We are looking to hire ForgeRock IAM Developer with Java backend skillset in Toronto, Ontario immediately who has experience in strong hands-on experience in ForgeRock 7.5 along with Java backend and modern authentication platforms. The role focuses on delivering java backend enhancements required to support a decoupled UI‑driven login experience.
Summary
The solution will leverage ForgeRock 7.5 with a fully decoupled UI and authentication architecture, enabling a modern SPA-based login experience. The Java backend will expose secure authentication services supporting a two‑step login flow (username and password), user name masking for fraud prevention, and multi‑factor authentication using hard and soft token OTPs. Future enhancements may include push notifications and SMS-based OTP.
The IAM Backend Engineer will be responsible for implementing backend changes, integrating token-based authentication, ensuring security, enabling SPA compatibility, and supporting deployments. The role also includes testing, logging and monitoring, configuration management, documentation, and collaboration with DevOps for smooth delivery and operational handover.
IAM Backend Engineer – Preferred Profile
We are seeking an IAM Backend Engineer with strong hands-on experience in ForgeRock 7.5 along with Java backend and modern authentication platforms. The role focuses on delivering java backend enhancements required to support a decoupled UI‑driven login experience.
Key Responsibilities
- Design and implement backend changes to support the new UI architecture and updated authentication workflows.
- Enable backend‑driven error handling, validation logic, and UI-required validation responses.
- Perform updates and enhancements across relevant ForgeRock modules in alignment with the proposed design.
- Integrate backend services with token-based authentication mechanisms (WAM).
- Develop, maintain, and execute unit test cases to ensure code quality and stability.
- Perform static and dynamic security scans, analyze findings, and implement required remediations.
- Manage and update configuration changes required for build and deployment pipelines.
- Provide knowledge transfer and operational handover support to the DevOps team.
- Support application deployments and releases across lower, staging, and production environments.
- Ensure proper state management compatibility with the new SPA/UI framework.
- Implement and enhance logging, monitoring, and audit logging capabilities.
- Contribute to and maintain technical documentation, including:
- Swagger / OpenAPI specifications
- Technical design documentation
- Release notes and deployment details
Nice-to-Have Enhancements
- Push Notification–based authentication with resend capability
- SMS OTP authentication with resend capability
Detailed Design Overview
The solution will be implemented on ForgeRock Identity Platform version 7.5.
The UI layer will be fully decoupled from the authentication layer, enabling independent development and scalability.
The authentication layer will expose secure backend services consumed by the UI layer. Based on service responses, the UI will dynamically render the appropriate Single Page Application (SPA) views.
