About the Role
Join a high-performing telecom engineering environment as a Senior CIAM Developer, responsible for building and evolving a large-scale Customer Identity & Access Management (CIAM) platform.
In this role, you will architect and drive the end-to-end development of the identity ecosystem with a strong security-first mindset. You will work across Channels and Backend-for-Frontend (BFF) layers, ensuring seamless, scalable, and privacy-compliant access management for millions of users.
This position offers deep exposure to modern CIAM platforms, multi-vendor telecom environments, and enterprise-grade Agile and DevOps practices.
Key Responsibilities
Identity Lifecycle & Authentication
- Design, develop, and maintain secure customer registration, login, and self-service password reset journeys
- Implement progressive profiling to collect user data with minimal friction
- Lead the shift from traditional password-based authentication to passwordless and modern authentication standards
Protocols & Standards
- Implement, integrate, and troubleshoot industry-standard identity protocols:
- OAuth 2.0
- OpenID Connect (OIDC)
- SAML 2.0
- JWT
System & Platform Integration
- Develop and maintain integrations between the CIAM platform (e.g., Microsoft Entra External ID) and:
- Web and mobile applications
- BFF layers
- Microservices ecosystems
API & Access Security
- Design, secure, and document REST APIs and SDKs enabling safe consumption of identity services
- Enforce Role-Based Access Control (RBAC) and fine-grained authorization through scopes, claims, and token validation
Security, Privacy & Compliance
- Ensure full compliance with GDPR and local privacy regulations
- Apply Privacy by Design principles and consent management
- Implement defenses against common web security threats (OWASP Top 10)
- Incorporate AI-driven risk signals, bot detection, and adaptive MFA where applicable
Required Experience & Skills
Must Have
- Extensive experience with CIAM platforms, including solutions such as BankID and Microsoft Entra External ID
- Deep expertise in identity and security protocols: OAuth2, OIDC, SAML 2.0, JWT
- Strong full-stack development expertise using:
- Backend: Golang, Kotlin, Java (Spring Boot), Node.js / TypeScript
- Frontend: React with secure token handling and state management
- Experience with relational databases (PostgreSQL, Oracle) and/or directory services (LDAP, SCIM)
- Solid understanding of web security concepts: XSS, CSRF, CORS, OWASP
- Hands-on experience with Docker and Kubernetes for deploying identity services
Good to Have
- Telecom industry experience
- Experience providing L3 support, conducting Root Cause Analysis (RCA), and debugging production authentication issues
Success Metrics & Role Impact
- Frictionless Security: Improved sign-up and login conversion through passwordless and social authentication
- Zero-Breach Mindset: Strong defense against Account Takeover (ATO) attacks and successful security audits
- Innovation Leadership: Driving the migration from legacy identity solutions to passkeys and AI-based risk authentication
- Operational Excellence: Reduced onboarding time for new applications integrating with the CIAM platform
What You’ll Gain
- Exposure to large-scale telecom-grade identity platforms
- Ownership of security-critical systems used by millions of customers
- Collaboration with global, cross-functional engineering teams
- Continuous learning through certifications, modern tooling, and complex identity challenges
- A high-impact role shaping the future of secure digital access
