Remote: Sr. Mobile Developer (IAM / OAuth2 / OIDC)

Sr. Mobile Developer (IAM / OAuth2 / OIDC)

100% Remote

3+ Months

Job Description:

Senior Mobile Developer (IAM / OAuth2 / OIDC) — Prototyping with Ping Identity (PingFederate, PingOne, Ping Mobile SDK)

Overview

We’re looking for a senior mobile developer to help build fast, high-quality mobile prototypes for a customer leveraging Ping Identity products (PingFederate and PingOne). You’ll work hands-on with modern identity and access management (IAM) patterns—OAuth 2.0, OpenID Connect (OIDC), token lifecycle management, and secure mobile app architectures—using the Ping Mobile SDK to accelerate delivery.

This role is ideal for someone who can translate identity requirements into working mobile experiences quickly, collaborate closely with architects and IAM engineers, and confidently troubleshoot authentication flows end-to-end.

What You’ll Do

•             Build mobile prototypes and reference apps that integrate with PingFederate and PingOne using OAuth 2.0 / OIDC flows.

•             Implement common auth patterns, such as:

o             Authorization Code with PKCE

o             Token acquisition, refresh, revocation, and secure session handling

o             Logout patterns (app logout vs. IdP logout) and deep link/callback handling

•             Integrate and implement Ping Mobile SDK capabilities (as applicable), such as secure auth flows, token handling, and mobile-friendly login experiences.

•             Collaborate with IAM teams to validate configurations and debug issues across:

o             App → SDK → browser/system WebView → IdP → token endpoints → resource APIs

•             Implement secure storage and handling of secrets/tokens using platform best practices:

o             iOS Keychain / Android Keystore

•             Instrument prototypes for observability and troubleshooting (logs, network inspection, clear error handling).

•             Produce lightweight documentation explaining setup, flows, assumptions, and how to reproduce the prototype.

•             Provide feedback on developer experience, integration risks, and recommended production hardening steps.

Required Qualifications:

•             5+ years of professional mobile development experience with iOS (Swift) and/or Android (Kotlin/Java).

•             Strong working knowledge of OAuth 2.0 and OpenID Connect (OIDC) in real applications (not just theory).

•             Experience integrating identity flows using system browser / custom tabs, app redirects, deep links, and PKCE.

•             Hands-on familiarity with Ping Identity, specifically:

o             PingFederate and/or PingOne integration concepts

o             Ping Mobile SDK (required)

•             Solid understanding of mobile security fundamentals (secure storage, TLS, threat considerations, jailbreak/root signals, etc.).

•             Ability to prototype quickly while maintaining clean, maintainable code and clear communication.

Preferred Qualifications:

•             Experience with PingFederate / PingOne configuration concepts (policies, clients, scopes, redirect URIs, token settings).

•             Familiarity with related IAM standards and patterns:

o             SAML (helpful for context), JWT validation basics, JWK/JWKS, token introspection

•             Experience with modern mobile architecture patterns (MVVM, Clean Architecture) and dependency injection.

•             Exposure to enterprise requirements: MFA, step-up auth, device binding, risk-based policies.

•             Experience building or consuming APIs secured by OAuth (resource server patterns, audience, scopes).

Technical Environment:

•             Mobile: Swift (iOS), Kotlin (Android)

•             Identity: OAuth2/OIDC, PKCE, JWT, JWKS

•             Ping: PingFederate, PingOne, Ping Mobile SDK

•             Tooling: Git, CI/CD (GitHub Actions, Bitrise, etc.), Postman/Insomnia, Charles/Fiddler, mobile debugging tools

Nice-to-Have Candidate Profile:

You’re pragmatic, security-minded, and comfortable navigating ambiguity. You can move quickly to demonstrate value, but you also know where prototypes tend to break—and how to steer teams toward robust production patterns.