Information Security Engineer

This is a fully remote position, open to applicants in Texas.

📋 Description

• Implement and support integrations for federated authentication and authorization utilizing OpenID Connect, OAuth 2.1, and SAML 2.0.

• Configure and maintain identity integrations for web, mobile, and API-based applications, which includes client registrations, trust relationships, token claims, scopes, attribute mappings, certificates, signing keys, and rotation processes.

• Assist in the modernization of applications by transitioning legacy authentication methods to standards-based federation.

• Facilitate token-based access for APIs and distributed services.

• Support decoupled identity patterns that align with modern application architecture.

• Develop and uphold CI/CD pipelines for identity configurations and integrations, encompassing source control of identity artifacts, automated deployments, and promotions across environments, as well as validation and rollback of identity modifications.

• Apply infrastructure-as-code or configuration-as-code methodologies to identity platforms whenever feasible.

• Collaborate with application teams to implement identity integrations in accordance with established patterns and standards.

• Diagnose intricate authentication and authorization challenges using logs, HTTP traces, and token inspection.

• Assist with operational identity tasks, including incident response, certificate renewal, and configuration upkeep.

• Contribute significantly to technical documentation, runbooks, and implementation guides.

⛳️ Requirements

• Over 7 years of experience in IAM, application security, or identity-centric engineering roles.

• Extensive hands-on experience with OpenID Connect and OAuth 2.1 flows and grant types.

• Proficiency in SAML 2.0 federation configurations.

• Expertise in JWT signing, encryption, and validation.

• Practical experience in integrating identity with contemporary web and API frameworks.

• Experience in implementing CI/CD pipelines and Git-based workflows.

• Strong automation capabilities utilizing scripting or pipeline tools.

• Proven track record of safely delivering identity changes in regulated or security-sensitive environments.

• Excellent troubleshooting abilities at both the protocol and application integration levels.

🏝️ Benefits

• Generous, flexible vacation policy.

• Educational assistance.

• Comprehensive leadership and technical development academies.