Senior APIM Architect

JLL empowers you to shape a brighter way.  

Our people at JLL are shaping the future of real estate for a better world by combining world class services, advisory and technology for our clients. We are committed to hiring the best, most talented people and empowering them to thrive, grow meaningful careers and to find a place where they belong.  Whether you’ve got deep experience in commercial real estate, skilled trades or technology, or you’re looking to apply your relevant experience to a new industry, join our team as we help shape a brighter way forward.

Position Overview

The APIM (API Management) Architect is responsible for designing, implementing, and governing enterprise-wide API management strategies across JLL's multi-cloud environment, with a primary focus on Microsoft Azure API Management. This role requires deep technical expertise in Azure APIM and the broader Azure ecosystem, along with knowledge of AWS and GCP services to enable secure, scalable, and efficient integration across JLL's digital landscape. The architect will lead the development of API standards, oversee Azure APIM platform architecture, and collaborate with stakeholders to drive cloud-native digital transformation initiatives within JLL's technology environment.

Key Responsibilities

Azure APIM Architecture & Design

Design and implement comprehensive Azure API Management architectures that align with enterprise cloud strategy and business objectives. Develop advanced configurations for Azure APIM including multi-region deployments, virtual network integration, private endpoints, and hybrid connectivity scenarios. Create sophisticated API policies using Azure APIM policy expressions for request/response transformation, authentication, caching, and traffic management. Design integration patterns connecting Azure APIM with Azure services including App Services, Function Apps, Logic Apps, Azure Kubernetes Service, and Service Bus. Architect solutions for Azure APIM developer portals, including customization, branding, and self-service API onboarding experiences. Design API security architectures integrating Akamai WAF with Azure APIM for comprehensive threat protection and traffic management.

Multi-Cloud API Management Strategy

Design and implement API management strategies that span Azure, AWS, and GCP environments while maintaining consistent governance and security standards. Architect integration patterns between Azure APIM and AWS services (API Gateway, Lambda, ECS, SQS, SNS) for hybrid cloud scenarios. Design connectivity solutions between Azure APIM and GCP services ensuring seamless cross-cloud integration. Develop cloud-agnostic API standards and design patterns that can be consistently applied across Azure, AWS, and GCP. Create routing and orchestration strategies for APIs that consume or expose services across multiple cloud platforms. Architect disaster recovery and failover strategies that leverage multiple cloud providers for high availability.

Identity and Security Integration

Design and implement OAuth 2.0 and OpenID Connect authentication flows integrating Azure APIM with Okta as the enterprise identity provider across all cloud platforms. Configure API authorization policies leveraging Okta groups, claims, and access tokens for fine-grained access control in multi-cloud scenarios. Implement JWT validation and token introspection patterns between Azure APIM, AWS API Gateway, GCP API Gateway, and Okta. Design multi-layered security architectures coordinating Azure APIM policies with Akamai WAF rules for defense-in-depth protection across cloud boundaries. Architect certificate-based authentication, API key management, and client credential flows within the Okta ecosystem for cross-cloud API access. Establish patterns for secure API-to-API communication.

Azure Cloud Integration

Design end-to-end integration architectures leveraging Azure APIM alongside Azure Integration Services (Logic Apps, Service Bus, Event Grid, Event Hubs). Configure Azure APIM integration with Azure Application Insights, Log Analytics, and Dat Dog Monitoring for comprehensive observability. Leverage GitHub Actions for CI/CD pipelines enabling automated deployment of APIs, policies, and APIM configurations using ARM templates, Bicep, or Terraform. Design artifact management workflows using Artifactory for storing API deployment packages, policy definitions, and configuration artifacts. Establish version control strategies in GitHub for API specifications, policy code, and infrastructure-as-code templates. Create automated testing frameworks within GitHub Actions for API validation, policy testing, and security scanning before deployment.

Multi-Platform API Management

Evaluate and provide guidance on alternative API management platforms including AWS API Gateway, GCP API Gateway, Apigee, MuleSoft, Kong, and other enterprise solutions. Design migration strategies and integration patterns when bridging Azure APIM with AWS API Gateway, GCP Apigee, or other API management systems in hybrid or multi-cloud environments. Apply cross-platform API management best practices and translate concepts between Azure APIM, AWS API Gateway, and GCP solutions. Assess trade-offs between API management platforms across different cloud providers to inform strategic technology decisions. Leverage knowledge of multiple platforms to design vendor-agnostic API standards and governance frameworks applicable across Azure, AWS, and GCP.

Technical Leadership & Governance

Provide expert guidance on Azure APIM best practices including versioning strategies, subscription management, and product organization. Define and enforce API governance frameworks covering security policies, lifecycle management, performance standards, and compliance requirements applicable across Azure, AWS, GCP, and multiple API platforms. Lead the design of authentication mechanisms integrating Okta for identity management, certificate-based authentication, and API key management across cloud environments. Establish standards for API documentation using OpenAPI specifications, developer portal content, and API testing strategies that apply consistently across clouds. Architect multi-environment strategies (dev, test, production) for Azure APIM with appropriate isolation and promotion workflows using GitHub and Artifactory, with patterns extensible to AWS and GCP.

