Sword Services seeks an Identity Specialist for a Geneva onsite IAM role focused on secure on-prem identity with open-source tech and Zero Trust. You will own the CIAM lifecycle on WSO2 Identity Server, design and operate open-source identities such as Keycloak, implement adaptive access and passwordless flows, and integrate with AD and Entra ID while automating provisioning and maintaining monitoring and documentation. Requirements: degree or equivalent, 5+ years in IAM with open-source focus, strong Keycloak and/or WSO2 experience, SAML OAuth2 OIDC JWT, Java and IaC skills, Agile experience; AD/Entra ID a plus. Tips: tailor your resume to show concrete open-source IAM projects, governance, provisioning metrics, and contributions; discuss Zero Trust and willingness to be onsite in Geneva.
We are opening a position for an Identity Specialist (Open-Source Technologies) to strengthen a modern IAM product team based in Geneva. The role focuses on developing and operating on-premises identity platforms using open-source technologies, supporting a Zero Trust security approach and ensuring secure, seamless access for a globally distributed workforce.
Manage the evolution, maintenance, and lifecycle of the existing CIAM platform (WSO2 Identity Server) to ensure continuity and reliability
Design, deploy, and operate identity solutions based on open-source technologies (e.g., Keycloak, WSO2)
Implement advanced authentication mechanisms such as adaptive access, MFA, federation, and passwordless authentication aligned with Zero Trust principles
Integrate identity platforms with corporate environments (e.g., Active Directory, Entra ID)
Support identity governance processes, including automated Joiner-Mover-Leaver workflows and provisioning
Set up monitoring, logging, and alerting to ensure visibility on identity-related activities and proactively mitigate risks
Handle incidents and service requests in collaboration with cross-functional teams to maintain service stability
Produce and maintain technical documentation, and contribute to open-source initiatives and internal knowledge sharing
Degree in Computer Science, Information Technology, or equivalent hands-on experience
At least 5 years of practical experience in Identity & Access Management with a strong focus on open-source solutions
Proven expertise with Keycloak and/or WSO2 Identity Server
Strong knowledge of identity standards and protocols (SAML, OAuth2, OpenID Connect, JWT)
Development skills in at least one programming language (preferably Java) and familiarity with version control and contribution workflows
Experience with automation and Infrastructure as Code tools (e.g., Terraform, Ansible, PowerShell, CI/CD pipelines)
Knowledge of identity integration with Active Directory and Entra ID is a plus
Experience working in Agile environments and collaborative delivery frameworks