Grupo QuintoAndar | Senior Software Engineer (Identity & Access)

About Grupo QuintoAndar

We are Grupo QuintoAndar, the largest real estate ecosystem in Latin America. Guided by a shared purpose of helping people love where they live, we have a diversified portfolio of brands and solutions across different countries in Latin America, covering all phases of the housing journey. We also have a Technology Hub in Portugal. We develop technology and innovation to transform and enhance the overall living experience.

With the support of a world-class team of investors and advisors, including Kaszek, Qualcomm, General Atlantic, and SoftBank, Grupo QuintoAndar is currently valued at over USD 5.1 billion and continues to grow year over year.

Here, you will work with top professionals in the market, in an environment that breathes innovation, collaboration, and high performance. To learn more about our story, visit: https://grupoquintoandar.com/pt/.

Location & Remote Work for technology and remote-first roles

Our technology team operates under a "remote-first" model, which means we work from home and can live anywhere in Brazil. We also offer the option of working from our São Paulo offices or partner coworking spaces, up to twice a week.

Hiring Process Stages

The stages of our hiring processes aim to assess your experiences and allow you to meet our teams and explore career opportunities. They are structured as follows:

• Application
• Interview with Recruiters
• Tech Screening
• Technicals Interviews with Engineering Team
• Offer

About the Team

Join Grupo QuintoAndar's core engineering team to focus on building and evolving our Customer Identity and Access Management (CIAM) capabilities. As a Senior Software Engineer on the Identity Platform team, you will be instrumental in designing, developing, and maintaining the secure, scalable, and user-friendly systems that manage how our customers access our services.

These are the Senior Software Engineer (Identity Platform) responsibilities at Grupo QuintoAndar:

• Design, develop, and operate core services, focusing on authentication, authorization, user management, and security.
• Implement and manage CIAM functionalities such as user registration, login flows (including MFA, social logins, passwordless options), profile management, session management, and consent management.
• Develop and maintain integrations with internal applications and external partners using standard identity protocols like OAuth 2.0, OpenID Connect (OIDC), and SAML.
• Ensure the security, reliability, scalability, and performance of the identity platform and its associated microservices.
• Collaborate closely with product managers, security teams, and other engineering teams to define and implement identity requirements and ensure a seamless, secure user experience.
• Improve the development experience at QuintoAndar by enhancing development tools, test coverage (especially for security and identity flows), and code structure within the identity platform.
• Actively participate in software design discussions and decisions, specifically for identity-related components, and contribute to clear documentation.

Requirements

What we are looking for:

• Strong proficiency in Java and experience with relevant frameworks (e.g., Spring Boot, Spring Security).
• Proven experience in Identity and Access Management (IAM), with a strong preference for experience in Customer IAM (CIAM).
• Solid understanding and practical experience with identity protocols such as OAuth 2.0, OpenID Connect (OIDC), and SAML.
• Experience designing, building, and consuming RESTful APIs, particularly for identity and user management functions.
• Familiarity with JSON Web Tokens (JWT) and their usage in authentication and authorization flows.
• Experience with relational databases (e.g., SQL) and NoSQL databases in the context of storing user/identity data.
• A strong understanding of security principles and best practices related to web applications and identity management (e.g., OWASP Top 10).
• People that are seeking to learn, deliver real impact through high-quality, secure, and structured software, valuing work-life balance.
• Excellent English skills (verbal and written) are mandatory for documentation, technical discussions, understanding standards, and potential communication with international partners.

You'll stand out if you:

• Have hands-on experience building or integrating with established identity platforms or providers (e.g.,, ForgeRock, Okta, Ping Identity, Keycloak, Auth0, AWS Cognito, GCP Identity Platform) or deep expertise using libraries like Spring Security for complex identity scenarios.
• Understand computer science fundamentals, including optimization of algorithms and distributed systems, especially as applied to scalable identity solutions.
• Have experience with cloud service platforms and their services \, particularly identity-related services.
• Understand modern CI/CD practices and pipelines.
• Have experience with containers and container-orchestration.
• Know how to test (including security testing), performance tune, and ensure the scalability of identity systems.
• Have experience implementing various authentication factors (MFA, TOTP, WebAuthn).
• Understand data privacy regulations (like LGPD or GDPR) and their implications for CIAM.
• Understand the work is never done; we are always taking care and evolving our critical identity services.

Important

• Our hiring process starts with the application! If you truly want to be part of our team, please complete this step of the process. We analyze all candidates individually and provide feedback to all applicants.

• All communication will be conducted via email, so please stay tuned for our messages and release the domain @quintoandar.com.br to ensure our emails are not sent to spam.

Benefits

• Competitive salary
• Profit sharing
• Variable compensation (Somente para vagas comerciais)
• Meal allowance 
• Health insurance
• Dental plan
• Life insurance
• Childcare subsidy and Atypical Parenthood subsidy
• Wellhub
• Home office allowance
• Employee assistance program (mental health, social, legal, and financial support)
• Extended parental leave
• Day off on birthday, Mother’s Day, and Father’s Day
• Benefits Club (discounts on everyday services)
• Discounts at educational institutions
• Reading kit for children – PlayKids
  
  

Diversity & Inclusion at Grupo QuintoAndar

We value diversity and want everyone to feel welcome here, regardless of their age, gender identity, sexual orientation, race, color, ethnicity, origin, disability, religion, or any other characteristic. All our job openings are open to all individuals!

You'll notice there are some diversity questions in the application form. For affirmative action roles, this information may be used to verify your alignment with the target audience for the opportunity. In such cases, it may be used for elimination purposes. For non-affirmative action roles, this data will be used anonymously, exclusively to monitor and improve our inclusion practices in the hiring process, and will have no impact on your application.

Privacy and Data Protection

The Grupo QuintoAndar operates in compliance with privacy and data protection laws, including, but not limited to, the Brazilian General Personal Data Protection Law (LGPD) (Law No. 13,709/2018), and ensures the security of your data. To learn more, please access our Privacy Notice for Candidates. For questions or to exercise your rights as a data subject, please contact us through our Service Channel.