Principal Engineer (Identity Management)

at  Westpac

An exciting opportunity is available for a Principal Engineer within the Westpac Open Banking Program. You will work along with a high-calibre team involved in developing and maintaining Open Banking and Digital Identity applications, as well as leading end-to-end integration aspects of solution architecture and designs across multiple applications.
This role has a particular focus on identity and security aspects of integration, which requires a deep understanding of the identity domain, security principles, solution design, and integration methods.

HOW DO I APPLY?

Start here. Just click on the APPLY button.
At Westpac we are committed to providing a supportive culture and creating diverse, inclusive, and accessible workplaces, branches, products and services for our customers, employees, and community. This role is open to experienced candidates seeking a discussion around workplace flexibility. We invite candidates of all ages, genders, sexual orientation, cultural backgrounds, people with disability, neurodiverse individuals, and Indigenous Australians to apply. If you have questions about the recruitment process, please email talentacquisition@westpac.com.au .

YOUR KEY RESPONSIBILITIES INCLUDE:

• Develop, maintain, and communicate integration strategy, roadmaps, policies, patterns, standards, guidelines, and guardrails pertaining to identity and security aspects of applications. Align integration with security domain strategies and roadmaps.
• Provide thought leadership to the program, particularly pertaining to identity and security.
• Collaborate with solution and security architecture, ISG, and domain architects. Combine deep expertise in integration with a broad understanding of related areas like security, data architecture, infrastructure, and business processes.
• Implement fit-for-purpose authentication and authorization protocols, including OAuth2, SAML, JWT, OpenID Connect, Kerberos, and basic and mutual authentication.
• Apply OWASP standards and best practices to secure web applications, and APIs and mitigate common vulnerabilities such as those listed in the OWASP Top Ten.
• Liaise with all significant contributors to end-to-end solutions, including architecture and engineering; infrastructure; security (ISG); delivery; and vendors.
• Collaborate with vendors to develop fit-for-purpose identity, integration security solutions, and capabilities.

To be successful in this role, you will need to demonstrate the below skills:

• Bachelor’s or master’s degree in computer engineering/computer science or related field.
• Overall 10+ years of design and development experience with a minimum 5+ years of API or Microservices design experience
• Experience in solution design, identity, integration, and information security, with at least 5 years in designing customer or staff identity and security aspects of the projects.
• Proven experience in high-level programming languages, like Java, C#, etc.
• Proven experience building complex digital applications.
• Proficiency in authentication and authorization protocols (OAuth2, SAML, JWT, OpenID Connect, Kerberos, Basic Auth, Mutual Authentication, XACML).
• Experience with identity and access management solutions (Ping, ISAM)
• Knowledge of API security standards (FAPI) and management tools.
• Understanding of encryption technologies and key management practices.
• Knowledge of the Ping Identity suite of products will be preferred.
• Prior experience in Open Banking or Digital Identity projects.
• Experience across multiple architecture domains and knowledge of enterprise architect disciplines and frameworks such as TOGAF will be desirable.
• Working knowledge of various tools, open-source technologies, and cloud services
• Knowledge of test automation frameworks and DevOp tools will be desirable.Good communication skills