Architect the security layer for our API Gateway (e.g., Kong, Apigee, AWS Gateway). Define global policies for Rate Limiting, Throttling, and Authorization to prevent BOLA/IDOR attacks.
Design secure integration patterns for our third-party partners (Fintechs, Credit Bureaus, Payment Processors) to ensure their insecurities do not become our breaches.
Define how our internal services trust each other. Move from Network Trust to Cryptographic Trust using mTLS and Service-to-Service authentication.
Own the architecture for Customer Identity (CIAM). Design flows for Biometric Binding, Adaptive MFA, and Step-Up Authentication for high-value transactions.
Define standards for OAuth 2.0 and OpenID Connect (OIDC). Ensure we use Financial-grade API (FAPI) standards for token i...