API Security Engineer

Role: IBM DataPower Developer / Administrator

Experience: 4yrs+

Location: Hyderabad,Noida

Must Have:

• Hands-on with IBM DataPower gateway components: MPGW, WSP, FSH, Log Targets. • Experience with AAA policy (authentication/authorization/audit). • Certificates/SSL/TLS, encryption/crypto configuration and lifecycle. • XSLT development, strong in XML, schemas, transformations. • Sound knowledge of SOA, Web services, SOAP, WSDL, REST patterns. • Practical exposure to XI52 device (mandatory).

Good to Have:

• Working knowledge of XB50/52 and XC10. • DevOps/CI-CD exposure (Jenkins/Git, pipelines for DataPower deployments). • API security (OAuth/OIDC), rate limiting, throttling.

Responsibilities:

• Design, develop, configure, and maintain DataPower services (MPGW, WSP, FSH). • Implement AAA policies, security profiles, certificates, SSL/TLS, and crypto objects. • Build XSLT-based transformations, message enrichment, and protocol mediation. • Set up log targets, monitoring, and troubleshoot high-availability integrations. • Collaborate with cross-functional teams to gather requirements and deliver robust, secure solutions. • Participate in CI/CD enablement for DataPower artifacts and environment promotions.