Key skills
AWSAzureCloudDNSFirewallsGoogle Cloud PlatformKubernetesSOAPTerraformGCPGoogle CloudAPI GatewayOAuthJWTKeycloakOpenAPIApigeeLoad BalancingAgileCI/CDCommunicationNegotiationPresentation Skills
About this role
Role Overview
- We are seeking a Senior Solutions Architect to lead the design of the migration strategy and architecture for moving an API Management platform across multicloud environments.
- The role will initially focus on migrating the API gateway from Azure API Management to Google Cloud Apigee, preserving existing backend services in this first phase.
- Document the current API and integration architecture.
- Map APIs, consumers, backends, policies, products, certificates, credentials and dependencies.
- Assess the current Azure API Management configuration.
- Define the target architecture for adopting Apigee.
- Develop the migration and coexistence strategy between gateways.
- Create an equivalence matrix between Azure API Management and Apigee resources and policies.
- Identify policies that can be migrated directly, adapted or reimplemented.
- Design communication flows between Azure, GCP and, when necessary, AWS environments.
- Evaluate private connectivity between clouds, including routing, DNS, firewalls, load balancers and return paths.
- Define the API authentication and authorization model.
- Assess integrations with Keycloak, OAuth 2.0, OpenID Connect, JWT, JWKS and mTLS.
- Define standards for API publication, versioning and lifecycle management.
- Define reusable standards for security, transformation, quotas, rate limiting and error handling.
- Establish observability requirements, monitoring, logging, tracing and request correlation.
- Define the automation, CI/CD and Infrastructure as Code strategy.
- Select candidate APIs for the MVP.
- Define the technical success and acceptance criteria for the MVP.
- Provide technical support for implementation, testing and validation of the solution.
- Develop cutover, rollback and wave-based migration strategies.
- Support the construction of the platform evolution roadmap.
- Act as the primary technical authority for the initiative.
- Ensure the proposed architecture is secure, scalable, resilient and operationally sustainable.
- Ensure API contracts are preserved during the migration process.
- Assess latency, availability and performance impacts resulting from cross-cloud communication.
- Ensure functional and non-functional requirements are considered in the solution design.
- Conduct technical workshops with integration, cloud, networking, security, identity, DevOps and operations teams.
- Facilitate technical decisions across different areas and vendors.
- Record and justify key architectural decisions.
- Identify risks, dependencies, constraints and migration-critical points.
- Support effort and complexity estimation for APIs.
- Validate designs, configurations, components and implemented patterns.
- Guide engineers and developers during MVP development.
- Ensure the defined model can be reused in subsequent migration waves.
- Support preparation of development, staging and production environments.
- Ensure rollback mechanisms are in place prior to production rollout.
- Support knowledge transfer to the teams responsible for platform support.
Requirements
- Proven experience as a Solutions Architect, Integration Architect or API Architect.
- Hands-on experience with API Management platforms.
- Advanced knowledge of Azure API Management.
- Advanced knowledge of Google Cloud Apigee, preferably Apigee X.
- Experience designing multicloud architectures.
- Experience integrating Azure and Google Cloud Platform.
- Knowledge of synchronous integration architectures and API-led design.
- Strong understanding of REST, HTTP, JSON and OpenAPI.
- Knowledge of SOAP and XML for assessing legacy integrations.
- Experience with OAuth 2.0, OpenID Connect, JWT, JWKS and mTLS.
- Familiarity with identity and access management platforms, preferably Keycloak.
- Experience with security policies, quotas, rate limiting, transformation and API routing.
- Knowledge of Azure Kubernetes Service and Google Kubernetes Engine.
- Knowledge of Kubernetes, ingress controllers, service discovery and load balancing.
- Experience with networking in Azure and GCP.
- Knowledge of VPC, VNet, peering, Private Service Connect, VPN, Interconnect, ExpressRoute, BGP, DNS and firewalls.
- Experience with continuous integration and continuous delivery.
- Knowledge of Infrastructure as Code, preferably Terraform.
- Experience with API observability: metrics, logs, tracing and alerting.
- Knowledge of non-functional requirements including availability, resilience, latency, capacity and security.
- Ability to produce diagrams, architecture documentation and decision records.
- Ability to lead technical discussions with multidisciplinary teams.
- Strong communication, negotiation and presentation skills for both technical and executive audiences.
Tech Stack
- AWS
- Azure
- Cloud
- DNS
- Firewalls
- Google Cloud Platform
- Kubernetes
- SOAP
- Terraform
Benefits
- Meal allowance
- Food allowance
- Home office allowance
- Health insurance
- Dental insurance
- Life insurance
- Discount partnerships
- Agreements with businesses and educational institutions
- Recurring agile training
- Alura licenses