About job description:
Join us in one of the largest global IAM transformation programmes as we modernise identity, authentication, authorization, and lifecycle management across the enterprise. We're looking for a Senior IAM Application Developer skilled in cloud-native API development, identity orchestration, Pub/Sub event processing, and Terraform automation.
This role sits at the heart of building scalable identity services across Google Cloud Platform (GCP).
Responsibilities:
* Design & develop identity lifecycle orchestration flows (provisioning, de-provisioning, adaptive authentication, etc.)
* Build secure RESTful APIs and backend microservices for identity, provisioning, and governance workflows
* Integrate APIs with authentication services for token handling, session logic, and authorization
* Build Pub/Sub event pipelines to automate identity operations and security workflows
* Develop Cloud Run / Cloud Functions services for event processing
* Create and maintain Terraform modules for IAM, API services, Pub/Sub topics & workloads
* Work closely with Cloud Security, DevOps, and Engineering teams
* Debug identity, access, API, and distributed-system issues
* Drive best practices in secure API design, IAM standards, and automation patterns
Required Skills
* Strong experience with identity orchestration platforms (Auth0 Actions, Okta Workflows, WorkOS, etc.)
* Expertise in Python, Go, Java, or Node.js
* Cloud-native API design & deployment experience (Cloud Run, Cloud Functions, GKE)
* Solid understanding of OAuth2, OIDC, JWT, SAML, federation patterns
* Hands-on experience with Pub/Sub, event-driven architecture, asynchronous workflows
* Strong Terraform / IaC automation experience
* Knowledge of API gateways, reverse proxies, service mesh
Nice to Have
* Google Cloud Security Engineer / Cloud Architect Certification
* Experience with Okta, Azure AD, Ping Identity
* Experience with Kubernetes (GKE, workload identity, RBAC)
* Familiarity with Secret Manager, Vault
* Understanding of frameworks: SOC2, ISO 27001, PCI-DSS, HIPAA