Identity Server Developer (IAM & Security)

OGGN Inc.
Remote

Apply Now

Job details

Qualifications

CI/CD
Authentication
Azure
ASP.NET Core
Computer Science
Kubernetes
DevOps
Encryption
CISSP
Java
Master's degree
PKI
Docker
Bachelor's
LDAP
APIs
ISO 27001
JSON
Python
Active Directory
Identity & access management

Full job description

Duration: 12 months (Extension possible)
Location: Remote

We are seeking an experienced Identity Server Developer to architect, develop, and maintain enterprise-grade Identity and Access Management (IAM) platform. You will be responsible for building secure, scalable authentication and authorization services that protect our global digital assets. This role requires deep expertise in OAuth 2.0, OpenID Connect (OIDC), and Multi-Factor Authentication (MFA).

Responsibilities

Architect & Develop: Design and implement scalable SSO solutions supporting OAuth 2.0, OIDC, and SAML 2.0 for both Identity Provider (IdP) and Service Provider (SP) roles.
MFA Implementation: Develop and manage secure authentication flows, including Multi-Factor Authentication (MFA), adaptive authentication, and passwordless flows (e.g., FIDO2/WebAuth).
Identity Server Management: Configure and extend IdentityServer (e.g., KeyCloak, Duende or IdentityServer4) for robust token management and session handling.
API Security: Secure microservices and APIs using JWT (JSON Web Tokens), OAuth scopes, and DPoP or mTLS for sender-constrained tokens.
Integration: Seamlessly integrate with external identity providers (Azure AD, Okta, Ping) and internal directories like LDAP/Active Directory.
Security & Compliance: Ensure all solutions adhere to industry standards and regulations like GDPR, SOC2, or ISO 27001.
Identity Lifecycle: Manage the full lifecycle of users, including provisioning, deprovisioning, and Role-Based Access Control (RBAC).

Requirements

Experience: Minimum 3+ years in software engineering with a focus on Identity and Access Management (IAM).
Core Protocols: Mastery of OAuth 2.0, OpenID Connect, and SAML 2.0.
Technical Stack: Proficiency in ASP.NET Core, Java, or Python for backend development.
Platforms: Hands-on experience with IdentityServer (KeyCloak, Duende), Okta, Azure AD (Entra ID), or ForgeRock.
Security Principles: Strong understanding of cryptography, PKI, certificate management, and secure token signing (RSA/ECDSA).
DevOps: Experience with CI/CD pipelines, Docker, and Kubernetes for cloud-native identity deployments.
Modern Auth: Experience with Zero Trust architecture and risk-based adaptive authentication.
Education: Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or a related field.
Assets: Certifications: CISSP, CIAM, Okta Certified Professional, or Microsoft Certified: Identity and Access Administrator.

Only candidates closely matching the requirement will be contacted for interview. Wishing you all the best in your job search.

Email your resume to [email protected]

Apply Now

Job seeker tools

Employer Tools

Browse

Stay Connected