DevSecOps Engineer – Client Identity and Access Management 100% (f/m/d)

At Julius Baer, we celebrate and value the individual qualities you bring, enabling you to be impactful, to be entrepreneurial, to be empowered, and to create value beyond wealth. Let’s shape the future of wealth management together.
Continuously improve the service reliability, security, performance, monitoring, and automation of the Client Identity and Access (CIAM) infrastructure.YOUR CHALLENGE
Work closely with our global team of engineers to ensure the smooth operation and maintenance of the Client Identity and Access Management Platfrom (CIAM) as well as the Web Application Firewall (WAF) infrastructure
Develop and enhance authentication flows by utilizing modern authentication protocols to deliver a seamless desktop and mobile login experience for bank clients
Develop and maintain high-quality and secure codebases for multiple Single-Page Applications (SPAs), focusing on delivering seamless and efficient login experiences for clients
Collaborate with various stakeholders globally to onboard new client-facing web applications to the global CIAM platform
Review new or changed requirements and assess their feasibility as well as their impact on the surrounding systems, standards and guidelines
Troubleshoot issues as part of the 2nd and 3rd level support organization and take part in the on-call duty rotation
Enhance the automation and scalability of the WAF and CIAM infrastructure
Continuously improve the overall service reliability, security, performance and monitoring of the WAF / CIAM infrastructure
Continuously improve the service reliability, security, performance, monitoring, and automation of the WAF / CIAM infrastructure, with a focus on enhancing overall system availability and efficiency
YOUR PROFILE
Proven experience in designing and implementing authentication and federation mechanisms, including SAML, OAuth, OIDC, and FIDO, with a strong understanding of identity and access management principles
Minimum 4 years of experience in designing, implementing, and managing Web Application Firewall (WAF) and reverse proxy solutions, including products such as F5, Imperva, Nevis, Cloudflare, or open-source alternatives like ModSecurity
Hands-on operational experience with highly available and scalable web infrastructure
Profound understanding of security best practices of web applications and APIs
Solid understanding of web communication protocols such as HTTP, TLS, Websocket, etc.
Experience in software engineering (Java, Spring Boot, React, Typescript) and operational experience with Kubernetes-based environments
Strong troubleshooting and structured problem-solving skills
Proficient in log analytics and correlation, with hands-on experience in Splunk, Elastic or similar toolings, to detect anomalies and investigate incidents and identify root causes
Good technical foundation of Linux operating systems and its command line tools
Relevant academic background (e.g., Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field) or industry-recognized certifications (e.g. CISSP, CEH) with relevant practical knowledge
We are looking forward to receiving your full job application through our online application tool. Further interesting job opportunities can be found on our Career site.
Is this not quite what you are looking for? Set up a job alert by creating a candidate account here.
You'll be redirected to
the company's application page