IAM (Security) Specialist
Picnic / Amsterdam (NL)Apply on site
At Picnic, we're revolutionizing the way people buy groceries with our innovative and sustainable app-only service. We do almost everything in-house, developing cutting-edge technologies and processes to ensure we continue to grow rapidly without missing a beat. Are you a passionate engineer who loves to track down, investigate, and eliminate potential weaknesses before they become security risks? Then we're offering you the opportunity to join the diverse team at our Amsterdam HQ and make a real difference in our scale-up environment.
In a nutshell
You will be responsible for driving the Identity and Access Management program of Picnic Technologies end to end. You will be part of the Security team focusing on implementing IAM controls while collaborating with other platform and infrastructure teams; with the opportunity to grow into an Identity and Access Management Squad as your team expands.
What you'll do
* Design, securely deploy, and maintain the IAM system in Picnic
* Build and maintain supporting documentation across the IAM pipeline
* Define access control security policies and procedures
* Develop and maintain Zero Trust Architecture across Picnic applications
* Facilitate role-based access control implementation activities across all services and infrastructure in support of least privilege access
* Develop automated processes on user access reviews
Technologies we use
* Java 17 (Reactor and Spring 5)
* Python 3.8/3.9
* ElasticSearch, RabbitMQ, Kafka
* Maven and Git
* PostgreSQL, MongoDB
* Keycloak and Google IAM
* AWS, Docker, Kubernetes, Terraform, Vault
* FIDO & U2F
At Picnic, we celebrate and value our differences and are committed to building a safe and inclusive working environment where everyone can be themselves.
* Bachelor's and/or master's degree in computer science or computer engineering
* 3+ years of relevant industry experience in IAM technologies
* Working knowledge of topics like access control, authentication & authorization, and identity management
* Working knowledge of AWS IAM and HashiCorp Vault (or similar tools)
* Experience working with OAuth, Certificate-based, Kerberos, and other authentication applications
* 1+ years of professional experience in programming and software development that covers the full technology stack using Java, Python, Go and/or other relevant languages and services including REST, SOAP, and JSON
For extra credit
* Experience with MITRE ATT&CK framework procedures
* Familiar with cloud security frameworks like the CIS and NIST
Conditions and benefits
* You'll get plenty of opportunities to challenge yourself and grow, including the Picnic Tech Academy, Lunch & Learn sessions, and tailored soft skills training. We also offer free professional weekly language courses.
Make a difference
* You'll work in an awesome scale-up environment with the freedom to drive your own projects and create a visible impact.
* Our fully electric vehicles and sustainable business model mean you'll also be contributing to making the world a better place!
Teamwork makes the dream work
* With more than 80 nationalities across 3 countries, you'll be part of a diverse company with plenty of cool stuff to get involved with, from board game evenings to after-work drinks to our company ski trip and more!
You are what you eat
* You'll get freshly prepared, healthy lunches and snacks (with plenty of vegetarian, vegan, and halal options). Coffee snob? Don't worry, our amazing Picnic barista has you covered.
* Mental health is important. As well as having the option to speak with Picnic colleagues who act as confidential advisors, our collaboration with OpenUp gives you easy access to professional psychologists, along with workshops and materials.
* There are plenty of sports communities and events to get involved with, from tennis to yoga to climbing!
* We offer competitive compensation and a pension plan that looks out for your future self as well as 25 vacation days per year, so you can recharge your batteries
* Where possible, we like to enable people to work in ways that suit their working styles, which is why we have a hybrid-working model. Our teams generally like to have at least one team day per week at the office (the tasty lunch and Barista-made coffee may be a factor), but besides that, it's up to you and your team.
Benefits for expats
It can be daunting starting a new job AND moving to a new country. That's why we offer lots of support for our many expat colleagues, including:
* Relocation package: If you join Picnic from abroad, we'll cover your trip to Amsterdam, sponsor your Visa, and offer you a month of accommodation while you settle in (as long as regulations allow).
* In the Netherlands, we offer support with your first tax report as well as arranging the 30% ruling.
* From health insurance to living arrangements to pet passports, there are always colleagues who've faced the same challenges and are more than happy to help!