JOB REQUIREMENTS: The Senior IDAM Engineer at Northwestern Mutual Life Insurance Company in Franklin, WI will analyze, design, develop, deploy, and support software solutions, and infrastructure implementations and upgrades for user authentication and authorization. Work in depth with Identity and Access Management technologies and tools including Authentication and Access techniques. Implement IDaaS (Identity as a service) using Microsoft Azure (Azure AD, B2B, B2C, Intune MDM, MFA, AAD Connect, ADFS). Implement enterprise Okta control solutions, some of which include Single Sign-On, Lifecycle Management, Identity Workflows, and Adaptive MFA. Implement and configure CIAM systems, including identity orchestration platforms and tools. Develop and design JWT patterns using OAuth2.0/OIDC for SPA Apps, Mobile Apps and Microservices deployed on AWS and Azure. Design, develop, and maintain Enterprise proxy-based OpenID Connect solution using NGINX/NJS and Lua module for WAS Applications. Develop and enhance Java based Authentication Library for J2EE Applications using Azure AD and OpenID connect. Deliver proxy-based OpenID Connect solutions for WAS 9 Applications as part of NYDFS requirements. Migrate applications from SiteMinder to Cloud using federation features including SAML, OIDC, OAuth, and use Nginx plus as a proxy solution for modern Authentication. Implement security by using Single Sign On (SSO) solutions for various in house and vendor apps with PKCE, SAML2.0/WS-Fed and OIDC protocol. Implement MFA for external customers using Azure MFA service or Okta. Write conditional access polices for securing web browser and mobile and desktop applications using Azure AD MFA, Device registration service. Deliver Cloud IDaaS Solution to enterprise Applications leveraging customized plugin including java and JS platform. Design and implement JWT patterns using OAuth2.0/OIDC for SPA Apps, Mobile Apps and Microservices deployed on AWS and Azure. Troubleshoot any authentication and authorization issues while logging into MFA by using Azure AD cloud services. Develop and deploy common JWT NodeJS microservice on AWS cloud Kubernetes cluster with CICD setup running on docker. Utilize DevOps tools including GitLab and Ansible to perform all IAM automated Tasks. May telecommute up to two days per week. Requires a Master\'s degree in Computer Science or related field plus 2 years of experience as a software developer or related occupation. Employer will also accept a Bachelor\'s degree plus five years of experience as a software developer or related occupation. Must include 2 years of experience with each of the following: (1) SSO and Federation, Active Directory, Azure AD, Okta, AWS, MFA, OpenID Connect, SAML, OAuth2.0; (2) Full Stack Development experience with Java (Core, Spring Boot), REST APIs, Python and PowerShell, Ansible, Web Services (using RESTful and SOAP), XML, HTML, JWT, and NodeJS microservices; (3) LDAP and Active Directory services, MFA, Risk based authentication and privileged access management; (4) DevOps tools including Docker, Kubernetes, Terraform, Ansible, gitlab, Jenkins, UrbanCode, and Nexus; (5) Python, JavaScript, Java, REST Web Services NodeJS, PowerShell, Bash, C#, C/C++, or NGINX; and (6) Identity and Access Management support on production deployments. Interested candidates send resume to apply@northwesternmutual.com. Reference code 234 in the subject line. ***** OTHER EXPERIENCE AND QUALIFICATIONS: Requires a Master\'s degree in Computer Science or related field plus 2 years of experience as a software developer or related occupation. Employer will also accept a Bachelor\'s degree plus five years of experience as a software developer or related occupation. Must include 2 years of experience with each of the following: (1) SSO and Federation, Active Directory, Azure AD, Okta, AWS, MFA, OpenID Connect, SAML, OAuth2.0; (2) Full Stack Development experienc with Java (Core, Spring Boot), REST APIs, Python and PowerShell, Ansible, Web Services (using RESTful and SOAP), XML, HTML, JWT, and NodeJS microservices; (3) LDAP and Active Directory services, MFA, Risk based authentication and privileged access management; (4) DevOps tools including Docker, Kubernetes, Terraform, Ansible, gitlab, Jenkins, UrbanCode, and Nexus; (5) Python, JavaScript, Java, REST Web Services NodeJS, PowerShell, Bash, C#, C/C++, or NGINX; and (6) Identity and Access Management support on production deployments. ***** APPLICATION INSTRUCTIONS: Other: Interested candidates send resume to apply@northwesternmutual.com. Reference code 234 in the subject line. E-Mail a Rsum: apply@northwesternmutual.com Qualified females, minorities, and special disabled veterans and other veterans are encouraged to apply.