# Senior IAM & Backend Engineer (Keycloak + Spring Boot)

**Company:** [InnovationTeam](http://jobs.workable.com/companies/vvNKGHBooWSi4tNAk4nwu5.md)
**Location:** Riyadh, Saudi Arabia
**Workplace:** on site
**Employment type:** Full-time
**Department:** IT

[Apply for this job](http://jobs.workable.com/view/43fde239-796b-44a6-b836-5a0313fb62b8)

## Description

**About the Role:**

We’re hiring a highly skilled engineer with deep expertise in Keycloak (Red Hat SSO) and strong backend development experience using Java 17+ and Spring Boot. You will lead efforts in identity & access management, secure microservices development, and CI/CD automation across cloud-native architectures.

We seek someone who can code, integrate, automate, and secure modern systems with confidence.

Key Responsibilities:

-   Develop robust and scalable Spring Boot microservices using Java 17+
-   Design and implement secure IAM strategies using Keycloak (Red Hat SSO), including:
-   Realm and client configurations
-   User Management
-   Multi-Factor Authentication (MFA)
-   Role-based access control (RBAC)
-   Federated identity providers (LDAP, Azure AD)
-   Protocol mappers, custom authenticators
-   Token customization (OIDC / JWT / SAML)
-   Integrate Keycloak into enterprise applications and CI/CD pipelines
-   Automate deployment processes using CI/CD tools (e.g., GitLab, Jenkins, GitHub Actions)
-   Deploy and manage services in Docker/Kubernetes environments
-   Apply best practices in security, performance, and observability

-   **Must-Have Skills:**

-   Strong Java (17+) and Spring Boot experience
-   Java Microservices architecture
-   In-depth Keycloak or Red Hat SSO experience — both hands-on and architectural
-   Experience building secure REST APIs using OAuth2, OIDC, and JWT
-   Proven ability to design, configure, and troubleshoot Keycloak realms, clients, flows, and policies
-   Hands-on experience with CI/CD, Docker, and Kubernetes
-   Experience integrating Keycloak with external IdPs, LDAP, social logins
-   Familiarity with Linux, Bash scripting, and infrastructure automation tools

**Nice to Have:**

-   Knowledge of Istio, Service Mesh, or API Gateways
-   Background in securing public APIs and implementing zero-trust patterns
-   Exposure to Kafka, Redis, PostgreSQL, MongoDB