Web Developer - Authentication Specialist

At Roche you can show up as yourself, embraced for the unique qualities you bring. Our culture encourages personal expression, open dialogue, and genuine connections,  where you are valued, accepted and respected for who you are, allowing you to thrive both personally and professionally. This is how we aim to prevent, stop and cure diseases and ensure everyone has access to healthcare today and for generations to come. Join Roche, where every voice matters.

The Position

A healthier future. It’s what drives us to innovate. To continuously advance science and ensure everyone has access to the healthcare they need today and for generations to come. Creating a world where we all have more time with the people we love. That’s what makes us Roche

As a Web Developer specializing in Authentication, you will be a core member of our Identity and Access Management product team, responsible for designing, building, and maintaining secure and seamless authentication experiences for our enterprise on prem and SaaS platforms. You will play a crucial role in integrating and implementing various authentication and authorization protocols, ensuring our applications are protected against evolving cyber threats while delivering a frictionless user experience.

The opportunity

• Design, test, and deploy reusable authentication and authorization components across the enterprise while adhering to security best practices and architectural guidelines.

• Implement enterprise IAM solutions and integrate with identity providers (IdPs) using protocols like SAML, OAuth, and OpenID Connect (OIDC) to support Single Sign-On (SSO).

• Implement and manage secure MFA mechanisms, including exploring and deploying passwordless authentication solutions to enhance user security.

• Collaborate with backend developers to define and implement robust API security measures, including token validation and authorization mechanisms.

• Apply ITIL principles to troubleshoot authentication issues in production environments and participate in change management processes, working with security teams to mitigate authentication vulnerabilities.

• Stay updated on cutting-edge authentication technologies, security threats, and industry best practices to continuously improve security systems.

• Work closely with product managers, security engineers, and developers to create secure and user-friendly authentication flows that meet business and technical requirements. Design, develop, and maintain reliable and scalable authentication and authorization features to ensure the adoption of security best practices across the organization.

Who you are

• 3-5 years of experience as a Web Developer, with a significant focus on authentication and authorization implementations.

• Bachelor's Degree in Computer Science, Software Engineering, or a related discipline, or equivalent practical experience.

• Strong proficiency in web development frameworks and languages (e.g., React, Angular, Vue.js, Node.js, Python, Java, C#)

• Demonstrable experience working with Identity and Access Management (IAM) solutions such as Okta, Entra ID (Azure AD), Ping Identity, Auth0, or similar.

• Practical experience with SAML, OAuth 2.0 or OpenID Connect (OIDC) protocols.

• Experience implementing and integrating various MFA methods (e.g., TOTP, FIDO2/WebAuthn, biometric authentication, YubiKey).

• Familiarity with secure coding practices and common web application vulnerabilities (OWASP Top 10).

Preferred

• Extensive experience with IAM concepts, protocols, and standards (OAuth 2.0, SAML, OpenID Connect, SCIM), as well as integration and configuration of enterprise IAM solutions like Okta, Entra ID, Ping Identity, and Auth0.

• Skilled in modern web development frameworks (React, Angular, Vue.js, Node.js), programming languages (JavaScript/TypeScript, Python, Java, Go, C#), and hands-on experience with token-based authentication (JWT), session management, and secure communication via RESTful APIs and HTTP/HTTPS.

• Deep understanding of Zero Trust principles, authentication factors (FIDO2/WebAuthn, biometrics, magic links), and implementation of RBAC and ABAC. Knowledge of user provisioning methods like JIT and directory services (LDAP, Active Directory).

• Strong communication skills to convey technical concepts to diverse audiences and demonstrated success working collaboratively in Agile environments, contributing to cross-functional teams.

• Experience with version control systems (Git), CI/CD pipelines for secure code deployment, and optional scripting expertise with Python, Bash, or PowerShell. Strong debugging and problem-solving skills, particularly with complex authentication flows.

No relocations benefits available for this posting.

A healthier future drives us to innovate. Together, more than 100’000 employees across the globe are dedicated to advance science, ensuring everyone has access to healthcare today and for generations to come. Our efforts result in more than 26 million people treated with our medicines and over 30 billion tests conducted using our Diagnostics products. We empower each other to explore new possibilities, foster creativity, and keep our ambitions high, so we can deliver life-changing healthcare solutions that make a global impact.

Let’s build a healthier future, together.

Roche is an Equal Opportunity Employer.