¡Activa las notificaciones laborales por email!
Security Engineer/IAM Architect (Python)
JR Spain
Almería
A distancia
EUR 30.000 - 50.000
A tiempo parcial
Descripción de la vacante
A leading technology company is seeking a Security Engineer/IAM Architect to design and implement a secure authentication system for AI generative agents. The role requires expertise in OAuth 2.0 and OpenID Connect, experience with Python 3.9+, and fluency in Spanish. This is a freelance contract with competitive compensation and remote work options.
Formación
- Proven experience as a Security Engineer/IAM Architect.
- Fluency in Spanish.
- Good understanding of regulatory requirements (GDPR, PSD2).
Responsabilidades
- Design and build a secure, programmable authentication/authorization system.
- Implement OAuth authentication services for AI generative agents.
- Collaborate with developers and DevSecOps to ensure secure practices.
Conocimientos
Herramientas
Descripción del empleo
Almería, Spain
Seeking a professional with proven experience in the role of Security Engineer/IAM Architect to design a PDP (Policy Decision Point) for authentication and authorization of agents (agentic technology) to access organizational resources.
► Design, build, and implement a secure, programmable, and standards-compliant authentication/authorization system for AI generative agents deployed in Kubernetes with Istio, integrating with Entra ID. Must code security components, not just define architecture.
Expected deliverables
► OAuth authentication services or modules ready for agent use.
► Well-defined and auditable identity flows.
► Documentation and templates for secure onboarding of new agents.
Security and Identity
• Expertise in OAuth 2.0, OpenID Connect, and flows like client credentials and on-behalf-of.
• Management of M2M identities with Entra ID: registered applications, custom roles, scopes.
• Implementation of secure delegation between end-user and agent.
• Experience with JWT, token validation, and use of claims for authorization.
• Configuration of Istio AuthorizationPolicies and mTLS.
• Use of Workload Identity, ServiceAccounts, and mounted secrets.
• Ability to instrument distributed access auditing.
Development of Authentication Services (Python):
• Development in Python 3.9+, with experience in:
• FastAPI / Flask for RESTful auth services.
• Authlib / MSAL / PyJWT / azure-identity for integration with Entra ID.
• Automation with tools like Poetry, Pytest, GitHub Actions.
Compliance and Traceability:
• Good understanding of regulatory requirements (GDPR, PSD2, EBA Guidelines).
• Access traceability: signed logs, SIEM audits, security alerts.
• Ability to work collaboratively with developers, DevSecOps, and Data Engineers.
• Practical approach: focus on automation, not manual solutions.
• Best practices for secure, modular, and maintainable code.
• Fluent in Spanish.
- · Full-time freelance contract
- · Compensation: 260€/320€ per day + VAT (depending on experience)
- · Long-term project with recurring opportunities
- · Location: Spain – 100% Remote
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
mejor más rápidamente
Síguenos
