives and prioritize high-risk findings.
  • Support secure API design using authentication, authorization, validation, and least-privilege principles.
  • Work with OAuth2, OpenID Connect, JWT, scopes, claims, tokens, and session security.
  • Support API gateways, WAF, WAAP, service mesh, ingress, or specialized API security tools.
  • Build automation for API security testing, monitoring, ticketing, and CI/CD workflows.
  • Partner with product, platform, application security, and incident response teams.
  • Document controls, exceptions, findings, and remediation actions.
  • Align API security work with OWASP API Security Top 10, NIST, ISO 27001, PCI DSS, and related frameworks.

Skills Employers Want

  • API security architecture
  • Application security
  • OWASP API Security Top 10
  • OAuth2 and OpenID Connect
  • JWT and token security
  • API gateways and service mesh
  • WAF and WAAP platforms
  • Threat detection and incident response
  • Security event analysis
  • Python, Bash, or automation scripting
  • CI/CD security integration
  • SAST, DAST, API testing, and secrets scanning
  • Cloud security fundamentals
  • NIST, ISO 27001, PCI DSS, and audit readiness
  • Security documentation and engineering collaboration

Salary Context

API Security Engineer compensation varies by company, location, seniority, fintech experience, on-call expectations, cloud exposure, and depth of application security expertise. Recent API security roles connected to Fiserv have appeared with salary ranges around $110,000 to $186,000, while broader senior cyber engineering roles may pay more depending on scope.

  • Application Security Engineer: $105,000–$145,000
  • API Security Engineer: $120,000–$165,000
  • Senior API Security Engineer: $145,000–$190,000+
  • Principal Security Engineer: $180,000–$240,000+

Higher-paying roles usually require hands-on API security tooling, strong authentication and authorization knowledge, fintech or regulated industry experience, incident response awareness, and the ability to work closely with engineering teams.

Resume Tips for API Security Engineer Jobs

  • Lead with API security, application security, threat detection, cloud security, and DevSecOps experience.
  • Mention specific tools or areas such as API gateways, WAF, WAAP, OAuth, OIDC, JWT, SAST, DAST, secrets scanning, and CI/CD security.
  • Show measurable impact, such as reduced false positives, improved detection coverage, faster remediation, fewer exposed endpoints, or stronger control adoption.
  • Include regulated industry experience if you have worked in fintech, banking, payments, healthcare, insurance, or enterprise security.
  • Highlight collaboration with engineers, product teams, incident response, platform teams, and security operations.
  • Use project-based bullets instead of only listing tools.
  • Keep your resume clear, technical, and ATS-friendly.

Interview Preparation

For API Security Engineer interviews, employers usually test your understanding of real API risks, secure design, runtime controls, automation, and practical incident response.

  • What are the most common API security risks?
  • How would you detect broken object level authorization?
  • How do OAuth2, OIDC, and JWT work together?
  • How would you protect a public API used by mobile apps?
  • How do you reduce false positives in API security alerts?
  • What controls would you apply at an API gateway?
  • How would you automate API security checks in CI/CD?
  • How do you investigate suspicious API traffic?
  • How would you prioritize API vulnerabilities across many services?
  • How do you work with engineers without slowing product delivery?

Similar Job Titles to Search

  • API Security Engineer
  • Application Security Engineer
  • DevSecOps Engineer
  • Cloud Security Engineer
  • Product Security Engineer
  • Cyber Security Engineer
  • Security Automation Engineer
  • Threat Detection Engineer
  • Web Application Security Engineer
  • Security Platform Engineer

Find Remote Cybersecurity and API Security Jobs

Ready to apply for similar roles? Browse current remote jobs, explore companies hiring remote workers, search the WorkinVirtual jobs board, or upload your resume so employers can discover your profile.

Helpful Career Tool: Use the WorkinVirtual Resume Improvement Advisor to strengthen your API security, cybersecurity, DevSecOps, and cloud security resume before applying.

Browse Remote Jobs

Editorial Note: This article was rebuilt from an older job post that may no longer be active. It has been updated into an evergreen career guide to help remote job seekers prepare for similar API Security Engineer, Application Security Engineer, DevSecOps, Cybersecurity, and Cloud Security opportunities.

Advertisement
Advertisement
Advertisement
Candidate HelpEmployer HelpKnowledge BaseBilling SupportContact Support
Scroll to Top