Product Manager – API & Identity/Access Management

The Product Manager – API & Identity/Access Management owns two foundational platform capabilities at ENSEK: how APIs are designed, governed, and consumed, and how identity, permissions, and auditing are managed across the platform, including for AI agents.

This role ensures ENSEK’s APIs are consistent, discoverable, and reliable for internal teams, customers, brokers, and third parties, while also evolving identity and access management (IAM) to meet growing security and regulatory needs. You’ll work closely with engineering, security, and commercial teams to make sure APIs and IAM act as enablers of product velocity, not friction points. This is a platform‑level product role, focused on standards, governance, and scalability rather than individual feature delivery.

Key Accountabilities & Responsibilities

• Own the strategy, vision and roadmap for API as a product, establishing consistent frameworks for API definition, versioning, documentation and lifecycle management across three API tiers: internal domain APIs, internal cross-NSEC APIs, and external customer/broker/third-party APIs.

• Define and drive adoption of API governance standards, ensuring all teams building APIs follow consistent patterns that improve developer experience, reduce integration burden, and enable reliable external commercialisation of ENSEK's platform capabilities.

• Own the identity and access management (IAM) product roadmap, expanding existing IAM capabilities to encompass AI agents as first-class principals — defining how agents authenticate, what permissions they hold, and how their actions are audited.

• Rationalise the current API estate — cataloguing existing endpoints, identifying inconsistencies, and building a prioritised plan to standardise management approaches without disrupting live integrations.

• Represent the needs of external API consumers (customers, brokers, third parties) in internal discussions, using research and data to advocate for developer-friendly API design and clear contractual guarantees.

• Build long-term relationships with commercial, engineering and security stakeholders, influencing API and IAM strategy across domains and aligning teams around shared standards.

• Create and maintain PRDs and specifications for API management tooling and IAM capabilities, leveraging AI to accelerate documentation and using data to drive continuous improvement.

Key Outcomes

• Consistent API governance framework adopted across all three API tiers (internal domain, cross-NSEC, external), with clear standards for definition, versioning and lifecycle management.

• External API proposition strengthened — customers, brokers and third parties experience reliable, well-documented and consistently managed integrations.

• IAM capabilities extended to support AI agents as principals, with authentication, authorisation and auditing requirements defined and road mapped.

• Auditing framework for agentic systems live, providing full traceability of agent actions across the platform.

• Defined and tracked KPIs for API health, adoption and IAM coverage, with regular data-driven reviews shared with stakeholders.