Lead Engineer - Customer Identity & Authentication (Transmit Security & Apigee)
Capgemini•Atlanta, GA
•$106,230 - $145,000•Onsite
About The Position
We are looking for a skilled CIAM Engineer with expertise in Transmit Security and Apigee to build secure, scalable, and seamless customer authentication solutions. The role focuses on passwordless authentication, fraud prevention, API security, and identity lifecycle management across web and mobile platforms.
Requirements
- Experience with Transmit Security and Apigee
- Knowledge of OAuth 2.0, OIDC, SAML, FIDO2/WebAuthn
- Hands-on with AWS/GCP, MongoDB, API security, CI/CD
- Strong understanding of Zero Trust and identity security
Responsibilities
- Design and implement Transmit Security CIAM solutions
- Enable passwordless authentication, adaptive MFA, and risk-based authentication (RBA)
- Implement FIDO2/WebAuthn, passkeys, biometrics, OTP, and push authentication
- Build authentication and registration journeys using Transmit Journey Orchestration
- Configure OIDC, OAuth 2.0, and SAML flows
- Manage identity lifecycle: registration, login, step-up auth, recovery, consent, profile updates
- Use MongoDB for storing profiles, session data, device fingerprints, and fraud telemetry
- Integrate Transmit Risk & Fraud Intelligence via Apigee
- Apply device, behavioral, and network signals for authentication decisions
- Implement real-time risk scoring to prevent ATO, credential stuffing, and bot attacks
- Align fraud rules with Transmit policies and Apigee enforcement
- Deploy solutions on AWS/GCP
- Build CI/CD pipelines using Infrastructure-as-Code
- Manage secrets, tokens, and certificates securely
- Ensure high availability, scalability, and performance
- Apply Zero Trust principles across identity and API layers
- Ensure compliance with PCI-DSS, SOC 2, GDPR
- Support audits with logs, access records, and fraud reports
- Perform threat modeling and security reviews
- Develop Apigee API proxies for identity and fraud services
- Implement OAuth/OIDC mediation, JWT validation, token introspection
- Configure policies for rate limiting, threat protection, and payload transformation
- Enable API security, analytics, and monitoring
- Support integrations across channels, CIAM, and backend systems
- Resolve issues in authentication, tokens, and API proxies
- Optimize performance and user experience
- Promote adoption of passwordless and low-friction authentication
Benefits
- Paid time off based on employee grade (A-F), defined by policy: Vacation: 12-25 days, depending on grade, Company paid holidays, Personal Days, Sick Leave
- Medical, dental, and vision coverage (or provincial healthcare coordination in Canada)
- Retirement savings plans (e.g., 401(k) in the U.S., RRSP in Canada)
- Life and disability insurance
- Employee assistance programs
- Other benefits as provided by local policy and eligibility
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Upload and Match Resume
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
