×
Register Here to Apply for Jobs or Post Jobs. X

Senior Software Developer

Job in Charlotte, Mecklenburg County, North Carolina, 28245, USA
Listing for: Xylem
Full Time position
Listed on 2026-07-06
Job specializations:
  • Software Development
    Software Architect, DevOps, Software Engineer, Backend Developer
Salary/Wage Range or Industry Benchmark: 90000 - 120000 USD Yearly USD 90000.00 120000.00 YEAR
Job Description & How to Apply Below

Xylem is a Fortune 500 global water solutions company dedicated to advancing sustainable impact and empowering the people who make water work every day. As a leading water technology company with 23,000 employees operating in over 150 countries, Xylem is at the forefront of addressing the world's most critical water challenges. We invite passionate individuals to join our team, dedicated to exceeding customer expectations through innovative and sustainable solutions.

Xylem is seeking a Senior Software Developer to help drive the architecture and evolution of its enterprise Customer Identity and Access Management platform. In this role you will contribute to a transition toward a modern Policy-as-Code authorization model, participate in an active dual-domain identity migration, and work within and evolve a hybrid RBAC/ABAC authorization model serving a global portfolio of customer-facing digital products.

About

the Role

As Senior Software Developer, you will be a key technical contributor on a production IAM platform serving multiple internal engineering teams and end‑customer organizations worldwide.

This role is about contributing to a transition, not inheriting a steady state. The platform is actively evolving toward a modern Policy-as-Code architecture, decoupling authorization logic from application code, thinning JWT payloads, and enforcing Zero Trust principles at the gateway layer. You will help shape the roadmap and build the technical foundation the team executes against. That said, you will be operating within a production enterprise identity platform at scale.

What

You'll Drive Architectural Evolution and Policy-as-Code Direction

Contribute to the platform’s evolution toward a thin-token, policy-as-code authorization model where JWTs carry identity context rather than encoded permissions and a dedicated policy engine becomes the authoritative evaluation layer. This is an active direction, not a completed migration. You will help scope the roadmap, sequence the work, and support consuming teams through the transition.

Participate in an active dual-domain migration for the identity platform, including reverse proxy configuration, dynamic issuer handling, and ensuring downstream resource servers can validate tokens across both issuer values without regression.

Authorization Model Development

Work within and evolve a hybrid RBAC/ABAC authorization model built around a user, role, customer, and application authorization tuple, including platform-defined baseline roles, customer-scoped composite roles, and application-defined custom role patterns.

Help identify and address security misconfigurations in how consuming teams integrate with the platform, ensuring authorization is evaluated against customer context, not flat role presence in a token.

Developer Experience and Integration Enablement

Contribute to Golden Path integration patterns for the engineering teams building on top of the platform, covering OAuth2/OIDC client registration, PKCE, identity provider hints, step‑up authentication, redirect URI strategy, and token validation for Angular and React applications.

Platform Operations Console

Help drive an internal operations and governance UI from its current prototype state to production. The tool serves platform operators, security engineers, and compliance teams across modules including application management, role management, user management, customer hierarchy, MFA configuration, enterprise SSO federation, authorization policy authoring, and audit logs. The goal is reducing manual, ticket-based admin work.

Security, Compliance and Risk

Contribute to technical controls mapped to SOC2 CC6 and NIST 800‑53 in alignment with Zero Trust principles. Support business‑risk framing of architectural decisions and technical debt for leadership audiences, covering compliance exposure, audit risk, and real-time access control gaps.

What You Bring Required
  • 7+ years in software engineering with demonstrated experience in complex, multi‑team platform environments
  • Strong hands‑on proficiency with Java and Spring Boot in a production microservice context
  • Solid understanding of software development lifecycle…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary