As CERN’s Single Sign On Service Manager you will interact with stakeholders across CERN and ensure the service meets the needs of a critical infrastructure component. SSO, based on Keycloak, was introduced in 2019. Migration from the legacy SSO system is almost complete and the new SSO is running reliably on a Kubernetes infrastructure. This is one of the most widely used IT building blocks in the organisation and any interruption of service is visible within seconds. There is significant scope to continue enhancing the service’s usability, security and reliability, improving the daily working environment for all CERN collaborators. This role will in addition include contributions to related services such as WLCG IAM.

Specifically, you will:

• Lead the development and operations of the Single Sign On and related services
• Ensure that expectations are met as a critical service for CERN
• Enhance the service to meet the evolving needs of the organisation
• Provide support, documentation, training etc. to the user community
• Contribute to the service codebase and supervise such activities
• Create and maintain contacts with relevant partners (keycloak developers, industry, research organisations)

We are looking for someone with the following demonstrated experience/skills:

• Operating and optimising large-scale, mission-critical production services
• Dealing with user relations, user support, and user requirements definition: proficiency with Service Now and Jira
• Knowledge and application of software life-cycle tools and procedures: proficiency with Git, GitLab, CI/CD tools, Kubernetes, GitOps
• Knowledge of programming techniques and languages: Python, Java, ReactJS
• Knowledge of authentication protocols: OIDC, SAML, Kerberos, X.509 certificates
• Administration of computing systems: upgrades, application of security patches, system and data migrations, backup and recovery

Contact: Hannah Short