IAM Platform Engineer

We are looking for a Senior IAM Platform Engineer to design, build, and scale enterprise-grade Identity & Access Management (IAM) systems. This role focuses on secure authentication, authorization, and federation across large-scale distributed environments. You will work on production IAM platforms, solving real-world challenges around SSO, MFA, identity federation, and access control, while ensuring high availability and security at scale., * Design and implement IAM solutions using platforms like ForgeRock, Okta, Keycloak, or PingFederate

• Build and manage authentication and authorization flows using OAuth 2.0, OpenID Connect, and SAML
• Develop and maintain SSO, MFA, and policy-based access control systems
• Integrate IAM solutions across multiple enterprise applications
• Troubleshoot and resolve IAM-related production issues (token failures, session management, federation issues, etc.)
• Collaborate with application and infrastructure teams to ensure secure system design

• Strong experience in Identity & Access Management (IAM) in production environments

• Hands-on experience with at least one: ForgeRock, Okta, Keycloak, or PingFederate

• Solid understanding of:

• OAuth 2.0

• OpenID Connect

• SAML 2.0

Experience with AWS and cloud-native architectures

Strong experience with Terraform

Backend development experience in Java (Spring Boot preferred), * Experience with Terraform Enterprise (TFE) or policy frameworks

• Exposure to Go or Python for automation
• Experience with Spinnaker or advanced CI/CD orchestration
• Understanding of IAM system scalability and failure handling, * Engineers who have worked on real-world IAM systems at scale
• Strong problem solvers who can debug complex authentication and authorization issues
• Ability to own systems end-to-end from design to production
• Comfortable working in large enterprise environments