Required Skills
Java
Aws Lambda
Dynamodb
About the Job
Trimble Inc. is seeking a Lead Software Engineer to spearhead the design and implementation of our Identity and Access Management (IAM) ecosystem in Chennai, Tamil Nadu. This role is critical in building secure, scalable, and resilient identity services to protect our customers and internal infrastructure.
The ideal candidate is a security-focused developer who embraces infrastructure as code (IaC) and excels in a Serverless/AWS environment. You will architect the code governing user and service interactions, moving beyond basic permission management.
**Key Responsibilities:**
- **Architect & Build:** Design and develop robust IAM solutions leveraging AWS services such as Cognito, IAM, Organizations, and Verified Permissions.
- **Serverless Development:** Create high-performance, maintainable serverless applications using AWS Lambda, API Gateway, and EventBridge to automate identity workflows and lifecycle management.
- **Security Integration:** Implement industry-standard security protocols like OAuth2, OpenID Connect (OIDC), and SAML 2.0 across multi-tier applications.
- **Infrastructure as Code (IaC):** Utilize Terraform or AWS SAM for programmatic management of identity policies and cloud resources, ensuring the enforcement of least privilege.
- **System Evolution:** Lead the migration from monolithic identity patterns to modern, fine-grained access control (FGAC) or Zero Trust architectures.
- **Mentorship:** Conduct thorough code reviews and mentor junior engineers on secure coding practices and cloud-native patterns.
**Required Technical Skills:**
- **Programming:** Proficiency in Python or Java, with a focus on clean, testable code.
- **AWS Expertise:** Deep experience with the AWS platform.
- **Serverless Stack:** Proven experience building and deploying scalable applications with AWS Lambda, API Gateway, and EventBridge.
- **Identity Standards:** Strong understanding of OAuth 2.0, OpenID Connect, and SAML 2.0 handshake processes.
- **Database Knowledge:** Experience with NoSQL databases like DynamoDB for managing user metadata and session state.
