Kotlin Multiplatform Developer (KMM) – Zero Trust Architecture (m/f/d)
Upvanta sp. z o.o.
⚲ Warszawa
1 100 - 1 300 PLN netto (B2B)
Wymagania
- IAM
- Kotlin
- Zero Trust Architecture
- oauth
Opis stanowiska
Kotlin Multiplatform Developer (KMM) – Zero Trust Architecture (m/f/d) Role Overview We are looking for a Kotlin Multiplatform Developer to join a team building secure mobile solutions aligned with Zero Trust Architecture principles. The role involves developing and maintaining shared cross-platform modules using Kotlin Multiplatform Mobile (KMM), implementing secure authentication and authorization mechanisms, and integrating with enterprise identity providers. Key Responsibilities • Develop and maintain cross-platform modules using Kotlin Multiplatform Mobile (KMM). • Implement secure authentication and authorization flows such as OAuth 2.0, OpenID Connect, MFA, and SSO. • Integrate with identity providers and enforce least privilege access and continuous verification. • Collaborate with security architects to embed Zero Trust principles into mobile client design. • Ensure secure storage of credentials and tokens using platform-specific mechanisms (e.g., Android Keystore, iOS Keychain). • Monitor and respond to runtime security signals (e.g., device integrity checks, jailbreak/root detection). • Write clean, testable, and efficient Kotlin code for both shared and platform-specific modules. Requirements • Strong experience with Kotlin development. • Hands-on experience with Kotlin Multiplatform Mobile (KMM). • Good understanding of security standards and protocols: OAuth 2.0, OpenID Connect, MFA, SSO. • Experience integrating mobile apps with IAM / Identity Providers. • Knowledge of secure token handling and credential storage on Android/iOS. • Ability to write maintainable code and automated tests. • Understanding of mobile security risks and mitigation techniques. Nice to Have • Experience working in environments applying Zero Trust Architecture. • Familiarity with mobile device integrity solutions and anti-tampering approaches. • Experience in regulated industries (banking, fintech, enterprise security).