Security Identity Engineer

Security Identity Engineer - Join Our Team

Are you an experienced and proactive Security Identity Engineer looking for an exciting new challenge? Join the forward-thinking team at BKN301 Group Ltd and contribute to enhancing our identity security strategies

We're looking for a Security Identity Engineer with expertise in identity management, authentication, and authorization systems to join our team.

In this role, you will design and implement secure, scalable Identity and Access Management (IAM) solutions for internal systems and for our clients who integrate with our BaaS platform. Your work will support mission-critical services in core banking, issuing, and acquiring while ensuring compliance with financial regulations like PSD2 and PCI/DSS. Additionally, strong proficiency in Java and .NET will be a significant asset for integrating IAM capabilities into our systems and APIs.

Why BKN301 Group Ltd?

We are a leading Banking-as-a-Service (BaaS) provider, enabling clients to seamlessly integrate with core banking, issuing, acquiring, and other financial services. Security is at the core of our operations, and we are committed to embedding robust security practices into every phase of our software development lifecycle.

Key Responsibilities:

• Identity and Access Management (IAM): Develop and manage IAM solutions to secure access to internal systems, as well as client and provider integrations with our BaaS platform.
• Authentication Systems: Design and implement secure authentication mechanisms, including Single Sign-On (SSO), Multi-Factor Authentication (MFA), and passwordless login, tailored for internal and external users.
• Regulatory Compliance: Ensure IAM processes comply with financial regulations, including PSD2, SOC 2, PCI/DSS, and other relevant standards, enabling secure customer authentication and data privacy.
• Authorization Frameworks: Build and support robust role-based access control (RBAC) and attribute-based access control (ABAC) models to manage permissions for clients, providers, and internal users.
• Identity Federation: Deploy identity federation protocols such as SAML, OAuth2.0, and OpenID Connect to enable secure integration with third-party applications and services used by clients and providers.
• Custom IAM Solutions: Collaborate with product and engineering teams to design and implement customized IAM solutions for clients and providers, ensuring seamless integration with their financial workflows.
• Java Integration: Leverage Java expertise to integrate IAM solutions into our core systems, APIs, and microservices, supporting secure operations across our BaaS platform.
• (Experience in the .NET stack is a significant plus here)
• Incident Response: Investigate and resolve security incidents related to identity or access breaches affecting internal systems, clients, or providers.
• Monitoring and Reporting: Implement and maintain monitoring solutions to detect anomalous behaviors and generate comprehensive reports on identity activities.
• Collaboration: Work closely with engineering, DevOps, and compliance teams to embed IAM best practices across our products and services.

Join Us If You Have:

• 5+ years of experience in cybersecurity roles, with a focus on identity management.
• Hands-on experience with IAM technologies (e.g., Transmit, Okta, Azure AD, Ping Identity, ForgeRock) in multi-tenant SaaS environments.
• Strong knowledge of financial regulations like PSD2, especially its requirements for Strong Customer Authentication (SCA), and PCI/DSS.
• Proficiency in Java, with experience integrating IAM capabilities into Java-based systems and APIs.
• Deep understanding of identity federation protocols (SAML, OAuth2.0, OpenID Connect).
• Experience with directory services like Active Directory, Azure AD, and LDAP.
• Familiarity with cloud security solutions in AWS, Azure, or GCP, particularly IAM services.
• Strong scripting skills (e.g., Python, PowerShell) for automation.
• Exceptional problem-solving and analytical skills.
• Strong communication and collaboration skills to engage with technical and non-technical stakeholders, including clients and providers.
• Ability to adapt to evolving regulatory and technological landscapes.

Great If You Possess:

• Security certifications such as CISSP, CCSP, or certifications specific to identity management (e.g., Okta Certified Professional, Azure Security Engineer Associate).
• Experience working in regulated industries, especially fintech or banking.
• Familiarity with Zero Trust Architecture principles.
• Experience implementing IAM solutions in multi-tenant, API-first platforms like BaaS. Education
• Bachelor's degree in Computer Science, Cybersecurity, or a related field (or equivalent experience).

Location:

Remote (India)

Why You'll Love Working With Us:

• Join a global team where diverse perspectives and expertise are valued.
• Experience a collaborative environment that fosters personal and professional growth.
• Immerse yourself in a culture that prioritizes team empowerment and collective success.

Ready to Take the Leap?

If you're passionate about Security Identity Engineer and want to drive security innovation in fintech, we'd love to hear from you. Apply now and let's create fintech milestones together at BKN301

Our Hiring Process:

1. HR Introduction: A friendly chat with our HR team.
2. Technical Evaluation: Show us your expertise.
3. Hiring Manager Interview: Discuss your experience and vision.
4. Team Fit Discussion: Ensure mutual alignment with our culture.

We aim to complete the process within 2-3 weeks to bring the right talent onboard quickly

BKN301 Group Ltd is an equal opportunity employer. We welcome applications from all qualified individuals regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, or disability status.