Senior Keycloak Administrator
- InnovationTeam
- الرياض السعودية
- Full-time
وصف الوظيفة
We are in search of a highly qualified Senior Keycloak Administrator to spearhead the design, execution, and continuous oversight of our identity and access management (IAM) infrastructure powered by Keycloak. This vital role involves ensuring secure authentication and authorization processes for enterprise applications, enhancing system performance, and working collaboratively with cross-departmental teams to effectively integrate Keycloak within both cloud-based and on-premises environments. The perfect candidate will exhibit extensive knowledge in Keycloak administration, possess a solid grasp of security protocols such as OAuth2, OIDC, and SAML, and demonstrate the ability to resolve intricate issues in high-availability settings.
Key Responsibilities:
• Keycloak Administration and Configuration: Install, configure, and sustain Keycloak servers, managing realms, user federation (including LDAP/AD integration), and developing custom themes/UI for login, registration, and administration consoles.
• IAM Solution Design and Implementation: Architect and deploy secure authentication and authorization solutions utilizing Keycloak while supporting protocols including OIDC, OAuth2, and SAML; integrate with internal/external applications, APIs, and third-party services for identity federation.
• Infrastructure Management: Oversee Keycloak clustering, maintain high-availability setups, perform performance tuning, and monitoring; manage upgrades, backups, and disaster recovery processes to guarantee 99.9% uptime.
• Security and Compliance: Implement role-based access control (RBAC), establish fine-grained permissions and policies; execute security audits and vulnerability assessments, ensuring alignment with accepted standards such as GDPR, HIPAA, or SOC 2.
• Troubleshooting and Optimization: Identify and resolve issues related to authentication failures, token discrepancies, or integration challenges; enhance Keycloak for scalability within cloud environments (e.g., AWS, Azure) or hybrid configurations.
• Collaboration and Documentation: Collaborate with development, DevOps, and security teams to provide best practice guidance; maintain detailed documentation for configurations, processes, and troubleshooting procedures.
• Custom Development (as required): Create and sustain custom Keycloak extensions, providers, or scripts using Java or REST APIs to deliver specialized functionality.
Required Qualifications:
• Experience: 5+ years in IAM administration, with a minimum of 3 years dedicated to Keycloak, demonstrating a proven track record in enterprise implementations.
• Technical Skills:
◦ Expert-level proficiency in Keycloak features (realms, clients, roles, users, events, and Admin REST API).
◦ In-depth knowledge of identity protocols (OAuth2, OIDC, SAML, JWT) alongside related tools (for example, LDAP, Kerberos).
◦ Familiarity with containerization technologies (Docker, Kubernetes) and cloud platforms (AWS, Azure).
◦ Understanding of databases (PostgreSQL, MySQL) for Keycloak persistence and monitoring solutions (like Prometheus, Grafana).
متطلبات الوظيفة
Keycloak Administration and Configuration: Install, configure, and maintain Keycloak servers, including realm management, user federation (e.g., LDAP/AD integration), and custom theme/UI development for login, registration, and admin consoles.
IAM Solution Design and Implementation: Design and deploy secure authentication/authorization solutions using Keycloak, supporting protocols such as OIDC, OAuth2, and SAML; integrate with internal/external applications, APIs, and third-party services for identity federation.
Infrastructure Management: Manage Keycloak clustering, high-availability setups, performance tuning, and monitoring; handle upgrades, backups, and disaster recovery to ensure 99.9% uptime.
Security and Compliance: Implement role-based access control (RBAC), fine-grained permissions, and policies; conduct security audits, vulnerability assessments, and ensure compliance with standards like GDPR, HIPAA, or SOC 2.
Troubleshooting and Optimization: Diagnose and resolve incidents related to authentication failures, token issues, or integration problems; optimize Keycloak for scalability in cloud (e.g., AWS, Azure) or hybrid environments.
Collaboration and Documentation: Work with development, DevOps, and security teams to provide guidance on best practices; maintain comprehensive documentation for configurations, processes, and troubleshooting guides
Custom Development (as needed): Develop and maintain custom Keycloak extensions, providers, or scripts using Java or REST APIs for tailored functionality.
Required Qualifications
• Experience: 5+ years in IAM administration, with at least 3 years focused on Keycloak; proven track record in enterprise deployments.
• Technical Skills:
◦ Expert-level proficiency in Keycloak features (realms, clients, roles, users, events, and Admin REST API).
◦ Strong knowledge of identity protocols (OAuth2, OIDC, SAML, JWT) and related tools (e.g., LDAP, Kerberos).
◦ Experience with containerization (Docker, Kubernetes) and cloud platforms (AWS, Azure).
◦ Familiarity with databases (PostgreSQL, MySQL) for Keycloak persistence and monitoring tools (Prometheus, Grafana).