API Security Strategist

Role: API Security Architect

Location: Any Mphasis Location

Who are we looking for?

We are looking for API Security Architect, who is responsible for defining and implementing enterprise API security architecture, compliance frameworks, and secure-by-design standards across all API assets.

Key Responsibilities

• Define API authentication & authorization strategy (OAuth2, OIDC, mTLS)
• Establish API security schemas in Swagger
• End Point Security
• Define encryption standards (in transit & at rest)
• Create API threat modeling framework
• Define audit logging & traceability model
• Align APIs with enterprise IAM
• Conduct security reviews for API onboarding

Required Skills

• 10+ years in application/API security
• Experience with OAuth2, JWT, OIDC
• Knowledge of OWASP API Security Top 10
• Experience with API gateways and WAF policies
• Familiarity with regulatory controls

Qualification:

• Somebody who has at least 10+ years of work experience.
• Education qualification: Any degree from a reputed college