Role: API Security Architect
Location: Any Mphasis Location
Who are we looking for
We are looking for API Security Architect, who is responsible for defining and implementing enterprise API security architecture, compliance frameworks, and secure-by-design standards across all API assets.
Key Responsibilities
- Define API authentication & authorization strategy (OAuth2, OIDC, mTLS)
- Establish API security schemas in Swagger
- End Point Security
- Define encryption standards (in transit & at rest)
- Create API threat modeling framework
- Define audit logging & traceability model
- Align APIs with enterprise IAM
- Conduct security reviews for API onboarding
Required Skills
- 10+ years in application/API security
- Experience with OAuth2, JWT, OIDC
- Knowledge of OWASP API Security Top 10
- Experience with API gateways and WAF policies
- Familiarity with regulatory controls
Qualification:
- Somebody who has at least 10+ years of work experience.
- Education qualification: Any degree from a reputed college
