IAM Engineer – Red Hat SSO / Keycloak

We are looking for an experienced Identity and Access Management (IAM) Engineer with strong expertise in Red Hat SSO / Keycloak to design, implement, and support secure authentication and authorization solutions in enterprise environments.The ideal candidate will have hands-on experience implementing Keycloak in production environments, integrating with enterprise identity providers, and deploying IAM solutions within containerized platforms such as OpenShift/Kubernetes.This role involves building secure authentication architecture aligned with modern OAuth2 / OpenID Connect standards, supporting single sign-on (SSO) across applications, and ensuring compliance with enterprise security standards in banking-grade environments.Key ResponsibilitiesIAM Architecture & ImplementationDesign and implement IAM solutions using Red Hat SSO / Keycloak in enterprise environments.Build secure authentication architectures supporting enterprise applications.Implement Single Sign-On (SSO) across multiple internal and external applications.Configure realms, clients, roles, policies, and identity providers in Keycloak.Identity Federation & IntegrationsImplement Identity Federation with enterprise identity providers such as:Microsoft Azure Active DirectoryLDAP / Active DirectorySAML-based identity providersIntegrate Keycloak with enterprise systems including:API GatewaysMicroservices platformsExternal SaaS applicationsAuthentication ProtocolsImplement authentication and authorization using:OAuth2OpenID Connect (OIDC)SAML 2.0Develop secure token-based authentication flows for microservices and APIs.Container & Platform IntegrationDeploy and manage Keycloak/Red Hat SSO in containerized environments such as:Red Hat OpenShiftKubernetesManage high availability, scaling, and performance tuning of IAM components.Security & ComplianceEnsure IAM solutions meet enterprise security standards, especially within banking or regulated environments.Implement secure authentication flows including:MFAConditional accessRole-based access control (RBAC)Support security audits and compliance initiatives.Development & AutomationDevelop custom Keycloak extensions, providers, and themes when required.Automate IAM deployments using CI/CD pipelines.Support infrastructure-as-code and DevOps practices.Job RequirementsCore IAM Skills6-12 years of relevant experienceStrong hands-on experience with Keycloak or Red Hat Single Sign-OnExperience implementing IAM solutions in production environmentsDeep understanding of:OAuth2OpenID Connect (OIDC)SAML 2.0Integration ExperienceIdentity Federation with:Azure Active DirectoryLDAP / Active DirectoryExperience integrating IAM with API gateways and microservices platformsContainer & Cloud PlatformsHands-on experience with:Red Hat OpenShiftDockerKubernetesDevelopment SkillsJava or Spring Boot development (for Keycloak extensions)REST API integrationExperience with CI/CD pipelinesPreferred QualificationsExperience working in banking / financial services environmentsKnowledge of Zero Trust architectureExperience implementing Multi-Factor Authentication (MFA)Familiarity with API security frameworksExperience with monitoring tools (Prometheus, Grafana)Red Hat certification related to OpenShift or securityCertified IAM / security certifications (CISSP, CISM, etc.)Kubernetes certifications