API Security Architect

Summary: The API Security Architect role involves joining the security team of a major organization, focusing on enterprise-level API Security Architecture. The position requires ensuring that APIs are securely built and compliant with organizational security standards. The role is hybrid, requiring three days on-site in Knutsford, and offers a competitive daily rate. The ideal candidate will possess extensive experience in API security and related technologies.

Key Responsibilities:

• Ensure APIs are built securely and align with organizational security and compliance requirements.
• Design security controls in cloud environments (Azure, AWS, or GCP).
• Create architectural artefacts such as HLDs, LLDs, and security patterns.
• Collaborate with senior leadership and stakeholders to communicate security strategies.
• Stay updated on API security best practices and compliance standards.

Key Skills:

• Proven experience in API security architecture within large-scale environments.
• Expertise in API gateways (Apigee, Azure API Management, Kong, Mulesoft).
• Strong knowledge of OAuth2.0, OIDC, JWT, mTLS, TLS, and Zero Trust principles.
• Deep understanding of OWASP API Security Top 10 and secure design patterns.
• Ability to create architectural artefacts (HLDs, LLDs, security patterns).
• Strong communication and stakeholder management skills.
• Problem-solver with a hands-on mindset.
• Security certifications (CISSP, GIAC, SABSA, CCSP - preferred but not mandatory).

Salary (Rate): £750 Daily

City: Knutsford

Country: United Kingdom

Working Arrangements: hybrid

IR35 Status: inside IR35

Seniority Level: undetermined

Industry: IT

API Security Architect

Knutsford - Hybrid, 3 days on site

Contract - £700 - £750 per day (inside)

Our client is seeking an API Security Architect who will join the security team of a major organisation. You will have strong knowledge of enterprise-level API Security Architecture, as you will ensure that APIs are built securely, and align with organisational security and compliance requirements.

Technical Skills & Competencies:

• Proven experience in API security architecture within large-scale environments.
• Expertise in API gateways (Apigee, Azure API Management, Kong, Mulesoft).
• Strong knowledge of OAuth2.0, OIDC, JWT, mTLS, TLS, and Zero Trust principles.
• Deep understanding of OWASP API Security Top 10 and secure design patterns.
• Experience designing security controls in the cloud (Azure, AWS, or GCP).
• Ability to create architectural artefacts (HLDs, LLDs, security patterns).

Desirable:

• Strong communication and stakeholder management skills
• Comfortable working directly with senior leadership
• Problem-solver with a hands-on mindset
• Prior experience working with global banks or financial institutions
• Security certifications (CISSP, GIAC, SABSA, CCSP - preferred but not mandatory)

Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found on our website.