Browse
···
Log in / Register
Job Summary: We are seeking a Solutions Architect with cloud security experience to collaborate with a banking sector client, focusing on the definition, design, and technical validation of security flows. Key Highlights: 1. Authentication and Authorization Flow Design 2. Secure SaaS Banking Integration 3. Definition and Testing of Internal Integration Flows This is a remote position. ### Ibertech is looking for a **Solutions Architect** profile to collaborate with one of our leading banking sector clients. **Location:** Madrid **Work Mode:** Remote **Project Duration:** Long-term permanent position. **Profile:** Security Cloud Architect with 5 years of experience performing similar roles. **Responsibilities:** Support the architecture team (e.g., GenAI Gateway or other projects) in defining, designing, and technically validating security flows between internal and external systems — with particular focus on: * Authentication, authorization, and identity federation. * Secure connectivity with SaaS services and cloud APIs. * Functional PoCs connecting infrastructure components and corporate services. Definition of reusable connection and security patterns across the bank's domains. * **Detailed Responsibilities:** 1\. Authentication and Authorization Flow Design * Modeling of OAuth2 / OIDC / SAML2 / Mutual TLS flows. * Definition of identity federation between the bank and third parties (SaaS, partners, cloud providers). * Integration with Identity Providers (Azure AD, Okta, Ping, ForgeRock, Keycloak, etc.). * Support for token exchange, scopes, refresh flows, etc. Review of secure delegation (app\-to\-app, user\-to\-app, machine\-to\-machine). * 2\. Secure SaaS Banking Integration * Evaluate and execute PoCs for connecting cloud services (e.g., OpenAI, Salesforce, ServiceNow, M365, etc.) to the banking core, traversing firewalls, proxies, gateways, etc. * Design hybrid flows with secure connectivity (VPN, Private Link, API Gateway, reverse proxy, etc.). Definition of perimeter security, hardening, secrets management, and compliance patterns (PII, GDPR, etc.). * 3\. Internal Component Integration * Define and test integration flows between internal domains (e.g., among microservices, gateways, brokers, data services, etc.). * Apply Zero Trust policies, network segmentation, access control, and visibility. Design observability and traceability mechanisms for secure transactions. * 4\. PoCs and Hands-on Experimentation * Set up lightweight test environments (sandbox or labs). * Integrate APIs, Identity Providers, Gateways, and SaaS reproducibly. * Validate using practical tools (Postman, curl, Terraform, Docker, etc.). Document and convert PoCs into blueprints or reusable patterns. * Are you interested and believe you’re a good fit? Apply here or send your updated CV along with salary expectations to sara.gonzalez@ibertech.org — we’ll contact you shortly! We look forward to hearing from you!
