Java Full Stack Developer (Identity & Access Management) with Security Clearance

---

Job description

TIAG is currently hiring a Java Full Stack Developer (Identity & Access Management) to support the Uniformed Services University Office of the CIO. This position requires a Secret clearance to be considered, as a result US or Naturalized Citizenship is a requirement. Java Full Stack Developer (Identity & Access Management Responsibilities: Design, develop, and maintain Java-based web applications using modern frameworks and technologies (e.g., Spring Boot, Spring Security, Thymeleaf, etc.). Write clean, efficient, and well-documented code that adheres to DoD security standards and best practices. Collaborate with cross-functional teams to integrate the SSO solution with existing applications and services. Develop and maintain custom authentication modules and workflows to address unique access control requirements. Troubleshoot and resolve authentication and authorization issues impacting end-users. Configure and manage identity providers and service providers within the SSO framework. Implement security best practices to protect sensitive user data and ensure compliance with industry standards. Perform unit testing, integration testing, and system testing to ensure the functionality and stability of applications. Implement and maintain x509 certificate-based authentication mechanisms to provide secure access to DoD applications. Troubleshoot and resolve authentication issues related to x509 certificates and PKI. Participate in security audits and assessments to identify and mitigate potential vulnerabilities. Required Experience: 4+ years of experience in Java development. 1+ years managing identity & access management solutions 2+ years of experience working with x509 authentication / mTLS and PKI. Bachelor's degree in Computer Science, Information Technology, or a related field Preferred. Strong proficiency in Java, Spring Boot, HTML, CSS, and JavaScript. Thymeleaf experience is preferred but not required. Working knowledge of x509 authentication, PKI, the SAML protocol, and related technologies. Experience with OAuth, OpenIDConnect, and/or MFA technologies is preferred but not required. Working fluency in LDAP. Experience with distributed data management tools (JPA, Ignite, Hazelcast) and/or managed equivalents (CosmosDB, DynamoDB, FireStore, etc.) is preferred but not required. IAT II certification required (CCNA-Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP) TIAG is an equal opportunity and affirmative action employer that does not discriminate on the basis of race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or protected veteran status, or any other characteristic protected by local, state, or federal laws, rules, or regulations. TIAG's policy applies to all terms and conditions of employment. To achieve our goal of equal opportunity, TIAG maintains an affirmative action plan through which it makes good faith efforts to recruit, hire, and advance in employment qualified minorities, women, individuals with disabilities, and protected veterans.

<!– job description page –>