×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Back End Developer

Job in Bengaluru, 560001, Bangalore, Karnataka, India
Listing for: MethodHub
Full Time position
Listed on 2026-02-14
Job specializations:
  • IT/Tech
    Cybersecurity
Job Description & How to Apply Below
Location: Bengaluru

Role:
Senior Backend Engineer (IAM specialization)

Experience:

4-10 years

Location - Trivandrum, Kochi, Bangalore, Chennai, Hyderabad, Pune, Gurgaon

Work mode: WFO

Shift - 12:00 PM to 9:00 PM

Notice Period – Immediate / serving 15 days.

Mandatory Skills

- Java
- OAuth 2.0 (mandatory)
- Backend API Development
- Spring Boot or Node.js

Job Summary

Design, build, and maintain secure authentication and authorization systems for backend APIs. The role focuses on implementing OAuth 2.0 / OIDC-based identity flows, token validation, and enterprise-grade SSO integrations across multiple applications.

Key Responsibilities

- Build secure REST APIs with JWT validation and token-based security
- Implement OAuth 2.0 flows for server-side and SPA applications
- Design and maintain token introspection, revocation, and refresh mechanisms
- Handle session-based vs token-based authentication strategies
- Implement PKCE for SPA authentication flows
- Support Single Sign-On (SSO) and federation using OIDC and SAML
- Configure inbound and outbound SSO for multiple applications
- Enable universal logout (single sign-out) across integrated applications
- Validate access tokens at the API Gateway level
- Integrate with IAM providers such as Okta (preferred)

Core IAM Knowledge (Mandatory)

Authentication & Authorization Protocols

- OAuth 2.0: grant types, scopes, refresh tokens
- OpenID Connect (OIDC): flows,  handling
- PKCE: purpose, implementation, and security benefits

Token Management

- Access tokens vs s vs refresh tokens
- Token validation, expiration, and renewal strategies

Session Management

- Session creation, renewal, and termination
- Session timeouts and re-authentication flows

Login & Logout Flows

- Standard login and logout
- Universal logout / single sign-out across applications

Single Sign-On (SSO) & Federation

- Inbound SSO (external IdPs such as Okta)
- Outbound SSO (application acting as an IdP)
- Federation concepts using SAML and OIDC

Security Best Practices

- CSRF and XSS protection in authentication flows
- Secure storage of tokens (browser vs server-side)

Nice to Have

- Experience with Okta APIs
- API Gateway–level authentication and authorization
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search