About the Role Our Gen AI platform uses an API Gateway as the central integration point for all services, including AI agents, third-party APIs, and internal microservices. While Kong API Gateway is the primary platform used within the environment, we welcome candidates with strong experience in other enterprise APIM platforms (e.g., Apigee, Mule Soft, Azure APIM, AWS API Gateway, WSO2, etc.). As our APIM Engineer, you will own the design, deployment, and operation of the API management platform, ensuring high availability, security, and optimal performance for enterprise workloads, with Kong experience considered a strong advantage.

Key Responsibilities Design, deploy, and operate Kong API Gateway (v3.9.x) Manage API routing using Kubernetes Gateway API (HTTPRoute, Gateway, Reference Grant) Design and implement API routing strategies for multi-tenant use cases Configure and maintain Kong plugins (key-auth, rate-limiting, request-transformer, session, ACL, JWT, prometheus) Build and maintain Helm charts and Terraform configurations for multi-environment deployment Build abstraction layer for 3rd party APIs (Salesforce / CRM Systems, Journey Analytics Systems, Microsoft Graph, Eleven Labs) Implement request/response transformation and protocol translation Configure circuit breakers, retry policies, and failover strategies Establish API versioning and deprecation policies Configure and troubleshoot Kubernetes Network Policies for service isolation Manage GCP services: Secret Manager, Cloud Armor WAF, Certificate Manager, Workload Identity, IAPMaintain observability stack: Prometheus metrics, Google Managed Prometheus, Cloud Logging/Monitoring Document API standards and onboarding guides for use case teams Support LLM provider integration with caching and cost optimisation
Tech stack:API Gateway: Kong 3.9.x Container Orchestration: Kubernetes (GKE Autopilot), Gateway API v1IaC: Terraform 1.7+, Helm 3Git Ops: Argo CDCI/CD: Git Hub Actions Cloud: GCP (GKE, Secret Manager, Cloud Armor, Certificate Manager, IAP, Workload Identity, GMP) Observability: Prometheus, Google Managed Prometheus, Cloud Logging Security: ESO, Network Policies, m TLS, Trivy Languages: YAML, Bash, JSON, Lua (for custom plugins) Workflow: Git Flow
Required Skills(Candidates with strong experience in any enterprise APIM platform are encouraged to apply. Kong expertise is highly preferred.)4+ years experience with API gateway such as Istio, Cilium,Envoy (kong is preferable) Can explain and deploy pods, services, deployments, namespaces, network policies, CRDs. Has debugged production K8s issues. Proficiency in Kong plugin configuration and custom plugin development (Lua) Strong knowledge of API security patterns (OAuth 2.0, API keys, JWT validation) Can read/write Helm charts, understand values overrides, template syntax Has written Terraform modules, managed state, done plan/apply cycles or equivalent IaCHas built or maintained Git Hub Actions, Git Lab CI, or Jenkins pipelines Understanding of REST API design principles and Open API specifications Familiarity with service mesh concepts and ingress controllers Cloud provider experience GCP preferred; AWS/Azure transferable if strong
Desirable Skills Knowledge of declarative configuration and Git Ops workflows GKE Autopilot Has specific constraints (no Daemon Sets, enforced resource requests) Background in CRM and enterprise application integration Experience with Kong Enterprise features (Dev Portal, Analytics) Prometheus / Prom QLLua programming