Contact
Telegram

Lead CIAM Engineer

andrew paulsen Prague Metropolitan Area
Relocation
Apply
AI Summary

Lead the development and integration of CIAM solutions across digital platforms. Design and build scalable, secure, and extensible APIs for identity and access control. Partner with security, product, and engineering teams to embed IAM best practices across the DevSecOps lifecycle.

Key Highlights
Lead the development and integration of CIAM solutions across digital platforms
Design and build scalable, secure, and extensible APIs for identity and access control
Partner with security, product, and engineering teams to embed IAM best practices across the DevSecOps lifecycle
Technical Skills Required
Java OAuth2 OpenID Connect SSO PKI PSD2 Ping Identity platform PingAccess PingFederate PingIDM PingDirectory
Benefits & Perks
Relocation package
Opportunity to work at the forefront of digital identity in a high-impact, leadership role
Competitive compensation package, excellent benefits, and long-term career development support

Job Description


Lead CIAM Engineer


We're hiring Lead CIAM Engineer for a leading global financial institution that's undergoing a large-scale digital transformation — and identity is at the heart of it.


As a Lead CIAM Engineer, you’ll play a key role in shaping and accelerating a cutting-edge digital identity platform, designed to modernize customer access and security across a global estate. You’ll be part of a collaborative, cross-functional team, driving innovation, secure-by-design thinking, and a seamless user experience.


This is an exciting opportunity to join a digital-first, security-focused organization that is investing heavily in modern engineering practices and technologies. You’ll work alongside top engineers, product leads, and security experts — with real influence over architecture and delivery.


What you’ll do:

  • Lead the development and integration of CIAM solutions across digital platforms
  • Design and build scalable, secure, and extensible APIs for identity and access control
  • Partner with security, product, and engineering teams to embed IAM best practices across the DevSecOps lifecycle
  • Implement secure authentication and authorization protocols, including OAuth2, OIDC, SSO, PKI, and PSD2-compliant authentication flows
  • Develop and customize solutions using the Ping Identity platform (PingAccess, PingFederate, PingIDM, PingDirectory)
  • Contribute to technical strategy and CIAM architecture decisions
  • Promote clean, maintainable, and testable code through best engineering practices


Requirements

  • Strong hands-on IAM engineering background across enterprise-grade environments
  • Java coding skills
  • Solid experience with OAuth2, OpenID Connect, SSO, and possession-based authentication
  • Proficiency in Java or JavaScript for building and extending IAM integrations
  • Familiarity with PingAM authentication trees, dynamic routing with PingGateway, and data modeling with PingIDM
  • Ability to collaborate effectively across teams and influence secure software delivery
  • Knowledge of adaptive authentication, step-up auth, and threat sensor integration is a strong plus
  • Experience working in Agile/DevOps environments with a strong understanding of modern SDLC


Benefits

  • Relocation package
  • Opportunity to work at the forefront of digital identity in a high-impact, leadership role
  • Be part of a forward-thinking, agile engineering culture with a strong emphasis on learning and growth
  • Competitive compensation package, excellent benefits, and long-term career development support
  • A hybrid working model, based in Prague


Apply Now
Job Overview
Posted Date Dec 23, 2025
Employment Type Full-time
Experience Level Mid-Senior level
Location Prague Metropolitan Area
Category Programming
Company andrew paulsen
Mentioned Skills
javascript java devops
Industries
financial services
banking
and investment banking

Subscribe our newsletter

New Things Will Always Update Regularly