API Security Architect

Job description

API Security Architect

Choosing Capgemini means choosing a company where you will be empowered to shape your career in the way you’d like, where you’ll be supported and inspired by a collaborative community of colleagues around the world, and where you’ll be able to reimagine what’s possible.

Join us and help the world’s leading organizations unlock the value of technology and build a more sustainable, more inclusive world.

**Job Description**

The Security Engineer will lead the assessment and enhancement of the security posture across existing and future state API integrations.

This role is responsible for evaluating current integration security controls designing a robust future state architecture and guiding cross functional teams in implementing secure scalable and compliant solutions

**Key Responsibilities:**
Assess Current State
Evaluate existing API and integration security controls across platforms eg DataPower Kong AWS
Identify gaps in authentication authorization encryption and governance
Conduct risk assessments and threat modeling for current integrations

**Design Future State:**
Define the target security architecture for APIs and integrations aligned with enterprise standards
Recommend security patterns and controls eg OAuth2 JWT mTLS rate limiting WAF
Ensure alignment with compliance frameworks eg OWASP API Top 10 NIST SOC2

**Implementation Guidance:**
Collaborate with integration architects developers and DevOps teams to embed security into the API lifecycle
Provide hands on support and technical leadership during implementation phases
Develop reusable security components and CICD integrations for automated security checks

**Governance Enablement:**
Create and maintain security guidelines playbooks and reference architectures
Conduct training and enablement sessions for development and integration teams
Monitor and report on security posture improvements and incident trends

**Qualifications:**
Strong experience in API security architecture and integration security assessments
Hands on expertise with API gateways eg Kong Apigee cloud platforms AWS Azure and IAM solutions
Proficiency in security protocols and standards OAuth2 OpenID Connect JWT TLSmTLS
Familiarity with DevSecOps practices and CICD pipeline integration
Excellent communication and stakeholder engagement skills
Relevant certifications preferred eg CISSP CCSP AWS Security Specialty GIAC

**Life at Capgemini**

Capgemini supports all aspects of your well-being throughout the changing stages of your life and career.

For eligible employees, we offer:
• Flexible work
• Healthcare including dental, vision, mental health, and well-being programs
• Financial well-being programs such as 401(k) and Employee Share Ownership Plan
• Paid time off and paid holidays
• Paid parental leave
• Family building benefits like adoption assistance, surrogacy, and cryopreservation
• Social well-being benefits like subsidized back-up child/elder care and tutoring
• Mentoring, coaching and learning programs
• Employee Resource Groups
• Disaster Relief

**Pay Transparency**

Capgemini discloses salary range information in compliance with state and local pay transparency obligations.

The disclosed range represents the lowest to highest salary we, in good faith, believe we would pay for this role at the time of this posting, although we may ultimately pay more or less than the disclosed range, and the range may be modified in the future.

The disclosed range takes into account the wide range of factors that are considered in making compensation decisions including, but not limited to, geographic location, relevant education, qualifications, certifications, experience, skills, seniority, performance, sales or revenue-based metrics, and business or organizational needs.

At Capgemini, it is not typical for an individual to be hired at or near the top of the range for their role.

The base salary range for the tagged location is $ 125000- $ 140000 /yearly.

This role may be eligible for other compensation including variable compensation, bonus, or commission.

Full time regular employees are eligible for paid time off, medical/dental/vision insurance, 401(k), and any other benefits to eligible employees.

Note: No amount of pay is wages or compensation until such amount is earned, vested, and determinable.

The amount and availability of any bonus, commission, or any other form of compensation that are allocable to a particular employee remains in the Company's sole discretion unless and until paid and may be modified at the Company’s sole discretion, consistent with the law.

**Capgemini is an Equal Opportunity Employer**

Capgemini is an Equal Opportunity Employer committed to diversity, equity, and inclusion in the workplace.

We promote fairness, accessibility, inclusion, and respect through our Partnership Accreditation in Indigenous Relations (PAIR) Committee, which supports meaningful engagement with Indigenous communities across Canada.

We value the rich cultural heritage and contributions of Indigenous Peoples and actively work to create a welcoming and respectful environment.

All qualified applicants will receive consideration for employment without regard to race, national origin, gender identity/expression, age, religion, disability, sexual orientation, genetics, veteran status, marital status, or any other characteristic protected by law.

This is a general description of the Duties, Responsibilities and Qualifications required for this position.

Physical, mental, sensory or environmental demands may be referenced in an attempt to communicate the manner in which this position traditionally is performed.

Whenever necessary to provide individuals with disabilities an equal employment opportunity, Capgemini will consider reasonable accommodations that might involve varying job requirements and/or changing the way this job is performed, provided that such accommodations do not pose an undue hardship.

Capgemini is committed to providing reasonable accommodations during our recruitment process.

If you need assistance or accommodation, please reach out to your recruiting contact.
Please be aware that Capgemini may capture your image (video or screenshot) during the interview process and that image may be used for verification, including during the hiring and onboarding process.
Click the following link for more information on your rights as an Applicant
Applicants for employment in the US must have valid work authorization that does not now and/or will not in the future require sponsorship of a visa for employment authorization in the US by Capgemini.

Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society.

It is a responsible and diverse group of 340,000 team members in more than 50 countries.

With its strong over 55-year heritage, Capgemini is trusted by its clients to unlock the value of technology to address the entire breadth of their business needs.

It delivers end-to-end services and solutions leveraging strengths from strategy and design to engineering, all fueled by its market leading capabilities in AI, generative AI, cloud and data, combined with its deep industry expertise and partner ecosystem.

Ref.

code: 336253

Posted on: Oct 6, 2025

Experience Level: Experienced Professionals

Contract Type: Permanent

Location:
New York, NY, US

Brand: Capgemini

Professional Community: Software Engineering

Capgemini is an Equal Opportunity Employer encouraging diversity in the workplace.

All qualified applicants will receive consideration for employment without regard to race, national origin, gender identity/expression, age, religion, disability, sexual orientation, genetics, veteran status, marital status or any other characteristic protected by law.

Required Skill Profession

Other General