Job Description
We are looking for a Senior API Platform Engineer who possesses strong skills in .NET, API Management, and Auth0 to develop and execute secure, scalable, and high-performance API ecosystems utilizing GCP, Azure, and Kubernetes clusters.
This position will concentrate on the implementation of API Gateways, along with strategies for authentication and authorization, and the application of best practices for API security while ensuring smooth integration with multi-cloud environments and identity management solutions.
The ideal candidate should have experience with various API gateways (such as Kong, Apigee, Tyk, and Istio) and secure authentication processes utilizing Auth0. Furthermore, the candidate should be adept at operating in a multi-cloud environment, implementing observability, caching, and traffic management techniques.
Requirements
Key Responsibilities:
API Gateway Implementation & Management:
- Design, implement, and oversee API Gateway solutions like Kong, Apigee, Tyk, or Istio within GCP and Azure Kubernetes clusters.
- Set up authentication and authorization systems, incorporating Auth0 for token-based security (JWT, OAuth2, OpenID Connect).
- Establish detailed routing rules through Virtual Services, managing ingress traffic and path mapping.
- Apply rate limiting and throttling techniques using Redis or tailored rate-limiting services.
- Configure API quotas to impose restrictions based on user/client/tenant.
- Enhance traffic management strategies to improve API performance and uptime.
Authentication & Authorization Management:
- Deploy secure authentication workflows utilizing Auth0, including SSO, MFA, and role-based access control.
- Integrate Auth0 with .NET applications and API gateways to centralize authentication processes.
- Implement JWT validation at the gateway level for authentication purposes.
- Activate mTLS for all inter-service communications within the service mesh.
- Establish policy evaluation and authorization measures at the API Gateway.
- Configure TLS termination and manage client certificate handling.
- Oversee CORS policies using VirtualService or EnvoyFilter for granular control over permitted origins, methods, and headers.
Observability & Monitoring (New Relic):
- Implement monitoring and performance analysis of APIs through New Relic.
- Establish real-time insights into API traffic trends, latency, error rates, and dependencies.
- Facilitate end-to-end request tracing to aid in debugging and issue resolution.
- Set up alerts and dashboards in New Relic to monitor API health and security.
Caching & Performance Optimization:
- Establish response caching at the API Gateway level for static or rarely modified data.
- Define caching strategies based on API endpoints and response types utilizing cache-control headers.
- Enhance API resilience by implementing retry policies, request timeouts, and circuit breakers to avert cascading failures.
API Management & Developer Portal:
- Provide access to APIs for external users via a developer portal, facilitating API discovery and self-service onboarding.
- Establish governance policies for APIs, including strategies for versioning and deprecation.
- Ensure uniform API security, traffic management, and quota enforcement across services.
- Offer self-service options for teams to register and manage their API integrations.
Security & Compliance:
- Develop and uphold best practices for API security, incorporating OAuth2, OpenID Connect, two-factor authentication (2FA), and SAML.
- Ensure adherence to industry standards for security (e.g., GDPR, SOC2, and enterprise security regulations).
- Secure API traffic through mTLS encryption, request validation, and access control measures.
Collaboration & Documentation:
- Collaborate closely with developers, DevOps, security, and product teams to align API architecture with business objectives.
- Document API configurations, authentication workflows, and security protocols for internal reference.
- Provide technical assistance and training to teams on best practices for API management, authentication, and security.
Skills & Qualifications:
Technical Skills:
- Expertise in C# and .NET technologies (ASP.NETCore, Web API).
- Significant experience with Auth0 , encompassing user management, MFA, and social login integrations.
- Proficiency in API gateways (Kong, Apigee, Tyk, or Istio) and API security frameworks.
- Familiarity with OAuth2 and OpenID Connect , JWT authentication, and claims-based authorization.
- Knowledge of IAM and RBAC.
- Understanding of RESTful API design, microservices, and cloud-native architectures.
- Strong familiarity with New Relic for monitoring API observability and performance.
- Hands-on experience with GCP, Azure, and Kubernetes based API deployments.
Experience:
- Over 6 years of experience in API management, identity management, and security.
- Demonstrable experience integrating Auth0 with .NET applications and API gateways.
- Solid background in multi-tenant API architectures and developer portal administration.
Desired Qualifications:
- Experience with Azure Active Directory or similar IAM solutions.
- Knowledge of CI/CD processes for API deployments.
- Experience in Agile development methodologies.
Benefits
We Offer- Fantastic working environment built on the principles of lean and self organisation;
- Fun, happy and politics-free work culture;
- Competitive salaries and benefits.
At Mindera we use technology to build products we are proud of, with people we love.
Software Engineering Applications, including Web and Mobile, are at the core of what we do at Mindera.
We partner with our clients, to understand their product and deliver high performance, resilient and scalable software systems that create an impact in their users and businesses across the world.
You get to work with a bunch of great people, where the whole team owns the project together.
Our culture reflects our lean and self-organisation attitude. We encourage our colleagues to take risks, make decisions, work in a collaborative way and talk to everyone to enhance communication.
We are proud of our work and we love to learn all and everything while navigating through an Agile, Lean and collaborative environment.
Check out our Blogand our Handbook!
Our offices are located: Porto, Portugal | Aveiro, Portugal | Coimbra, Portugal | Leicester, UK | San Diego, USA | San Francisco, USA | Chennai, India | Bengaluru, India | Cluj-Napoca, Romania
Key skill Required
- Architecture
- API
- Azure
- CI/CD
- Access Control
- Active Directory
- Analysis
- API
- API Design
- API Management
- Api Security
- Authentication
- Authorization
- Azure Active Directory
- Business Objectives
- Cache
- Caching
- Collaboration
- Collaborative Environment
- Communication
- Compliance
- Design
- Development
- Documentation
- Encourage
- Enforcement
- Enterprise Security
- Facilitate
- Governance
- Identity Management
- Implementation
- Industry Standards
- Integration
- Issue Resolution
- Kubernetes
- Management
- Microservices
- Onboarding
- OpenID Connect
- Optimization
- Performance Analysis
- RESTful API
- RESTful API design
- Security
- Service Mesh
- Software Engineering
- Technical Assistance
- Traffic Management
- Training
- User Management
- Validation
- Versioning
- Web API
- Working Environment
