API Standards & Compliance Lead
Genesis10
Columbus, OH
Apply
JOB DETAILS
SALARY
$80–$100 Per Hour
JOB TYPE
Temporary, Contractor, Full-time
SKILLS
Amazon Web Services (AWS), Application Programming Interface (API), Automation, Banking Services, Behavioral Health, Best Practices, Cataloguing, Change Management, Cloud Architecture, Cloud Computing, Communication Skills, Continuous Deployment/Delivery, Continuous Improvement, Continuous Integration, Diversity, Documentation, Documentation Standards, Enterprise Architecture, Enterprise Protection, GCP (Good Clinical Practices), GraphQL, HIPAA (Health Insurance Portability and Accountability Act), Hospital, ISO (International Organization for Standardization), Industry Standards, Industry/Trade Analysis, Leadership, Life Insurance, Machine Tool, Microsoft Windows Azure, OAuth, Onboarding, Performance Metrics, Policy Development, Procedure Development, Process Improvement, REST (Representational State Transfer), Regulations, Regulatory Compliance, Regulatory Requirements, Risk, Risk Management, SWAGGER OAS, Security Architecture, Security Compliance, Security Infrastructure, Software Development, Standards Development, Storytelling, Technical Writing, Traffic Shaping, U.S. National Institute of Standards and Technology (NIST), Writing Skills
LOCATION
Columbus, OH
POSTED
8 days ago
Compensation: $60.00-75.00/HR W2
Description:
As the API Standards & Compliance Lead, you will define, implement, and enforce enterprise-wide API governance frameworks that ensure consistency, security, and scalability across all APIs. This strategic role focuses on establishing API design standards, lifecycle governance, and compliance policies aligned with industry best practices and regulatory requirements. You will partner closely with Enterprise Architecture, Security, Platform Engineering, and Developer Experience teams to advance an API-first strategy and enable seamless integration across the enterprise.
You will shape our API strategy by balancing innovation with risk management—creating clear standards, operating models, and guardrails for API design, onboarding, publishing, versioning, and retirement. This role emphasizes policy, architecture, enablement, and oversight rather than hands-on software development.
Responsibilities:
- Define and maintain enterprise-wide API design and governance policies aligned with architecture principles and industry standards (OpenAPI, REST, GraphQL).
- Establish naming conventions, versioning guidelines, backward compatibility expectations, deprecation/retirement policies, and documentation standards.
- Run the API Governance Board (reviews, approvals, waivers) and maintain the governance operating model and RACI.
- Author and maintain reference architecture, standards playbooks, and reusable policy templates.
- Design and oversee API onboarding workflows via the Developer Portal, ensuring proper documentation, cataloging, and discoverability.
- Define governance processes integrated with Apigee X for publishing, runtime policies (e.g., quotas, rate limiting), and analytics.
- Ensure consistent use of API products, proxies, and catalogs; promote high-quality API definitions and reusability.
- Implement governance for security patterns (OAuth2, JWT, JWKS, mTLS) using Apigee X and Ping Identity.
- Align APIs to regulatory requirements (e.g., Open Banking, PSD2, HIPAA, GDPR) and enterprise security standards.
- Partner with Risk, Compliance, and Security Engineering to define control objectives, evidence, and auditability (e.g., NIST, ISO 27001, SOC 2).
- Define and track governance KPIs (e.g., % APIs compliant, time-to-approve, policy adoption rates, security defect trends).
- Use Apigee Analytics and GCP monitoring to identify gaps and refine standards based on data insights and evolving business needs.
- Conduct periodic maturity assessments; publish roadmaps and quarterly updates to stakeholders.
- Establish controls and evidence for audits (design-time and runtime), including conformity checks against policy and standards.
- Coordinate remediation plans for non-compliant APIs; manage waivers/exceptions with clear time-bound conditions.
- Partner with platform teams to integrate policy-as-code checks (linting, contract validation, auth enforcement) into CI/CD.
- Evaluate governance tooling (spec linters, catalog quality checks, portal workflows) to automate compliance wherever feasible.
- 10 years in IT, including strong API development/governance experience.
- 5 years in API governance or platform leadership roles (enterprise scale).
- Deep familiarity with OpenAPI/Swagger, REST fundamentals, GraphQL design considerations, and API lifecycle management.
- Hands-on experience with security standards (OAuth2, JWT, JWKS, mTLS) and regulatory frameworks (Open Banking/PSD2, HIPAA, GDPR).
- Experience with Apigee X on GCP (or similar API management platforms like Kong, MuleSoft, AWS API Gateway, Azure APIM) from a governance/architecture perspective.
- Demonstrated ability to write clear policies, standards, and procedures; facilitate governance forums; drive alignment across stakeholders.
- Strong communication, stakeholder management, and change management skills.
- Strategic thinking and policy design
- Enterprise architecture alignment
- Risk and compliance mindset
- Stakeholder facilitation and influence
- Data-driven continuous improvement
- Clear, concise technical writing and storytelling
Preferred Qualifications
- GCP certifications (e.g., Professional Cloud Architect); Apigee certifications a plus.
- Experience with Ping Identity integration and enterprise IAM.
- Familiarity with GCP services (Cloud Armor, IAM, VPC networking) and platform security controls.
- Background in DevSecOps, CI/CD automation, and policy-as-code for API compliance.
- Experience improving API portals, catalogs, and developer experience, including analytics-driven enhancements.
If you have the described qualifications and are interested in this exciting opportunity, please apply!
About Genesis10:
Ranked a Top Staffing Firm in the U.S. by Staffing Industry Analysts for six consecutive years, Genesis10 puts thousands of consultants and employees to work across the United States every year in contract, contract-for-hire, and permanent placement roles. With more than 300 active clients, Genesis10 provides access to many of the Fortune 100 firms and a variety of mid-market organizations across the full spectrum of industry verticals.
For contract roles, Genesis10 offers the benefits listed below. If this is a perm-placement opportunity, our recruiter can talk you through the unique benefits offered for that particular client.
Benefits of Working with Genesis10:
- Access to hundreds of clients, most who have been working with Genesis10 for 5-20 years.
- The opportunity to have a career-home in Genesis10; many of our consultants have been working exclusively with Genesis10 for years.
- Access to an experienced, caring recruiting team (more than 7 years of experience, on average.)
- Behavioral Health Platform
- Medical, Dental, Vision
- Health Savings Account
- Voluntary Hospital Indemnity (Critical Illness & Accident)
- Voluntary Term Life Insurance
- 401K
- Sick Pay (for applicable states/municipalities)
- Commuter Benefits (Dallas, NYC, SF)
Genesis10 is an Equal Opportunity Employer. Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
#DIG10-OH
#iNDGEN10
About the Company
G
Genesis10
Genesis10 is an award-winning, New York-based staffing firm that recruits qualified technology and business professionals for contract, contract-to-hire, and permanent placement roles.
Our team of experienced recruiters can help you find the ideal job to help your build your career. We care about people. We care about you.
COMPANY SIZE
2,000 to 2,499 employeesINDUSTRY
Staffing/Employment Agencies
FOUNDED
1999
WEBSITE
https://www.genesis10.com