84.51° Overview:

84.51° is a retail data science, insights and media company. We help The Kroger Co., consumer packaged goods companies, agencies, publishers and affiliates create more personalized and valuable experiences for shoppers across the path to purchase.

Powered by cutting-edge science, we utilize first-party retail data from more than 62 million U.S. households sourced through the Kroger Plus loyalty card program to fuel a more customer-centric journey using 84.51° Insights, 84.51° Loyalty Marketing and our retail media advertising solution, Kroger Precision Marketing.

Join us at 84.51°!

__________________________________________________________

 

As Lead Identity Platform Engineer, you will have the opportunity to help modernize the identity and access management systems and tools used for our commercial platforms and services at 84.51°. We are looking for a knowledgeable, creative identity engineer that can lead and participate in architectural discussions, use their subject matter expertise in identity and access management to make recommendations for our authentication and authorization systems, and ultimately plan and implement solutions with other identity and shared commercial technology engineers. This position will contribute to the design and implementation of authentication and authorization for our web application ecosystem, providing best practices for our developers, and will support identity initiatives related to our API products.

RESPONSIBILITIES

Take ownership of and drive delivery of authentication and authorization solutions across our commercial web application ecosystem by:

  • Leading design and development of identity solutions using a combination of off the shelf tools and homegrown applications
  • Participating in architectural discussions related to authentication and authorization
  • Contributing to our identity systems as a developer, building prototypes, and evaluating open source and commercial products
  • Enabling and supporting engineering initiatives related to API authentication and authorization
  • Acting as an identity subject matter expert and resource for other engineers and stakeholders at 84.51°

QUALIFICATIONS

  • Bachelor’s degree in Computer Science or related program, or commensurate work experience
  • 3+ years of experience implementing authentication and authorization solutions for commercial applications and/or intranet/business to business systems in an enterprise
  • In-depth knowledge of full-stack web application architecture and current best practices for implementing authentication and authorization for web applications (Spring Boot+ Angular) and APIs
  • Proficiency in current frameworks, specifications, topics and trends within the identity field or related to identity security, including OAuth2.0/OpenID Connect, SAML, JOSE (JWT/JWK), etc.
  • 2+ years implementing and integrating on-premise and cloud-based identity providers such as Okta, Azure B2C, Keycloak, Identity Server, etc. and directory systems such as AD LDS/LDAP, Azure AD/Entra ID, etc.
  • Experience with Object-Oriented programming in Java (especially using Spring Boot); enough experience to provide model auth-n/auth-z implementations for developers to follow, develop proofs-of-concepts, and contribute to libraries and backend service code
  • Proficiency with standard authorization models such as RBAC, ABAC, and ReBAC
  • Familiarity with policy information, enforcement, and decision systems such as Open Policy Agent, OpenFGA, Topaz, etc.
  • Experience working with API gateways and an understanding of how they work and fit into an enterprise environment
  • Proficient using RESTful APIs
  • Familiarity with additional web (Javascript, Python, Go, etc.) and scripting (PowerShell, etc. ) languages preferred
  • Experience with infrastructure-as-code via Terraform preferred
  • Comfortable performing version control in GIT and GitHub
  • Understanding of CI/CD
  • Understanding of non-functional qualities of application maintenance such as monitoring, logging, and alerting in tools like Datadog

 

Important: We are unable to sponsor or take over sponsorship of an employment Visa at this time for this position. Applicants must be authorized to work for ANY employer in the U.S. 

This position is OPEN to candidates seeking Fully Remote / WFH Opportunities who have a permanent residence in the United States. 

#LI-DOLF

Apply for this Job

* Required
resume chosen  
(File types: pdf, doc, docx, txt, rtf)
Cancel
cover_letter chosen  
(File types: pdf, doc, docx, txt, rtf)
Cancel
When autocomplete results are available use up and down arrows to review
+ Add another education
84.51° Demographic Questions

Together, we are stronger and can achieve more

At 84.51°, we believe a diverse and inclusive work environment is essential to the work we do as a data science company. Just as no two Kroger customers are alike, no two 84.51° associates are alike. We understand the importance of fostering an inclusive culture: to encourage our associates to bring their authentic selves to work – embracing who they are and celebrating what they can become.

We continually strive to ensure 84.51° is a place where all people feel like they belong, are respected and valued regardless of who they are, where they are from and what experiences they’ve had. By meeting our 3-year D&I roadmap goals and commitments, we will continue our journey towards becoming a destination for diverse, driven, and authentic minds.

Your responses will be used (in aggregate only) to help us identify areas of improvement in our process.

Your responses will not be associated with your specific application and will not in any way be used in the hiring decision.

Which ethnicities describe you? Select all that apply. *











How do you currently describe your gender identity? *







Do you consider yourself a member of the Lesbian, Gay or Bisexual (LGB) community? (Select one) *




Do you identify as a military veteran or service member? (Select one) *




Our system has flagged this application as potentially being associated with bot traffic. Please turn off any VPNs, clear your browser cache and cookies, or try submitting your application in a different browser. If this issue persists, please reach out to our support team via our help center.
Please complete the reCAPTCHA above.