Intermediate Security Developer to support the transition toward a passwordless future by implementing phish-resistant Passkeys and TOTP MFA

Our client is looking for an Intermediate Security Developer to support the transition toward a passwordless future by implementing phish-resistant Passkeys and TOTP MFA.

Overview:

Key work includes leading the CIAM FY27 enterprise project to transition toward a passwordless future by implementing phish-resistant Passkeys and TOTP MFA across Retail, Wealth, and Business banking. A critical focus will be unifying the identity ecosystem through a Universal Organizational Unit and a centralized Enterprise Profile Management tool to ensure a seamless "one identity" experience for all clients.

This team member will drive the Digital Sales initiative to unlock self-serve credential claiming, improved identity verification via Persona, and automated account recovery flows. This includes expanding IVR authentication capabilities to increase self-serve technology and allow the client base to scale without increasing operational costs. Additionally, the role will oversee the commercial lending project to build a secure client authentication pathway aligned with the broader IAM strategy, while scaling platform quality through automated testing and data-driven insights from Splunk

Must Have's:

• 3+ years of experience within an IT Enterprise field
• Demonstrated experience in designing and implementing test automation, including the use of tools for testing and processing test results
• Experience with object-oriented programming languages (Java, JavaScript) Python
• Have an understanding of SSO Standards and authentication flows (SAML, OIDC, OAuth 2.0)
• Have a bachelor’s degree or equivalent in science, computer science, engineering or related field, or equivalent work experience.
• Foundational knowledge of Cyber Security

Nice to Have's:

• Experience with object-oriented programming languages
• Familiarity with FIDO2
• Experience writing code for authentication
• Have experience with API integration, authentication and security standards.
• Have experience with Git or working knowledge of common software version control systems in collaborative development environments
• Prior experience with development in the agile framework

Responsibilities:

• Design, develop, test, and integrate code into identity (IdP) systems to meet specific business needs.
• Design, develop, and automate security testing processes, including generating test data, test scripts, and test cases automatically.
• Specify testing frameworks and acceptance criteria, and develop meaningful quality assurance and testing strategies, optimizing the corresponding processes.
• Conduct and execute various testing stages, including regression testing, integration testing, unit testing, performance tests, and system integration tests.
• Perform authentication policy and code reviews for team members, ensuring code quality, security standards, and adherence to best practices.
• Give recommendations for improving product security, solve issues related to integration and testing, and work with the product team to define technical requirements for future projects
• Share technical requirements for secure integration with authentication systems and provide guidance to other teams on the implementation of features as a subject matter expert
• Identify potential design and implementation vulnerabilities/security flaws
• Build a standardized set of security product requirements and produce metrics to report performance against those requirements.
• Collaborate with team members on project delivery, offering guidance, and conducting troubleshooting sessions to unblock progress and ensure timely completion of work tasks.
• Investigate and resolve issues related to authentication and user management and debugging complex authentication flows.
• Act as an emissary of the Identity, Application and Offensive Security team working to promote strong partnerships with teams and stakeholders that are dependent on our services.