Principal Digital Security Architect

Key Responsibilities

1. API & Ecosystem Architecture

• Architect the security layer for our API Gateway (e.g., Kong, Apigee, AWS Gateway). Define global policies for Rate Limiting, Throttling, and Authorization to prevent BOLA/IDOR attacks.

• Design secure integration patterns for our third-party partners (Fintechs, Credit Bureaus, Payment Processors) to ensure their insecurities do not become our breaches.

• Define how our internal services trust each other. Move from Network Trust to Cryptographic Trust using mTLS and Service-to-Service authentication.

2. Identity & Access Management (CIAM)

• Own the architecture for Customer Identity (CIAM). Design flows for Biometric Binding, Adaptive MFA, and Step-Up Authentication for high-value transactions.

• Define standards for OAuth 2.0 and OpenID Connect (OIDC). Ensure we use Financial-grade API (FAPI) standards for token i...