At Abacus, we reimagine outsourcing as a strategic performance engine delivering IT, customer experience, finance, HR, and data management services built to outperform. By blending process excellence with intelligent automation and analytics, we enable precision, speed, and measurable impact at scale. With Abacus, outsourcing evolves beyond efficiency to bec...

Read more about this company

Security Specialist

Job Type

Full Time

Qualification

BA/BSc/HND

Experience

Location

Nairobi

Job Field

Security / Intelligence

We are looking for a skilled and proactive Security Specialist to design, implement, and manage secure architectures across modern application environments. The ideal candidate will have strong expertise in API security, microservices architecture, and DevSecOps practices, ensuring robust protection of systems, data, and digital assets.

Key Responsibilities:

• Design and implement secure API and microservices architectures aligned with industry best practices
• Develop and enforce API security frameworks, including authentication, authorization, and threat protection mechanisms
• Integrate security practices within DevSecOps pipelines, ensuring secure code deployment and continuous monitoring
• Manage and implement consent management services in compliance with data privacy regulations
• Conduct security assessments, vulnerability testing, and risk analysis across applications and infrastructure
• Collaborate with development, DevOps, and product teams to embed security across the SDLC
• Monitor and respond to security incidents, ensuring timely mitigation and reporting
• Stay updated with emerging security threats, tools, and compliance standards

Required Skills & Qualifications:

• Proven experience in application security, API security, or cybersecurity roles
• Strong understanding of microservices architecture and secure API development
• Hands-on experience with DevSecOps tools and practices (CI/CD security, SAST, DAST, etc.)
• Knowledge of API security standards (OAuth2.0, OpenID Connect, JWT, API gateways)
• Experience with consent and identity management solutions
• Familiarity with cloud security (AWS, Azure, or GCP) is a plus
• Strong analytical, problem-solving, and communication skills

• Design and implement secure API and microservices architectures aligned with industry best practices
• Develop and enforce API security frameworks, including authentication, authorization, and threat protection mechanisms
• Integrate security practices within DevSecOps pipelines, ensuring secure code deployment and continuous monitoring
• Manage and implement consent management services in compliance with data privacy regulations
• Conduct security assessments, vulnerability testing, and risk analysis across applications and infrastructure
• Collaborate with development, DevOps, and product teams to embed security across the SDLC
• Monitor and respond to security incidents, ensuring timely mitigation and reporting
• Stay updated with emerging security threats, tools, and compliance standards

• Proven experience in application security, API security, or cybersecurity roles
• Strong understanding of microservices architecture and secure API development
• Hands-on experience with DevSecOps tools and practices (CI/CD security, SAST, DAST, etc.)
• Knowledge of API security standards (OAuth2.0, OpenID Connect, JWT, API gateways)
• Experience with consent and identity management solutions
• Familiarity with cloud security (AWS, Azure, or GCP) is a plus
• Strong analytical, problem-solving, and communication skills

• BA/BSc/HND