Senior Java Developer, Authentication Expert

Summary

Join our team as a Senior Developer specializing in authentication and authorization. You will design, implement, and secure authentication and authorization systems using technologies like Auth, Keycloak, and JWT tokens. This key role involves building secure, scalable, and user-friendly solutions. You will collaborate with cross-functional teams, mentor junior developers, and ensure compliance with industry standards. Strong Java skills and experience with modern frameworks are essential. We offer a casual yet professional environment with opportunities for growth and a competitive compensation package.

Requirements

• Strong proficiency in Java (Java 8+) and experience with modern Java frameworks and libraries
• Strong knowledge of Auth 2.0, OpenID Connect (OIDC), and SAML
• Hands-on experience with Keycloak or similar IAM solutions
• Proficiency in working with JWT tokens and understanding of token-based authentication flow (e.g., Authorization Code Flow, Implicit Flow, Client Credentials Flow)
• Experience with second-factor authentication (2FA) and multi-factor authentication (MFA)
• Familiarity with challenge-response mechanisms and secure credential management
• Extensive experience with Spring Boot for building RESTful APIs and strong understanding of REST API design principles and best practices
• Experience with Spring Security for implementing authentication and authorization
• Proficiency in reactive programming using Spring WebFlux, Project Reactor, or similar frameworks; Experience building non-blocking, event-driven systems
• Strong understanding of cryptographic principles, including encryption, hashing, and digital signatures; Knowledge of secure coding practices and common vulnerabilities (e.g., OWASP Top)
• Excellent problem-solving, analytical, communication and collaboration skills
• Ability to work independently and lead technical initiatives

Responsibilities

• Design, develop, and maintain secure authentication and authorization systems
• Implement Auth 2.0 and OpenID Connect (OIDC) protocols for secure user authentication and authorization
• Configure and manage Keycloak or similar identity and access management (IAM) solutions
• Implement and manage JSON Web Tokens (JWT) for secure token-based authentication
• Handle token generation, validation, and expiration policies; Ensure secure storage and transmission of tokens
• Implement second-factor authentication (2FA) mechanisms, such as TOTP (Time-Based One-Time Password), SMS-based OTP, or hardware tokens; Integrate 2FA into existing authentication flows
• Design and implement challenge-response authentication mechanisms for enhanced security
• Ensure secure handling of client secrets, API keys, and other sensitive credentials
• Develop and maintain RESTful APIs using Spring Boot
• Implement secure and scalable backend services for authentication and authorization; ensure APIs adhere to best practices for performance, security, and maintainability
• Build reactive and non-blocking systems using Spring WebFlux or other reactive frameworks and optimize applications for high concurrency and low latency
• Enforce security best practices for authentication and authorization, including secure password policies, encryption, and secure session management
• Conduct security audits and vulnerability assessments for authentication systems
• Collaborate with cross-functional teams, including product managers, security teams, and DevOps, to deliver secure and scalable solutions, also, mentor junior developers and provide technical leadership in authentication and authorization
• Document authentication and authorization workflows, policies, and procedures
• Ensure compliance with industry standards and regulations, such as GDPR, HIPAA, or PCI-DSS

Preferred Qualifications

• Experience with Auth 2.1 and emerging authentication standards
• Knowledge of FIDO2 and WebAuthn for passwordless authentication
• Familiarity with DevSecOps practices and tools
• Experience with cloud platforms, such as AWS, Azure, or Google Cloud, and their IAM services

Benefits

• A chance to be a part of a casual but professional environment where you will have a safe place to try, fail and learn
• Have full ownership over your code
• Coaching from our tech leads to advance your soft and technical skills and set your own development path
• Defined and organized the onboarding process for both, the company and the project
• Competitive compensation depending on experience and skills
• Private pension and medical insurance for you and your family. Also, maternity and sick leave are 100% paid
• Sport clubs – from fishing to basketball, whatever rocks your boat
• Awesome referral fees - because great people know great people
• Work-life balance – this is the company that really supports your professional, family and personal goals
• Freedom to decide how you want to work - partly or fully remote or from our offices