Senior Java Developer, Authentication Expert

at Createq
  • Remote - Moldova

Remote

Software Development

Senior

Job description

We are seeking a highly skilled and experienced Senior Developer with deep expertise in authentication and authorization to join our team. The ideal candidate will have a strong background in designing, implementing, and securing authentication and authorization systems, with hands-on experience in Auth, Keycloak, JWT tokens, and modern security protocols. You will play a key role in building secure, scalable, and user-friendly authentication solutions for our applications.

Key Responsibilities:

  • Design, develop, and maintain secure authentication and authorization systems

  • Implement Auth 2.0 and OpenID Connect (OIDC) protocols for secure user authentication and authorization.

  • Configure and manage Keycloak or similar identity and access management (IAM) solutions

  • Implement and manage JSON Web Tokens (JWT) for secure token-based authentication

  • Handle token generation, validation, and expiration policies; Ensure secure storage and transmission of tokens.

  • Implement second-factor authentication (2FA) mechanisms, such as TOTP (Time-Based One-Time Password), SMS-based OTP, or hardware tokens; Integrate 2FA into existing authentication flows

  • Design and implement challenge-response authentication mechanisms for enhanced security

  • Ensure secure handling of client secrets, API keys, and other sensitive credentials

  • Develop and maintain RESTful APIs using Spring Boot

  • Implement secure and scalable backend services for authentication and authorization; ensure APls adhere to best practices for performance, security, and maintainability

  • Build reactive and non-blocking systems using Spring WebFlux or other reactive frameworks and optimize applications for high concurrency and low latency

  • Enforce security best practices for authentication and authorization, including secure password policies, encryption, and secure session management

  • Conduct security audits and vulnerability assessments for authentication systems

  • Collaborate with cross-functional teams, including product managers, security teams, and DevOps, to deliver secure and scalable solutions, also, mentor junior developers and provide technical leadership in authentication and authorization

  • Document authentication and authorization workflows, policies, and procedures

  • Ensure compliance with industry standards and regulations, such as GDPR, HIPAA, or PCI-DSS.

  • Strong proficiency in Java and experience with modern Java frameworks and libraries

  • Strong knowledge of Auth 2.0, OpeniD Connect (OIDC), and SAML

  • Hands-on experience with Keycloak or similar IAM solutions

  • Proficiency in working with JWT tokens and understanding of token-based authentication fl (e.g., Authorization Code Flow, Implicit Flow, Client Credentials Flow)

  • Experience with second-factor authentication (2FA) and multi-factor authentication (MF)

  • Familiarity with challenge-response mechanisms and secure credential management

  • Extensive experience with Spring Boot for building RESTful APIs and strong understanding of REST API design principles and best practices.

  • Experience with Spring Security for implementing authentication and authorization

  • Proficiency in reactive programming using Spring WebFlux, Project Reactor, or similar frameworks; Experience building non-blocking, event-driven systems

  • Strong understanding of cryptographic principles, including encryption, hashing, and digital signatures; Knowledge of secure coding practices and common vulnerabilities (e.g., OWASP Top)

  • Excellent problem-solving, analytical, communication and collaboration skills

  • Ability to work independently and lead technical initiatives.

Preferred Qualifications:

  • Experience with Auth 2.1 and emerging authentication standards

  • Knowledge of FIDO2 and WebAuthn for passwordless authenticatio

  • Familiarity with DevSecOps practices and tools

  • Experience with cloud platforms, such as AWS, Azure, or Google Cloud, and their IAM services.

  • Challenging projects in a highly professional, but also collaborative and supportive environment

  • Working in small and excellently skilled teams

  • Opportunities for your continuous professional development

  • Competitive compensation depending on experience and skills

  • Hybrid and Remote work options, with provided parking for office commuters

  • Service Recognition Awards, our way of celebrating and rewarding long-term contributions

  • Awesome Referral Bonus Program, because great people know great people

  • Team gatherings and team-building activities to foster connections, a sense of belonging and camaraderie.

Share this job:
Please let Createq know you found this job on Remote First Jobs 🙏

Similar Remote Jobs

Latest Jobs at Createq

Benefits of using Remote First Jobs

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

Advanced Filters

Filter by category, benefits, seniority, and more.

Priority Job Alerts

Get timely alerts for new job openings every day.

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

Search remote, work from home, 100% online jobs

We help you connect with top remote-first companies.

Search jobs

Hiring remote talent? Post a job

Frequently Asked Questions

What makes Remote First Jobs different from other job boards?

Unlike other job boards that only show jobs from companies that pay to post, we actively scan over 20,000 companies to find remote positions. This means you get access to thousands more jobs, including ones from companies that don't typically post on traditional job boards. Our platform is dedicated to fully remote positions, focusing on companies that have adopted remote work as their standard practice.

How often are new jobs added?

New jobs are constantly being added as our system checks company websites every day. We process thousands of jobs daily to ensure you have access to the most up-to-date remote job listings. Our algorithms scan over 20,000 different sources daily, adding jobs to the board the moment they appear.

Can I trust the job listings on Remote First Jobs?

Yes! We verify all job listings and companies to ensure they're legitimate. Our system automatically filters out spam, junk, and fake jobs to ensure you only see real remote opportunities.

Can I suggest companies to be added to your search?

Yes! We're always looking to expand our listings and appreciate suggestions from our community. If you know of companies offering remote positions that should be included in our search, please let us know. We actively work to increase our coverage of remote job opportunities.

How do I apply for jobs?

When you find a job you're interested in, simply click the 'Apply Now' button on the job listing. This will take you directly to the company's application page. We kindly ask you to mention that you found the position through Remote First Jobs when applying, as it helps us grow and improve our service 🙏

Apply