API Lead - Alpharetta, GA

Role : API Lead

Location : Alpharetta, GA

Job Type : Contract

We are seeking a seasoned API Governance Architect to lead the design, implementation, and oversight of our enterprise-wide API governance strategy. This role ensures that all APIs are designed, built, and maintained in accordance with industry best practices, internal standards, and regulatory requirements. The ideal candidate will drive consistency, security, reusability, and discoverability of APIs across business units, enabling digital transformation and API-first initiatives.

Define and maintain enterprise API governance frameworks, policies, and best practices (e.g., versioning, naming conventions, design-first approach).

Establish and enforce standards for OpenAPI Specifications (OAS), API security (OAuth2, mTLS, DPoP), and documentation.

Champion the API lifecycle management process from design, approval, implementation, testing, to deprecation.

Collaborate with developers, architects, and product teams to review and approve API designs for technical and governance compliance.

Implement automated governance checks using tools like Spectral, Swagger Hub, Backstage, Postman, and Azure DevOps.

Promote contract-driven development, ensuring consistency between consumer expectations and provider implementation.

Define role-based ownership and review workflows (e.g., governance, InfoSec, platform, product).

Collaborate with InfoSec, Legal, and Compliance teams to enforce Security by Design and data protection principles (PII, PCI, PHI).

Enable observability into API adoption, risk scoring, and policy compliance via dashboards and metrics.

Provide technical leadership and training to internal teams on API standards, governance automation, and onboarding.

Bachelor s or Master s degree in Computer Science, Engineering, or related field.

7+ years in API architecture, design, and development.

3+ years specifically focused on API governance, security, or lifecycle management.

Expertise in OpenAPI Specification (OAS 3.0/3.1), REST, GraphQL, and AsyncAPI.

Deep understanding of OAuth2, OIDC, API Keys, JWT, and mTLS-based security enforcement.

Hands-on experience with API management platforms (e.g., Apigee, Axway, AWS API Gateway, Kong, MuleSoft, Azure API Management).

Proficiency with governance tools like Spectral, SwaggerHub, Backstage, or custom linters.

Familiarity with CI/CD pipelines (e.g., Azure DevOps, GitHub Actions) to automate governance workflows.

Strong documentation, stakeholder communication, and cross-functional collaboration skills.

Experience implementing federated governance models across business units or LOBs.

Exposure to developer portal customization and self-service API onboarding.

Experience in regulated industries (Finance, Healthcare, or Government).

Familiarity with API discovery platforms and catalog integration (e.g., internal API marketplaces).

Certifications in API security, cloud architecture, or relevant API platforms.