IAM Software Engineer

Description

• Develop, test, document software components, libraries or services needed for authentication and authorization of users.
• Develop, document and communicate sample applications or code snippets to demonstrate and explain technical integration of authentication and authorization services within existing (legacy) or new applications.
• Configure, develop and document code extensions for off-the-shelf solutions such as access manager, authorization engine, API gateway, reverse proxy, directory service or custom components, in various languages depending on products features and APIs.
• Promote, develop and improve continuous integration and deployment of software releases with automation and configuration management.
• Communicate with IT staff to understand technical needs, integration issues, problems that clients (other projects and products) or users (internal and external) face when interacting with Digital Identity Fabric services.
• Follow technical documentation and installation/configuration guides to deploy products (commercial and open source)
• Configure and deploy services in Kubernetes platforms (Google Cloud Engine (GKE) and/or Microsoft Azure (AKS))
• Participate to squad team sprints elaboration, planning, execution and evaluation.
• Take ownership of backlog items and tasks assigned by the squad scrum.
• Prepare and participate to meetings/workshops, following up on deliverables/actions.
• Propose, present and validate solutions that objectively match best the expressed requirements including its limitations.
• Learn and apply (new) concepts, standards and development environments that are needed to best execute the assigned tasks.

• Forgerock Identity Management, Access Management and Directory Service.
• Standards: OAuth2, OIDC, SAML2, WebAuthn, X509 certificates.
• Scripting: Javascript, Typescript, Groovy, PowerShell.
• Software development: C#, .Net and/or Java, REST, JSON, YAML.
• UI development with SPA frameworks such as Vue.js or React.
• Data storage with LDAP, RDBMS (SQL), NoSQL.
• Authorization concepts: RBAC, ABAC, ReBAC.
• Web security concepts: HTTPS, cookies, CORS, Single Sign-On, MFA, etc.
• Usage of cryptographic concepts: symmetric and asymmetric keys, PKI, hash functions, keystores, etc.
• Experience in setup and integration of CIAM solutions.
• Forgerock Identity Management, Access Management and Directory Service.
• Cloud technology: Docker, Kubernetes, AKS or GKE, Skaffold, Helm, Kustomize.
• Git and DevOps concepts and usage.
• Migration from Azure B2C.

• pragmatic over dogmatic, doer over thinker
• positive attitude and constructive
• autonomous and resilient
• versatile, flexible and agile
• be passionate about continuously learning
• communicative and constructive
• must be able to work independently
• analytical skills in identifying problems and pointing out solutions
• able to document processes and architectures
• able to present/discuss (to technical audience) the proposed solutions
• language: English mandatory (French, Dutch and/or German is a plus)