Platform Management & Operations

Oversee the operation, optimization, and scaling of Azure APIM instances across multiple regions and environments. Design and implement disaster recovery and business continuity strategies for Azure APIM including backup/restore procedures and failover configurations spanning multiple cloud providers. Manage Azure APIM capacity planning, SKU selection, and cost optimization strategies with awareness of comparative costs across AWS and GCP alternatives. Implement comprehensive monitoring solutions using Application Insights, AWS CloudWatch, and GCP Cloud Monitoring to track API performance, availability, usage patterns, and health metrics across all cloud platforms. Ensure APIs meet SLA requirements through performance tuning, caching strategies, and traffic management policies coordinated with Akamai WAF configurations. Maintain artifact versioning and dependency management strategies in Artifactory for API deployment packages across multiple clouds.

DevOps and Automation

Design and implement GitOps workflows for API lifecycle management using GitHub repositories and GitHub Actions across Azure, AWS, and GCP. Create automated deployment pipelines that retrieve artifacts from Artifactory and deploy to Azure APIM, AWS API Gateway, and GCP environments. Establish branching strategies and pull request workflows for API policy changes and infrastructure updates spanning multiple clouds. Implement automated security scanning, policy validation, and compliance checks within GitHub Actions pipelines for multi-cloud deployments. Design rollback and recovery procedures integrated with GitHub version control and Artifactory artifact repositories across cloud platforms. Coordinate deployment strategies with Akamai WAF configuration management for synchronized security updates. Implement infrastructure-as-code using Terraform to maintain consistency across environments.

Collaboration & Stakeholder Management

Partner with enterprise architects, solution architects, and development teams to integrate Azure APIM strategy into broader multi-cloud initiatives. Engage with business stakeholders to understand requirements and translate them into technical API solutions leveraging optimal cloud platforms. Mentor and coach developers on Azure APIM policy development, API design patterns, GitHub workflows, and multi-cloud integration best practices. Collaborate with security and compliance teams to ensure Azure APIM implementations meet regulatory and organizational security standards within the Okta and Akamai security framework across all cloud platforms. Work with Azure, AWS, and GCP account teams and support organizations to resolve complex technical challenges and stay current on cloud roadmaps.

Innovation & Continuous Improvement

Research and implement emerging Azure APIM features and capabilities as they become available, along with innovations in AWS and GCP API services. Drive adoption of modern integration patterns including event-driven architectures, serverless computing, and container-based deployments across multiple clouds. Identify opportunities to consolidate legacy integration platforms onto Azure APIM or optimize cloud placement to reduce complexity and cost. Lead proof-of-concept initiatives to validate new Azure, AWS, and GCP services, integration approaches, and emerging API management technologies. Evaluate new capabilities in Okta, Akamai, and GitHub that enhance API management effectiveness across cloud platforms.

Required Qualifications

Education & Experience

Bachelor's degree in Computer Science, Information Technology, or related field; Master's degree preferred. 8+ years of experience in software development, cloud integration, or enterprise architecture roles. 5+ years of hands-on experience with Azure API Management (APIM) in production environments. Experience working in multi-cloud environments spanning at least two of the three major cloud providers (Azure, AWS, GCP). Proven track record of designing and implementing enterprise-scale API solutions across cloud platforms.

Technical Skills - Azure APIM Expertise (Required)

Expert-level knowledge of Azure API Management including advanced policy authoring, multi-region deployments, and virtual network integration. Deep hands-on experience with Azure APIM features including products, subscriptions, versions, revisions, backends, and named values. Proven ability to design and implement complex Azure APIM policies for transformation, security, caching, and rate limiting. Strong understanding of Azure APIM networking configurations including private endpoints, VPN integration, and ExpressRoute connectivity. Experience with Azure APIM developer portal customization and API publication workflows.

Multi-Cloud Platform Skills (Required)

Working knowledge of AWS services including API Gateway, Lambda, EKS, VPC, IAM, CloudWatch, and core compute/storage services. Working knowledge of GCP services. Understanding of cross-cloud networking including VPN, dedicated connections (ExpressRoute, Direct Connect, Cloud Interconnect), and hybrid connectivity. Experience designing API architectures that span multiple cloud providers. Familiarity with cloud-specific API gateway solutions (AWS API Gateway, GCP API Gateway/Apigee).

Identity and Security Platform Skills (Required)

Strong experience integrating API management platforms with Okta for authentication and authorization across multiple cloud environments. Knowledge of OAuth 2.0, OpenID Connect, and SAML implementations with Okta as the identity provider. Understanding of JWT validation, token introspection, and claims-based authorization using Okta. Experience with Akamai WAF or similar web application firewalls for API security and traffic management. Ability to design coordinated security policies across Azure APIM and Akamai WAF layers. Familiarity with secrets management across Azure Key Vault, AWS Secrets Manager, and GCP Secret Manager.

