We are seeking an experienced and highly motivated Senior Staff Software Engineer (IC4) with a strong focus on security, authentication, and authorization. This role demands a deep understanding of modern authentication protocols, identity lifecycle management, and secure software development. You will play a critical role in building and scaling robust, cloud-native microservices with a security-first mindset.
Responsibilities: Security-Driven Design and Development- Architect and implement secure authentication and authorization mechanisms using OIDC, OAuth, SAML, JWT, and other modern frameworks.
- Apply encryption standards to secure data in transit and at rest.
- Secure microservice communication and deployments in public cloud environments.
- Design and implement strategies for user and service authentication/authorization, including social identity provider integrations and multi-factor authentication (MFA).
- Ensure proper scope management, token handling, and cookie security for APIs and web applications.
- Develop identity lifecycle solutions, including provisioning, governance, and deprovisioning.
- Design clean abstractions and API specifications focused on secure, scalable integrations.
- Develop polyglot microservices with robust session management, logging, and tracing.
- Contribute to the design of secure and high-performance distributed systems.
- Write efficient unit and integration tests to ensure system security and reliability.
- Leverage tools to automate security testing and integrate them into CI/CD pipelines.
- Use Kubernetes and other cloud-native tools to deploy secure, scalable microservices.
- Ensure SLAs for uptime, latency, and throughput across distributed environments.
- Participate in an on-call rotation for autonomous services to maintain operational excellence.
- Bachelor's Degree in Computer Science, Engineering, or a related field.
- 6+ years of software development experience with a focus on security and identity domains.
- Proven experience implementing secure authentication/authorization mechanisms using OIDC, OAuth, SAML, JWT, or other protocols.
- Expertise in securing microservices communications and deployments in public clouds (e.g., AWS, Azure, GCP).
- Strong grasp of web security protocols, including authentication headers, scopes, and cookies.
- Hands-on experience with encryption standards, key management, and secure token handling.
- Proficiency in Kubernetes and cloud-native deployment strategies.
- Strong experience with CI/CD pipelines and integrating security testing into deployment workflows.
- Proficiency in Java SE/Java EE, with solid knowledge of concurrency, collections, streams, and JVM tuning.
- Familiarity with microservices frameworks like JAX-RS.
- Polyglot programming skills, including Python and Node.js, are a plus.
- Experience with identity lifecycle management and governance.
- Knowledge of best practices for managing API security and implementing role-based access controls (RBAC).
- Collaborate on cutting-edge technologies in the security and identity domain.
- Work on projects that prioritise secure design and cloud-native scalability.
- Be part of a fast-paced, innovative environment with opportunities for growth and leadership.