Identity & Access Management (IAM) Lead - Keycloak

Clustox is seeking a highly experienced Identity & Access Management (IAM) /Keycloak Lead to design, implement, and manage enterprise-scale identity and access management solutions. The ideal candidate will have deep expertise in Keycloak and other IAM technologies, capable of leading architecture design, advanced integrations, and complex security workflows.

Responsibilities

• Lead the design, architecture, and implementation of Keycloak-based IAM solutions.
• Develop and maintain authentication, authorization, and SSO strategies for enterprise applications
• Configure Keycloak for complex scenarios including multi-realm setups, identity brokering, social logins, and multi-issuer JWT validation.
• Design and implement role-based access control (RBAC), attribute-based access control (ABAC), and fine-grained authorization policies.

• Integrate Keycloak with various applications, APIs, and cloud services.

• Provide leadership for IAM initiatives, including mentoring junior team members.
• Troubleshoot complex identity and access management issues.

Requirements

• 7+ years of professional experience in Identity & Access Management (IAM)
• 3+ years of hands-on experience with Keycloak
• Strong hands-on experience with Keycloak, including clustering, realms, roles, clients, and adapters.

• Experience with Keycloak SPI / custom extensions development.

• Deep knowledge of OAuth2, OpenID Connect (OIDC), SAML2, JWT, and related protocols.
• Experience in integrating IAM solutions with enterprise applications, microservices, and APIs.
• Familiarity with CI/CD pipelines, containerized deployments (Docker/Kubernetes/OpenShift), and high-availability setups.
• Strong understanding of identity federation, social login, and multi-issuer setups.

• Excellent problem-solving, communication, and leadership skills.