DevOps and Tooling Skills (Required)

Experience with GitHub for version control and collaborative development workflows. Proficiency in GitHub Actions for building CI/CD pipelines and automated deployments across multiple clouds. Knowledge of Artifactory or similar artifact repository managers for package management. Experience implementing infrastructure-as-code using Terraform for multi-cloud deployments, or cloud-specific tools (ARM templates/Bicep, CloudFormation, Deployment Manager). Understanding of GitOps principles and automated deployment strategies across cloud platforms.

Azure Platform Skills (Required)

Extensive experience with Azure Integration Services (Logic Apps, Service Bus, Event Grid, Event Hubs, Function Apps). Deep knowledge of Azure monitoring and observability tools (Application Insights, Log Analytics, Azure Monitor). Understanding of Azure networking concepts including VNets, NSGs, private endpoints, and Azure Front Door. Familiarity with Azure security services including Key Vault and Azure Policy.

API Management Platform Knowledge

Exposure to or experience with other API management platforms such as AWS API Gateway, GCP API Gateway, Apigee, MuleSoft, Kong, or Gravitee. Understanding of comparative strengths and architectural patterns across different API management solutions. Ability to translate concepts and best practices between Azure APIM and alternative platforms including AWS and GCP solutions. Knowledge of API gateway patterns and technologies in hybrid and multi-cloud scenarios.

General Technical Skills

Deep understanding of API design principles, RESTful architectures, and microservices patterns. Strong proficiency in API security standards including OAuth 2.0, OpenID Connect, JWT, and certificate-based authentication. Knowledge of multiple programming languages (.NET, Python, JavaScript) and their integration with cloud services. Understanding of container technologies (Docker, Kubernetes/AKS/EKS/GKE) and their integration with API management platforms. Experience with YAML and JSON for configuration and policy definition. Understanding of cloud networking concepts including VPCs, subnets, routing, and load balancing across multiple clouds.

Professional Competencies

Excellent analytical and problem-solving skills with ability to architect complex multi-cloud solutions. Strong communication skills with ability to explain technical concepts to non-technical stakeholders. Demonstrated leadership capability in guiding teams and influencing cloud architecture direction. Strategic thinking with ability to balance short-term delivery needs with long-term multi-cloud platform vision. Experience working in Agile environments and collaborating with cross-functional cloud teams. Ability to evaluate trade-offs between cloud providers and make data-driven architectural decisions.

Preferred Qualifications

Microsoft Azure certifications such as Azure Solutions Architect Expert, Azure Administrator Associate, or Azure Developer Associate. AWS certifications such as AWS Solutions Architect, AWS Developer Associate, or AWS Security Specialty. Experience with Azure APIM self-hosted gateway for hybrid and multi-cloud scenarios. Knowledge of Akamai API Gateway or Akamai API Security features. Experience with Terraform for multi-cloud infrastructure provisioning and management. Familiarity with API monetization strategies and developer ecosystem development. Experience in commercial real estate or professional services industry. Understanding of GraphQL, gRPC, or other modern API protocols and their implementation across cloud platforms. Experience leading API platform migrations or consolidation initiatives across cloud providers. Knowledge of FinOps principles and cloud cost optimization strategies.

Location:

Remote –Jalisco,MEX

If this job description resonates with you, we encourage you to apply even if you don’t meet all of the requirements.  We’re interested in getting to know you and what you bring to the table!

At JLL, we harness the power of artificial intelligence (AI) to efficiently accelerate meaningful connections between candidates and opportunities. Using AI capabilities, we analyze your application for relevant skills, experiences, and qualifications to generate valuable insights about how your unique profile aligns with the specific requirements of the role you're pursuing.

JLL Privacy Notice

Jones Lang LaSalle (JLL), together with its subsidiaries and affiliates, is a leading global provider of real estate and investment management services. We take our responsibility to protect the personal information provided to us seriously. Generally the personal information we collect from you are for the purposes of processing in connection with JLL’s recruitment process. We endeavour to keep your personal information secure with appropriate level of security and keep for as long as we need it for legitimate business or legal reasons. We will then delete it safely and securely.

For more information about how JLL processes your personal data, please view our Candidate Privacy Statement.

For additional details please see our career site pages for each country.

Jones Lang LaSalle (“JLL”) is an Equal Opportunity Employer and is committed to working with and providing reasonable accommodations to individuals with disabilities.  If you need a reasonable accommodation because of a disability for any part of the employment process – including the online application and/or overall selection process –  you may email us at HRSCLeaves@jll.com. This email is only to request an accommodation. Please direct any other general recruiting inquiries to our Contact Us page > I want to work for JLL.

Jones Lang LaSalle ("JLL") está comprometida a trabajar con personas con discapacidades y proporcionarles accesibilidad. Si necesita un ajuste razonable para cualquier parte del proceso de empleo – incluyendo la candidatura en línea y/o el proceso general de selección – puede enviarnos un correo electrónico a HRSCLeaves@jll.com. Este correo electrónico es solo para solicitar un ajuste razonable. Por favor, dirija cualquier otra consulta general de reclutamiento a nuestra página Contáctanos > Quiero trabajar para JLL.