Lead CIAM Engineer (41209)

« !backbutton
Praha
1/2026
!request_type_other
60%
150 000 CZK

I am looking for an experienced Lead CIAM Engineer who wants to contribute to the development and delivery of high-quality software solutions. You will collaborate with product managers, designers, and other engineers to define requirements, design strategies, and ensure seamless integration. I expect hands-on experience with programming in JavaScript or Java and designing scalable IAM APIs. Knowledge of SSO, OAuth2, OIDC, PKI, PSD2 SCA, and possession-based authentication is essential.

🚀 Projekt
- development and delivery of high-quality software solutions by using industry aligned programming languages, frameworks, and tools. Ensuring that code is scalable, maintainable, and optimized for performance
- cross-functional collaboration with product managers, designers, and other engineers to define software requirements, devise solution strategies, and ensure seamless integration and alignment with business objectives
- collaboration with peers, participate in code reviews, and promote a culture of code quality and knowledge sharing
- staying informed of industry technology trends and innovations and actively contribute to the organization’s technology communities to foster a culture of technical excellence and growth
- adherence to secure coding practices to mitigate vulnerabilities, protect sensitive data, and ensure secure software solutions
- implementation of effective unit testing practices to ensure proper code design, readability, and reliability

🎯 Skills 
- strong hands-on IAM engineer background with broad expertise across the IAM domain
- expertise with single sign on, OAuth2, OIDC, PKI, PSD2 SCA knowledge and possession-based authentication
- strong hands-on coding across either JavaScript or Java, and you must be comfortable in designing extensible IAM APIs for seamless integration with external and internal applications

💡 Nice to have
- strong working knowledge of implementing PingAM custom authentication trees, including downstream API integration with threat sensors, adaptive authentication and step-up authentication etc.
- experience in implementing PingGateway single-sign-on routes, dynamic proxies and filter chains, or implementing PingIDM based data links
- experience in partnering with security, product, engineering and compliance teams, to embed identity-first principles into the DevSecOps lifecycle

 

#LI-DK6

!mamzajem

!vas_kontakt

David Kriška

david.kriska@coolpeople.cz

+420 605 078 565

!mate_dotaz

!podobne_pozice