Job Overview: We are seeking an experienced API Security Business Systems Analyst (BSA) to join our team in a hybrid role based in Toronto. This individual will work hands-on within API security platforms (Akamai or NoName) while also supporting the strategic and business-side components including requirements gathering, process analysis, and documentation. The ideal candidate combines strong technical expertise in API security with robust BSA capabilities. Key Responsibilities: Lead the development and execution of the API security strategy and lifecycle management. Leverage Akamai API Security or NoName Security platforms, including automation and integrations.
Build and maintain API security roadmaps, processes, and tooling enhancements to support alerting, vulnerability assessment, and risk management. Apply deep expertise in OWASP API Security Top 10 to drive remediation strategies. Collaborate with engineering, architecture, and risk teams to shift security left in the API delivery pipeline. Author requirements documents, use cases, user stories, and support documentation for integrations and platform support. Drive continuous improvement in API delivery and governance. Create dashboards and reports using SQL, Power BI, or Tableau. Analyze business and system processes to provide actionable recommendations. Act as a bridge between stakeholders, developers, and security teams.
Required Skills and Experience: API Security Expertise: Hands-on experience with Akamai or NoName API Security platforms. Proficiency with API security automation and integrations. Strong understanding of API risk management, threats, and vulnerability lifecycle. Familiarity with API gateways and cloud-native security principles. Certifications in API security are a strong asset. Business Systems Analysis (BSA): Proven experience in requirements elicitation, analysis, and documentation. Strong grasp of Agile methodologies, Scrum, and/or Kanban. Ability to conduct process mapping and drive improvements. Experienced in system analysis, stakeholder engagement, and project coordination. Proficient in writing BRDs, FRDs, and user stories. Technical Tools:
SQL, Power BI, TableauJira, Confluence, Visio or LucidchartPreferred Qualifications: Bachelor's degree in Computer Science, Engineering, or a related field. Relevant API Security or Cybersecurity certifications (e. g. , API Security Architect, GIAC API Security Essentials, etc. ). Familiarity with DevSecOps and secure API development practices.
Customize your resume to highlight skills and experiences relevant to this specific position.
Learn about the company's mission, values, products, and recent news before your interview.
Ensure your LinkedIn profile is complete, professional, and matches your resume information.
Prepare thoughtful questions to ask about team dynamics, growth opportunities, and company culture.
