Key skills
GraphQLAIAgenticIAMOAuthOpenAPISaaS
About this role
Role Overview
- Own the strategy, vision and roadmap for API as a product, establishing consistent frameworks for API definition, versioning, documentation and lifecycle management across three API tiers: internal domain APIs, internal cross-NSEC APIs, and external customer/broker/third-party APIs.
- Define and drive adoption of API governance standards, ensuring all teams building APIs follow consistent patterns that improve developer experience, reduce integration burden, and enable reliable external commercialisation of ENSEK's platform capabilities.
- Own the identity and access management (IAM) product roadmap, expanding existing IAM capabilities to encompass AI agents as first-class principals — defining how agents authenticate, what permissions they hold, and how their actions are audited.
- Rationalise the current API estate — cataloguing existing endpoints, identifying inconsistencies, and building a prioritised plan to standardise management approaches without disrupting live integrations.
- Represent the needs of external API consumers (customers, brokers, third parties) in internal discussions, using research and data to advocate for developer-friendly API design and clear contractual guarantees.
- Build long-term relationships with commercial, engineering and security stakeholders, influencing API and IAM strategy across domains and aligning teams around shared standards.
- Create and maintain PRDs and specifications for API management tooling and IAM capabilities, leveraging AI to accelerate documentation and using data to drive continuous improvement.
Requirements
- Demonstrable experience owning and delivering platform or developer-facing product areas — ideally API management, developer portals, integration platforms or identity/access management.
- Strong understanding of API design principles (REST, GraphQL, OpenAPI), API lifecycle management, and developer experience best practices.
- Familiarity with identity and access management concepts including OAuth, OIDC, RBAC/ABAC patterns, and emerging agentic identity considerations.
- Ability to make autonomous, data-informed product decisions and communicate them clearly across technical and commercial audiences.
- Experience in evolving SaaS, platform, utility tech or API-first product environments is strongly advantageous.
- Understanding of security and compliance requirements for external API exposure and agentic systems is a plus.
Tech Stack
- GraphQL
Benefits
- 25 days’ holiday + bank holidays
- Option to buy or sell 5 extra annual leave days per year
- Vitality Health Insurance, including private healthcare, virtual GP access, mental‑health support and wellbeing perks (50% off gym memberships -Virgin Active, Nuffield, PureGym)
- Pension with 5% matched contribution
- Regular team‑wide and company‑wide events
- 2 volunteering days per year to give back
- Remote‑first working environment with offices in London and Nottingham