Senior Identity Engineer - 18 Month Maximum Term Contract at CMC Markets

Sydney, New South Wales, Australia -

Full Time

Start Date

Immediate

Expiry Date

13 Feb, 26

Salary

0.0

Posted On

15 Nov, 25

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Customer IAM, OAuth2, OIDC, JWT, PKCE, Token Security, MFA, FIDO2, WebAuthn, Passkeys, JavaScript, TypeScript, Problem-Solving, Collaboration, Risk-Based Authentication, Developer Enablement

Industry

Financial Services

Description

If you also believe that everyone should be able to achieve their financial potential, then you’ll love contributing to CMC Markets’ company vision of providing the ultimate trading experience. Seize the opportunity to progress your career in the fintech industry by joining a global leader in CFD trading and share investing. Grow yourself personally and professionally with a company that’s growing with you, by global expansion and product offering. You'll work within our Transformation Engineering squad, reporting to our Principal Transformation Engineer, where you'll have genuine autonomy to design, enhance, and evolve our customer identity services. You'll tackle challenging problems: integrating partner identity assertions, implementing cutting-edge Passkeys and WebAuthn, orchestrating adaptive risk flows, and hardening authentication against emerging threats. Every solution you build will directly impact how securely and smoothly customers access their trading accounts across web, iOS, and Android. When authentication is seamless and secure, we remove barriers that keep people from taking control of their financial futures. Your work will matter, to customers, to the business, and to your own professional growth. Why You'll like working here Just some of the reasons you’ll love working here include: Leave benefits: Enjoy your birthday off to spend time with family and friends, on us! Utilise a free annual charity day to give back to your community. $0 Trades: Staff & family trading accounts with CMC Markets Invest have access to the best brokerage rates in the market - $0 trades for all domestic and international equity orders! Continuous learning: Our L&D offering covers both technical and performance training, ensuring you're always learning new skills. Unlimited access to a dedicated benefits & wellbeing hub where you can save money through various retailer discounts, and make use of a variety of resources that will enhance your physical and mental wellbeing Collaboration: We believe that great things happen when smart people work together, that’s why we’ve made the decision to work five days in the office. Office perks: Help yourself to free breakfast cereals, condiments, and coffee to fuel your workday. Our culture club provides opportunities for everyone whether you’re into fitness, pizza making classes, socialising or bringing out your competitive side in trivia or lawn bowls! What you’ll be working on Own and evolve pre‑authentication / journey flows (risk, MFA, step‑up, bot protection). Implement and tune OAuth2/OIDC/JWT: token lifecycles, scopes, audience, session security. Integrate partner (B2B) identity assertions (OIDC) and delegated access patterns. Deliver and support MFA methods (SMS, push, WebAuthn/FIDO2, Passkeys, recovery codes). Troubleshoot complex web, iOS, and Android SDK authentication issues with product squads. Provide platform and development support (incident response, root cause, remediation, prevention). Implement bot / risk controls (captcha, contextual / behavioural signals) and harden flows. Maintain identity configuration in source control; prevent & detect configuration drift. Contribute to secure API authorization patterns (fine‑grained scopes, claims, entitlements, step‑up triggers). Collaborate on observability (logs, metrics, dashboards, traces, alerts, runbooks). Drive continuous improvement of security posture (threat modelling, hardening, review cycles). Champion developer enablement: samples, SDK guidance, troubleshooting playbooks. Realtime and offline risk-detection analysis. What will help you be successful? We’re seeking an experienced Customer IAM engineer with a strong technical foundation in OAuth2, OIDC, JWT, PKCE, and token security, capable of delivering large-scale identity solutions for high-traffic web and mobile platforms. You’ll have expertise in integrating external or partner identities through federation and claims mapping, implementing advanced MFA solutions (FIDO2, WebAuthn, Passkeys), and designing adaptive authentication journeys with conditional and risk-based triggers. Proficiency in JavaScript and TypeScript, clear developer-focused communication, and a collaborative approach are essential. We value a growth mindset, strong problem-solving skills, and the ability to thrive in a fast-paced, cross-functional environment. You must hold full working rights in Australia to be eligible for this role. The things we live by CMC Markets is powered by our people. We are an equal opportunities employer and are committed to creating a diverse and inclusive workplace, where our people feel confident to be themselves, feel valued and are able to do their best work. We don’t just value differences and unique perspectives, we seek them out and we invite them in, because we know it will lead to better outcomes for everyone Click on the link to find out more about the things we live by at CMC Markets CMC Markets - Culture Video We’re always on the lookout for great people, so even if you don’t feel you are a 100% fit, apply with your up-to-date CV and we’ll consider you for this role and any other suitable opportunities across the business. We look forward to hearing from you! Please be vigilant when applying for jobs online. CMC Markets will never request personal identification details, such as Date of Birth or Tax File Number prior to an offer being made. If your initial application is successful, regardless of whether you've applied directly or through an approved recruiter, you will always liaise with a representative from CMC's Talent Acquisition team. We will only discuss a role you have formally applied for via phone or email (CMC Markets email address); and never via Facebook CMC Markets is one of the world’s first ever fin-tech companies and was launched in 1989 to break down the barriers of financial trading and make trading accessible to everyone. Our mission is to use our award-winning, Next Generation trading platform and unparalleled client service to empower millions of people to have the best trading experience out there. Our clients can trade on thousands of instruments using the best technology, supported by sophisticated charting, competitive pricing and automated execution. We're trusted by investors globally, but also by banks, brokers, funds and trading desks though our top-tier liquidity institutional offering, enabling these businesses to expand into new markets and increase revenue potential. We were recently listed on the FTSE250, and our business continues to go from strength to strength as we continue to invest in our technology and our people.

Responsibilities

You will own and evolve pre-authentication journey flows and implement OAuth2/OIDC/JWT token lifecycles. Your role includes integrating partner identity assertions and delivering advanced MFA methods while troubleshooting authentication issues across platforms.