Login Sign Up
🔔 FCM Loaded

Back End Developer

MethodHub

4 - 10 years

Bengaluru

Posted: 12/02/2026

Getting a referral is 5x more effective than applying directly

Job Description

Role: Senior Backend Engineer (IAM specialization)

Experience: 4-10 years

Location - Trivandrum, Kochi, Bangalore, Chennai, Hyderabad, Pune, Gurgaon

Work mode: WFO

Shift - 12:00 PM to 9:00 PM

Notice Period Immediate / serving 15 days.


Mandatory Skills

  • Java
  • OAuth 2.0 (mandatory)
  • Backend API Development
  • Spring Boot or Node.js


Job Summary

Design, build, and maintain secure authentication and authorization systems for backend APIs. The role focuses on implementing OAuth 2.0 / OIDC-based identity flows, token validation, and enterprise-grade SSO integrations across multiple applications.

Key Responsibilities

  • Build secure REST APIs with JWT validation and token-based security
  • Implement OAuth 2.0 flows for server-side and SPA applications
  • Design and maintain token introspection, revocation, and refresh mechanisms
  • Handle session-based vs token-based authentication strategies
  • Implement PKCE for SPA authentication flows
  • Support Single Sign-On (SSO) and federation using OIDC and SAML
  • Configure inbound and outbound SSO for multiple applications
  • Enable universal logout (single sign-out) across integrated applications
  • Validate access tokens at the API Gateway level
  • Integrate with IAM providers such as Okta (preferred)


Core IAM Knowledge (Mandatory)


Authentication & Authorization Protocols

  • OAuth 2.0: grant types, scopes, refresh tokens
  • OpenID Connect (OIDC): flows, ID token handling
  • PKCE: purpose, implementation, and security benefits

Token Management

  • Access tokens vs ID tokens vs refresh tokens
  • Token validation, expiration, and renewal strategies

Session Management

  • Session creation, renewal, and termination
  • Session timeouts and re-authentication flows

Login & Logout Flows

  • Standard login and logout
  • Universal logout / single sign-out across applications

Single Sign-On (SSO) & Federation

  • Inbound SSO (external IdPs such as Okta)
  • Outbound SSO (application acting as an IdP)
  • Federation concepts using SAML and OIDC

Security Best Practices

  • CSRF and XSS protection in authentication flows
  • Secure storage of tokens (browser vs server-side)

Nice to Have

  • Experience with Okta APIs
  • API Gatewaylevel authentication and authorization

Services you might be interested in

Improve Your Resume Today

Boost your chances with professional resume services!

Get expert-reviewed, ATS-optimized resumes tailored for your experience level. Start your journey now.

getmereferred logo Know more