LocationThe job is located at Atlanta, GA. This job requires onsite participation.
About the role you are considering We are looking for a skilled CIAM Engineer with expertise in
Transmit Security and Apigee to build secure, scalable, and seamless customer authentication solutions. The role focuses on
passwordless authentication, fraud prevention, API security, and identity lifecycle management across web and mobile platforms.
Customer Identity & Authentication- Design and implement Transmit Security CIAM solutions
- Enable passwordless authentication, adaptive MFA, and risk-based authentication (RBA)
- Implement FIDO2/WebAuthn, passkeys, biometrics, OTP, and push authentication
- Build authentication and registration journeys using Transmit Journey Orchestration
- Configure OIDC, OAuth 2.0, and SAML flows
- Manage identity lifecycle: registration, login, step-up auth, recovery, consent, profile updates
- Use MongoDB for storing profiles, session data, device fingerprints, and fraud telemetry
Fraud & Risk Intelligence- Integrate Transmit Risk & Fraud Intelligence via Apigee
- Apply device, behavioral, and network signals for authentication decisions
- Implement real-time risk scoring to prevent ATO, credential stuffing, and bot attacks
- Align fraud rules with Transmit policies and Apigee enforcement
Platform Engineering & DevOps- Deploy solutions on AWS/GCP
- Build CI/CD pipelines using Infrastructure-as-Code
- Manage secrets, tokens, and certificates securely
- Ensure high availability, scalability, and performance
Security & Compliance- Apply Zero Trust principles across identity and API layers
- Ensure compliance with PCI-DSS, SOC 2, GDPR
- Support audits with logs, access records, and fraud reports
- Perform threat modeling and security reviews
Apigee & API Integration- Develop Apigee API proxies for identity and fraud services
- Implement OAuth/OIDC mediation, JWT validation, token introspection
- Configure policies for rate limiting, threat protection, and payload transformation
- Enable API security, analytics, and monitoring
- Support integrations across channels, CIAM, and backend systems
Troubleshooting & Optimization- Resolve issues in authentication, tokens, and API proxies
- Optimize performance and user experience
- Promote adoption of passwordless and low-friction authentication
Required Skills- Experience with Transmit Security and Apigee
- Knowledge of OAuth 2.0, OIDC, SAML, FIDO2/WebAuthn
- Hands-on with AWS/GCP, MongoDB, API security, CI/CD
- Strong understanding of Zero Trust and identity security
The base compensation range for this role in the posted location is: 106230 to 145000
Capgemini offers a comprehensive, non-negotiable benefits package to all regular, full-time employees. In the U.S. and Canada, available benefits are determined by local policy and eligibility and may include:
- Paid time off based on employee grade (A-F), defined by policy: Vacation: 12-25 days, depending on grade, Company paid holidays, Personal Days, Sick Leave
- Medical, dental, and vision coverage (or provincial healthcare coordination in Canada)
- Retirement savings plans (e.g., 401(k) in the U.S., RRSP in Canada)
- Life and disability insurance
- Employee assistance programs
- Other benefits as provided by local policy and eligibility
