Enterprise Architect

Description: 3-5 years implementation experience with Open Policy Agent (OPA) in large enterprise hybrid environment • Rego policy language • Code organization • Best practices for integration of external data sources • Entitlements for FGA • Policy Management • Best practices for code reuse, and developing and maintaining a library of policies • Policy lifecycle - storage, versioning, deployment, deprecation • Deployment • Pipeline automation with Github Actions and Terraform • Running OPA in k8s (AKS preferred) • Observability via integration with external tools (Dynatrace preferred) • Bundle management • OPA management via API • Web Assembly • Integration • k8s Admission Control • Terraform configuration validation • APIM/envoy/Kong ingress control • Security • Prevent unauthorized access to OPA API • Store secrets in Hashicorp Vault or Azure Key Vault • Ensure sensitive information is not leaked in logs or audit trails • Optimization • Identify and fix performance issues within OPA • Using OPA over gRPC • Implementation experience • Microservices • React Micro Front End • Managed web-based applications, e.g. Azure Powerapps • Middleware Skill/Experience/Education Mandatory Skills 3-5 years Strong Fine-Grained Authorization implementation experience with Open Policy Agent (OPA) in large enterprise hybrid environment. Desired Skills5+ years of experience in implementing fine-grained authorization using COTS products (such as PlainID, Okta, Sytra etc.) 8+ years of Strong experience with Identity (authN/Z) and Security 8+ years of experience with programming languages (Java, Python, Go, etc) and API design.