**Flow RMS Overview** Flow RMS is transforming the manufacturing sales rep and distributor industry with our advanced SaaS platform, powered by AI and automation. We are committed to building high-performance, scalable software that streamlines operations and maximizes efficiency. Our fully remote development team, based in Central and South America, collaborates on innovative solutions that drive real-world impact. Flow RMS is looking for a **Senior Java Developer** specializing in **security and authentication**, with **expert-level experience in Keycloak**. In this role, you will design, develop, and optimize authentication systems to ensure our platform is secure, scalable, and seamless. You will work closely with our back-end team, DevOps engineers, and product managers to implement best-in-class identity and access management solutions. **Key Responsibilities** - Architect and implement authentication, authorization, and security protocols using **Keycloak** (OIDC, SAML, RBAC, MFA, User Federation). - Customize and extend Keycloak with custom providers, authentication flows, and integrations with external identity providers, including **Microsoft 365 and Google**. - Develop and enforce API security best practices, including OAuth2, JWT handling, and token management. - Ensure secure deployment and management of authentication services using **AWS, Docker, and Kubernetes**. - Conduct regular security assessments, implement **SOC2 best practices**, and ensure compliance with industry standards. - Work closely with cross-functional teams to ensure secure, high-quality code and perform code reviews. **Qualifications** - **Expert in Keycloak** - Extensive experience configuring, customizing, and optimizing Keycloak for enterprise authentication solutions. - **Java Development** - 5+ years of experience in Java, **Spring Boot, Quarkus, or similar frameworks**. - **Authentication & Security** - Strong knowledge of **OAuth2, OpenID Connect, SAML, JWT, RBAC, MFA, and security best practices**. - **API & Microservices Security** - Experience securing **RESTful APIs and GraphQL**. - **AWS & DevOps** - Strong experience with AWS, including **IAM, Cognito, Lambda, and API Gateway**. Familiarity with Docker and Kubernetes. - **Database & Identity Management** - Experience with **PostgreSQL, Redis, LDAP, and Identity Federation**. - **Security Best Practices** - Understanding of encryption, secure session management, and zero-trust security models. - **Problem Solver** - Ability to troubleshoot authentication issues, optimize security, and enhance system performance. - **Remote Collaboration** - Strong communication skills and ability to work independently in a remote team. **Preferred Skills** - Experience integrating Keycloak with **Microsoft 365 authentication**: - Familiarity with **SOC2 compliance** and industry security certifications - Knowledge of **CI/CD pipelines, Terraform, and Ansible**: - Understanding of WebSockets, event-driven security models, and real-time authentication **Why Join Flow RMS?** - Work with a **cutting-edge tech stack** in a high-impact industry. - Be part of a **fast-growing SaaS company** that values security-first development. - Fully remote role with **flexible work arrangements** (must be available during EST business hours). *