Senior CIAM Software Engineer

About the Role

The ideal candidate will have a deep understanding of identity standards such as OAuth 2.0, OIDC, SAML, and SCIM, as well as experience in designing and implementing CIAM systems. You will be responsible for developing backend APIs and services in Python and Kotlin, integrating CIAM platforms with internal systems, and owning secure authentication and account flows end to end.

What You Will Do

• Design, build, and operate core CIAM backend services that support customer registration, authentication, authorization, account lifecycle, and profile management for B2C and B2B platforms.
• Implement and extend identity standards such as OAuth 2.0, OIDC, SAML, and SCIM in code, ensuring correctness, scalability, and clean integration patterns.
• Develop backend APIs and services in Python and Kotlin that expose identity capabilities to web, mobile, and partner applications.
• Integrate CIAM platforms with internal systems, including user data stores, messaging, fraud signals, and downstream customer platforms.
• Own secure authentication and account flows end to end, including MFA, step-up authentication, device binding, consent, and adaptive authentication logic.
• Automate CIAM infrastructure and deployments using Infrastructure as Code and CI/CD pipelines, treating identity as a core platform service.
• Monitor, debug, and optimize CIAM services for performance, resilience, and abuse detection in high-scale environments.
• Collaborate with cross-functional teams to ensure seamless integration of CIAM capabilities.
• Participate in incident response and remediation efforts as needed.

What We Are Looking For

• Strong experience designing and implementing CIAM systems, with deep, hands-on knowledge of OAuth 2.0, OIDC, SAML, and SCIM beyond basic configuration.
• 5+ years of professional backend software engineering experience.
• Strong production experience in Python or a similar backend language.
• Experience designing APIs, automation frameworks, and distributed systems.
• Hands-on experience building and maintaining CI/CD pipelines.
• Experience with GitHub-based development workflows and Buildkite or similar build systems.
• Experience with cloud-native development, preferably AWS.
• Hands-on experience extending and integrating CIAM platforms such as Okta, Auth0, Ping Identity, ForgeRock, or Azure AD B2C using custom code, hooks, and APIs.

Nice to Have

• Familiarity with tools such as Cursor and other AI-augmented development environments.
• Experience with Infrastructure as Code and automation tools such as Terraform.
• Knowledge of access control models, token handling, encryption, MFA, and privacy by design.

Benefits and Perks

• Competitive salary and equity package.
• Opportunity to work with a talented team of engineers and contribute to the development of cutting-edge CIAM solutions.
• Flexible working hours and remote work options.
• Comprehensive health insurance and benefits package.
• Professional development opportunities and conference sponsorships.
• Access to the latest tools and technologies.
• Recognition and reward for outstanding performance.

• Ensure you have a strong understanding of CIAM systems and identity standards such as OAuth 2.0, OIDC, SAML, and SCIM.
• Showcase your experience in designing and implementing secure authentication and account flows.
• Be prepared to discuss your experience with cloud-native development, preferably AWS.
• Highlight your ability to work collaboratively with cross-functional teams.
• Demonstrate your knowledge of access control models, token handling, encryption, MFA, and privacy by design.
• Be prepared to provide examples of your experience with CI/CD pipelines and automation frameworks.